zoooom

Hello and thank you for reading. I have an iis ftp server running behind a freebsd firewall. When clients try to connect via pasv mode the ftp client is attempting to connect to the internal ip number 10.x.x.x Ive been scowering the web looking for solutions with no avail. In freebsd the firewall uses ipnat. I could not find a way to get ipnat to do an ftp translation ( convert the internal ip to global ). Is there a way in iis to set the ip that is sent to the client to use in passive mode? In g6ftp there is such options to where you can set this ip and a port range. Or if you know ipnat any suggestions would be usefull. Thank you for your time.

This may or may not help. There was this bug in windows 2000 ftp server that allowed pub scanners to create undeletable files and folders. I eventually found a way to do it by searching google. There is a rm.exe available on the win2k resource kit.. Some kindof posix thing. It was able to delete the files. Now in your case i understand its a security issue. Just out of curiousity.. I didnt read all the posts.. But are you sure that its a process error and not a ntfs problem. Maybe the virus has changed the security so you cant delete it. Take ownership of it ( as administrator ) and add all the permissions you need. It seems wierd that you would not be able to delete it from safe mode or recovery console unless there was a ntfs issue preventing deletion. Not even sure if ntfs matters in recovery console.

A really good program is SpyBotSD. Its got a command line switch that you can set to have it autoupdate autofix and hide. I have it scheduled run once a day in the background. All spyware gone. Btw Ive also decided that internet explorer sucks. I seem to get more spyware when I use it. Opera is free faster and has a great option that removes unintended popups. So popups will open when you click a link but they wont open with some random javascript command. Also you may encounter one of those really nasty ones that cause other programs in your system to crash. If you take the information from the crash and the dll or exe that crashed you can search the web and you will be likely to find the the fix. I had a guy who was plagued with spyware and his internet explorer wouldnt start. adaware wouldnt fix the dll and niether would the system file checker. This isnt meant to be professional advice just my own experience. I used to get alot of that crap and now my system is pretty clean. And I too know the feeling of wanting to bash somebody's head. It should be illegal. I have monitored spyware on my firewall that was sending information to some server in isreal. How is it that unintended applications can just randomly send information over the net. It seems to me that windows advanced as it is should have a layer somewhere that says this .exe can or this .exe cant send data. Firewalls dont prevent .exe's from sending data they filter ip's and ports. It should be built into the os somewhere. This really would solve alot of problem with trojans and spyware. Oh well I guess security is never the default. Especially on windows...

Lets see. I had win2k3 installed through a dual boot. The system(boot) partition was on a different drive then the os. I formatted the system partition and installed linux . I dont really care if I lose the os. Im just curious if there is a way to save it. The os is completely in-tact on another partition. I tried loading the os through lilo using the following lines.. other="./dev/hda5" label="NT" However it just hangs when i do that. Is that ntldr file stored on the system partition? Why cant I get it to boot?

See thats what i figured. Do you have any idea how to repair it or is it lost?

Quote: IIS 4 and 5 do not support resuming on downloads or uploads. Pretty sad if you ask me. And cheapo or freebie programs can do it. imho iis ftp is cheapo. The only thing thats good is built in windows authentication.. but other then that it really is a feature-less ftp.. No pasv firewall support.. no home directory support, ( except some hack with virtual directories... but its an ugly solution ), No resume support.. I think microsoft is trying to rid the world of ftp. Good riddens.

Check out this article.. http://service1.symantec.com/SUPPORT/nav...ec?OpenDocument

I have a domain controller with iis and frontpage 2k2 extensions. I already know its a bad idea to place iis on a domain controller but its a testing station and its the only server in the office that makes any sense to put it on. ( actually now that I think about it.. There is another server i can put it on.. but the following question will still sortof apply ).. Basically whenever I add users in frontpage it creates these ugly group names and stuff.. like OWS_xxxxxxxx_admin. Which is good because it secures each website.. But i dont want all these things floating the active directory. Isnt there a way fp2k2 can just put them all in an organizational unit.. or even better can i create the groups manually? I dont mind doing this because I want it to be human readable and organized.. Hey i just basically answered my own question. All i gotta do is rename em and put them in an ou! Thanks for the help guys.

