Enable SNMP on a Raspberry Pi

sudo apt-get update
sudo apt-get upgrade -y
sudo apt-get install snmpd -y
sudo apt-get install snmp -y
sudo nano /etc/snmp/snmpd.conf
To get it running, you will need to modify the sudo nano /etc/snmp/snmpd.conf file:

First, I commented out this line:

#agentAddress udp:127.0.0.1:161

and below the line ‘#agentAddress udp:161,udp6:[::1]:161′ I added:

agentAddress udp:161

then below this line:

rocommunity public localhost

I added:

rocommunity public 190.0.10.0/24

Finally, restart the service:

service snmpd restart

Check-MK Debian Linux Agent Install

First you’ll need to install xinetd which is a requirement for the Check_MK agent:

apt-get install xinetd


Then, latest Check_MK agent installer from your Check_MK website and install:

cd /tmp/
wget http://%yourcheck_mk_server%/download/check-mk-agent_***.deb
dpkg -i check*

How to Enable SNMP ESXi 6.5

Open your favorite (Putty) ssh application and connect to your ESX host and then run the following commands:

esxcli system snmp set –communities public
esxcli system snmp set –enable true
esxcli network firewall ruleset set –ruleset-id snmp –allowed-all true
esxcli network firewall ruleset set –ruleset-id snmp –enabled true
/etc/init.d/snmpd restart

The –ruleset should be a dash dash not a bar, same with the –allowed and –enabled; I don’t know why WordPress does that.

Schannel Fatal Alert 40… 70

This has to do with FIPS Compliant Algorithms group policy, but the policy was disabled. Microsoft’s documentation states that the GPO controls the reg key [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FipsAlgorithmPolicy]. This key was disabled (set to 1), I created a GPO at my workstation level and caused an update/replace entry [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] and set fipsalgorithmpolicy to 0. On the next reboot the machine should no longer cause the Schannel errors.

Default Passwords for San Gear and Others

Here is a collection of default passwords for EMC, HP, Cisco, Pure, VMware, TrendMicro and IBM hardware & software.

EMC Secure Remote Support (ESRS) Axeda Policy Manager Server:

Username: admin
Password: EMCPMAdm7n
EMC VNXe Unisphere (EMC VNXe Series Quick Start Guide, step 4):

Username: admin
Password: Password123#
EMC vVNX Unisphere:

Username: admin
Password: Password123#
NB You must change the administrator password during this first login.
EMC CloudArray Appliance:

Username: admin
Password: password
NB Upon first login you are prompted to change the password.
EMC CloudBoost Virtual Appliance:
https://:4444

Username: local\admin
Password: password
NB You must immediately change the admin password.
$ password
EMC Ionix Unified Infrastructure Manager/Provisioning (UIM/P):

Username: sysadmin
Password: sysadmin
EMC VNX Monitoring and Reporting:

Username: admin
Password: changeme
EMC RecoverPoint:

Username: admin
Password: admin
Username: boxmgmt
Password: boxmgmt
Username: security-admin
Password: security-admin
EMC XtremIO:

XtremIO Management Server (XMS)

Username: xmsadmin
password: 123456 (prior to v2.4)
password: Xtrem10 (v2.4+)
XtremIO Management Secure Upload

Username: xmsupload
Password: xmsupload
XtremIO Management Command Line Interface (XMCLI)

Username: tech
password: 123456 (prior to v2.4)
password: X10Tech! (v2.4+)
XtremIO Management Command Line Interface (XMCLI)

Username: admin
password: 123456 (prior to v2.4)
password: Xtrem10 (v2.4+)
XtremIO Graphical User Interface (XtremIO GUI)

Username: tech
password: 123456 (prior to v2.4)
password: X10Tech! (v2.4+)
XtremIO Graphical User Interface (XtremIO GUI)

Username: admin
password: 123456 (prior to v2.4)
password: Xtrem10 (v2.4+)
XtremIO Easy Installation Wizard (on storage controllers / nodes)

Username: xinstall
Password: xiofast1
XtremIO Easy Installation Wizard (on XMS)

Username: xinstall
Password: xiofast1
Basic Input/Output System (BIOS) for storage controllers / nodes

Password: emcbios
Basic Input/Output System (BIOS) for XMS

Password: emcbios
EMC ViPR Controller :
http://ViPR_virtual_ip (the ViPR public virtual IP address, also known as the network.vip)

Username: root
Password: ChangeMe
EMC ViPR Controller Reporting vApp:
http://:58080/APG/

Username: admin
Password: changeme
EMC Solutions Integration Service:
https://:5480

Username: root
Password: emc
EMC VSI for VMware vSphere Web Client:
https://:8443/vsi_usm/

Username: admin
Password: ChangeMe

Note:
After the Solutions Integration Service password is changed, it cannot be modified.
If the password is lost, you must redeploy the Solutions Integration Service and use the default login ID and password to log in.

