Exchange 2007 OWA/ActiveSync with Two SSL Certificates
Yes, it is possible. It's not pretty by any means (a proper Class 2 SSL Certificate is the best way to go), but it can be done. Click Continue Reading for the process.
Rogers Wireless Hijacks Wildcard DNS Records
Although I can't confirm when this happened (it may have happened a while ago and I just never noticed), I was browsing the internet last night on my Google Nexus One and noticed that, when I mistyped http://imdb.com, I was redirected to http://www20.search.rogers.com (which doesn't work outside of Rogers' network) instead of receiving a normal Not Found error. This all smacks of the infamous VeriSign Site Finder fiasco.
I'm no fan of browser redirects in any form, and I'm even less of a fan of Yahoo which Rogers partners with to, among other things, provide results on their hijacked landing page. But what can you do? It's their service, and there's no opt-out link on the page.
Well, the answer is to manually opt-out. Unfortunately, you need to have a rooted/jail-broken phone to do this. As stated above, I have a Google Nexus One which runs CyanogenMod, but this should work with any other rooted Android phone and even jail-broken iPhones (although the paths are different -- you'll need to alter them as applicable).
To manually opt-out, do the following (assumes Android phone):
- Open a shell on your phone. You can use ConnectBot, Terminal Emulator, or adb shell.
- Assume root (su command).
- Remount the system partition in to read/write mode -- mount -o rw,remount /system
- Browse to /system/etc.
- Use your favourite text editor to open hosts.
- Add the following to the bottom of the hosts file -- 127.0.0.1 www20.search.rogers.com
- Save and quit!
You're done! You've just manually opt'ed-out of Rogers Wildcard DNS hijack. Now you'll just get the normal 'Not Found' errors, as when Rogers see that the domain you've entered doesn't exist and tried to redirect you to their search page, your phone will point that domain to itself and fail as it isn't running a webserver.
TL;DR Version: To prevent getting directed to Rogers' Search Page when you mistype an address, edit your hosts file to point www20.search.rogers.com to the 127.0.0.1 loopback address.
Short: Kensington 0, Me 1
Kensington makes a decent desktop lock. However, they're nothing that ten minutes and a pair of wire snips can't take care of - it's a very effective way of unlocking a case when the key has been lost for years....
As a side note, the magnets in old hard drives make for a perfect method of removing small metal shards from ones flesh. Just sayin'.
Wait, what? RAID-1 Backup?
While going through a filing cabinet full of old parts this afternoon, I came across an anti-static bag containing a hard drive. It was labeled, and I almost couldn't believe what it said:
Instant HD Restore:
- Put this drive on IDE Channel #1
- Set RAID controller mode to RAID-1
- Let this disk rebuild drive on IDE Channel #0
In short, use RAID-1 as a ghost substitute. Too bad that's a good way to thrash the drives to death. No wonder nothing will detect the drive when I try to see what's on it....
The situation reminds me of this story over at The Daily WTF.
(Disclaimer: DO NOT use this as a production-method of keeping an image of your hard drive. It's not reliable, and if you're not careful, your RAID controller will overwrite the wrong drive. You've been warned.)
iPhone App: Change ‘Privately’ Browser Homepage
The DiNozzo method. Not pretty, but it's effective.
- Leroy Gibbs, NCIS
I downloaded the Privately Web Browser from the App Store this evening, but was a little disappointed that it doesn't include the ability to change the home page. Having jail broken my iPhone hours after getting it, though, the workaround was pretty obvious.
By default, Privately uses http://start.sax.net as it's homepage. This really doesn't work for me, as I like to have Google at the ready, and although it has a search box, I like having the ability to search images/groups/etc... at one click instead of two. This method will work for nearly any site, though. To change the start page, simply do the following:
- Open Terminal (again, you will need to have jailbroken your iPhone, and be slightly comfortable with a *nix CLI).
- ping the site that you want for your homepage so you can get it's IP address. ping google.ca -c 1 works well, as it will only ping once and won't flood your console before you can ^C out of it. At time-of-posting, the IP for Google.ca was 64.233.187.104.
