Posted on Leave a comment

I see suspicious activity!

Time to take pause from programming and do a quick upgrade to the blogs. Looks like someone is trying to do bad things. Alright. Everything is backed up. Next step, remove users that are obviously malicious. I have turned off allowing users to register since I don’t currently use features that would ever require you to be logged into RealityMe. If I accidentally deleted your account and you want to be registered at RealityMe just let me know. Deleted 40 megs of data that had accumulated in wp_sk2_spams and wp_sk2_logs. I have 52078 comments in wp_comments marked as spam constituting roughly 34.1mb. I can find no dependencies between the wp_comments table and any other data so those comments are being deleted. As an aside, I have 3770 comments that are approved constituting 1.8mb of data. I used "delete FROM wp_comments WHERE comment_approved = ‘spam’" so if your comment was inadvertently marked as spam and I didn’t catch it, my apologies. My final step today is to upgrade from 2.6.2 to 2.6.3.

Posted on Leave a comment

Why fight it?

Sometimes you just can’t fight the current. I am desperately trying to produce some results for a client but now Amy is home so I’m refereeing the fights between Evan and Amy. Dinner tonight is pork roast and homemade mashed potatoes so I type a line of code and check the stove. Type a line of code, answer a question for Tommy ("When did the walls get painted?") Type a line of code, install a Firefox plugin I need for faster development (Firebug wasn’t on this machine).

This is not much different than working in a cube farm on a Friday before a holiday and having constant interruptions from fellow employees. It is a difficult way to work and far from ideal but if I remember to stay calm, not eat any children, and breathe, the work will get done.

Posted on 3 Comments

Feeling Old

Feeling old is when taking three steps across the kitchen to the coffee maker causes you to wince. For the past couple of days, I have had excruciating pain in my lower back. The pain is concentrated in my lower left back just above my buttocks but I also feel it in my left shoulder blade. I thought it was related to sleeping on that horrid air mattress at Frozen Head since I could not find my RidgeRest. I thought my back would improve but it seems to be worsening. I don’t exercise. I don’t stretch. All I do is sit all day long typing. The dogs and Evan make it difficult to stretch but I think that I must return to 20 minutes in the evening and 20 minutes in the morning. I never felt better than I did when I was stretching in the morning and evening.

Posted on 1 Comment

Vista Fails to Connect to Samba

I was (still am) a huge fan of the e-smith gateway server (now SME Server see also http://contribs.org) which was a very simplistic way to take almost any computer and have it up and running as a email, web, database server and more in under 2 hours. It has reliably been my development server of choice for years although my next nix server is likely to be Ubuntu.

I am having a problem getting Vista to authenticate across the network to allow me to browse directories and work on my development files. As it turns out, the default Vista security is set to use only NTLMv2 authentication. Samba can’t handle this. One solution is:

To solve the problem run secpol.msc to get into the Local Security Policy screen. Goto "Security Options" then find "Network Security: LAN Manager authentcation level." Change it from "NTVLM2 responses only" to "LM and NTLM – use NTLMv2 session security if negociated”.

Now, to exasperate the problem, Vista Home Premium does not have secpol.msc. Instead you must manually edit the registry. Use caution when editing the registry! Run regedit. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa. Look for the key LmCompatibilityLevel, right click, choose modify, and change the number to the appropriate value of 0 to 5.

0 – Clients use LM and NTLM authentication, but they never use NTLMv2 session security. Domain controllers accept LM, NTLM, and NTLMv2 authentication.

1 – Clients use LM and NTLM authentication, and they use NTLMv2 session security if the server supports it. Domain controllers accept LM, NTLM, and NTLMv2 authentication.

2 – Clients use only NTLM authentication, and they use NTLMv2 session security if the server supports it. Domain controller accepts LM, NTLM, and NTLMv2 authentication.

3 – Clients use only NTLMv2 authentication, and they use NTLMv2 session security if the server supports it. Domain controllers accept LM, NTLM, and NTLMv2 authentication.

4 – Clients use only NTLMv2 authentication, and they use NTLMv2 session security if the server supports it. Domain controller refuses LM authentication responses, but it accepts NTLM and NTLMv2.

5 – Clients use only NTLMv2 authentication, and they use NTLMv2 session security if the server supports it. Domain controller refuses LM and NTLM authentication responses, but it accepts NTLMv2.

[Source, Microsoft TechNet, LmCompatibilityLevel]

In this case, to support Samba, I want the value to change from the default of 3 to 1.

After doing this, reboot for the change to take affect. Next, read Security Watch The Most Misunderstood Windows Security Setting of All Time.

See also.