OpenDKIM | gentoo | warning: connect to Milter service unix:/var/run/opendkim/opendkim.sock: No such file or directory

On Gentoo some postfix processes run chroot’ed but others do not. In result these processes need different sock locations, but this is impossible. Solution: # mkdir -p /var/run/postfix/var/run/opendkim # chmod milter:milter /var/run/postfix/var/run/opendkim # usermod -a -G milter postfix # mount –rbind /var/run/opendkim /var/run/postfix/var/run/opendkim Advertisements

GPO | MSOffice | Macro handling

Office 20100-16 ADMX Files installieren. GPO erzeugen. GPO editieren. Regeln: Microsoft Office 2010-16 | Sicherheitseinstellungen | VBA für Office-Anwendungen deaktivieren: Deaktiviert [Wenn aktiviert, werden ALLE Makros deaktiviert. Ausnahmen über ‘Vertrauenswürdige Speicherorte’ sind nicht möglich.] Microsoft Office 20100-16 | Sicherheitseinstellungen | Sicherheitscenter | Mischung aus Richtlinien- und Benutzerspeicherorten zulassen: Deaktiviert Microsoft Office 20100-16 | Sicherheitseinstellungen | […]

Foxit Reader | Shackle the beast via GPO registry settings

Set registry keys via GPO. 1. Disable JavaScript at start HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 9.0\Preferences\Others\bEnableJS=0 (REG_SZ) 2. Deny web access for PDF’s at start HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 9.0\Preferences\Trust Manager\nSitesAccessRight=1 (REG_SZ) 3. Add Trusted Folders/Sites HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 9.0\Preferences\Security\TrustedFolders\csFilePath0=T:\\ (REG_SZ) HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 9.0\Preferences\Security\TrustedSites\ (REG_SZ) 4. Suppress the ‘Wanna allow anything? Y/N’ message. HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader 9.0\Preferences\General\bBubbleMsgAffects=0 […]

SELKS | suricata | Nagios monitoring

You wanna monitor suricata via nagios? On Suricata machine do: 1. Create a pipe and set permissions. # mknod -m 666 /var/pipes/suricata.pipe p 2. Let suricata write the fast log to this pipe outputs: # a line based alerts log similar to Snort’s fast.log – fast: enabled: yes filename: /var/pipes/suricata.pipe append: yes 3. Prepare and […]