EMC Avamar Backup Service

username: admin
password: changeme
openSSH key
ssh-agent bash
ssh-add ~admin/.ssh/admin_key
Password: P3t3rPan

Pure Storage Arrays

Username: pureuser
Password: pureuser
Cisco Integrated Management Controller (IMC) / CIMC / BMC:

Username: admin
Password: password
Cisco UCS Director:

Username: admin
Password: admin
Username: shelladmin
Username: changeme
Hewlett Packard P2000 StorageWorks MSA Array Systems:

Username: admin
Password: !admin (exclamation mark ! before admin)
Username: manage
Password: !manage (exclamation mark ! before manage)
IBM Security Access Manager Virtual Appliance:
Username: admin
Password: admin
VCE Vision:

Username: admin
Password: 7j@m4Qd+1L
Username: root
Password: V1rtu@1c3!
VMware vSphere Management Assistant (vMA):

Username: vi-admin
Password: vmware
VMware Data Recovery (VDR):

Username: root
Password: vmw@re (make sure you enter @ as Shift-2 as in US keyboard layout)
VMware vCenter Hyperic Server:
https://Server_Name_or_IP:5480/

Username: root
Password: hqadmin
https://Server_Name_or_IP:7080/

Username: hqadmin
Password: hqadmin
VMware vCenter Chargeback:
https://Server_Name_or_IP:8080/cbmui

Username: root
Password: vmware
VMware vCenter Server Appliance (VCSA) 5.5:
https://Server_Name_or_IP:5480

Username: root
Password: vmware
VMware vCenter Operations Manager (vCOPS):

Console access:

Username: root
Password: vmware
Manager:
https://Server_Name_or_IP

Username: admin
Password: admin
Administrator Panel:
https://Server_Name_or_IP/admin

Username: admin
Password: admin
Custom UI User Interface:
https://Server_Name_or_IP/vcops-custom

Username: admin
Password: admin
VMware vCenter Support Assistant:
http://Server_Name_or_IP

Username: root
Password: vmware
VMware vCenter / vRealize Infrastructure Navigator:
https://Server_Name_or_IP:5480

Username: root
Password: specified during OVA deployment
VMware ThinApp Factory:

Username: admin
Password: blank (no password)
VMware vSphere vCloud Director Appliance:

Username: root
Password: vmware
VMware vCenter Orchestrator :
https://Server_Name_or_IP:8281/vco – VMware vCenter Orchestrator
https://Server_Name_or_IP:8283 – VMware vCenter Orchestrator Configuration

Username: vmware
Password: vmware
VMware vCloud Connector Server (VCC) / Node (VCN):
https://Server_Name_or_IP:5480

Username: admin
Password: vmware
Username: root
Password: vmware
VMware vSphere Data Protection Appliance:

Username: root
Password: changeme
VMware HealthAnalyzer:

Username: root
Password: vmware
VMware vShield Manager:
https://Server_Name_or_IP

Username: admin
Password: default
type enable to enter Privileged Mode, password is ‘default’ as well
Teradici PCoIP Management Console:

The default password is blank
Trend Micro Deep Security Virtual Appliance (DS VA):

Login: dsva
password: dsva
Citrix Merchandising Server Administrator Console:

User name: root
password: C1trix321
VMTurbo Operations Manager:

User name: administrator
password: administrator
If DHCP is not enabled, configure a static address by logging in with these credentials:
User name: ipsetup
password: ipsetup
Console access:
User name: root
password: vmturbo

Check-MK Redhat Linux Agent Install

Following is the simple steps to install the CheckMK agent onto a Linux 6x OS.

yum -y install xinetd
cd /tmp
cp xinetd.conf /etc/xinetd.d/check_mk

(Above file is at this link.)
wget http://%checkmkurl%/check_mk/agents/check_mk_agent.linux
cp check_mk_agent.linux check_mk_agent
chmod 776 check_mk_agent
cp /tmp/check_mk_agent /usr/bin/check_mk_agent
mkdir /usr/lib/check_mk_agent
mkdir /usr/lib/check_mk_agent/plugins
cd /usr/lib/check_mk_agent/plugins
wget http://
%checkmkurl%/check_mk/agents/plugins/mk_inventory.linux
cp mk_inventory.linux mk_inventory.sh
chmod 776 mk_inventory.sh
/etc/init.d/xinetd restart

.

