Ok…toying around yesterday looking at all things Halloween I found a really cool app. It’s a digital face that you can control and by using a little slight of hand, make it look like a talking mirror. You can use a microphone to “throw” your voice and really entertain the kids this year. The Mirror app can be found here. Have fun and Happy Halloween!!!
One of the common complaints we get about our customized computer image is the long boot up time. In an effort to better understand what’s going on, I did some research and found an app called Soluto which does a great job of breaking down the boot time into a graphical representation of the process. It’s very cool, easy to set up and free. Running Soluto on our standard Windows 7 image yielded this analysis:
Ok…It’s a little hard to see here but trust me this thing is packed with information about the boot process. It identifies many (in is in Beta after all) items and provides great detail into how much memory they take, how long they took to run, what exe and dll files were called and much more. For the applications it knows about you also have the choice to pause or delay the loading of the item so that you can tune your boot process. This tool is very helpful for us as we are working on a new standard image. Definitely a tool to keep handy in your IT Toolbox.
Enjoy.
Been working hard on Windows 7 this week. Specifically group policy stuff. In the process I’ve been needing to get in and out of the registry comparing keys to see if changes are taking place. I usually use a tool called Prism Deploy (pictaker) to run a check on the registry to look for changes but for simple changes it’s a bit much. Don’t get me wrong, I’m a huge Prism fan. I’ve been using it for years and it’s our main software deployment tool. However, for this work it’s a bit overwhelming. I found a cool little tool called regshot at Sourceforge that does the smaller registry compare jobs really well and it seems to run even quicker than Prism. The tool looks like this:
To make a compare, just run the tool and click on “1st shot”. Make the registry changes (in my case I do a grpupdate for force group policy changes) and then run “2nd shot”. When it completes hit the “cOmpare” button and you’ll get a text file or html file of the changes that were made to the registry. Works well, is stupidly simple and because it’s open source there’s no serial numbers or licensing to worry about.
Enjoy.
TOR is a tool I’ve known about for some time but never really had a chance to check out. Tonight I sat down and spent a few minutes with it. It’s very cool. I downloaded the TOR browser bundle which is basically a minimalist way to check it out. The bundle includes a TOR client as well as a version of Firefox portable. By expanding it into a folder or even onto a USB drive you can run TOR and see what it’s like to browse the n
I fired up the Firefox portable browser with TOR and went to www.myipaddress.com to check out what was being reported as my IP. It came back with an IP address in Germany. When I went to Google sure enough I was sent to the German version of Google. Very cool.
So I only have you one reason for browsing anonymously but I’m sure you have your own reason. It’s a very cool tool and will now takes it’s place on my USB utility belt.
It seems that there was a rather large issue at Level3 today on the Internet. Our provider was down for an hour or so while they rerouted traffic. We were on it and rerouted our Firm’s traffic through an alternate site within a few minutes of the outage. I’m always clamoring for more information as to how well things are running and how wide spread an outage is. Here are a few links that are useful in investigating Internet issues:
http://www.internethealthreport.com/
http://www.internettrafficreport.com/
http://isc.sans.edu/index.html
Do you have any sites you use for this? If so, hit me up in the comments.
I ran into an online tool to help people schedule meetings. It’s called When Is Good. It’s surprisingly simple and straightforward to use. When you want to have a meeting with multiple people and are unaware of their schedules When is Good allows you to graphically pick blocks of time when you are free and then let everyone else choose from these times. You can see from the responses if there are any overlapping times that would work for a meeting. Not clear enough?!?!
You see this:
Highlight the times you are free. They see this:
After everyone chooses a good time you see this:
It can all be done through web links anonymously so that’s pretty cool as well. The technique is a great idea and it stops a lot of the back and forth in group emails to get people on the same page. Now…if only we could get the big vendors involved to build this into their products…..
So has this happened to you? You get a computer from a friend/client that is seriously infected with malware or a virus and it’s actually running up to date antivirus and antimalware tools….and the tools find squat?! Well it happened to me yesterday. Signs of the virus were internet connection issues and “weird” behavior. After poking around a bit I remembered
I downloaded the zip file for USB creation, popped in a USB drive and took off. After extracting the contents to the freshly FAT32 formatted drive I ran the makeboot tool to make the USB drive bootable. I rebooted the PC from the USB drive and did a quite Internet update to updated the program and virus definitions. Then I kicked of a scan and walked away for a few hours.
