Is it possible through ACL to prevent a local user account to "dir" the windows folder ?
I tried with "Advanced security settings", but cannot change a thing...
I have : Ubuntu 17.10 - kernel 4.13.0-19-generic
No docker on the machine
Installing docker as https://github.com/docker/docker-install, ie :
curl -fsSL get.docker.com -o get-docker.sh
sh get-docker.sh
I get
$ docker -v
Docker version 17.11.0-ce, build 1caf76c
Nice, when I run $ sudo docked, I get
ERRO[2017-12-15T17:33:21.314578657+01:00] 'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded.
ERRO[2017-12-15T17:33:21.316522224+01:00] 'overlay' not found as a supported filesystem on this host. Please ensure kernel is new enough and has overlay support loaded. Error starting daemon: error initializing graphdriver: devicemapper:
Error running deviceCreate (CreatePool) dm_task_run failed
I try again, and get this time
ERRO[2017-12-15T17:35:24.814595903+01:00] [graphdriver] prior storage driver devicemapper failed: devicemapper: Error running deviceCreate (CreatePool) dm_task_run failed
Error starting daemon: error initializing graphdriver: devicemapper: Error running deviceCreate (CreatePool) dm_task_run failed
What's wrong ?
With Ubuntu vivid, I cannot bind the hostname of my server with the IP address gotten by a DHCP server
I tried to add in dhclient.conf (and reboot)
set host-name "myserver";
But, still doesn't work...
Did I miss something ?
On a Win2008 Domain Controller, I've changed an user account property "Account is sensitive..."
Of course, I want that GPO to apply immediately
So I try gpupdate (or gpupdate /force), but it doesn't seem to work !?
I have to reboot my domain computer, then logon again with the user account to make it work !?
Another way ?
The solution is here Is there a way to refresh computer group membership without rebooting?
I installed a win2008 server (WSQL) Its has successfully joined another Win2008 server which is the domain controller.
Now back to WSQL machine, I connect it to the domain... And I install SqlServer-2008 on it.
The install works fine.
Now, I want all the domain users to be able to log on my brand new database. But in "Security", I cannot find out the "Domain Users", or any domains, at all !?
Got the feeling, I missed something...
update Sounds like an issue with service account when I installed SqlServer...
I'm trying to add an anonymous access on a IIS Ftp server (v7.5) on windows 2008-r2
I added IUSR account to my folder with full access. I stopped the firewall on both sides (client and server)
Each time I try to connect from Filezilla (or ftp cli command) with anonymous account, I get :
530-User cannot log in.
Win32 error: Logon failure: unknown user name or bad password.
Error details: An error occured during the authentication process.
530 End
Login failed.
Under cmd.exe, I get this :
Connected to mysite.
220 Microsoft FTP Service
User (mysite:(none)): anonymous
331 Anonymous access allowed, send identity (e-mail name) as password.
Password:
530 User cannot log in.
Login failed.
Update
Sounds weird but now after having open/close the "Anonymous Authentication Credential" window (which, by the way, have the field "password" with three dots, I don't know why)
now I can connect a client but I get this "Failed to retrieve directory listing"
What the ???
I have a Windows 2008 R2 domain controller with more than 60 user accounts. Each time one of these users tries to connect to the DC authentication "falls back" to NTLM. Kerberos authentication fails because the users' SPNs are missing.
I would like to set this attribute for all the user accounts. Do I have to manually set manually the SPN attribute for each user? Or is there a better solution?
I've got an user A who is connected to a Workgroup. From this Workgroup, now, I want to connect, with the console, to the user "john" who belongs to an active directory (MYAD)
Though I try :
runas /netonly /user:john\MYAD cmd.exe
It works... But the env. variable USERDOMAIN still gives me the name of the workgroup (And of course the USERNAME is not good too, USERDNSDOMAIN is missing)
Under Active Directory (Win2008-R2), I want all "authenticated users" be able to access the "Add/Remove windows components" menu
But where do I have to go in group policy to set this grant ?
In
User config. > Policies > Administrative Templates > Control Panel`
I don't see anything really "interesting"
I have to connect two different geographic networks with an OpenVPN (for instance)
Before doing that "in the real world", I wish I could test my configuration.
My main idea is the emulation of "private" WAN ecosystem. I will be creating (on an unique machine) 2 Linux guests (VMWare workstations with bridged network adapter). Each guests will get a fake WAN address.
After that, I will be able, normally :), to install on these guests all kind of OpenVPN configuration I need.
Is it worth a try ? Do you see other or better way ?
I'm running a Debian wheezy under chroot and I notice that updatedb doesn't work ! I think it's because of missing entries inside fstab. Am I wrong ?
Any advice to fix this ?
On Debian 64bit, I configured a lxc like this :
host ip : 172.16.0.25 vm guest on this host : 172.16.0.44
I've done the bridge on my host
auto eth0
iface eth0 inet manual
up ifconfig eth0 0.0.0.0 up
down ifconfig eth0 down
auto br0
iface br0 inet static
bridge_ports eth0
bridge_fd 0
address 172.16.0.25
netmask 255.255.255.0
gateway 172.16.0.52
On guest side, I changed the config with
lxc.utsname = myGuest
lxc.network.type = veth
lxc.network.flags = up
lxc.network.link = br0
lxc.network.name = eth0
lxc.network.hwaddr = 00:FF:12:34:56:78
lxc.network.ipv4 = 172.16.0.44/24
When I run the VM : my host (172.16.0.25) and my guest (172.16.0.44) can ping each other But now, other physical machines on the same network (172.16.0.0) cannot see my guest.
Same issue from my guest that can only see the IP of its host !
In fact I would like to get the same behaviour than a bridge network on VmWare Workstation. What kind of routage VmWare does to be seen "everywhere" on the network ?
(By the way, my host is already on a ESX server, but I think it is not relevant at this level)
I try to modify an AD schema, adding a custom auxiliary class in user (Cn=MyName,CN=Users,DC=xxx,DC=yyy)
With adsiedit when the new object window pops-up to add the class, I can only select "classStore, ms-net..., nTRSSSubscriptions"
I added "user" in "Possible superior", but no change. I cannot see my custom class!
Is it possible to remove manually a tombstone object in win2008-r2 Active Directory ?
I would like to build some kind of "virtual network" between two companies located in two different countries. This way, an LAN machine (192.168.x.x) located in the A company could ping directly a LAN (172.16.x.x) machine located in the B company... And vice-versa of course.
In one word: a tunnel...
I guess I have to put, behind ISP router of each company, a box to "connect" my bridged networks. Of course the "conversation" must be done in a secure way (VPN)
Fine, but now What kind of linux distro. will fit the best ? Zentyal, Ipcop , third one ?
According to Wikipedia, there are Hyper-V and Hyper-V server. Ok...
Hyper-V server doesn't need an OS to run, so it is true Hypervisor. But what about Hyper-V inside windows2008, is it a "type 2" ?