From mcp2004 at mail.ru Thu Aug 3 04:24:56 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Thu, 03 Aug 2017 12:24:56 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_si?= =?utf-8?q?tes/web_API_solutions?= Message-ID: <1501752296.242626254@f450.i.mail.ru> Hi All -- I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. For example via VPN: 1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 (all the IP addresses and ports above are just sample ones not having any real refs)? Is it possible? If it's possible what software would you recommened to setup on server side? This one looks good - https://www.softether.org/1-features ? I'd prefer free/not very expensive solution on server side and free solution for client/customers side. NB: I currently prefer to not use MS Azure, AWS etc. Thank you. -- Shamil 1. Customer #1 would get access to virtual IP?15.27.103.185 From gustav at cactus.dk Thu Aug 3 04:41:10 2017 From: gustav at cactus.dk (Gustav Brock) Date: Thu, 3 Aug 2017 09:41:10 +0000 Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Message-ID: Hi Shamil I believe the native command netsh is for this (and many other tasks). I found this example on port forwarding in windows: https://stackoverflow.com/a/11535395/3527297 Another option seems to be nginx. I haven't tried any of these methods. /gustav -----Oprindelig meddelelse----- Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 11:25 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi All -- I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. For example via VPN: 1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 (all the IP addresses and ports above are just sample ones not having any real refs)? Is it possible? If it's possible what software would you recommened to setup on server side? This one looks good - https://www.softether.org/1-features ? I'd prefer free/not very expensive solution on server side and free solution for client/customers side. NB: I currently prefer to not use MS Azure, AWS etc. Thank you. -- Shamil From mcp2004 at mail.ru Thu Aug 3 05:17:56 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Thu, 03 Aug 2017 13:17:56 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: References: Message-ID: <1501755476.975568878@f364.i.mail.ru> Hi Gustav -- Thank you for the example you found. So using netsh and having VPN infrastructure activated and configured for the case 1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 the Cusomer #1 should run the following netsh command: netsh interface portproxy add v4tov4 listenport=80 listenaddress= 15.27.103.185 connectport=2337 connectaddress= 123.17.82.45 ? Not sure about listenport=80 value, not sure about if it works at all what I'd like to get in this case is the Customer #1 typing http://15.27.103.185 in his browser and accessing web site running on my cloud VM on ?http:// 123.17.82.45:2337 ?(Use sase #1.1) or the Customer #1 WinForms/WPF/UWP/... application communicating with a RESTFul Web API via? http://15.27.103.185 and actually getting connected with the RESTFul Web API on?http:// 123.17.82.45:2337? (Use sase #1.2) Do you suppose use cases #1.1 and #1.2 are doable this or that way? Thank you. -- Shamil >Thursday, August 3, 2017 12:41 PM +03:00 from Gustav Brock : > >Hi Shamil > >I believe the native command netsh is for this (and many other tasks). > >I found this example on port forwarding in windows: > >???? https://stackoverflow.com/a/11535395/3527297 > >Another option seems to be nginx. > >I haven't tried any of these methods. > >/gustav > > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 11:25 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi All -- > >I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. >The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. > >For example via VPN: > >1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... >N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 > >(all the IP addresses and ports above are just sample ones not having any real refs)? > >Is it possible? > >If it's possible what software would you recommened to setup on server side? >This one looks good - https://www.softether.org/1-features ? > >I'd prefer free/not very expensive solution on server side and free solution for client/customers side. > >NB: I currently prefer to not use MS Azure, AWS etc. > >Thank you. > >-- Shamil > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From gustav at cactus.dk Thu Aug 3 05:34:01 2017 From: gustav at cactus.dk (Gustav Brock) Date: Thu, 3 Aug 2017 10:34:01 +0000 Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Message-ID: Hi Shamil I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. /gustav -----Oprindelig meddelelse----- Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 12:18 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Gustav -- Thank you for the example you found. So using netsh and having VPN infrastructure activated and configured for the case 1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 the Cusomer #1 should run the following netsh command: netsh interface portproxy add v4tov4 listenport=80 listenaddress= 15.27.103.185 connectport=2337 connectaddress= 123.17.82.45 ? Not sure about listenport=80 value, not sure about if it works at all what I'd like to get in this case is the Customer #1 typing http://15.27.103.185 in his browser and accessing web site running on my cloud VM on ?http:// 123.17.82.45:2337 ?(Use sase #1.1) or the Customer #1 WinForms/WPF/UWP/... application communicating with a RESTFul Web API via? http://15.27.103.185 and actually getting connected with the RESTFul Web API on?http:// 123.17.82.45:2337? (Use sase #1.2) Do you suppose use cases #1.1 and #1.2 are doable this or that way? Thank you. -- Shamil >Thursday, August 3, 2017 12:41 PM +03:00 from Gustav Brock : > >Hi Shamil > >I believe the native command netsh is for this (and many other tasks). > >I found this example on port forwarding in windows: > >???? https://stackoverflow.com/a/11535395/3527297 > >Another option seems to be nginx. > >I haven't tried any of these methods. > >/gustav > > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 11:25 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi All -- > >I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. >The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. > >For example via VPN: > >1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... >N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 > >(all the IP addresses and ports above are just sample ones not having any real refs)? > >Is it possible? > >If it's possible what software would you recommened to setup on server side? >This one looks good - https://www.softether.org/1-features ? > >I'd prefer free/not very expensive solution on server side and free solution for client/customers side. > >NB: I currently prefer to not use MS Azure, AWS etc. > >Thank you. > >-- Shamil From mcp2004 at mail.ru Thu Aug 3 06:45:37 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Thu, 03 Aug 2017 14:45:37 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: References: Message-ID: <1501760737.428759438@f319.i.mail.ru> Hi Gustav -- OK, I will give it a try and I will post here in the coming days on my testing results. -- Shamil >Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock : > >Hi Shamil > >I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. > >The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. > >/gustav > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 12:18 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav -- > >Thank you for the example you found. > >So using netsh and having VPN infrastructure activated and configured for the case > >1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 > >the Cusomer #1 should run the following netsh command: > >netsh interface portproxy add v4tov4 listenport=80 listenaddress= 15.27.103.185 connectport=2337 connectaddress= 123.17.82.45 ? > >Not sure about listenport=80 value, not sure about if it works at all what I'd like to get in this case is the Customer #1 typing > >http://15.27.103.185 > >in his browser and accessing web site running on my cloud VM on ?http:// 123.17.82.45:2337 ?