Thursday, August 15, 2002

I'm at a public terminal at the Kennybunk Library. Problems with the familyaware.org domain. Here's what I sent: 


I successfully completed a request with Register.com

to set Hosting.com as the SOA for familyaware.org.    

I then sent dns@familyaware.org the following DNSrequest:

-----Original Message-----From: Neil Johnson [mailto:neilj@cadent.com]

Sent: Monday, August 12, 2002 12:26 PMTo: dns@hosting.comSubject: DNS Changes

Hi. We are a colo customer who has recently moved fromVerio. We've switched

SOA to your name servers with our registrars for thefollowing domains:

*	familyaware.org*	cadent.com*	cadent.net*	theconstant.com

Please make the following updates to the DNS recordsfor each domain (Note:

I'm sure you could have figured out the SOA and NSrecords, but I just

wanted to confirm that your servers are theauthoritative ones). Please set

up these changes to take effect any time after 5:00 PMtoday. If you have

any questions, please contact me via email.Thanks,NeilChanges:FamilyAware.org

familyaware.org.               SOA   auth01.ns.harvard.netauth02.ns.harvard.net

familyaware.org.               NS    auth01.ns.harvard.net

familyaware.org.               NS    auth02.ns.harvard.net

familyaware.org.               A      64.55.106.132

familyaware.org.               MX     20  media3.familyaware.org

familyaware.org.               MX     10  mail.familyaware.org

mail                           A      64.55.106.132

www                            A      64.55.106.132

media3                         A      206.67.52.172

familyaware.org.               SOA   auth01.ns.harvard.netauth02.ns.harvard.net

Cadent.comcadent.com.                    SOA   auth01.ns.harvard.net

auth02.ns.harvard.netcadent.com.                    NS    auth01.ns.harvard.net

cadent.com.                    NS    auth02.ns.harvard.net

cadent.com.                    A      64.55.106.131

cadent.com.                    MX     10  mail.cadent.com

cadent.com.                    MX     20  mail2.cadent.com

mail                           A      64.55.106.131

mail2                          A      206.67.52.103

www                            A      64.55.106.131

cadent.com.                    SOA   auth01.ns.harvard.netauth02.ns.harvard.net

Cadent.net[remainder of DNS changes cut, 2 of 4]Thanks again!Neil Johnson

Cadent Technologies Corp.(617) 924-9173www.cadent.com 

-----End of Original Message-----ISSUE :::::::::::::::::::::::

The FamilyAware.org domain does not resolve correctly.

Since the Cadent.com changes do all seem to work, I

conclude that there is a problem with the

FamilyAware.org DNS record on your servers.

For details, see the results of a ping command at thebottom of this message.

RESOLUTION :::::::::::::::::Please FIX THE PROBLEMS WITH THE FAMILYAWARE.ORG DNS

RECORD as follows:familyaware.org.               A      64.55.106.132

See the original request above for the complete set of

DNS changes you'll need to implement.

Then, contact me via email to describe the steps you

took to fix the problem. Let me know how you tested

your configuration. You can reply to all of the

recipients of this email if you like.Thanks,Neil

-----------sample ping commands--------------C:\>ping media3.familyaware.org

Bad IP address media3.familyaware.org.C:\>ping www.familyaware.org

Bad IP address www.familyaware.org.C:\>ping mail.cadent.com

Pinging mail.cadent.com [64.55.106.131] with 32 bytesof data:

Reply from 64.55.106.131: bytes=32 time=70ms TTL=108

-----------end sample ping commands--------------


Let's hope they can fix it!
Posted by at No comments:

Friday, August 09, 2002


Zorak Update


11:46 PM 8/8/2002


Patch OS, SQL Server


Via pcAnywhere:

Connect to 64...130


Open TCP/IP Ports




1. Start > Run... > secpol.msc [Run]

2. Select: Security Settings > IP Security Policies on Local Machine
> Secure TCP Server

3. R-click: Un-assign

4. Minimize

Note: could I do this by just opening port 443?




Check Configuration Against MS List


1. Run MS Baseline Security Analyzer

2. Scan a Computer : Start Scan

Scan Time: ~5 min




      
The latest service pack for this product is not installed. 

         MS02-029 Unchecked Buffer in Remote Access Service Phonebook Could Lead          to Code Execution (Q318138) 

         MS01-022 WebDAV Service Provider Can Allow Scripts to Levy Requests as          User 

         MS02-027 Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker's          Choice (Q323889) 


      
Run Windows Update


      
1. http://v4.windowsupdate.microsoft.com/en/default.asp


        2. Install SP3 Exclusively - removed other two fixes.


      
SP3 Install


      
1. Archive Files


        2. Restart


        3. Restart OK


      
Repeat Check Configuration Against MS List


      
X - Can't run MS Baseline Security Analyzer - Not Responding.


        Restart.


        After second restart, can't run it again. Can't run MSIE.


      
Could it be the second NIC again? I can't open Network Ctrl Panel. But 

        the device mgr says that the Intel 82559 #2 is disabled. All ports still 

        open.


      
Test services


      
port scan - show host responses


        ping ip


        ping www.cadent.com


        http://cadent.com/


        email Send & receive - generate new email from external account.


      
Results


      
pcAnywhere - flashing cursor on console


        port scan - sees ports (all ports are open!)


        ping ip - ok


        ping www.cadent.com


        http://cadent.com/


        email Send & receive - generate new email from external account. - 

        pcAnywhere crashed and won't reconnect. Mail goes in and out










Posted by



at





No comments:
  






































        

      









Subscribe to:
Posts (Atom)