- If you have sudo installed, type sudo nano /etc/hosts (replace nano with your favorite editor, such as emacs or vim). If you don't have sudo, type su -, then your root password, and then nano /etc/hosts.
- At the bottom of the file, enter "64.233.187.104 start.sax.net" (without the quotes, and using whichever IP address you want instead of Google's).
- Save changes and exit.
- Close Terminal and open Privately.
You'll noting that the address still shows as start.sax.net, however the site you chose will load as the home page.
A few things to note:
- This won't work if you want a specific page on a site (eg, www.example.com/whatever.html)
- If the server hosts multiple sites off one IP address, you'll get whatever the default site for that IP address is (which, in some cases, will be a placeholder page)
- If you don't know what a CLI is, or have no idea what nano, emacs, or vim are, this isn't for you.
- And, of course, you're iPhone needs to be jailbroken. If you haven't done it and don't know how, I won't offer support. Plenty of information here.
Howto: Google Desktop on Vista x64 via GPO
Edited to remove references to Enterprise edition when not appropriate.
Google Desktop has been in use at our organization long before I started here, however one of the things that's irked me about it is the lack of official 64-bit support. Specifically, installation is possible on 64-bit editions of Windows, however a flag (specifically, the '/force' flag) is required when running the installer to get it to actually install.
So although I can manually install the app on workstations, it's a bit of a pain as a lot of the 64-bit machines were missed when they were originally setup. As such, I whipped up a nice little GPO that takes care of everything for me, and has some flexibility for installation detection. There are probably easier ways of doing this, but I was in a rush when I wrote the script, and it works very well.
Instructions
To start, download the Google Desktop Enterprise package. This contains a .ADM file that can be used in both Server 2003 and Server 2008 Group Policy Management consoles. Create a new GPO, and import the .adm in to the User Configuration\Policies\Administrative Templates object (Server 2003 doesn't have the Policies folder, it just goes right to Administrative Templates). It's important to do it on the User side rather than the computer side, given the actual installation process.
After the import, it's important to note that Server 2008 will place the Google object under Classic Administrative Templates (ADM), instead of just in the Administrative Templates folder. Now configure the settings you want for GDE, and you're almost set.
Here's the fun part now - the actual installation. Download the Google Desktop Setup file from Google. Because I'm too lazy to make a transform for the .MSI, I dug back in to my DOS knowledge and made a batch file to map a drive to a server with a publically-available share, run the Google Desktop installer from the mapped drive with the /force switch, and then disconnect the drive.
The main advantage to doing this if I want to update the installer with a newer version later, I just have to swap out the file - I don't have to screw around with transforms again. The script goes as follows:
@ECHO OFF
Color 1F
Title Google Desktop Installer
c:
cd \windows\system32
if exist "gds_installed" GOTO End
ECHO Installing Google Desktop Search
ECHO.
net use x: \\public\installs >nul
start /wait x:\GDE\GoogleDesktopSetup.exe /force /silent
net use x: /delete >nul
echo Installed > gds_installed
exit:End
ECHO Google Desktop Search already installed! Exiting!
exit
Alter the server name (public in the example) and path to the installer, and then save the file with the .BAT or .CMD extension in the domains scripts folder, or somewhere accessable to users that will be running the script. Remember, users have to have Read and Execute permission to the folder containing the setup executable and the script.
Once saved, add the batch file to the GPO's logon script (again, under User Configuration). Once done, link the GPO to the Organizational Units (OU's) that you want GDE installed. Presto! You're done!
The Script Explained
The very first part makes the window a nice blue with white writing and gives it a title, just in case the user happens to see it (although typically it runs before Explorer loads, and even then it's usually minimized). Immediately after, it makes sure it's in the C Drive and changes to the \Windows\System32 folder and uses an IF EXIST to see if a file named gde_installed is present. If it is, it uses a GOTO to skip the installation and end the batch job.
If gde_installed isn't in the system32 folder, it maps \\public\installs (the globally-available share) to the X Drive, which isn't used in our organization. It then changes to X:, runs the GDS installer with the /force and /silent flags to install it unattendedly, then it disconnects the X: drive so the users won't see it, and creates the gde_installed file in the system32 folder.