(Use sase #1.1) > >or the Customer #1 WinForms/WPF/UWP/... application communicating with a RESTFul Web API via? > >http://15.27.103.185 > >and actually getting connected with the RESTFul Web API on?http:// 123.17.82.45:2337? (Use sase #1.2) > >Do you suppose use cases #1.1 and #1.2 are doable this or that way? > >Thank you. > >-- Shamil > > >>Thursday, August 3, 2017 12:41 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>I believe the native command netsh is for this (and many other tasks). >> >>I found this example on port forwarding in windows: >> >>???? https://stackoverflow.com/a/11535395/3527297 >> >>Another option seems to be nginx. >> >>I haven't tried any of these methods. >> >>/gustav >> >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 11:25 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi All -- >> >>I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. >>The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. >> >>For example via VPN: >> >>1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... >>N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 >> >>(all the IP addresses and ports above are just sample ones not having any real refs)? >> >>Is it possible? >> >>If it's possible what software would you recommened to setup on server side? >>This one looks good - https://www.softether.org/1-features ? >> >>I'd prefer free/not very expensive solution on server side and free solution for client/customers side. >> >>NB: I currently prefer to not use MS Azure, AWS etc. >> >>Thank you. >> >>-- Shamil > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From mcp2004 at mail.ru Thu Aug 3 08:46:54 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Thu, 03 Aug 2017 16:46:54 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: <1501760737.428759438@f319.i.mail.ru> References: <1501760737.428759438@f319.i.mail.ru> Message-ID: <1501768014.692491795@f405.i.mail.ru> Hi Gustav et al -- I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. I the coming days I will also try to use SoftEther VPN Open Source (? https://www.softether.org/ ?) to setup VPN instead on TeamViewer. -- Shamil >Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech : > >Hi Gustav -- > >OK, I will give it a try and I will post here in the coming days on my testing results. > >-- Shamil > > >>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >> >>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >> >>/gustav >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 12:18 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi Gustav -- >> >>Thank you for the example you found. >> >>So using netsh and having VPN infrastructure activated and configured for the case >> >>1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 >> >>the Cusomer #1 should run the following netsh command: >> >>netsh interface portproxy add v4tov4 listenport=80 listenaddress= 15.27.103.185 connectport=2337 connectaddress= 123.17.82.45 ? >> >>Not sure about listenport=80 value, not sure about if it works at all what I'd like to get in this case is the Customer #1 typing >> >> http://15.27.103.185 >> >>in his browser and accessing web site running on my cloud VM on ?http:// 123.17.82.45:2337 ?(Use sase #1.1) >> >>or the Customer #1 WinForms/WPF/UWP/... application communicating with a RESTFul Web API via? >> >> http://15.27.103.185 >> >>and actually getting connected with the RESTFul Web API on?http:// 123.17.82.45:2337? (Use sase #1.2) >> >>Do you suppose use cases #1.1 and #1.2 are doable this or that way? >> >>Thank you. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 12:41 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I believe the native command netsh is for this (and many other tasks). >>> >>>I found this example on port forwarding in windows: >>> >>>???? https://stackoverflow.com/a/11535395/3527297 >>> >>>Another option seems to be nginx. >>> >>>I haven't tried any of these methods. >>> >>>/gustav >>> >>> >>>-----Oprindelig meddelelse----- >>>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>>Sendt: 3. august 2017 11:25 >>>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>>Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >>> >>>Hi All -- >>> >>>I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. >>>The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. >>> >>>For example via VPN: >>> >>>1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... >>>N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 >>> >>>(all the IP addresses and ports above are just sample ones not having any real refs)? >>> >>>Is it possible? >>> >>>If it's possible what software would you recommened to setup on server side? >>>This one looks good - https://www.softether.org/1-features ? >>> >>>I'd prefer free/not very expensive solution on server side and free solution for client/customers side. >>> >>>NB: I currently prefer to not use MS Azure, AWS etc. >>> >>>Thank you. >>> >>>-- Shamil >> >>_______________________________________________ >>dba-Tech mailing list >> dba-Tech at databaseadvisors.com >> http://databaseadvisors.com/mailman/listinfo/dba-tech >>Website: http://www.databaseadvisors.com > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From gustav at cactus.dk Thu Aug 3 10:12:24 2017 From: gustav at cactus.dk (Gustav Brock) Date: Thu, 3 Aug 2017 15:12:24 +0000 Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Message-ID: Hi Shamil Great. I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. /gustav -----Oprindelig meddelelse----- Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 15:47 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Gustav et al -- I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. I the coming days I will also try to use SoftEther VPN Open Source (? https://www.softether.org/ ?) to setup VPN instead on TeamViewer. -- Shamil >Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech : > >Hi Gustav -- > >OK, I will give it a try and I will post here in the coming days on my testing results. > >-- Shamil > > >>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >> >>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >> >>/gustav >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 12:18 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi Gustav -- >> >>Thank you for the example you found. >> >>So using netsh and having VPN infrastructure activated and configured for the case >> >>1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 >> >>the Cusomer #1 should run the following netsh command: >> >>netsh interface portproxy add v4tov4 listenport=80 listenaddress= 15.27.103.185 connectport=2337 connectaddress= 123.17.82.45 ? >> >>Not sure about listenport=80 value, not sure about if it works at all what I'd like to get in this case is the Customer #1 typing >> >> http://15.27.103.185 >> >>in his browser and accessing web site running on my cloud VM on ?http:// 123.17.82.45:2337 ?(Use sase #1.1) >> >>or the Customer #1 WinForms/WPF/UWP/... application communicating with a RESTFul Web API via? >> >> http://15.27.103.185 >> >>and actually getting connected with the RESTFul Web API on?http:// 123.17.82.45:2337? (Use sase #1.2) >> >>Do you suppose use cases #1.1 and #1.2 are doable this or that way? >> >>Thank you. