G-Stress
-
Posts
683 -
Joined
-
Last visited
Posts posted by G-Stress
-
-
This is very interesting. I'm surprised I've never heard of this before. I was wondering about proxies. So if you can't use proxies I assume you can't have a cluster of VM's from the same external IP address somehow with a script to do some "clicking" or a botnet? Is it 1visit per IP that matters or can the same IP repeatedly do the clicking to get paid?
-
Yea I set all this up this past nov. And of course through the winter time it ran great at about 20 degrees average. I like the tent idea. I'll figure something out and post back results. Thanks for all the input.
-
I know what your talking about with the racks that have fan mounts usually at the top of them. Mine does not and that actually wouldn't do a thing vs. the heat of the summer. I thought about building a plexi-glass wall around the rack with a window unit AC inside it.
-
http://img849.imageshack.us/img849/3519/1003783.jpg
http://img98.imageshack.us/img98/2361/1003784z.jpg
Hope this is helpful. Thought about water cooling also. I'd like to do that and illuminate the tubes with LED's somehow, but to run tubing into each server I think would become an issue for upgrades, hardware failure having to pull the server's out, etc.
Currently no AC in the garage, that will happen at some point possibly this year sometime, probably fall. Really looking to do some custom mod that will allow me to have garage door open in 80-90 degree temps outside while rack remains consistently cool.
-
Working on quite a few projects all at once. Everything is coming along fine so far, but as it's getting warmer I'm running into a problem. I have a 42U rack full of server's and other equipment in the garage that is currently not heated or cooled. I assembled everything this past November and everything ran fine through the winter, but as it's warming up I see the cpu temp's rising into the 50's. I'd like the keep them in the 40's or lower.
I plan to at some point heat and cool the garage, but for now am up for suggestions. I would like to be able to still open the garage door this summer and still have the rack running at a decent temp. I got a few idea's in mind, but am very curious to hear what some of you guys may suggest.
Thanks in advance.
-
What you need in order to set up a proxy server are:
Apache
SSL
PHP
and PHProxy
http://sourceforge.net/projects/poxy/
Installing Apache is the easiest part, download it and run the installer.
For the php installation part, here is a tutorial.
http://www.thesitewizard.com/php/install-php-5-apache-windows.shtml
Once php is installed you will need to install SSL
http://onlamp.com/pub/a/onlamp/2008/03/04/step-by-step-configuring-ssl-under-apache.html
Once SSL is configured and running, unzip the phproxy files in the Apache HTTPdocs directory.
And test it out to make sure it all works. Good luck! If you need any help let me know.
Will definitely do. Thanks alot guys. I have heard of phproxy many times and wanted to play with it. Now is the time.
Thanks :)
-
@ Jarmo,
That sounds like a plan. I think i will try to do that tonight. Is there an available tutorial for proper config for that setup?
@ infiltrator,
I used dynamic port 7070 as mentioned in a post sometime ago by digip. I've used that same setup and config for about 2 years now I cant remember what thread it was in. This setup has always worked fine until now.
I set the web browser to use socks proxy port 7070 after I'm connected via ssh and ipchicken is correct with my home ip.
@ digip
I did enter googles dns servers in the nic config. I've never really messed with any configuration of opendns other then just adding their servers in the nic config. The ssh setup im using is one you suggested in a thread a few years ago i just can't remember what it was called. You mentioned creating a batch file and openssh.
Thanks guys. I think i will try what Jarmo suggested as it something new for me to play with.
-
Doing a little testing on a public network. A town I use to live in currently provides free wifi with some sort of portal. At first I wasn't able to ssh, rdp, nothing, but I was able to surf. Somehow after a few sites I got redirected to the usage agreement. I accepted and then was able to rdp, ssh, etc. Their using OpenDNS for their DNS server's however I left DNS to auto and even set it to manual using google's DNS servers.
The issue is, some site's were blocked via OpenDNS content filtering. I ssh'd back home using a socks proxy, but somehow the same sites were still blocked by OpenDNS? How is this? RDP was fine back home, but I don't understand if I'm using a proxy via ssh how can any standard http site be blocked?
-
Ok thanks for all the info guys. Last stll exist. Would you guys recommend setting this box up via a VM on the IBM or a hdd install? I was thinking a VM with about 4GB Ram dedicated and a cuda based vid card if I could find one capable for the IBM server. This server is in a rack and would do nothing but cracking so leaving it cracking for days against a pass file is not a problem.
-
Sweet! Thanks guys. Isn't there a way to dump the hashes in BackTrack to USB? I don't know how I didn't realize the option was available in Ophcrack. 1 other question, this box is strictly going to be for this purpose, do you think it would be better to install BackTrack to the hard drive vs building a VM to do so?
