So I had some issues creating email addresses the other day on a clients Exchange 2007 server. It was giving me the following error "An Exchange 2007 server on which an address list service is active cannot be found." So I thought I would share with everyone how you resolve this issue.. As crazy as it seams this is a very easy fix.

Make sure your logged in as a Domain Admin on your Exchange Server. Goto Services and find the service named “Microsoft Exchange System Attendant” if its stopped Start it.. if its started stop it then start it again. This should resolve the issue.

So having several Computer, servers and VirtualMachines running at my house I was wishing there was a way to earn some money with them even if  its pocket change (hey free lunch would be nice right?)

I found GomezPeer which seams to work out well for what I wanted.. you install a Java based client and just let it run while your on your computer. I have been running for about 6months now and made payout (and paid) each month and with 5 computers I make about 5.00-6.00/USD a month.. Neat thing about this is you don’t really need to use the computer a lot, while running it on a computer you use alot seams to be a added benefit it seams to run fine on idle PC’s or rarely used PC’s. You are not limited to how many computer you install too using your single account (they actually encourage installing to more than one computer).

The only issue I have seen with this is people seam to have varried wait times to get their accounts approved.. Once you sign up you need to install the application and let it run. It took just under 2 1/2 weeks for my account to be approved but i have heard of accounts taking upward of 2months for approval.

GomezPeer Zone

I was setting up a WSUS server for the first time the other day and was trying to trouble shoot a issue with a PC that didn’t seam to be registering with the WSUS server.. Found the following command to be useful.

[code]
wuauclt.exe /resetauthorization /detectnow
[/code]

There is a log you can skim through to check for error messages and such located at
c:\windows\windowsupdate.log

So I ran into this issue I needed to find out if SP2 was installed on a Exchange 2003 Server I was working on for a client. The issue was this server was a SBS (Small Business Server Edition) So when you clicked Help>About on Exchange Manager it only would give you 6.5.7638.1 and nothing about SP2 or anything.. After some research I found the following and figured I would share it.

Exchange 2003
6.5.6944 = Exchange 2003
6.5.7226 = Exchange 2003 SP1
6.5.7638 = Exchange 2003 SP2
6.5.7638.1 = Exchange 2003 SP2 + some Exchange Patches Installed

Exchange 2007
8.0.685.24 or 8.0.685.25 = Exchange 2007
8.1.0240.006 = Exchange 2007 SP1

So I got alot of complaints about the last layout being hard on the eyes.. Lets see if this one is any better.. Leave comments with feedback if you think anything should be changed or added. I wil still be fine tuning this template for the next week or so im sure..

So I ran into this issue the other day..

Scenario: My client has a Server 2003 PC and the C:\ was running low in diskspace started looking around to see what big files were on the system.. to my dismay I found c:\windows\system32\wbem\logs\Framework.log to be 600MB and growing slowly.. After some research on Google to check my theory that this file was way too big.. I found that this is a common issue in Server 2003 and has to do with a permissions issue on c:\windows\system32\wbem\logs folder.

Fix:
Set the permissions on the %systemroot%\system32\wbem\logs folder (example c:\windows\system32\wbem\logs ) so that the Network Service account has the Delete permission.

Locate the %systemroot%\system32\wbem\logs folder, right-click on the folder, and then select Properties.
On the Security tab, click the Advanced button.
Select the NETWORK SERVICE account from the Permission entries list, and then click Edit.
Locate the Delete permission, and then click to select the Allow checkbox.
Click OK three times.

delete the Framework.log file and you should be set

So I was working on a clients server today (Windows Server 2003 SBS) that was very low on diskspace on the C:\ .. 634MB actually..

Was sorting through all the folders to figure out where the space was.. To my supprise 4GB of disk usage was in C:\Documents and Settings\[USERNAME]\Local Settings\Temporary Internet Files\Content.IE5 which as anyone who works with computers knows is where friking IE caches websites and downloads. So the quick fix for this is to delete the contents of the folder.. but this is kinda a pain to manualy go into these folders and clear them out for 15 users and even harder if you do it the long way and login each one a click "Delete files" in IE for each account..

So I found this nice little script online someone made and though I would share it.. Credits to whoever wrote it.. Save the code in notepad as cleanup.vbs and then run it.

[Code]

On Error Resume Next
Const HKEY_LOCAL_MACHINE = &H80000002
strComputer = "."