Details
In the batch file, you'll note the use of >nul. This simply directs console output into nothingness so the command window, if seen, only shows what I have ECHO'ed to it. You'll also notice that the GoogleDesktopSetup.exe program is executed using start /wait. This forces the batch process to wait for the installation to finish before moving on. Without it, it will try to disconnect the X: drive too soon, which will it to prompt the user to forcefully disconnect the drive. As this is a fully automated process, and console output is sent to nul, we don't want this to happen, hense the /wait flag.
Howto: Five keystrokes to a Command Prompt from anywhere
There are already a number of articles out there about this hack, but what the hell.
<Shift key><Shift key><Shift key><Shift key><Shift key>. What does this bring up on your computer? Chances are, a StickyKeys window. However, if you're running Windows XP/Vista/7 (and possibly 2000, although I've never tested it), you can quickly turn this quick series of keystrokes in to a shortcut to a Command Prompt. Note that in Vista/Win7, it's possible to get an Elevated Command Prompt (one with full Administrative privileges) from the Welcome (login) screen, or from the Secure Desktop (the faded screen you see when a User Account Control prompt appears) even if UAC is turned on.
Why?
Sure, you can get a Command Prompt in most places with a quick <Windows Key> + <R>, then cmd and <Enter>, but this doesn't work if Explorer isn't running, or if you're at, say, the Welcome Screen. It's also very handy if you've forgotten the password to the Administrator account on your system and need to reset it, but don't have a copy of the NT Offline Password Editor kicking around.
How?
The process for setting this up is very simple.
From Windows:
- Open the system32 folder
- Take ownership of sethc.exe, and then grant yourself Full Control permissions (note: if you don't understand this step, or don't know how to do it, you probably shouldn't be doing this!)
- Rename sethc.exe to anything else (I usually choose sethc.exe.bak)
- Copy cmd.exe, and name the copy sethc.exe.
This can also be done from the Windows Recovery Console (boot from a Windows XP install CD) or WinRE (Windows Recovery Environment - boot from either a Vista or Windows 7 DVD). From the Command Prompt in either of these, run the following commands:
- c:
- cd \windows\system32
- ren sethc.exe sethc.exe.bak
- copy cmd.exe sethc.exe
Then reboot in to Windows.
Uses Explained
I typically use this for resetting passwords. When I used to work in a local computer shop, if someone forgot to tell me their Windows user password, and I couldn't reach them by phone, I'd use this trick. Then, at the Welcome (login) screen, I could simply pull open a Command Prompt by hitting <Shift> five times, type control userpasswords2 which brings up the old-style User Accounts control panel, and then reset the users password to blank without needing the old one.
This is also handy for troubleshooting if Explorer continously crashes, or if the UserInit registry value is shot and you can't login anymore. Just fire up a Command Prompt and open regedit from there.
Support
Hosted By:
TDRevolution
If you've found this site useful, consider donating to help cover my hosting costs:
Twitter Feed
- -!- JamesGray has quit [Quit: TCP, UDP, FTP, SSH, HTTP // By your protocols combined // I am Captain Internet!] -- #cyanogenmod 17 hours ago
- New parts installed and everything seems to be running fine! First thing to install? Starcraft 2! 1 day ago
Tags
Categories
- "It's a Feature" (24)
- Android (22)
- Apple (10)
- Beta Testing (10)
- Gaming (11)
- Google (16)
- Hack (7)
- Hardware (34)
- howto (22)
- IDNK (1)
- iPhone (9)
- Linux (13)
- Makes Sense (8)
- Meta (15)
- Microsoft (34)
- Networking (7)
- Non-Tech (14)
- OS X (4)
- photography (2)
- Rants (28)
- Scripts (3)
- Servers (16)
- Short (36)
- Software (28)
- Support (28)
- Tales from Support (11)
- Tomfoolery (10)
- Troubleshooting (49)
- Twitter (6)
- Virtualization (1)
- Windows (11)
- Windows 7 Beta (7)
- Writing (1)
- Xbox 360 (3)