The USB bootable drive found 12 virus infected files including one loaded as isaphp.sys which was loading as a system driver. When I removed it the box wouldn’t boot because it needed that driver. I went to a known good machine copied the driver onto the rescue USB drive, booted from it and used Midnight Commander which was baked into the rescue distro from the utilities menu to put it in the drivers folder on the box. Very cool and I didn’t need the Microsoft XP restore disk which is what is usually required. It also found some infections deep inside some Java Jar class files that the others couldn’t see. Good stuff to add to the toolbox…
As this blog is generally a place for me to remember things…I figured I’d add a tidbit about Office 2007 integration with MDT2010. I’ve set up Office 2007 as a deployable application via MDT for new images and I wanted to figure out how to slip stream Office 2007 SP2 into the Office 2007 install. Turns out it was much easier then I thought. Simply expand the SP2 files into the folder called “Updates” that already exists in the source folder for Office 2007 and you’re done! Easy peasy! If only operating system upgrades were this easy!
So I bought my wife a MAC a few years ago and she loves it. She grew up with MAC and she is an educator and artist so it fits like a glove. However, over time it’s performance has become abysmal. I’ve done what I could do from an OS perspective cleaning things up but I’ve never been able to put the new 
I’ve discussed Lansweeper before, but we just upgraded to the latest version and man…it’s way cool. There are a ton of useful features in this package and for the price it can’t be beat. The feature I like the most are:
I had a high school senior in doing his senior project and I turned him loose on the upgrade. (Shout out to Ben for a job well done!) So here is a smart kid with a little computer know-how able to install and configure one of the most useful tools we use in the department. That should say something about how easy this is to set up and use. No disrespect to Ben… he’s a really smart kid…but he doesn’t really have any system engineering experience.
Custom actions are really cool. There’s a few written up in the forums so definitely check there to get started. But to just give you a flavor of what you can do, I set up custom actions for the following:
That’s just a few things we did. There are plenty more we plan on adding. It’s a very useful tool and definitely worth a look.
At least a take a look at the demo.
I found a cool little suite of Blackberry apps (all in one) that 
Lot’s of this stuff can already be done with BES but the beauty is this way users can control their own settings. In our Firm the devices are owned by the users so there’s a fine line of confidentiality that we need to ride. This app might be a solution for a few of the more….sensitive users.
Enjoy!
As you can see by my infrequent posts…I’ve been busy. One of my projects is to develop and test out all our software distribution and imaging tools so that we can begin the rollout/upgrade of Windows 7. To put it bluntly, it’s been painful. Windows 7 is just different enough to be a real pain in the butt. One of my main concerns is our automated build process. We use Prism Deploy as our software distribution tool. A clean Windows 7 build is loaded from Windows Deployment Services (a whole lotta setup involved there) and then we run a Prism Deploy script to load all our standard apps. The problem is UAC gets in the way even as an administrator. Even though you can turn it off you can’t stop it from prompting for some programs that write to HKEY_LocalMachine or to folders like C:\Program Files. For example this line of the script to load FireFox works great for XP but now under Windows 7 it isn’t silent anymore:
/Run /Wait %comspec% /c %installdir%\firefox\FirefoxSetup3.6.3.exe -ms
The trick to get it to work involves the Elevation PowerToy…specifically the ElevateCommand PowerToy. Installing this tool let’s me run the same command but it works with no GUI interruption:
/Run /Wait %comspec% /c elevate %installdir%\firefox\FirefoxSetup3.6.3.exe -ms
(Watch the wrap on that, it wasn’t intentional.) Now the script works as intended. There is one thing to note. The elevate command seems to shell out to a separate process so the current command windows closes. For me this is an issue because my “/wait” directive in the Prism script no longer waits for the install to finish. If you have software dependencies that are written out in your script you’ll need to figure out a way to wait until things finish before moving on to the next install.
Good luck…happy installing.
We are in the process of looking deeper into our traffic patterns both on the LAN and on the WAN. We run a number of tools (Nagios, Cacti, WireShark, etc.) to keep an eye on overall traffic and performance but to get beyond this and dig deeper you need tools like NetFlow and NBAR. I figured I’d start with our smallest office and get a feel for how things are flowing over the WAN. We’ve got a Cisco 2821 on site connected to a T1 over our MLPS network. I figured I’d enable NBAR first and do a simple discovery of what traffic is flowing. Here are the steps I took:
Router(config)#interface Serial0/0
Router(config-if)#ip nbar protocol-discovery
That’s pretty much it. You can get a lot of information about what’s happening this way. To really roll up the numbers you’ll need netflow tools which I’ll discuss in another post.
