Technical

Re: Why you should upgrade to vSphere 6.5 / ESXi 6.5

Recently I went to extend a volume on one of my guest systems and received an error requiring me to power off the system before extending the disk.

ErrorHot-extend was invoked with size (5368709120 sectors) >= 2TB. Hot-extend beyond or equal to 2TB is not supported. The disk extend operation failed: msg.disklib.INVAL

Good News – With vSphere 6.5 this is no longer a limitation.

Just one more reason why you should think about upgrading your VMware environment to the latest.

Useful nmap testing commands

Nothing new here .  Just wanted to share some commands I are useful when performing network or direct systems testing using the nmap tool. The commands below will all display scan results in console while also saving to file.

 

Discover live hosts: 

nmap -n -sn -PE -oA live_hosts 10.0.0.0/24

Discover open TCP ports:

nmap -sS -vv -p- -oA tcp_ports_65535 10.0.0.2
nmap -sS -vv -p- -Pn –reason –open -oA tcp_ports_65535 10.0.0.2
nmap -sS -vv -p- -Pn –reason –max-rate 1 –open -oA tcp_ports_65535 10.0.0.2

 

Discover open UDP ports:

nmap -sU -vv -p- -oA udp_ports_65535 10.0.0.2

 

Discover services running on open UDP ports:

nmap -sU -sV -vv -A -O -p[port1],[port2] -oA open_udp_ports 10.0.0.2

Scan for most common 1000 TCP ports:

nmap -sS -sV -vv -A -O –top-ports 1000 –reason –open -oA tcp_ports_1000 10.0.0.2

Scan for most common 1000 UDP ports:

nmap -sU -sV -vv -A -O –top-ports 1000 –reason –open -oA udp_ports_1000 10.0.0.2

 

External ADFS Password Change Broken after Windows Updates

AD FS 3.0 has the capability to allow the user to change their password when they supply their existing password. To enable this, open the AD FS management console, expand Service, and select Endpoints. In the middle pane, you’ll see a long list of endpoints. Scroll down to the Other section, and select /adfs/portal/updatepassword/. Right click on it, and choose enable

This will enable users on the corporate network to use the AD FS forms-based login to change their password.

Recently After installing Windows Updates, I’ve noticed that this was no longer working for my ensternal clients who connect to https://<servername>/adfs/portal/updatepassword.

Externally I would immediately see the error message “An error occurred. Contact your administrator.” When opening the URL within the LAN it opened just fine and I would be able to change passwords.

 

Turns out that the recent updates have disabled the setting allowing the updatepassword feature to be exposed.  I had addressed this by opeing the AD FS management console, expand Service, and select Endpoints. In the middle pane, you’ll see a long list of endpoints. Scroll down to the Other section, and select /adfs/portal/updatepassword/. Setting the proxy enabled to “Yes” and restarting ADFS Services on both the ADFS server and Proxy server.

And now it works without issue.

 

I was unable to determine which update caused this this If I come across it I will update this post and share.

Here is a list of recently applied updates.

 

 

Bluetooth, NFC, and Wireless Safety

Bluetooth, NFC, and Wireless Safety – Day 6 – 30 Day Security Challenge – TekThing

Turn off Bluetooth. Turn off NFC. Turn off auto connect to known wireless access points. Forget networks you don’t normally connect to.

Today’s Video and Shownotes: https://snubsie.com/day-6

The Whole Challenge: https://snubsie.com/30-day-security-c…

Introducing Re:scam

 

Re:scam is an initiative aimed at helping people from becoming fraud victims by occupying the time and resources of scammers through deploying a well-educated artificially intelligent chat bot. Instead of junking or deleting a scam email, you can now forward it to Re:scam who will continue the conversation indefinitely – or until the scammer stops replying.

Re:scam can take on multiple personas, imitating real human tendencies with humor and grammatical errors, and can engage with infinite scammers at once, meaning it can continue an email conversation for as long as possible. Re:scam will turn the table on scammers by wasting their time, and ultimately damage the profits for scammers.

So the next time you get sent a scam email FORWARD it me@rescam.org

Meet the bot that stops scammers by wasting their time. https://www.rescam.org