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 12:41 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I believe the native command netsh is for this (and many other tasks). >>> >>>I found this example on port forwarding in windows: >>> >>>???? https://stackoverflow.com/a/11535395/3527297 >>> >>>Another option seems to be nginx. >>> >>>I haven't tried any of these methods. >>> >>>/gustav >>> >>> >>>-----Oprindelig meddelelse----- >>>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>>Sendt: 3. august 2017 11:25 >>>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>>Emne: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >>> >>>Hi All -- >>> >>>I have a hosted on a cloud MS Windows Server 2012+ VM and I'd like to setup my customers' testing web sites/web API solutions. >>>The hosted VM has its own IP but I'd like to virtualize access to customers' testing web sites by using virtual IPs, which, as I expect could be provided by a VPN infrastructure/software. >>> >>>For example via VPN: >>> >>>1. Customer #1 would get access to virtual IP?15.27.103.185 referring real IP:Port ?123.17.82.45:2337 2. Customer #2 would get access to virtual IP?15.27.103.142?referring real IP:Port ?123.17.82.45:2338 ... >>>N. Customer #N would get access to virtual IP?15.27.103.1147?referring real IP:Port ?123.17.82.45:2399 >>> >>>(all the IP addresses and ports above are just sample ones not having any real refs)? >>> >>>Is it possible? >>> >>>If it's possible what software would you recommened to setup on server side? >>>This one looks good - https://www.softether.org/1-features ? >>> >>>I'd prefer free/not very expensive solution on server side and free solution for client/customers side. >>> >>>NB: I currently prefer to not use MS Azure, AWS etc. >>> >>>Thank you. >>> >>>-- Shamil From mcp2004 at mail.ru Thu Aug 3 11:40:31 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Thu, 03 Aug 2017 19:40:31 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: References: Message-ID: <1501778431.139120713@f455.i.mail.ru> Hi Gustav -- I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? Thank you. -- Shamil >Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock : > >Hi Shamil > >Great. >I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. > >/gustav > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 15:47 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav et al -- > >I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. > >So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. > >I the coming days I will also try to use SoftEther VPN Open Source (? https://www.softether.org/ ?) to setup VPN instead on TeamViewer. > >-- Shamil > >>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >> >>Hi Gustav -- >> >>OK, I will give it a try and I will post here in the coming days on my testing results. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>> >>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>> >>>/gustav >>> <<< skipped >>> > From gustav at cactus.dk Thu Aug 3 13:46:38 2017 From: gustav at cactus.dk (Gustav Brock) Date: Thu, 3 Aug 2017 18:46:38 +0000 Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions In-Reply-To: <1501778431.139120713@f455.i.mail.ru> References: , <1501778431.139120713@f455.i.mail.ru> Message-ID: Hi Shamil If all you need a VPN connection with no fancy features, it comes natively with the server. I located this short guide: https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ /gustav ________________________________________ Fra: dba-Tech p? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 18:40:31 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Gustav -- I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? Thank you. -- Shamil >Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock : > >Hi Shamil > >Great. >I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. > >/gustav > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 15:47 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav et al -- > >I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. > >So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. > >I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. > >-- Shamil > >>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >> >>Hi Gustav -- >> >>OK, I will give it a try and I will post here in the coming days on my testing results. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>> >>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>> >>>/gustav >>> <<< skipped >>> From accessd at shaw.ca Thu Aug 3 18:14:01 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Thu, 3 Aug 2017 17:14:01 -0600 (MDT) Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions In-Reply-To: References: <1501778431.139120713@f455.i.mail.ru> Message-ID: <815037238.358185372.1501802041938.JavaMail.zimbra@shaw.ca> Hi Guys: I have come late to this conversation but I will add some of my thoughts to using a personal site VPN. There are a number of medium and high-end routers that have OpenVPN pre-installed on them (https://www.bestvpn.com/best-vpn-routers/). A friend has a medium priced router, on his site and we have been using the router to allow us to remotely connect and service a few of our websites. He has a number of servers running on a hyper-v server and by re-routing access via the port number we can work adjacent with complete isolation. I have not setup the server end but have the OpenVPN client installed on a couple of my stations. OTOH, I have a SSH/server/client setup on all my stations and servers which allows me to securely access any station or server, on my network, from anywhere in the world. Of course SSH protocol is only command line. I understand that SSH is now on all windows servers(?). When a graphic display is needed I have been using the X2Go application (http://wiki.x2go.org/doku.php)...it runs using SSH. An associate has been using the product on a client's site (30 to 50 stations) and it has been reliable. Note: depending on the motherboard and/or graphic card, the app can take advantage of hardware acceleration. Jim PS Shamil; Is the Russian government's limitations on the use of some VPN services going to affect your company's business? ----- Original Message ----- From: "Gustav Brock" To: "Discussion of Hardware and Software issues" Sent: Thursday, August 3, 2017 11:46:38 AM Subject: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Shamil If all you need a VPN connection with no fancy features, it comes natively with the server. I located this short guide: https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ /gustav ________________________________________ Fra: dba-Tech p? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 18:40:31 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Gustav -- I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? Thank you. -- Shamil >Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock : > >Hi Shamil > >Great. >I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. > >/gustav > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 15:47 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav et al -- > >I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. > >So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. > >I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. > >-- Shamil > >>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >> >>Hi Gustav -- >> >>OK, I will give it a try and I will post here in the coming days on my testing results. