Archive for August, 2006

Tripwire Basic Installation

Monday, August 21st, 2006

To install Tripwire, run in the folder that you have extracted the tripwire files into
sudo ./install.sh
Then enter passphrases/passwords when asked
Then enter the shortname of the primary user of tripwire
Allow the system to define the baseline state of the Server.

To update your tripwire database after making system changes run this command:
./tripwire -m u -r ../report/day-month-year-initials.twr

To update your tripwire config, change the /usr/local/etc/twcfg.txt file and run this command
./twadmin -m F -S ../key/site.key ../../etc/twcfg.txt

To enforce a new policy, edit the /usr/local/tripwire/policy/twpol.txt file and run this command:
./twadmin -m p > ../policy/twpol.txt

To view Tripwire reports run this command
./twprint -m r -r ../report/*.twr → the * in this command is meant to demote your latest twr file

To scan what changes have been made to the system, cd into this directory /usr/local/tripwire/bin and run
./tripwire -m c
To email these changes to the email address listed in the config file, run ./tripwire –m c -M

Get Your PC to Work More Like a Mac

Wednesday, August 9th, 2006

10 Essential Keyboard Shortcuts for Microsoft Windows Users to Get More from their PCs

Keyboards: We all use them. Those of us that work for Three18 happen to use ours for anywhere between 6 and 18 hours a day, hopefully not more. With that kind of time, we’ve learned to be especially crafty in our pursuit to be as efficient as possible. We don’t know all the keyboard shortcuts, but we do know a bunch. Here are a few shortcuts that will have you keyboard jockeying like a pro in no time.

10 & 9: Ctrl-Tab and Alt-Tab. These 2 gems will cycle you through tabs in a window and through all open windows, respectively.

8: Ctrl-Alt-Delete. This well known keystroke combination will give you access to a plethora of information about your computer. Your task manager, current login, change password dialogue, are just a few. Explore this one, there’s more here than you think.

7: Just type! In any explorer window, or open folder you can jump to the file you’re looking for without using the scroll bars or buttons. It’s far more efficient than the scroll and read technique, just type the first few letters and you’ll jump right to it.

6: Windows-r: This combination will have the same effect as Clicking ‘Start’ and ‘Run’, leaving you with an open Run dialogue.

5: Alt-Enter: Instead of Right-clicking and choosing ‘Properties’, use this. It’s especially handy if you already have your right hand on the keyboard. Perhaps because you just used tip #7?

4: Hold Shift while inserting a CD/DVD: Need something off a disc, but don’t want to wait for the autoplay? Hold shift, and it will disable autoplay while mounting the disc.

3: Esc: In almost any window that has a ‘Cancel’ button, Esc is mapped to it.

2: Windows-m: If you’ve used a Mac for any length of time, you’ve probably used the Apple-H command to hide all windows. Here’s your Windows equivalent.

1: Hold Shift while closing a window: Open folders cascading out of control? The keystroke Alt-Shift-F4 or just holding Shift and clicking on the X to close your current window will also close all its parent windows.

Active Directory and FileMaker Security

Tuesday, August 8th, 2006

ARCHIVE: This was only applicable for earlier versions of Mac OS X Server

1. First of all you need to know how to bind a computer running Mac OS X Server to an Active Directory domain. Bind it in /Applications/Utilities/Directory Access.

a. Check Active Directory.
b. Click Configure.
c. Under Active Directory Forest, enter yourdomain.com.
d. Under Active Directory Domain, enter yourdomain.com.
e. Enter the name of the computer.
F. Click Apply then Restart.

*If you are ever having problems with authentication for the whole machine to the primary domain controller of your active directory domain, burning the link then rebinding with this utility is a good place to start.

2. Now you need to tell FileMaker Server 8 to authenticate to an external server.
a. In FileMaker Server 8, open FMS Admin.
b. Click on the Configure button.
c. Enter the address of the primary domain controller
d. You usually can leave the distinguished name blank.
e. Under login settings (since you are authenticating to an Active Directory, a Windows product), check Windows Authentication.
f. Login as a user who is a member of the fmsadmin security group in Active Directory.

*** If you haven’t added a user to this group yet, RDC into the Domain using an account with Administrative privileges and open Start > Programs > Administrative Tools > Active Directory Users and Computers. Make sure you add an account that the FileMaker server can use to the group.

g. Save your changes.

3. Or you need to tell FileMaker Server 9 to authenticate to an external server.
a. Open a web-browser and go to the url: http://filemakerserverip:16000/.
b. FileMaker Server admin will load.
c. Login.
d. Click clients.
e. In the Task List, click Configure external authentication.
f. Make sure under client authentication, filemaker and external server authentication is checked.
g. Click the FileMaker Pro Clients chic-let at the top.
h. Click the Configure Directory Service button.
i. Under directory server, enter your primary domain controller.
j. Leave the point of entry blank.
k. Check my directory server requires me to logon.
l. Enter your fully qualified domain login for the user that you put in the fmsadmin group (i.e., DOMAIN\User). Use exact capitals/lowercase letters.
m. Enter the password.
n. Save and quit.

4. Troubleshooting.
a. Make sure the External logins you specify in your FileMaker solution match those that are in Active Directory.
b. Make sure your groups in your files are lower case if you are running FM Server on a Mac (the groups pulled from AD will become lowercase on the Mac regardless of what they are in AD).