Set objRegistry=GetObject("winmgmts:\\" & _
strComputer & "\root\default:StdRegProv")
Set objFSO = CreateObject("Scripting.FileSystemObject")

strKeyPath = "SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList"
objRegistry.EnumKey HKEY_LOCAL_MACHINE, strKeyPath, arrSubkeys

For Each objSubkey In arrSubkeys
strValueName = "ProfileImagePath"
strSubPath = strKeyPath & "\" & objSubkey
objRegistry.GetExpandedStringValue HKEY_LOCAL_MACHINE, strSubPath, strValueName, strValue
Dim Fol:Fol = strValue & "\Local Settings\Temporary Internet Files\Content.IE5"
If objFSO.FolderExists(Fol) Then
Set f = objFSO.GetFolder(Fol)
Set fc = f.SubFolders
For Each f1 in fc
f1.delete
Next
End If
Next

[/Code]

So I ran into an issue today on a Windows 2003 server today.. Client wanted to run IIS and Apache on the same server.. I figured this wouldn’t be an issue because you can tell IIS to use one IP add another IP to the Network Interface and then tell Apache to use the second IP.. Well this turned out to be something far more complex.. First off even when setting IIS6 to listen on only one IP.. it STILL listens on all IP’s available so as this story would pan out Apache wouldn’t start because it couldn’t bind to the IP address on port 80 because it was already in use by IIS but I found the following trick to get around the issue.

Please note you should schedule a small block of time to do this as it requires a server reboot.. so figure the amount of time you will need is how ever long it takes your Server to shutdown and reboot +5-10min

Configure IIS to only listen to the one IP and make a note of that IP.

Open a command prompt (Start>Run "cmd" > Hit Enter)
Then type the following at the black screen: net stop http /y
This will stop all IIS and IIS related services

Next, run the httpcfg.exe this can be found on your Windows Server 2003 CD-ROM under
\support\tools\support.cab if you double click this file it should let you open it like a folder and copy the httpcfg.exe file to somewhere on your computer (example C:\temp)

At that command prompt you had open move to C:\temp or wherever you put the httpcfg.exe file
cd c:\temp

then type the following command
httpcfg set iplisten -i :80
For replace this portion with the IP address you set in IIS earlyer.. so if that ip was 192.186.0.102 then your command would be the following..
httpcfg set iplisten -i 192.168.0.102:80

If the command is successful, you will see the following message at the prompt.

HttpSetServiceConfiguration completed with 0

In some situations it will be necessary to reboot the server after this change but you can try to start the IIS by
net start w3svc

Change to following folder cd\IntePub\AdminScripts and enter run the following command:
cscript adsutil.vbs set /smtpsvc/1/DisableSocketPooling true

Just a quickie Review, Saw this baby on DealExtreme I picked up a few of these on ebay a few months back they work great even on newer servers. I use these all the time in my Labs at work.

Great Price on DealExtreme right now $2.59 each free shipping!

The myth that to delete data really securely from a hard disk you have to overwrite it many times, using different patterns, has persisted for decades, despite the fact that even firms specializing in data recovery, openly admit that if a hard disk is overwritten with zeros just once, all of its data is irretrievably lost.

Craig Wright, a forensics expert, claims to have put this legend finally to rest. He and his colleagues ran a scientific study to take a close look at hard disks of various makes and different ages, overwriting their data under controlled conditions and then examining the magnetic surfaces with a magnetic-force microscope. They presented their paper at ICISS 2008 and it has been published by Springer AG in its Lecture Notes in Computer Science series (Craig Wright, Dave Kleiman, Shyaam Sundhar R. S.: Overwriting Hard Drive Data: The Great Wiping Controversy).

They concluded that, after a single overwrite of the data on a drive, whether it be an old 1-gigabyte disk or a current model (at the time of the study), the likelihood of still being able to reconstruct anything is practically zero. Well, OK, not quite: a single bit whose precise location is known can in fact be correctly reconstructed with 56 per cent probability (in one of the quoted examples). To recover a byte, however, correct head positioning would have to be precisely repeated eight times, and the probability of that is only 0.97 per cent. Recovering anything beyond a single byte is even less likely.

Nevertheless, that doesn’t stop the vendors of data-wiping programs offering software that overwrites data up to 35 times, based on decades-old security standards that were developed for diskettes. Although this may give a data wiper the psychological satisfaction of having done a thorough job, it’s a pure waste of time.

Something much more important, from a security point of view, is actually to overwrite all copies of the data that are to be deleted. If a sensitive document has been edited on a PC, overwriting the file is far from sufficient because, during editing, the data have been saved countless times to temporary files, back-ups, shadow copies, swap files … and who knows where else? Really, to ensure that nothing more can be recovered from a hard disk, it has to be overwritten completely, sector by sector. Although this takes time, it costs nothing: the dd command in any Linux distribution will do the job perfectly.

(Original Post )