Yeah some users have some projects setup that use frontpage extensions. Its not really a not know how to use ftp thing its just more of a convinience thing.. They like their frontpage. Personally im not a fan of frontpage or ftp. Ftp is old crappy protocol. One time I literally ripped my hair out trying to configure iis ftp to work behind a nat'd firewall. Some of the newer microsoft apps dont even use ftp anymore.

Quote: so when the FBi busst down your door and takes your comp - they log on in and see how many cds u burned for that i think they would also want something that would record the contens of what you burned as well. mm, there is an idea "a program that: 1. counts how many cds you burned 2. size cd - 650 - 700 - dvdr 3, how much room was used 4. a listing of all files burned to the cd. This then creates a giant catalogue of them all! mm, i got to copy right this idea! The fbi already knows what everybody's downloaded.

Quote: I assume it would have to be tied in with the burning software somehow. Or the aspi layer... That way it wouldnt be software specific. A simple reg value with the burner id and a count.. It could have other statistics too like total gigs burnt .

I have a client pc that would like to login to a domain at the main office. I got the vpn working.. And was able to join the domain but the problem is now that when the computer starts up of course the vpn isnt connected. So it cant see the domain. It can only see the domain controller when connected with the vpn. I have tons of reading material im just not exactly sure which is the best solution for my problem.. Before using vpn i tried resolving the domain to the wan ip of the domain. Something about this bothered me.. and when trying to do so it complained about a missing srv record. Which makes sense because active directory is tightly integrated into dns.. and unless the client computer is using the proper dns server it wont work properly. Any tips on where to go with this would help me. Im not afraid to read up on it. The best solution would be to have a permanent secure network connection between the client and the domain controller that allowed it to "see" everything on the network. Like a vpn.

Im a bonehead. This was easy. There is a check box that says login using dial connection when you login. check this and then you can choose which vpn connection to use for logging in. Obvious and easy. Sorry for wasting a kilobyte on the messageboard.

I would stick with bulletproof. Could it be some ntfs permissions are conflicting and thats why you cant write or delete...

There is a 10 - 15 second hang whenever i try to run an application in vs.net 2k2 on win2k3. debug or release doesnt matter. start without debugging does the same thing. If i run it again it gets faster.. 3rd time its instant. But as soon as I recompile it it starts all over again. It didnt do this in 2k. Could this be a clash with the new 1.1 framework or something? both 1.0 and 1.1 frameworks are installed. Anybody have a similar problem?

I think i was able to solve this one on my own. The problem wasnt related to win2k3 it was because i have promoted the machine as a domain controller. And doing this basically removes the aspnet account. The vs.net ide will search for the aspnet account even on winform apps and console apps and if the user is not there it will hang while searching for the user. So all you need to do if you are on a domain controller is add the ASPNET user. App loads quick now. I hope the problem doesnt come back.

Nesticle and genecyst were really good emulators... But not that good for windows. They are dos based. Its probably better to search for a win32 version of the emulator.. There are a few out there that work pretty well. Its not like n64 emulation ... which was alot harder to emulate. I wonder if its possible to setup nesticle correctly. That would be a cool emulator to have working in windows.

This reminds me of the argument when windows 2000 came out and everybody was saying "Its a business os" and why would you want it for gaming. Even worse were gaming companies who wouldnt provide very simple patches to allow their game to work in win2k... Saying "business os". Of course its totally different though. 9x is different technology... nt owns 9x. And... the funny thing is... I bet most people didnt realize that xp was based on the same core. And still think xp is different somehow then win2k.. lol. Btw. Windows 2003 is a freakin spectacular workstation. I dont care if its a server. All you have to do is turn on a couple of things that were left off by default. I dont think its the same as xp at all its 10 times better in speed and stability. Games work. The thing is sound, hardware acceleration and a few other things are left off by default. Im hard on my pc's... I need to install tons of things for testing. vmware, development software, crappy shareware... And of course... games. Because im a gamer. So far I love win2k3. Its the shit. Then again people people also use it just because they have pirated it and want the "best version" of it... Like downloading win2k advanced server instead of win2k proffesional.. I agree that this is silly... If you arent using it for studying mcse or development or something and just want to play games. But that is not applicable here because the workstation version of this os was released awhile ago (windows xp) and they are different... ive tried them both and win2k3 kicks xp's ass as a workstation ( IMHO ). There is no comparison.