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>> >>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>> >>>/gustav >>> <<< skipped >>> _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From accessd at shaw.ca Thu Aug 3 18:38:57 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Thu, 3 Aug 2017 17:38:57 -0600 (MDT) Subject: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions In-Reply-To: References: <1501778431.139120713@f455.i.mail.ru> Message-ID: <176133744.358232672.1501803537876.JavaMail.zimbra@shaw.ca> Hi All: Just did a serious google search and evaluation on SoftEther vs OpenVPN vs Miscrosoft VPN services. SoftEther is clearly the winner. Its performance is much faster than its competitors, it supports a wider range of standard protocols, is easier to setup and supports all major Operating Systems. (I understand SoftEther comes be pre-configured on DigitalOcean server. $5.00 on a basic one month service and two addition months for free ($10.00) with a "dounplugged" code...what a deal!) If I get my work done tonight, may spend a few hours setting the SoftEther VPN server on one of my servers....Linux or Windows? ;-) Jim ----- Original Message ----- From: "Gustav Brock" To: "Discussion of Hardware and Software issues" Sent: Thursday, August 3, 2017 11:46:38 AM Subject: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Shamil If all you need a VPN connection with no fancy features, it comes natively with the server. I located this short guide: https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ /gustav ________________________________________ Fra: dba-Tech p? vegne af Salakhetdinov Shamil via dba-Tech Sendt: 3. august 2017 18:40:31 Til: Discussion of Hardware and Software issues Cc: Salakhetdinov Shamil Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions Hi Gustav -- I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? Thank you. -- Shamil >Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock : > >Hi Shamil > >Great. >I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. > >/gustav > >-----Oprindelig meddelelse----- >Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >Sendt: 3. august 2017 15:47 >Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav et al -- > >I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. > >So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. > >I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. > >-- Shamil > >>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >> >>Hi Gustav -- >> >>OK, I will give it a try and I will post here in the coming days on my testing results. >> >>-- Shamil >> >> >>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>> >>>Hi Shamil >>> >>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>> >>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>> >>>/gustav >>> <<< skipped >>> _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From mcp2004 at mail.ru Fri Aug 4 04:12:43 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Fri, 04 Aug 2017 12:12:43 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: References: <1501778431.139120713@f455.i.mail.ru> Message-ID: <1501837963.222137050@f423.i.mail.ru> Thank you, Gustav, It looks useful. I will give it a try this evening or tomorrow. -- Shamil >Thursday, August 3, 2017 9:47 PM +03:00 from Gustav Brock : > >Hi Shamil > >If all you need a VPN connection with no fancy features, it comes natively with the server. >I located this short guide: > >https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ > >/gustav >________________________________________ >Fra: dba-Tech < dba-tech-bounces at databaseadvisors.com > p? vegne af Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com > >Sendt: 3. august 2017 18:40:31 >Til: Discussion of Hardware and Software issues >Cc: Salakhetdinov Shamil >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav -- > >I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. > >Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. > >Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? > >Thank you. > >-- Shamil > > >>Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>Great. >>I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. >> >>/gustav >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 15:47 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi Gustav et al -- >> >>I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >>I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >>Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >>I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >>Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. >> >>So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. >> >>I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. >> >>-- Shamil >> >>>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >>> >>>Hi Gustav -- >>> >>>OK, I will give it a try and I will post here in the coming days on my testing results. >>> >>>-- Shamil >>> >>> >>>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>>> >>>>Hi Shamil >>>> >>>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>>> >>>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>>> >>>>/gustav >>>> ><<< skipped >>> > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From mcp2004 at mail.ru Fri Aug 4 04:26:48 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Fri, 04 Aug 2017 12:26:48 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: <815037238.358185372.1501802041938.JavaMail.zimbra@shaw.ca> References: <815037238.358185372.1501802041938.JavaMail.zimbra@shaw.ca> Message-ID: <1501838808.580732036@f391.i.mail.ru> Hi Jim, Thank you for your "jumping-in" into this thread. No, this is not Russian governement's limitations, which forced me to tune VPN access to my customers. Actually, this political hype you can see here and there on mass-media - one'd better ignore it to stay sane. Well, LinkedIn is blocked here because they violate the local law that personal data should be stored on local servers. Somehow FB, Twitter, Telegram, Youtube, Google in general (besides LinkedIn), Microsoft sites, MZ Azure, etc.etc are not blocked. The case of LinkedIn could be more the case of "business wars" than anything else - local large HRs agencies vs. Linked-In? -- Shamil >Friday, August 4, 2017 2:14 AM +03:00 from Jim Lawrence : > >Hi Guys: > >I have come late to this conversation but I will add some of my thoughts to using a personal site VPN. There are a number of medium and high-end routers that have OpenVPN pre-installed on them (https://www.bestvpn.com/best-vpn-routers/). A friend has a medium priced router, on his site and we have been using the router to allow us to remotely connect and service a few of our websites. He has a number of servers running on a hyper-v server and by re-routing access via the port number we can work adjacent with complete isolation. > >I have not setup the server end but have the OpenVPN client installed on a couple of my stations. > >OTOH, I have a SSH/server/client setup on all my stations and servers which allows me to securely access any station or server, on my network, from anywhere in the world. Of course SSH protocol is only command line. I understand that SSH is now on all windows servers(?). > >When a graphic display is needed I have been using the X2Go application (http://wiki.x2go.org/doku.php)...it runs using SSH. An associate has been using the product on a client's site (30 to 50 stations) and it has been reliable. Note: depending on the motherboard and/or graphic card, the app can take advantage of hardware acceleration. > >Jim > >PS Shamil; Is the Russian government's limitations on the use of some VPN services going to affect your company's business? > >----- Original Message ----- >From: "Gustav Brock" < gustav at cactus.dk > >To: "Discussion of Hardware and Software issues" < dba-tech at databaseadvisors.com > >Sent: Thursday, August 3, 2017 11:46:38 AM >Subject: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Shamil > >If all you need a VPN connection with no fancy features, it comes natively