Enjoy!
As you can tell by my infrequent posts….I’ve been a little busy. :) We are nearly done with our videoconferencing system upgrade. We went from a Tandberg infrastructure to LifeSize HD. I really like the LifeSize system, but it hasn’t been a smooth road. We’ve had a number of issues with ISDN, some with the LifeSize Networker and some with our PBX and we still haven’t completely figured them out. However, I have learned
All in all I really like the LifeSize gear. Once we get our new routers in (we’re planning a WAN upgrade as well) I’m going to implement LLQ/CBWFQ for video and voice traffic. That should help out immensely with the dropped packets we are seeing now. It won’t help over the Internet of course, but at least site to site calls will be better.
Oh yeah, when you do run a coroner capture it lists out what it’s grabbing as it works and it sure looks like some flavor of Linux under the hood. Gotta love it!
So I set up a lot of test machines. A lot. It’s always a pain to load all the basic tools over and over again along with doing all the Microsoft updates and reboots. I found a cool website that expedites the setup of many of the tools I use. Take a quick look at Ninite.com and you won’t be sorry. It basically allows you to select many commonly used applications and download and install them all at once. Very cool and very useful.
I was playing around with iptables today on some new boxen and found an old tool I had forgotten about. iptstate is like top for iptables. It’s a cool tool used to see who is connecting to your linux pc. Here’s an example of the output (with the ip addresses and ports changed to protect the innocent!):
IPTables - State Top
Version: 1.4 Sort: SrcIP s to change sorting
Source Destination Proto State TTL
10.0.10.48:43081 12.18.123.135:7666 tcp TIME_WAIT 0:01:08
10.4.17.49:59253 92.16.123.155:9666 tcp TIME_WAIT 0:00:56
10.23.14.147:1900 15.18.61.105:12 tcp ESTABLISHED 119:59:59
10.6.12.106:1549 213.168.1.105:89 tcp TIME_WAIT 0:00:00
12.34.34.113:42343 121.138.1.103:87 tcp ESTABLISHED 72:35:23
21.15.2.26:3404 107.168.1.102:80 tcp ESTABLISHED 6:56:27
22.16.14.120:3783 145.168.1.120:77 tcp ESTABLISHED 29:13:09
23.154.11.20:2517 123.18.1.100:8080 tcp ESTABLISHED 15:41:32
24.184.14.12:1511 155.168.1.100:34 tcp ESTABLISHED 40:02:34
Enjoy!
Ever asked to backup a boatload of files to DVD? Been stymied time after time adding just one too many files to a folder and it won’t fit on DVD/CD? Enter Capacity. A tool to break up that big job into just the right size chunks saving you time and heartache!
Enjoy!
If you’ve not heard, time is growing short. A massive rollout of DNSSEC will begin next week. Learn more about it here. I’m sure the change won’t be seamless and it will probably slow name resolution for awhile. Might be a good time to start reading if you haven’t begun already….
I had a few issues on a CentOS box today that I upgraded from 4 to 5. Syslog wouldn’t start if SELinux was in enforcing mode. I had to do a filesystem-wide relabel to get it all working. It was pretty straight forward to do but here was the procedure that worked for me.
That was pretty much it. A “service syslog restart” got it all going again.
I’m still learning about SELinux. Here is a great PowerPoint on it.
Enjoy.
Happy New Year!
As you can tell I’ve been on vaca for a few weeks so I haven’t posted much. I’ve been reading up on Windows 7 so I’ll be releasing some of what I’ve found over the next few updates. As I this is my first day back to work in two weeks I’ll keep this one simple. You may have seen this around the net already but I thought it was kinda cool. In Windows 7, there is the ability to create a “Control Panel-like” folder that has all the admin stuff that seems awfully hard to find in the new “forced” view of control panel. (I say that because the took the damn classic view of control panel completely out of Windows 7. Damnit.) Anyhow on any drive create a new folder and call it:
GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
Now when you access that folder the goodies inside let you have a central location to go find a bunch of admin goodies.
Enjoy!
Posts
All Comments