CheckMK Agent xinetd.d Config

# +——————————————————————+
# | ____ _ _ __ __ _ __ |
# | / ___| |__ ___ ___| | __ | \/ | |/ / |
# | | | | ‘_ \ / _ \/ __| |/ / | |\/| | ‘ / |
# | | |___| | | | __/ (__| < | | | | . \ |
# | \____|_| |_|\___|\___|_|\_\___|_| |_|_|\_\ |
# | |
# | Copyright Mathias Kettner 2014 mk@mathias-kettner.de |
# +——————————————————————+
#
# This file is part of Check_MK.
# The official homepage is at http://mathias-kettner.de/check_mk.
#
# check_mk is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by
# the Free Software Foundation in version 2. check_mk is distributed
# in the hope that it will be useful, but WITHOUT ANY WARRANTY; with-
# out even the implied warranty of MERCHANTABILITY or FITNESS FOR A
# PARTICULAR PURPOSE. See the GNU General Public License for more de-
# ails. You should have received a copy of the GNU General Public
# License along with GNU Make; see the file COPYING. If not, write
# to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor,
# Boston, MA 02110-1301 USA.

service check_mk
{
type = UNLISTED
port = 6556
socket_type = stream
protocol = tcp
wait = no
user = root
server = /usr/bin/check_mk_agent

# If you use fully redundant monitoring and poll the client
# from more then one monitoring servers in parallel you might
# want to use the agent cache wrapper:
#server = /usr/bin/check_mk_caching_agent

# configure the IP address(es) of your Nagios server here:
only_from = 127.0.0.1 %YOUR IP ADDRESSES HERE!!!%

# Don’t be too verbose. Don’t log every check. This might be
# commented out for debugging. If this option is commented out
# the default options will be used for this service.
log_on_success =

disable = no
}

First Draft Fiji Village Programming Idea

Hi, my name is Harlan Stanley.

I have an interesting project in mind that I would like to talk to you about.

I have family ties to Fiji, we visit home regularly, however not enough. AND. We would like to move there permanently for various reasons. In doing so, I’d like to share my knowledge of technology and skill sets. – I also don’t have a lot of financial resources.

There is a problem.

There are very few jobs and even fewer skilled labor. The economic situation in Fiji is poor at best, and no one really knows if it is getting any better.

Where is Everyone?

In a traditional sense, most Fijians grow up in a very rural environment, we’ll call it “The Village”

In the village you stay with your Mom and Dad, or a relative that cares for you. You attend a primary school, and from there you might go on to a secondary school (aka High School) Depending on your studies, financial capacity, or capabilities of finding a job, you either go on to college, a technical institute, or go work for a resort. Those that are unable to find jobs wind up depending on the government assistance or on the street. Another option is that you return to the Village and become either a farmer, a fisherman, or work at a resort.

Mind you the end result for most of these occupations, even the one where you wind up on the street, is pretty dismal for a land quoted all over the world as “Paradise” you’ll probably make about one United States Dollar per hour, yes, that’s right, $1.00 per hour.  – IF THAT!

Average salary for a government employee is about $7000 USD.

The Problem?

There isn’t really a problem, it’s education, it’s someone’s future. See, once someone becomes educated they see the “light”, they go on to become doctors and educators, mechanics, and plumbers, even lawyers. Why would anyone of these professionals stick around in the village? There is no future for them there. Only the primary school teachers, fisherman or the farmer can make a “living” in the village.

So we have this “brain drain”, how can we fix it?

Introduce technology. We could introduce another field, technology, computer programming, applications development, database management, and other non-location specific types of professional careers to the Village that would allow someone to earn a decent wage while staying in the Village type setting.

How do we do this?

I purpose that we start with the kids. Children have a insatiable thirst for knowledge, they inherently want to know how things work, why they work, and how to break them. They also are capable of learning another “language” easily. Why not start a project where we can introduce these Village Kids to programming – anything – Let’s teach these kids how to have a marketable skill where they could setup up and earn income in a remote environment and instead of having a local marketplace they can market their skills to the world.

Let’s say that we start this project and have it last over a 10 year period of time, we teach the kids starting at around 7-10 years old how to type, then work them in to basic programming, database management, networking, and IT management.

We could build a small computer lab there, solar powered with an internet connection, and a backup generator.

