Solved – Dell PowerEdge R430 and installing Windows 2016 from USB

Today I got a delivery of a new Dell PowerEdge R430 and needed to install Windows 2016 Standard on it.

I downloaded the ISO from Microsoft and created a bootable USB pen using the Windows 7 USB/DVD Download tool, but Dell’s LifeCycle controller refused to recognise the USB drive.

Dell, if you’re listening, please let us install from USB through the Lifecycle Controller !

The ISO was 5.47 Gb so would not burn to a standard DVD and I needed to deliver this server to my client the following day.

Continue reading “Solved – Dell PowerEdge R430 and installing Windows 2016 from USB”

PCI Compliance failure due to Clickjacking threat

Recently I’ve come across a new PCI compliance failure “Web Application Potentially Vulnerable to Clickjacking”.

Clickjacking PCI compliance failure

What is Clickjacking ?

Clickjacking uses IFrames to basically put a tranparent layer over a website and therefore can hijack the clicks and keystrokes the user enters.  This is also known as a “UI redress attack” as it is changing the Users Interface.

This means users can be fooled into giving up usernames and passwords when they think they are logging into legitimate web sites, not realising there is a layer intercepting these details between them and the legitimate site. Continue reading “PCI Compliance failure due to Clickjacking threat”

Security Metrics PCI Compliance Site Failed

One of the companys I work with take Credit Card payments and therefore want to be PCI compliant, and use security metrics to scan the network for compliance.

Lately they’ve been failing their online scan for a few reasons.

  1. Windows 2003 has been detected and that now unsupport
  2. TLS version 1.0 is still enabled
  3. SSL RC4 is still enabled.

Security Metrics PCI Compliance Site Certification Failed…

Security Metrics PCI compliance Site Certification Failed
Security Metrics PCI compliance Site Certification Failed

Continue reading “Security Metrics PCI Compliance Site Failed”

Windows SBS 2008 server out of disk space

I’ve been seeing a lot of Windows 2008 SBS servers running out of disk space lately on the C drive.

This causes Exchange to stop working due to the “back pressure” feature, which has been the first clue to the problem. After a bit of searching I found several area’s where log files can grow.

The 4 main area’s I found are :

  1. Active Directory Certificate Services
  2. IIS Log Files
  3. SBS Data Collector log (DataserviceComponents.log)
  4. Sharepoint SQL logs

I found a great script at SBSfaqs (http://www.sbsfaq.com/?p=1598) and updated the script to include all 4 points above and be able to select which options to run.

You will need to save the 2 SQL files and the batch file to a folder called “SBS Cleaner” on the root of the E drive. Run the batch file as administrator.

Please find the code for each file below.

Other Sources:

http://support.microsoft.com/kb/2000544
http://blogs.technet.com/b/sbs/archive/2010/03/02/recovering-disk-space-on-the-c-drive-in-small-business-server-2008.aspx
http://oxfordsbsguy.com/2012/10/31/sbs-2008-disk-space-and-the-dataservicecomponents-log-file/

Continue reading “Windows SBS 2008 server out of disk space”