Feb 02 2009
How to Schedule Tasks in Windows Server 2003
In Windows Server 2003, you can use Scheduled Tasks in Control Panel to create, delete, configure, or display scheduled tasks. You can also use Schtasks.exe to schedule tasks manually.
Back to the topOverview of the Schtasks.exe Tool
.SQM files are created by a number of Microsoft applications, most commonly Windows Live Messenger (previously known as MSN).
According to Microsoft, SQM files (standing for Software Quality Metrics) are used as part of their “Microsoft Customer Experience Program” and help improve their products by anonymously monitoring usage habits and reporting software errors/bugs.
To stop these files being created, you will need to disable the option in Windows Live Messenger. You can do this through the options menu:
1. Click HELP.
2. Select ‘Customer Experience Improvement Program’.
3. Tick on ‘I don’t want to participate right now’ box.
4. Click OK.
Please take note, that .SQM files are NOT viruses and do not contain spyware/malware and do not contain any personal information.
SQM files have a naming convention such as “sqmnoopt00.sqm”. They are normally found in the root folder of your hard-drive (C:) and more recently, the “Documents and settings/Application Data/Microsoft/MSN Messenger/” folder.
Dot What!? visitors have found that deleting SQM files is safe. Although probably true, we advise you to backup the files first.
################### Simple Story ###################
By default, you participate in a data-gathering program. Open Live Messenger, click on Help, then on Customer Experience Improvement Program, then de-check the radio button which says you want to participate. Try that. It will almost certainly work, and it’s not dangerous.
####################################################
Dec 18 2008
IE ignores custom error pages
if you use php to create custom error pages (such as header('HTTP/1.1 500 Internal Server Error');) Internet Explorer ignores you custom page unless it is at least 512 (or sometimes 1024 bytes)
IE ignores custom error pages that are less than 512 (or from what i've read 1024) bytes.
just place this before any output on your custom error page--- and be sure that your custom error page includes proper html tags (it must have a </body> for this specific example to work)
<?php
// set your custom error header --- example --- header('HTTP/1.1 503 Service Unavailable');
function padding($html){
return ($padding=1024-ob_get_length()) > 0 ? str_replace('</body>','<!--'. ($padding>8?str_repeat(' ',$padding-8) :null ).'-->'."\n".'</body>',$html) : $html;
}
ob_start('padding');
?>
and then place this somewhere within the html error page output
<!-- ---- -->
that will auto-adjust to pad the file to 1024 bytes to override the default Internet Explorer error pages.
Internet Explorer is used by the vast majority of the world’s computer user
|
Users of Microsoft’s Internet Explorer are being urged by experts to switch to a rival until a serious security flaw has been fixed.
The flaw in Microsoft’s Internet Explorer could allow criminals to take control of people’s computers and steal their passwords, internet experts say.
Microsoft urged people to be vigilant while it investigated and prepared an emergency patch to resolve it.
Internet Explorer is used by the vast majority of the world’s computer users.
 |
 It’s a shame Microsoft have not been able to fix this more quickly 
Darien Graham-Smith
PC Pro magazine 
|
“Microsoft is continuing its investigation of public reports of attacks against a new vulnerability in Internet Explorer,” said the firm in a security advisory alert about the flaw.
Microsoft says it has detected attacks against IE 7.0 but said the “underlying vulnerability” was present in all versions of the browser.
Other browsers, such as Firefox, Opera, Chrome, Safari, are not vulnerable to the flaw Microsoft has identified.
Browser bait
“In this case, hackers found the hole before Microsoft did,” said Rick Ferguson, senior security advisor at Trend Micro. “This is never a good thing.”
As many as 10,000 websites have been compromised since the vulnerability was discovered, he said.
“What we’ve seen from the exploit so far is it stealing game passwords, but it’s inevitable that it will be adapted by criminals,” he said. “It’s just a question of modifying the payload the trojan installs.”
|
MICROSOFT SECURITY ADVICE
Change IE security settings to high (Look under Tools/Internet Options)
Switch to a Windows user account with limited rights to change a PC’s settings
With IE7 or 8 on Vista turn on Protected Mode
Ensure your PC is updated
Keep anti-virus and anti-spyware software up to date
|
Said Mr Ferguson: “If users can find an alternative browser, then that’s good mitigation against the threat.”
But Microsoft counselled against taking such action.
“I cannot recommend people switch due to this one flaw,” said John Curran, head of Microsoft UK’s Windows group.
He added: “We’re trying to get this resolved as soon as possible.
“At present, this exploit only seems to affect 0.02% of internet sites,” said Mr Curran. “In terms of vulnerability, it only seems to be affecting IE7 users at the moment, but could well encompass other versions in time.”
Richard Cox, chief information officer of anti-spam body The Spamhaus Project and an expert on privacy and cyber security, echoed Trend Micro’s warning.