with the server. >I located this short guide: > >https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ > >/gustav >________________________________________ >Fra: dba-Tech < dba-tech-bounces at databaseadvisors.com > p? vegne af Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com > >Sendt: 3. august 2017 18:40:31 >Til: Discussion of Hardware and Software issues >Cc: Salakhetdinov Shamil >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav -- > >I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. > >Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. > >Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? > >Thank you. > >-- Shamil > > >>Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>Great. >>I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. >> >>/gustav >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 15:47 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi Gustav et al -- >> >>I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >>I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >>Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >>I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >>Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. >> >>So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. >> >>I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. >> >>-- Shamil >> >>>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >>> >>>Hi Gustav -- >>> >>>OK, I will give it a try and I will post here in the coming days on my testing results. >>> >>>-- Shamil >>> >>> >>>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>>> >>>>Hi Shamil >>>> >>>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>>> >>>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>>> >>>>/gustav >>>> ><<< skipped >>> > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From mcp2004 at mail.ru Fri Aug 4 04:30:09 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Fri, 04 Aug 2017 12:30:09 +0300 Subject: [dba-Tech] =?utf-8?q?Extranet_VPN_for_testing_customers=27_web_s?= =?utf-8?q?ites/web_API_solutions?= In-Reply-To: <176133744.358232672.1501803537876.JavaMail.zimbra@shaw.ca> References: <176133744.358232672.1501803537876.JavaMail.zimbra@shaw.ca> Message-ID: <1501839009.151122315@f118.i.mail.ru> Hi Jim -- <<>> Good luck! What I have found strange is that pictures in SoftEther help docs?on their VPN Server Admin program ?didn't correspond significantly with wthat I have got installed. Not sure if I did something worng or their software Linux version is very differnt from MS Windows?... -- Shamil >Friday, August 4, 2017 2:39 AM +03:00 from Jim Lawrence : > >Hi All: > >Just did a serious google search and evaluation on SoftEther vs OpenVPN vs Miscrosoft VPN services. > >SoftEther is clearly the winner. Its performance is much faster than its competitors, it supports a wider range of standard protocols, is easier to setup and supports all major Operating Systems. (I understand SoftEther comes be pre-configured on DigitalOcean server. $5.00 on a basic one month service and two addition months for free ($10.00) with a "dounplugged" code...what a deal!) > >If I get my work done tonight, may spend a few hours setting the SoftEther VPN server on one of my servers....Linux or Windows? ;-) > >Jim > >----- Original Message ----- >From: "Gustav Brock" < gustav at cactus.dk > >To: "Discussion of Hardware and Software issues" < dba-tech at databaseadvisors.com > >Sent: Thursday, August 3, 2017 11:46:38 AM >Subject: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Shamil > >If all you need a VPN connection with no fancy features, it comes natively with the server. >I located this short guide: > >https://www.thomasmaurer.ch/2012/07/how-to-install-vpn-on-windows-server-2012/ > >/gustav >________________________________________ >Fra: dba-Tech < dba-tech-bounces at databaseadvisors.com > p? vegne af Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com > >Sendt: 3. august 2017 18:40:31 >Til: Discussion of Hardware and Software issues >Cc: Salakhetdinov Shamil >Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions > >Hi Gustav -- > >I have just tried to setup SoftEther on my cloud VM and on my desktop. Setup worked well but then I have got stuck with it. I should remove it I suppose. > >Yes, TeamViewer seems to be overpriced but it just worked like a charm. And I have used free version. > >Is there anything comparable to TeamViewer, less expensive - with the feature to just setup a VPN to my cloud hosted MS Windows Server 2012 from my desktop and from my customers desktops? > >Thank you. > >-- Shamil > > >>Thursday, August 3, 2017 6:13 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >> >>Hi Shamil >> >>Great. >>I've always found TeamViewer to be overpriced, so let's hope that SoftEther will be successful. >> >>/gustav >> >>-----Oprindelig meddelelse----- >>Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Salakhetdinov Shamil via dba-Tech >>Sendt: 3. august 2017 15:47 >>Til: Discussion of Hardware and Software issues < dba-tech at databaseadvisors.com > >>Cc: Salakhetdinov Shamil < mcp2004 at mail.ru > >>Emne: Re: [dba-Tech] Extranet VPN for testing customers' web sites/web API solutions >> >>Hi Gustav et al -- >> >>I have setup TeamViewer (v12.0.81460) on cloud MS Windows Server 2012 VM to allow unattended access (maybe basic access would have been enough I haven't checked). >>I have also setup TeamViewer (v12.0.81460) on my destop Win10 system. >>Then I have run TeamViewer and setup VPN using it to my MS Windows Server 2012. >>I have opened port 80 on cloud VM - and I have got access to the server web app running on this port - default IIS web app. >>Then I have setup my custom web service on port 4321, opened this port for TCP on server and I have got access to the custom web service via VPN and port 4321. >> >>So VPN works well - not sure how TeamViewer sets up VPN access internal - does it use netsh or not. >> >>I the coming days I will also try to use SoftEther VPN Open Source ( https://www.softether.org/ ) to setup VPN instead on TeamViewer. >> >>-- Shamil >> >>>Thursday, August 3, 2017 2:46 PM +03:00 from Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com >: >>> >>>Hi Gustav -- >>> >>>OK, I will give it a try and I will post here in the coming days on my testing results. >>> >>>-- Shamil >>> >>> >>>>Thursday, August 3, 2017 1:34 PM +03:00 from Gustav Brock < gustav at cactus.dk >: >>>> >>>>Hi Shamil >>>> >>>>I can't tell about the VPN infrastructure as that must be a courtesy of your hosting provider, but as you have a VM and not just a web server, I guess no ports are blocked. >>>> >>>>The only way to find out if the netsh command will work, is to check it out. Even though port 80 is default for the HTTP protocol, I would explicitly specify it as you suggest. >>>> >>>>/gustav >>>> ><<< skipped >>> > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com > >_______________________________________________ >dba-Tech mailing list >dba-Tech at databaseadvisors.com >http://databaseadvisors.com/mailman/listinfo/dba-tech >Website: http://www.databaseadvisors.com From ssharkins at gmail.com Mon Aug 7 10:26:17 2017 From: ssharkins at gmail.com (Susan Harkins) Date: Mon, 7 Aug 2017 11:26:17 -0400 Subject: [dba-Tech] terminology C# Message-ID: <008901d30f91$83df2430$8b9d6c90$@gmail.com> I'm editing a book on C# (copy, not technical, I'm not familiar with C#) and the author is using the word "tell" when discussing concurrent messaging: You can tell an agent a message... ... so you can't compose tell operations... Now, if tell is correct within the content of the terminology this language and its developers use, it's acceptable. Otherwise, I want to change tell to send -- does anyone know if "tell" is how