Google Chrome Pilot Program

blog
A few days ago I received a pretty new Google Chrome Notebook model CR-48.  I was, completely caught off guard by a very nicely packaged device sitting the table when I got home.  I still had no idea what I was because I forgot that I signed up for this program.  Ecstatic doesn't quite cut how happy I was when I discovered what it was.  I was actually selected as a Google Chrome Notebook pilot user.  I doubt this is a rare thing, however I almost never get selected to test stuff that I think is cool. So far the experience has been pretty good.  When I first booted the system, I had a bit of a hard time connecting to my wireless.  I have a WRT-160N running DD-WRT with…
Read More

New Chapter – all systems go.

blog
Well, it has been over a year since I have last posted something worthwhile and I feel a little bad about that.  Even if nobody is reading this, I use it to help me remember things that I know I'll need later.  So if I haven't posted in a while then I'll probably forget everything I've learned over the last year :).  Hopefully not. OK, so a few new things have happened.   My daughter, Kacy was born 8/24/2009 and is now the fire in my life...literally she makes me burn inside with love, anger, cheer, fear, and laughs.  She's pretty awesome.  My wife who stays at home with her has been very patient and we are now making good progress towards potty training. I am now employed at KeyOn…
Read More

Terminal Server Aware Web Proxy Server with pfSense

Microsoft, pfSense
At work, I have a client that was requesting the ability to monitor/block sites that their users were visiting.  This is traditionally quite easy with just a squid proxy server or a Barracuda Web Filter but they really didn't want an extra server to be installed during this process AND they were using a terminal server. I started looking for server side applications that I could install and just have the admin pull the data from there, however, the costs I was finding were a bit too much.  I setup a pfSense in a quick lab to demo this up.  After installing pfSense on some old hardware, did a basic configuration of the box, and then installed the Squid proxy package.  I configured this to be a traditional proxy where…
Read More

Cisco – tcp-small-servers and udp-small-servers

blog, Cisco
For some truly unknown reason, Cisco's devices still have support for "small servers" or "simple services". Examples of these include echo, chargen, daytime and discard.  An attacker could possibly start a denial of service attack (DoS) against one or more network devices with those configured.  In this case; echo and chargen are to blame by allowing an attacker to cause  the chargen service to hit the echo services causing an endless loop of character generation and echo between the two hosts.  To disable this, simply enter the following commands: configure terminal no service tcp-small-servers no service udp-small-servers These commands can be run on nearly all IOS based Cisco equipment.
Read More