OISec

No updates

2008-01-14T16:17:00+01:00

I haven't really updated my blog in ages.. Mostly that's because I blog most stuff on my hyves profile these times.. It's in dutch, and more personal, then this one... So check that one out if you're interested at http://cliffalbert.hyves.nl/

A lot has happened in the last 1.5 year, of which I haven't written an lot here.. A little summary for those who don't speak dutch:

I have new furniture in my home
The job is going great!
Participating with Carnaval
Starting a social live uhuh!
Meeting a lot of new old friends
Started doing a lot of sports! Mountainbiking, Running, Snowboarding
Went to Pinkpop and Urpop for the first time in my life :)
I met a wonderful lady and fell in love, unfortunately that was not mutual :( Altough she still wanted to be best buddies, which is something that seemd to be very difficult for me unfortunately :( Miss you girl!
Started playing the Cornet (ok, i must admit, she had something to do with it)
Started to learn riding a motorbike, unfortunately my wrist was fucked up so I had to give that up for a while
Visited quite a few concerts, Kamelot, TurboNegro, Marilyn Manson and Motorhead
Went clay pidgeon hunting in Kentisbeare with friends
Celebrated a great christmas!
Started a great new year :)

So that is a little summary of what happened in the last 1.5 year :) More to come maybe.. but when, I wouldn't know :)

Quick and unsecure tunneling on Cisco (voor Arjen)

2007-02-26T08:56:00+01:00

interface Tunnel0
description Tunnel to ams-cr01
ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1480
ip tcp adjust-mss 1420
tunnel source Dialer0
tunnel destination
tunnel mode ipip

Add additional routes for the network on the other sides ;)

Two blogs :)

2007-02-16T09:54:00+01:00

It seems I've started a second blog, this one resides on the dutch community site Hyves, and is in dutch. The blog here at oisec.net will remain for technical things and rantings in english, the one at hyves is a more personal one in dutch.

If you're dutch, you should read my life laundry post. And the question remain, should I integrate them both here ? Because the layout of this site actually sucks ass ;)

Snowboarding!

2006-12-21T15:33:00+01:00

Since a few months I'm snowboarding quite a lot in Snowworld Landgraaf. I always wanted my own board, but didn't have the cash to back it up. But now due to some extra cash I made my choice! I'm going for the following setup:

Still have to decide on the boots, but I'll go for the best fit :) I want them! :)

Fontys verkoopt snailmail spam!

2006-11-24T15:26:00+01:00

Ik kreeg onlangs een via Fontys gestuurde folder van een bedrijf wat opzoek was naar nieuwe werknemers. Hier was ik uiteraard niet van gediend, dus hieronder mijn e-mail zoals verstuurd naar de afdeling die het verstuurde en het juridsche persoon binnen fontys verantwoordelijk voor het privacy regelement:

Geachte ontvanger,                                                              
                                                                                
Ik was zeer onsteld toen ik er achter kwam dat er wederom een wervings          
actie ten aanzien van vactures bij een bedrijf via Fontys gestuurd is.          
Ik heb al meerdere malen aangeven na het ontvangen van dit soort post           
dat ik hier absoluut NIET in geinteresseerd was, toch blijf ik dit              
ontvangen.                                                                      
                                                                                
Deze keer ging het om een werving van Peak-IT voor banen en cursussen           
welke door jullie rondgestuurd is naar studenten. Ik kan mij daarnaast          
niet herinneren jullie hier ooit toestemming voor gegeven te hebben. Ik         
heb zojuist nogmaals gekeken op de Fontys ICT Alumni site, en hier zie          
ik ook dat ik alleen maar toestemming gegeven heb voor mailings die te          
maken hebben met reunie's.

Daarnaast is vermeld in de gedragscode Gegevensverstrekking aan derden -        
informatie uit studentenadministratie (opgesteld door de afdeling               
Juridische Zaken,                                                               
http://www.fontys.nl/generiek/bronnenbank/sendfile.aspx?id=19746, en            
zoals vermeld in het privacyreglement Studenten,                                
http://www.fontys.nl/generiek/bronnenbank/sendfile.aspx?id=24691)               
vermeld op pagina een dat er alleen persoonsgegevens doorgegeven mogen          
worden indien jullie daartoe wettelijk verplicht zijn, de student               
toestemming gegeven heeft of in noodsituaties. Het rondsturen van               
reclame post valt in mijn ogen niet binnen een van deze punten.                 
                                                                                
Mocht ik in de toekomst nogmaals een soortgelijke mailing ontvangen, dan        
zal ik per direct een aanklacht doen ivm overtreding van de Wet                 
Bescherming Persoonsgegevens.

Expanding web services

2006-11-16T08:33:00+01:00

Currently I'm in the progress of moving some heavy traffic websites I'm hosting off dropkick and towards murphies. Murphies is my "new" HP DL 380 G3 Server (Xeon 3.06Ghz, 2G RAM, SmartArray5i raid controller, 6x 18G 10KRPM). So it might be that my website will be unreachable :)

Update: Currently the new DL380 is doing production service. Here are some apache stats:

Server uptime: 1 day 4 hours 37 minutes 26 seconds
Total accesses: 1511719 - Total Traffic: 232.9 GB
CPU Usage: u19.29 s2.99 cu0 cs0 - .0216% CPU load
14.7 requests/sec - 2.3 MB/second - 161.5 kB/request
112 requests currently being processed, 11 idle workers

My weblog is running on it to, but only on the http://mt.oisec.net/ link, and not the main http://oisec.net/ link :)

Samba 3.0.23c (and older) and Roaming Profiles

2006-11-06T11:03:00+01:00

As we are currently rolling out a new project with a lot of Samba based PDC's with Windows XP clients, we ran into the following issue:

If we are using roaming profiles for users and the users logs in, works a little, and then logs out again. Windows XP presents the error that the network name can not be found. However, if you bump up the debug level to say 32 the problem vanishes, and everything just works fine. Isn't that strange ;)

It seemed some other user also bumped into the same problem in July 2001. Currently I haven't found any normal fix for the problem. If you are going to use this workaround, make sure your log size is small, or else you are probably going to get a very FULL disk in 2 days ;)

The samba bugreport is 4208

Deploying Windows using Linux

2006-10-29T21:53:00+01:00

Currently we are busy building a way to deploy Windows XP client installs using a Linux bootstrap. Using Linux solves a few problems you normally would encounter using a DOS bootstrap:

Driver support, Linux supports more NICs, IDE, SCSI and SATA controllers.
Speed, Linux has a better TCP/IP and IO stack then DOS
Features, All Linux tools can be used, DOS tools are getting more and more limited
Cheap, Most tools used are free, we don't need Ghost Licenses

Normally one would use DOS and Symantec Ghost to deploy workstation installs. We use a new tool called DriveSnapshot, the main benefit of this tool is that it has Windows, DOS and Linux clients. (NB. The Linux client isn't linked from the site but it can be downloaded here). The only problem that DriveSnapshot has and might be a problem is the fact that DriveSnapshot doesn't resize the partition that's inside the image to the real partition size as on disk. We solved this by making the image as little as possible. After we are done imaging we use parted to resize the partition to the maximum size. We bootstrap this way to make all necessary changes to the image before booting the client (think sysprep.inf, and adding drivers).