these guys express this? I was okay with changing until I read the second example and now I'm not so sure. I have no contact with the author and want to avoid forcing someone else to contact him on this if possible because I haven't the specific knowledge to know better. It's made it all the way to me, so I'm assuming it's technical in nature or someone would've noticed it by now. Susan H. From gustav at cactus.dk Mon Aug 7 10:37:42 2017 From: gustav at cactus.dk (Gustav Brock) Date: Mon, 7 Aug 2017 15:37:42 +0000 Subject: [dba-Tech] terminology C# Message-ID: Hi Susan There is an Ask and a Tell "pattern": https://stackoverflow.com/questions/41569279/how-to-send-actor-a-tell-message-when-a-url-is-accessed so you can have "a tell message", but this you will send ... Seems to call for careful editing. That's why they called on you! /gustav -----Oprindelig meddelelse----- Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Susan Harkins Sendt: 7. august 2017 17:26 Til: 'Discussion of Hardware and Software issues' Emne: [dba-Tech] terminology C# I'm editing a book on C# (copy, not technical, I'm not familiar with C#) and the author is using the word "tell" when discussing concurrent messaging: You can tell an agent a message... ... so you can't compose tell operations... Now, if tell is correct within the content of the terminology this language and its developers use, it's acceptable. Otherwise, I want to change tell to send -- does anyone know if "tell" is how these guys express this? I was okay with changing until I read the second example and now I'm not so sure. I have no contact with the author and want to avoid forcing someone else to contact him on this if possible because I haven't the specific knowledge to know better. It's made it all the way to me, so I'm assuming it's technical in nature or someone would've noticed it by now. Susan H. From ssharkins at gmail.com Mon Aug 7 10:40:13 2017 From: ssharkins at gmail.com (Susan Harkins) Date: Mon, 7 Aug 2017 11:40:13 -0400 Subject: [dba-Tech] terminology C# In-Reply-To: References: Message-ID: <000201d30f93$769064e0$63b12ea0$@gmail.com> Thank you. ? You are too kind!!! Well, I'm going to suggest they revisit it -- the author does mention the Tell protocol and this might be acceptable among developers but I think when talking generically, we should consider send -- but in the end, the author wins. ? Thanks Gustav! Susan H. Hi Susan There is an Ask and a Tell "pattern": https://stackoverflow.com/questions/41569279/how-to-send-actor-a-tell-message-when-a-url-is-accessed so you can have "a tell message", but this you will send ... Seems to call for careful editing. That's why they called on you! /gustav -----Oprindelig meddelelse----- Fra: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] P? vegne af Susan Harkins Sendt: 7. august 2017 17:26 Til: 'Discussion of Hardware and Software issues' Emne: [dba-Tech] terminology C# I'm editing a book on C# (copy, not technical, I'm not familiar with C#) and the author is using the word "tell" when discussing concurrent messaging: You can tell an agent a message... ... so you can't compose tell operations... Now, if tell is correct within the content of the terminology this language and its developers use, it's acceptable. Otherwise, I want to change tell to send -- does anyone know if "tell" is how these guys express this? I was okay with changing until I read the second example and now I'm not so sure. I have no contact with the author and want to avoid forcing someone else to contact him on this if possible because I haven't the specific knowledge to know better. It's made it all the way to me, so I'm assuming it's technical in nature or someone would've noticed it by now. Susan H. _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From fuller.artful at gmail.com Fri Aug 11 09:21:42 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Fri, 11 Aug 2017 10:21:42 -0400 Subject: [dba-Tech] Amazon files patent for mobile drone repair/launch stations Message-ID: This new system is designed to work from trains, trailers and shipping containers. See this . -- Arthur From mcp2004 at mail.ru Sun Aug 13 13:04:06 2017 From: mcp2004 at mail.ru (=?UTF-8?B?U2FsYWtoZXRkaW5vdiBTaGFtaWw=?=) Date: Sun, 13 Aug 2017 21:04:06 +0300 Subject: [dba-Tech] =?utf-8?q?=28a_bit_of=29_OT=3A_Registered_trademarks_w?= =?utf-8?q?orldwide_search?= Message-ID: <1502647446.329639901@f461.i.mail.ru> Hi All -- Sorry for OT - I'm looking for a website where I can check worldwide registered trademarks for my friends who are currently organizing a business to not have their trademark collision with existing one(s). I have found this web site? https://trademarks.justia.com/search?q=Microsoft ? is it a good source for trademarks probable collisions investigation? Thank you. -- Shamil From eptept at gmail.com Sun Aug 13 14:55:37 2017 From: eptept at gmail.com (Ed Tesiny) Date: Sun, 13 Aug 2017 15:55:37 -0400 Subject: [dba-Tech] (a bit of) OT: Registered trademarks worldwide search In-Reply-To: <1502647446.329639901@f461.i.mail.ru> References: <1502647446.329639901@f461.i.mail.ru> Message-ID: Perhaps one of these might help http://www.wipo.int/branddb/en/ https://trademark-search.marcaria.com/en On Sun, Aug 13, 2017 at 2:04 PM, Salakhetdinov Shamil via dba-Tech < dba-tech at databaseadvisors.com> wrote: > Hi All -- > > Sorry for OT - I'm looking for a website where I can check worldwide > registered trademarks for my friends who are currently organizing a > business to not have their trademark collision with existing one(s). > > I have found this web site > > https://trademarks.justia.com/search?q=Microsoft > > is it a good source for trademarks probable collisions investigation? > > Thank you. > > -- Shamil > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > From fuller.artful at gmail.com Mon Aug 14 16:20:28 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Mon, 14 Aug 2017 17:20:28 -0400 Subject: [dba-Tech] Question about SAP Crystal Reports Message-ID: I'm doing a bit of work on a project that uses Crystal Reports. I've never used CR, but report writers are pretty much like snowflakes -- all a bit different but also pretty much the same. The data source is a SQL database. In an existing report, I can see the list of available tables, with some added to the report of interest. What I cannot find is the connection information. I wandered down the Database menu and couldn't find it there. I looked on the Report menu, thinking it might be under Report Options or some such, but saw nothing relevant there either. At this point I don't even know the name of the underlying database. If you know Crystal Reports, can you tell me where to see the connection information? Arthur -- Arthur From bheid at sc.rr.com Mon Aug 14 16:38:27 2017 From: bheid at sc.rr.com (Bobby Heid) Date: Mon, 14 Aug 2017 17:38:27 -0400 Subject: [dba-Tech] Question about SAP Crystal Reports In-Reply-To: References: Message-ID: <002501d31545$aa2f2720$fe8d7560$@sc.rr.com> Hi Arthur, Just doing this from memory from version 8.x... Under database, there was something like Set Location. It may have been called something else, but it was maybe the first or second thing under Database. Thanks, Bobby -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Arthur Fuller Sent: Monday, August 14, 2017 5:20 PM To: Discussion of Hardware and Software issues Subject: [dba-Tech] Question about SAP Crystal Reports I'm doing a bit of work on a project that uses Crystal Reports. I've never used CR, but report writers are pretty much like snowflakes -- all a bit different but also pretty much the same. The data source is a SQL database. In an existing report, I can see the list of available tables, with some added to the report of