We would setup the classrooms with three levels of computer systems, the first one would be a typing class and basic computer functionality. second class would be introduction to programming language and writing programs, third class would be full on “we’re writing code, here’s how do it, and kick butt”

A classroom of 50 computers of any caliber will get hot, and you can’t air-condition the entire building. We would have to setup thin clients connected to a VM cluster to do virtual desktops, keeping only the computer room moderately cooled down. Using the thin clients also allows you to expand and contract the classes as necessary.

Bring in a couple of teachers on a work/vacation/sabbatical type program to stay in the Village up to a year at a time and brain dump to these guys. (easy to get visitor’s visa and get an extension for one year – past that and you have to leave the country for a night or two)

Getting paid.

How do we fund this project? Do we pay the teachers a salary? Where do we get the computers from? Who pays for the fuel for the generators?

I’m expecting that we could find some generous angel investors to fund this idea as a 10 year and possibly a 20 year project. We could then have an idea of what happens when we take a group of people that have limited access to technology, and give them a skill that can be performed anywhere in the world.

Involvement.

I’m not asking for 100% involvement from these kids, there will still be ones who want to be fishermen, doctors, educators, and farmers; but there will be kids who have gone historically untapped who can make a difference for this country and their Village.

How did I come up with this idea?

When I first went to the Village, I was impressed with its remoteness, I was in awe of the natural state of the environment  I thought, wow, we could setup a backpackers resort here and everyone could come see this place. Then, on my most recent trip, I saw that there was other backpackers, and “exclusive” type resorts starting up around the area. I began to think wow, there’s so many resorts around, we are training the native to be subservient  this is not good. I took a visit to one of the more exclusive resorts, and spoke with the owner at length. I determined that there was no way that I would become like that person, it’s not in my heart, it’s not in my mind.

Then I thought of all the infrastructure that was required to maintain these resorts, all the materials that have to be brought in, imported into the most remote parts of the world, just so that someone can “see” in comfort. This “way” is not sustainable, only by influx of large amounts of money. Example, Lautha Island Resort uses over 80,000 liters of fuel every month. Fiji is not an oil producing nation. The majority of electricity in Fiji is created by diesel generators. Garment factories have to import cloth and machines for their workers to make shirts at a very low wage in poor conditions, often working long hours and with slave driving bosses.

The software industry looks for creative minds, can be done anywhere, has a very open structure, and when successful can be very profitable. We’re only importing the hardware to do the work, not materials to be processed.

Once we have several successful candidates, those can help teach the other younger generation, along with internet connectivity, and self perpetuate the learning process so that this project could be self sustaining.

Will you help?

We need funding. I’m going to guess that in order to build a proper school there, we’d need around $350,000 USD to get the building put together and all the necessary equipment. This would not include any teacher salaries, although I’m planning on doing the educator/vacation thing – this would require dedication on the other parties part however.

Microsoft Exchange 2010 Configuration – Allow Larger Attachments

1.Organization Configuration

Organization Configuration | Hub Transport | Global Settings tab | Transport Settings |

2.Server Configuration

Server Configuration | Hub Transport | select a HT server | Receive Connectors -> select a connector | Properties |

3.Send Connector Configuration

Organization Configuration | Hub Transport | Send Connectors -> select connector | Properties |

4.Recipients Configuration

Recipients Configuration | Mailbox | select mailbox | properties | Mail Flow Settings | Message Size Restrictions|

5.Recipients Group Configuration

Recipients Configuration |Distribution Group | select Group | properties | Mail Flow Settings | Message Size Restrictions

6.Global Setting

Please use adsiedit to connect Configuration container :

Configuration container | Services | Microsoft Exchange |YourOrgName| Global Settings | Message Delivery | Properties,check the below values:

a. delivContentLength

b. SubmissionContentLength

c. msExchRecipLimit

7.Transport Rules

Organization Configuration | Hub Transport | Transport Rules

Mailbox Size Limits Are Not Enforced in a Reasonable Period of Time

http://technet.microsoft.com/en-us/library/bb684892(EXCHG.80).aspx

DNS Scavenging

Scavenging is a feature that will remove expired records based on their time stamps.
Scavenging is not enabled by default.
Scavenging will NOT remove statically configured records, the ones you manually create unless you run dnscmd /AgeAllRecords, which will stamp them making them eligible for scavenging (more below on this). Without running this command, DNS will scavenge dynamically updated records that have reached their time stamp. To look at the time stamps of a record using Windows 2003 DNS, put the DNS console “view” in the menu to Advanced View, then look at the individual record properties, and you will see the time stamp. If using Windows 2008 or or newer, it will show up in the console as a separate column.