Find computers and their description from the AD, Use LDP to search for tombstoned objects in AD, Show all replicated attributes in the AD Schema, Show an AD schema attribute, Find a list of CNs in the directory and return their homeDirectory, Identify the DN of an Active Directory group, Query a user from AD using WMI, etc.

Here is a directory where I checked out some code, and I don’t want this to get updated or changed in any way at all. I like it exactly like it is, and if someone messed with it, i’d like to know what’s changed. For this example, I use a fsvs repository so I can see the history and roll back to exactly the right version, but lets just say you want a one shot deal for a bunch of files… If something comes up and I think this has changed in any way, I can run another batch of md5sums and meld the results. (yum info meld, good utility)

There’s a .dll in the Windows 2k3 Resource Kit named “Acctinfo.dll” that’s not registered by default. If you copy this .dll to a machine where you browse AD with Active Directory Users and Computers snapin, and register it, you’ll start seeing several additional attributes that were not queried before like password expiration date, SID, GUID, etc.

So now I know this certificate is blessed by my client, I can try to use it to connect. But let’s say I try to use a self-signed certificate or another cert that’s not trusted… And using a self-signed certificate, you should see something like this… If it’s a trust issue, perhaps the certificate is valid, but it just can’t find the CA or intermediate certificate… But, if everythings working correctly, your client should connect just fine. And it will look something like this, with a big fat Verify return code: 0 (ok) at the end.

I’m going to test on a remote machine that I have a shell on, so lets see how many processors it has. I wonder how many connections it can handle with its current 1024 bit certificate. You could test by retrieving a file accessible from the encrypted web server if you wanted (to see how many requests for something specific that the server can handle for example) I’ll try this from a different machine.

In Ubuntu, Fedora and other systems I’ve seen rsyslog running on, to see the console messages you have to have physical access to the server usually through a KVM or IP-KVM setup. Kernel messages are sent to /dev/console while mail, crit, debug, and others get sent to files. Any of these message can be monitored remotely…

RAID storage has come down in price in a very short period of time. Is there really any point to spending tens of thousands for small workgroups?

If you submit an SSL certificate request for your Apache/Lighttpd web server to a Certificate Authority (CA) on a Windows Domain Controller, you might have to convert your resulting binary DER formatted Security Certificate into PEM so Apache or Lighttpd can understand it.

I got a good laugh out of this… I think I know a much simpler method, ok not the greatest, but still just as effective since you have no idea if they’ll keep storing your information long after they’ve ‘deleted’ your account. It’s streamlined so you can go through the same steps on most of the sites you have an account on. No need to click three times, or send an email with some exact string in the subject line while waiting for a reply and then confirming, after stating your reasons.

I had $wgSMTP set up to talk to a remote exchange server, but password resets just weren’t working from the wiki. It turns out all I was missing was the ‘php-pear-Mail package’ (in fedora, for debian or other systems it may be a different package name). I started by checking any logs related to this problem… mail.php missing in UserMailer.php - dependency problem