2 server's at hand debating which one to use for this purpose. IBM x346 series with dual 3.2 xeon's I believe, 8GB ram or a PowerEdge R200 1.8 celeron with 4GB of ram. I've read a bit about the cuda method and if I can find a cuda capable card to fit in either of these server's then I will definitely throw one in.
-
I'm building a box to crack ntlm hashes and ive seen numerous BackTrack videos on this. Would BackTrack be the best method to use on a box just to crack hashes? Also I thought using backtrack and mounting the ntfs partition i could just easily copy the SAM file for later cracking? I tried doing do and was able to copy the file, but i tried running it against a gui install of ophcrack in windows and it gave an error.
Is it possible to say copy the Sam file to a USB, email, upload it somehow to put against a brute or rainbow table attack?
-
Anybody used this? I just found this last night.
-
Well that makes perfect sense. I'm pretty sure I understand what port forwarding is and what it does now. I'm about to set it up on my router, but it will be a couple days before I can get somewhere to test internet RDP. Now I find myself wondering how this can possibly be secure, unless I can tell Windows to only allow port 3389 to pass through RDP requests (which is basically useless for security, considering the nature of RDP), or unless I can tell Windows to allow my local user account to connect. Even though my Windows user account password is over 15 characters, it still seems very reasonable to think that certain software and/or techniques would make it fairly simple for someone to open an RDP session with my XP host, then all bets are pretty much off in that case. After I'm confident that I fully understand Windows RDP, I think I should find some more versatile and more secure RDP software, something that I don't have to upgrade my OS to use (since such is the case with Windows 7 Home Premium). Any suggestions on that front? I don't think I have any interest in paying for RDP software since the only machine I will probably ever want to host with already has Windows RDP host software.
RDP by default isn't the most secure way to administer a server/workstation. It can be bruted with tools such as TSGrinder. Get a good understanding of networking, check out I believe VTC.com and trainsignal.com they offer virtual training courses in all areas of IT.
What I do is VPN back home using OpenVPN then I'm able to login locally to any box via RDP over the VPN tunnel. This way I only need to have 1 port open to the outside world to allow my vpn connection, then I can have 3389 open on all boxes or whatever port I choose locally only.
-
Ahhh, the WRT54G series... my favorite model:)
Assuming everything is set default on the router.
1. Open your web browser and point it to http://192.168.1.1
2. Enter credentials to login should be username=blank password=admin
3. Once logged in navigate to Applications and Gaming
4. Make sure your on the port range forward tab
5. Enter a name for the port forward in the application box e.g. (RDP)
6. Enter 3389 in the Start and End.
7. Change protocol to TCP
8. Enter the host IP in the specified box.
9. Put a check in the box to enable to forward.
10. Save your settings.
11. Before you even try I would check on the host with canyouseeme.org and see if it shows open.
12. Goto ipchicken.com and record your public IP address.
Now you can leave home and attempt to connect back. Basically what happens is you attempt to establish a RDP session via your public IP address. Your wrt54g is nicely routing your packets where they need to be routed. It see's the incoming connection request for an RDP session and being you enabled a rule that if anyone try's to connect to your public IP using RDP go ahead and send that request over to the XP host, he'll gladly except your invite ;) Make sense?
I posted all that and I should have just posted this link: http://portforward.com/english/routers/port_forwarding/Linksys/WRT54G/
Also guys being that I'm running dd-wrt on both my wrt54g series I had to lookup the stock linksys gui to see where he needed to go to forward the port. Been awhile, but doing so I found this:
-
@ NegativeSpace,
What's the make and model of your router and modem and who is your ISP? That will help out alot. Another thing you could try is on the XP host open a command prompt and type netstat -an > netstat.txt
Whatever directory your prompt is set to open from e.g. "C:\Users\USERNAME>" where USERNAME is the user account your currently logged in as, there will be a txt document created with all current and listening connections. If you can't find the newly created netstat.txt document do a windows search, it should turn up quick.
Open the document and browse for ports in the "Listening" state and look for 3389. Make sure it's Listening. If your comfortable working with the cli you should definitely check out nmap. It's a port scanner and there is also a version with a gui avail I believe. Namp along with canyouseeme.org has helped me many times to make sure I can reach a host from outside in.
I'm not sure why your being asked for a subdomain, if you can post a screen shot of that. Also on your XP host if you have multiple user accounts log off and leave the host at the welcome screen/login screen and then try to establish an rdp session.
Based off what your saying though it sounds to me like you have a 3rd. party security suite installed that's dropping the connection. Mcaffee and Norton both if I remember right will do this unless allowed manually.
-
When you are using a website to determine your IP address, your seeing your public IP address. Your router issues your local network private IP address typically with a class C subnet 192.168.1.x/24.
As far as using RDP over your lan, it's quite simple. In XP right click my computer, goto remote and enable it there. Also goto control panel, network settings, firewall settings and add the exception port 3389 if it doesn't add it when you enable it.