interest. What I cannot find is the connection information. I wandered down the Database menu and couldn't find it there. I looked on the Report menu, thinking it might be under Report Options or some such, but saw nothing relevant there either. At this point I don't even know the name of the underlying database. If you know Crystal Reports, can you tell me where to see the connection information? Arthur -- Arthur _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From fuller.artful at gmail.com Mon Aug 14 19:26:02 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Mon, 14 Aug 2017 20:26:02 -0400 Subject: [dba-Tech] Question about SAP Crystal Reports In-Reply-To: <002501d31545$aa2f2720$fe8d7560$@sc.rr.com> References: <002501d31545$aa2f2720$fe8d7560$@sc.rr.com> Message-ID: Thanks, Bobby, I'll give it a look in the morning. As I recall, the first item on the Database menu was Database Wizard, where I actually expected to find it, but all I could see there was a list of the tables in the database. I'll also try searching the Help for Set Location; that might work. Since you have experience with CR, I want to run an opinion past you and obtain some feedback. The report of immediate concern seems to perform the required JOINs and GROUP BYs, and also calculated columns, within the report definition. This goes against pretty much everything I've learned about databases; my aphorism is, Anything the database *can *do, the database *should *do. Had I built this report from scratch, I would have first defined a View that joins the tables at the database level, and then based the report on said View. What say you? Arthur On Mon, Aug 14, 2017 at 5:38 PM, Bobby Heid wrote: > Hi Arthur, > > Just doing this from memory from version 8.x... > > Under database, there was something like Set Location. It may have been > called something else, but it was maybe the first or second thing under > Database. > > Thanks, > Bobby From bheid at sc.rr.com Mon Aug 14 20:34:20 2017 From: bheid at sc.rr.com (Bobby Heid) Date: Mon, 14 Aug 2017 21:34:20 -0400 Subject: [dba-Tech] Question about SAP Crystal Reports In-Reply-To: References: <002501d31545$aa2f2720$fe8d7560$@sc.rr.com> Message-ID: <006e01d31566$9e3f9190$dabeb4b0$@sc.rr.com> I agree with you. I would have written a stored procedure or view as the source. Much easier to update the source than the report. Possibly the original author was not allowed to create objects on the source database. Other than grouping or subtotals, I like the server to do the heavy lifting. Thanks, Bobby -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Arthur Fuller Sent: Monday, August 14, 2017 8:26 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] Question about SAP Crystal Reports Thanks, Bobby, I'll give it a look in the morning. As I recall, the first item on the Database menu was Database Wizard, where I actually expected to find it, but all I could see there was a list of the tables in the database. I'll also try searching the Help for Set Location; that might work. Since you have experience with CR, I want to run an opinion past you and obtain some feedback. The report of immediate concern seems to perform the required JOINs and GROUP BYs, and also calculated columns, within the report definition. This goes against pretty much everything I've learned about databases; my aphorism is, Anything the database *can *do, the database *should *do. Had I built this report from scratch, I would have first defined a View that joins the tables at the database level, and then based the report on said View. What say you? Arthur On Mon, Aug 14, 2017 at 5:38 PM, Bobby Heid wrote: > Hi Arthur, > > Just doing this from memory from version 8.x... > > Under database, there was something like Set Location. It may have > been called something else, but it was maybe the first or second thing > under Database. > > Thanks, > Bobby _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From stuart at lexacorp.com.pg Tue Aug 15 14:04:58 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Wed, 16 Aug 2017 05:04:58 +1000 Subject: [dba-Tech] Question about SAP Crystal Reports In-Reply-To: <006e01d31566$9e3f9190$dabeb4b0$@sc.rr.com> References: , , <006e01d31566$9e3f9190$dabeb4b0$@sc.rr.com> Message-ID: <599345DA.8420.362CF1E9@stuart.lexacorp.com.pg> Agreed - use the BE to do as much of the work as possible. If you want the server to do the sorting too , you need to use a stored procedure as-well-as or in-lieu-of a view. Unless you resort to a real nasty hack - you can't reliably create a sorted view. -- Stuart On 14 Aug 2017 at 21:34, Bobby Heid wrote: > I agree with you. I would have written a stored procedure or view as > the source. Much easier to update the source than the report. > Possibly the original author was not allowed to create objects on the > source database. Other than grouping or subtotals, I like the server > to do the heavy lifting. > > Thanks, > Bobby > > > -----Original Message----- > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On > Behalf Of Arthur Fuller Sent: Monday, August 14, 2017 8:26 PM To: > Discussion of Hardware and Software issues > Subject: Re: [dba-Tech] Question about > SAP Crystal Reports > > Thanks, Bobby, > > I'll give it a look in the morning. As I recall, the first item on the > Database menu was Database Wizard, where I actually expected to find > it, but all I could see there was a list of the tables in the > database. I'll also try searching the Help for Set Location; that > might work. > > Since you have experience with CR, I want to run an opinion past you > and obtain some feedback. The report of immediate concern seems to > perform the required JOINs and GROUP BYs, and also calculated columns, > within the report definition. This goes against pretty much everything > I've learned about databases; my aphorism is, Anything the database > *can *do, the database *should *do. Had I built this report from > scratch, I would have first defined a View that joins the tables at > the database level, and then based the report on said View. > > What say you? > > Arthur > > On Mon, Aug 14, 2017 at 5:38 PM, Bobby Heid wrote: > > > Hi Arthur, > > > > Just doing this from memory from version 8.x... > > > > Under database, there was something like Set Location. It may have > > been called something else, but it was maybe the first or second > > thing under Database. > > > > Thanks, > > Bobby > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > From fuller.artful at gmail.com Tue Aug 15 16:05:08 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Tue, 15 Aug 2017 17:05:08 -0400 Subject: [dba-Tech] Question about SAP Crystal Reports In-Reply-To: <599345DA.8420.362CF1E9@stuart.lexacorp.com.pg> References:

