God Mode in Windows 7

Well, it’s hardly “God Mode”, but it is an easy way to access Windows 7’s entire set of control panel settings from a single window. And it reportedly works on Vista as well, although some people claim problems on the 64-bit version of Vista.

Simply create a new folder and rename it to whatever you like, adding the extension “.{ED7BA470-8E54-465E-825C-99712043E01C}”. For example, name your folder, “GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}” and you will see the icon change to a Control Panel icon and when you double click on “God Mode” the icon it will open a long list of settings. Neato.

Cellphone Encryption Code Is Divulged

Cellphone Encryption Code Is Divulged; By KEVIN J. O’BRIEN; Published: December 28, 2009

Excerpt:

BERLIN — A German computer engineer said Monday that he had deciphered and published the secret code used to encrypt most of the world’s digital mobile phone calls, saying it was his attempt to expose weaknesses in the security of global wireless systems.

The action by the encryption expert, Karsten Nohl, aimed to question the effectiveness of the 21-year-old G.S.M. algorithm, a code developed in 1988 and still used to protect the privacy of 80 percent of mobile calls worldwide. (The abbreviation stands for global system for mobile communication.)

Mr. Nohl said the algorithm’s code book was available on the Internet through services like BitTorrent, which some people use to download vast quantities of data like films and music. He declined to provide a Web link to the code book, for fear of the legal implications, but said its location had spread by word of mouth.

The G.S.M. algorithm, technically known as the A5/1 privacy algorithm, is a binary code — which is made exclusively of 0’s and 1’s — that has kept digital phone conversations private since the G.S.M. standard was adopted in 1988.

SOURCE: http://www.nytimes.com/2009/12/29/technology/29hack.html

Enable LDAP SSL with Active Directory in Windows 2003

In my search to Enable LDAP SSL with AD in Windows 2003, I found this which described out to configure Automatic Certificate Requests for Domain Controllers. This turned out to be a very easy way for Domain Controllers to automatically get certificates assigned and start using SSL for AD. First you set up a MS Certificate Authority, then do the following:

1. Click Start, select Administrative Tools and click Domain Controller Security Policy.
2. In the Default Domain Controller Security Settings window, click the Public Key Policies folder.
3. Right click Automatic Certificate Request Settings, select New and click Automatic Certificate Request.
4. Click Next in the Automatic Certificate Request Setup Wizard.
5. Select Domain Controller in the Certificate Template page and click Next.
6. Click Finish and reboot your server.
7. Check if automatic certificate request worked by using the Certificate Authority app located in Start > Administrative Tools. Check the Issued Certificates folder if your server is there.

Note that when connecting to AD using LDAPS, use port 636 and also use the server name (contained in the certificate) – the IP address of the server did not work for me.

References:

Enable LDAP SSL with Active Directory in Windows 2003
http://www.linuxmail.info/enable-ldap-ssl-active-directory/

How to enable LDAP over SSL with a third-party certification authority
http://support.microsoft.com/default.aspx?scid=kb;en-us;321051

How To Enable Secure Socket Layer (SSL) Communication over LDAP for Windows 2000 Domain Controllers
http://support.microsoft.com/kb/247078

Wii for Women, Shii

Linux/Unix 101: Using “tar” And “gzip” To Create and Extract Files From Archives

The tar program is used to collect many files into one larger file usually for archival purposes.

The gzip program is used to compress large files.

Creating a compressed tar file:

tar cvf archive.tar some_directory/
gzip -9 archive.tar

The first command creates the file archive.tar which contains a copy of all files and subdirectories in some_directory. The second command compresses (with maximum compression) the archive.tar file and renames it to archive.tar.gz to indicate that it is compressed.

To get your files out of the compressed archive, you do the reverse – uncompress and then untar.

gunzip archive.tar.gz
tar xvf archive.tar