Just more ramblings of another IT Guy

Category Archives: Tips+Tricks

detectify – Free Website Vulnerability Scanning

Detectify is a cloud based security scanner (SaaS) offering a free tire for non-commercial use on a single domain. The sign up process is painless with the most difficult tasking being having to verify ownership of the domain you are … Continue reading

Outbound traffic on UDP port 3544

While reviewing  firewall logs I observed unexpected outbound communication attempts on UDP 3544 from a newly deployed Windows 7 installation.   “…..dstip=“” proto=“17” length=“89” tos=“0x00” prec=“0x00” ttl=“127” srcport=“64379” dstport=“3544“…..”   After quick a quick Google search it became apparent that … Continue reading

Need a cheap ( or free) SSL certificate for a non-production site?

Building a demo website or deploying a new application and need to secure communication via SSL? For example, when installing OwnCloud you may want to ensure that your personal files are being sent and received securely no mater where you are … Continue reading

Add enable secret to Cisco switch

enable secret 0 <followed by password> In order to access the device manager, an enable secret is then required

Commands to edit iptables

  To view the current rules and also view the rule ID use the following: iptables -L -n –line-numbers                      or iptables -nL -v –line-numbers   To delete a rule use: iptables -D INPUT X  (where x is the ID … Continue reading

Force complete website to HTTPS

` The below can be added to the httpd.conf file for best performance as the whole site is being redirected to https (can also be added to a .htaccess file). The result is that when a client connects to the … Continue reading

Change auth-ports on Fortigate

When using a a transparent vdom and an identity based policy to authenticate users on non standard ports (i.e. when users are using the explicit proxy on port 8080) it is neccessary to change the ports the Fortigate expects http … Continue reading

Verify ldap bind username used for FSSO

A common source of failure for an ldap lookup when using a regular bind is incorrect user cn On the DC verify by running following command dsquery user -name “username”

Find and restart a process which is consuming high cpu/memory resources on Fortigate

#config global #get sys perf top – This will display all the running processes in the Fortigate   #diag sys kill 11 <process-id> – Using the process ID from the above command you can restart a process using this command.

Free and easy screen sharing

If you ever needed to share your screen while on the phone to somebody but don’t want the hassle of setting up a GoToMeeting, Teamviewer or Webex then check out Screenleap.   Screenleap allows you to share your screen without any sign-in … Continue reading

Posted in Tips+Tricks | 1 Comment