Is there a way to use some kind of lockout on ie so that it can only affect local files such as cookies and favorites... If a power user is using ie and has permissions to delete certain files does ie have these permissions when ran by that user? Doesnt this mean that if a bug/exploit were found in ie it could infect the host? Im trying to find a way to run the program as an unpriveledged account.. I can do this with "run as" but this isnt going to work every time. Something tells me that microsoft has secured ie internally somehow without needing a special user attached to it.. But it would be a great feature not only for ie but other apps as well to force an unpriviledged user or even better.. a policy on the application that says it can only effect the profile in documents and settings and/or specific folders. This would really help in securing applications like ie... Lately ive been just really paranoid..

Quote: Make Web Browsing with Internet Explorer More Secure: Use Web Content Zones The only problem with zones are its still not 100% safe. And it completely restricts access to sites like download.com and even microsoft ( with the new improved security ) Even still... Im looking for more of a way to allow the os to secure it not ie... So that when the ball starts to roll the operating system will have the last word. Not ie. Quote: Also, if this is on a grand scale, there are certain internet appliances that filter active x, j script, and such on a layer 7 implementation. Yes i have seen this... enterprise firewall? Very neat... blocks popups too. I cant cripple activex completely... ActiveX is actually needed for macromedia flash, shockwave.. Which i trust. But I dont see how it needs to be give rights to modify dll. Should have read only access to dll.

Quote: Ok, this is policies stuff... you can limit what apps can be run, or NOT run, & the best way to do this on a LAN is to use roaming profiles that are stored on another machine that only YOU as the domain admin have rights to on the files & folders. You can stall them RIGHT there, by their profiles (parts of their registry hives stored remotely, not just the profiles folders you see on your machine). Other networking types here can tell you pretty much the same. I just learned about roaming profiles the other day. Very cool stuff. I am learning new stuff every day so I will probably end up getting around to it.. Group policies isnt something I have totally gone through yet.. Only have sortof glanced at. After hearing what you said I think It will probably contain at least someone Im looking for.

Yeah see this is exactly my point. Ok say im logged in as an administrator ( which i wont use to surf the web but lets just pretend ) and I start surfing the web... I hit a malicous website that knows about a new exploit that I havent patched yet or simply m$ is unaware of yet... If they do exploit ie it will be able to infect system files.. delete system files or pretty much anything that an administrator can do... Of course there are ie settings that can prevent this.. Different security zones, etc etc.. But this will never garantee safety.. If a user such as admin/power user or even a regular user.. I want to be able to restrict access to files for an application no matter who runs it. ntfs would solve the problem if i could force ie to run on an unpriveledged account. I could create an account called IE_USR.. That would have access to documents and settings only... Then no matter what happened to the browser the ntfs permissions would trap any attempt to harm critical files. Even if Administrator is using it. I think this should be a requirement for all applications.. it could prevent the spreading of virii to the system.. why should an application be given full rights such as an administrator. It should be sortof jailed into the files/folders that it only needs. In fact defaulting executables to no access would be fantastic. Then creating policies on the application for what actions it can perform. This would be very secure.. virii couldnt spread.

I switched motherboards on one of my pc's because the motherboard died. And now win2k hangs when the first grey bar slides across at 100%. I plan on reformatting but first I need to get in so i can do a couple of things with some programs that were installed. The boards were both tyan but the new one has a different chipset. It also has a raid (1+0) with 4 drives and a 3ware card. I dont think its a problem with the raid but is more a problem with the motherboard chipsets being different. In fact it could simply be a problem with the new mobo in general. I read that this problem happens with the via based chipsets and the new athlons. The thing is I cant apply any fixes patches or update anything. No safe mode or nothing. What should I do?

All of a sudden... slow hanging of programs... fan making wierd noises ( sounds like it speeds up then slows down over and over )... Then... os no boot. Reinstall os... everything seems fine.. Now slowing hanging and getting bsod's at random. Could this be a bad power supply? This literally just started I have made no changes whatsoever to the system. At first i thought maybe my os gone bad maybe by a virus or something.. Now Im convinced its hardware. basic specs... windows 2000 asus av7 333 mushkin pc2700 ddr ram 60 gig seagate baraccuda

Does anybody know how it gets installed? I somehow manage to always get that thing. It should be illegal what they are doing. I never installed it or even saw it.... and all of a sudden Im surfing the web and a little ad pops up with the gator thing. I removed the program... I just want to know how its installed? Is it through an active x control or something?