On your XP host open a command prompt "Start, run, cmd /k ipconfig" see what the IP is for the XP host, then head over to your win7 client and enter that ip in the RDP connection and you should be fine.
If you have any 3rd. party firewalls, internet security also make sure port 3389 is allowed/open in them as well. Another useful tool is canyouseeme.org to test if your ports are open.
Hope that helps.
-
Hi.
I have ASUS RT-N16. I have flashed it to DD-WRT mega. It has build in pptp-server. I have configured server correctly, Im able to connect to my pptp-vpn-server from wlan using my iPod touch.
But, when Im not in my home lan In not able to connect to my pptp-vpn-server.
i have checked that port 1723 is open. canyouseeme.com
I have tried to forward that port to my router.
My config
root@DD-WRT:~# cat /tmp/pptpd/options.pptpd lock name * proxyarp ipcp-accept-local ipcp-accept-remote lcp-echo-failure 10 lcp-echo-interval 5 deflate 0 auth -chap -mschap +mschap-v2 mppe required,stateless mppc ms-ignore-domain chap-secrets /tmp/pptpd/chap-secrets ip-up-script /tmp/pptpd/ip-up ip-down-script /tmp/pptpd/ip-down mtu 1450 mru 1450 ms-dns 192.168.1.1 ms-dns 8.8.8.8 ms-dns 8.8.4.4
So what wrong?
I've used DD-WRT PPTP before without any issues although I'm all windows based. Not sure if there is an issue with your conif, but what error message are you getting and what client are you using to connect?
-
Anybody using L2TP via Untangle? If so what is your configuration on the Untangle box? I am running Untangle as my router and for some reason I cannot get a L2TP connection passed it. I can connect locally just fine. I have opened the necessary ports on the firewall and forwarded them to the destined host, but nmap doesn't show them open at all?
1701 TCP
500 UDP
I've followed this thread here which helped me figure out how to enable the GRE protocol, but still I don't know why the ports are not opening. Even canyouseeme.org is showing them not open.
http://forums.untangle.com/networking/16047-l2tp-vpn-pass-through.html
Setup is Modem --> Untangle --> Switch --> ESXi 4.1 running a few VM's 1 being Server 2k8 which is where I'm trying to establish the L2TP connection. I can SSH and PPTP in just fine. I keep getting error 789 when trying to connect using L2TP.
If any of you have a working setup using windows server 2k3 or 2k8 I'd be interested to know, I've been trying to do this for awhile now.
Thanks.
-
As Infiltrator mentioned in options 1 and 2 which I'm guessing might be the issue. I've used the PPTP server in DD-WRT and it works nicely. Make sure you can connect locally and once your able to try scanning your dyndns hostname using nmap from outside the lan and make sure 1723 is showing open.
HTH
-
-
-
-
Mine also has 5 wire's 2 are twisted together. A friend of mine said one is probably for the built in mic. I've been trying to find a diagram that will tell me which wire is what so I can hopefully splice it into a standard usb cable.
-
Any of you guys using OpenManage 6.3.0? I'm getting an error "login failed... internal error" no matter what or how I try to login. Locally, remotely doesn't seem to matter. I'm running this on a PowerEdge 1750 running Sever 2008 Enterprise SP2. I see numerous people having the same problem searching google, but the majority of them seem to be running ESXi. http://support.dell.com/support/edocs/software/svradmin/6.3/en/UG/HTML/using.htm#wp1078452 This is the most useful info I've found so far, but it doesn't mention a fix for the error I'm having.
However I see this in the link provided authType=ntlm&application=[plugin name] but I'm not sure where to "set" this setting.
Scsi Raid Array
in Questions
Posted
Guys, I have this HP StorageWorks SCSI RAID Array with 14 bays. It currently has 13x300GB 10k SCSI disks in it. It has 2 80 pin (I think) scsi connector's on the back, an ethernet port that says LCD only and I'm assuming 2 psu's as it takes 2 power cords. The guy I got this from say using only 1 of the scsi connector's a system would only see half of the bay. I have a couple server's with a couple scsi cards, I believe some are dual channel cards.
My question is how do I configure this Array? How can I allow 1 server via the scsi cable to see these disks? Is there a disk I need to run at boot that will allow me to see and configure the array? I currently have the array connected to an IBM xSeries 346 running esxi 4.1. I'm willing to connect them to another server if needed, I just need to get this disk space online on the lan. Years ago I could have answered any ? about scsi, but being I never had and hands on experience until this past November I've forgotten quite a bit.
I also have an HP StorageWorks MSL5000 tape library that also requires the same connections as the RAID array. I've seen a bit of documentation online, but nothing that has made sense as far as seeing the array.
Thanks in advance for any advice, links, etc.