“It won’t be long before someone reverse engineers this exploit for more fraudulent purposes. Trend Mico’s advice [of switching to an alternative web browser] is very sensible,” he said.
|
This could be the moment when the minnows in the browser wars finally score a significant victory
Rory Cellan-Jones
BBC technology editor
|
PC Pro magazine’s security editor, Darien Graham-Smith, said that there was a virtual arms race going on, with hackers always on the look out for new vulnerabilities.
“The message needs to get out that this malicious code can be planted on any web site, so simple careful browsing isn’t enough.”
“It’s a shame Microsoft have not been able to fix this more quickly, but letting people know about this flaw was the right thing to do. If you keep flaws like this quiet, people are put at risk without knowing it.”
“Every browser is susceptible to vulnerabilities from time to time. It’s fine to say ‘don’t use Internet Explorer’ for now, but other browsers may well find themselves in a similar situation,” he added.
Aug 13 2008
How to recover domain when the primary domain controller failes and there are member domain controllers
Many of us have probably dabbled in setting up our own domain and forest for development purposes. For me – a domain is a must – I have my development environment that is heavily used to model development projects for clents – and I have my family – me, my wife, and 7 children with their own computers.
So, we have a fairly detailed setup on the home front – but the following applies to ANY environment in which your primary domain controller gives up the ghost – and you do not have an image backup of the PDC.
Foremost – clarity: In an Active Directory forest, where you have several domain controllers, but one primary domain controller (PDC) – you may think that you must RESTORE or recover this PDC to salvage the domain. In other words, if the PDC fails – is all lost? Nope, not at all. Unless you do not have backup domain controllers. If you do not – then reading the rest of this is moot – but if you do, then read on.
When you promote additional servers on your domain, and make them member DC’s in the same forest, then your domain details are available to you – and you simply need to transfer the Operation Master role to another DC – but before doing that – there are the FSMO’s – yea, something hardly anyone knows about: FSMO = Flexible Single Master Operation – something your PDC or master of operations – manages. If a PDC – and Global Catalog for that matter – goes offline, a backup DC will generally pickup and juggle traffic for the PDC. But what happens if the PDC crashes altogether, and you need to basically assign a member backup DC the PDC role?
FSMO must be transferred to a backup DC before that DC can assume the Master of Operations role. This is done at the command-line level, and you must be careful before you make this call – ONLY do this if you are sure you cannot recover the original PDC because once you do this – you cannot later recover the PDC and bring it online. It cannot be added back into the forest at all.
So, the FSMO roles and how we transfer these. In a word, you cannot simply transfer the FSMO roles because the PDC is off line and not available to authorize the transfer. However, you ‘can’ SEIZE the FSMO roles from the original PDC – even with the machine offl line.
Caution: Using the Ntdsutil utility incorrectly may result in partial or complete loss of Active Directory functionality.
Open a CMD prompt on the backup DC you want to perform this on. At the command-line prompt, type Ntdsutil and press enter .
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.C:\WINDOWS>ntdsutil
ntdsutil:
At this prompt, type roles and press :
ntdsutil: roles
fsmo maintenance:
Now type connections and press :
fsmo maintenance: connections
server connections:
Now type connect to server SERVERNAME where is the name of the backup DC you are working on, and press :
server connections: connect to server hamddc02
Connected to hamdc02 using credentials of locally logged on user.
server connections:
At the server connections prompt type q and press enter :
server connections: q
fsmo maintenance:
Now we are going to SEIZE the FSMO roles we want. NOTE: Out of the 5 FSMO roles, we are NOT going to seize the Infrastructure Master. We do not want to put the Infrastructure Master (IM) role on the same domain controller as the Global Catalog server. If the Infrastructure Master runs on a GC server it will stop updating object information because it does not contain any references to objects that it does not hold. This is because a GC server holds a partial replica of every object in the forest. For now, we’ll seize the following:
Seize domain naming master
Seize PDC
Seize RID master
Seize schema master
We do this by typing the line shown above. For example, to seize the domain naming master, type seize domain naming master and press
You will receive a Windows dialog prompting to confirm this move – click and then you’ll see the attempt to safely transfer the FSMO role, a failure message, and then it will seize the role, assigning it to the backup DC you specified when you connected to the server above.
Once you have completed this for the 4 roles, type Quit to exit the utility, then Exit to return to Windows.
From the Start menu, select Run and enter dsa.msc and press enter.
On the domain that is displayed, right click and select Operations Masters. You should now see that this backup domain controller (HAMDC02 in this case) is not the Operations master.
From here you simply re-create the failed domain controller, and promote it – joining it to this existing forest.
Hopefully others will find this useful.
Source:
geekswithblogs.net/mhamilton/archive/2007/04/15/111674.aspx