<006e01d31566$9e3f9190$dabeb4b0$@sc.rr.com> <599345DA.8420.362CF1E9@stuart.lexacorp.com.pg> Message-ID: Stuart, I'm aware of that, Stuart. Stored procedures are my bread and butter. Given that the database is part of a commercial package, my real issue is opening the database without using the package's front end. I still have some experimenting to do. I'll know better tomorrow. Arthur From jbartow at winhaven.net Wed Aug 16 22:37:14 2017 From: jbartow at winhaven.net (John Bartow) Date: Thu, 17 Aug 2017 03:37:14 +0000 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study Message-ID: Your trusted home office/small business router is quite likely to be a lemon, according to findings from a new http://resources.sei.cmu.edu/asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon researchers. The study, released this month, found security flaws in all of its test models, all from leading brands. The flaws included cross-site request forgery vulnerabilities, default login credentials, vulnerability to DNS spoofing and outdated versions of the embedded Linux utility, BusyBox. The researchers analyzed 13 routers from such manufacturers as Apple, Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. The researchers said they hoped their study would provide clear metrics about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, which refers to the term for how quality products disappear from a market, driving down prices and value. When vulnerabilities were found in products, Carnegie Mellon contacted the manufacturers, giving them 45 days to work on the issues before publicly releasing the details. In general, the vendors were slow to respond, with some not responding at all. For example, the study found several issues with Securifi's Almond router, notably that it was vulnerable to clickjacking, cross-site request forgery and, in one older model, didn't deliver firmware updates over HTTPS. Securifi said it would release an update within 45 days. Although the company provided an update to the researchers, it failed to announce the update on its website. The vendor did not list the update on its support website or on the router's update interface. The sheer volume of vulnerabilities in routers demands a new approach, one that could more tightly monitor router manufacturers and "help form a clearer picture of how different vendors and products measure up," claimed the study, which was funded by the U.S. Department of Defense. One solution to router problems is a public database of vulnerabilities that could help clean up the industry, noted the study. Bug reports could be left for open comments, allowing for further validation and providing a clearer picture on how vendors deal with issues. "Following widely accepted disclosure practices, a vendor would be given 45 days to respond to vulnerability reports," the study observed. "After the 45 days, the report would be added to a public database." Unfortunately, the study did not recommend any router. So, if you're in the market for a new router or simply want to ditch your present lemon, there's not much left to say, other than to read https://www.pcmag.com/article2/0,2817,2398080,00.asp for possible inspiration. https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_campaign=Newsletter_08162017&utm_content=Brand_Routers From garykjos at gmail.com Thu Aug 17 10:16:36 2017 From: garykjos at gmail.com (Gary Kjos) Date: Thu, 17 Aug 2017 10:16:36 -0500 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study In-Reply-To: References: Message-ID: I've got a weird router related thing going on at home. We use the Comcast provided combination Modem/Router. It's a Cisco Model DPC3941T DOCSIS 3.0 24x4 Wireless Residential Voice Gateway - wireless router - cable mdm - 802.11b/g/n/ac - desktop But I am pretty sure it's not a router problem. Everything works perfectly most of the time. BUT when the outside temp is over 78 degrees we have no internet connection. The WIFI Still works and I can get from one machine to another inside the house. But no Internet available UNTIL the outside temp goes back down below 78 or so. So this has meant that on warmer days we have no internet from about 10:30 am until about 7:30 pm. TV still works perfectly during that time and it comes in on the same cable. PHONE does NOT work during that time. Comcast wants to come and look at the wiring and I guess I probably need to have them do that. When it's working I get upwards of 180 MB download and 12 MB uploads so it's very fast. On days when it's cooler - like today it's only going to be a high of 69, it will work perfectly all day. I have gotten a new router and it hasn't changed anything. I think the problem is outside of our house someplace. Maybe a network switch in a cabinet someplace in my neighborhood that sits in the sun and is overheating. I just don't like having the Comcast guys poking around in my house so I've resisted having them out to do that when I know it will be working again as soon as it cools off outside. And it should be noted that we run our A/C most of the time when it's warm out. but it won't normally kick on until about 4 or 5 pm in the afternoon when the sun starts to bake us from the west. The wiring enters the house on the northeast corner of the house. It's in a shady location protected by shrubbery. The local cable box that we plug into is also shaded by shrubbery. It's just goofy. Oh and while the internet and phone is not working we still get the caller ID notifications on our televisions that tell us who is calling but the phone doesn't ring. On Wed, Aug 16, 2017 at 10:37 PM, John Bartow wrote: > Your trusted home office/small business router is quite likely to be a lemon, according to findings from a new http://resources.sei.cmu.edu/asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon researchers. The study, released this month, found security flaws in all of its test models, all from leading brands. > The flaws included cross-site request forgery vulnerabilities, default login credentials, vulnerability to DNS spoofing and outdated versions of the embedded Linux utility, BusyBox. > The researchers analyzed 13 routers from such manufacturers as Apple, Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. > The researchers said they hoped their study would provide clear metrics about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, which refers to the term for how quality products disappear from a market, driving down prices and value. > When vulnerabilities were found in products, Carnegie Mellon contacted the manufacturers, giving them 45 days to work on the issues before publicly releasing the details. In general, the vendors were slow to respond, with some not responding at all. > For example, the study found several issues with Securifi's Almond router, notably that it was vulnerable to clickjacking, cross-site request forgery and, in one older model, didn't deliver firmware updates over HTTPS. > Securifi said it would release an update within 45 days. Although the company provided an update to the researchers, it failed to announce the update on its website. The vendor did not list the update on its support website or on the router's update interface. > The sheer volume of vulnerabilities in routers demands a new approach, one that could more tightly monitor router manufacturers and "help form a clearer picture of how different vendors and products measure up," claimed the study, which was funded by the U.S. Department of Defense. > One solution to router problems is a public database of vulnerabilities that could help clean up the industry, noted the study. Bug reports could be left for open comments, allowing for further validation and providing a clearer picture on how vendors deal with issues. > "Following widely accepted disclosure practices, a vendor would be given 45 days to respond to vulnerability reports," the study observed. "After the 45 days, the report would be added to a public database." > Unfortunately, the study did not recommend any router. So, if you're in the market for a new router or simply want to ditch your present lemon, there's not much left to say, other than to read https://www.pcmag.com/article2/0,2817,2398080,00.asp for possible inspiration. > > https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_campaign=Newsletter_08162017&utm_content=Brand_Routers > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Gary Kjos garykjos at gmail.com From df.waters at outlook.com Thu Aug 17 10:24:54 2017 From: df.waters at outlook.com (Dan Waters) Date: Thu, 17 Aug 2017 15:24:54 +0000 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study In-Reply-To: References: Message-ID: Here's a test if you want to do it. On a colder day when the outside temp won't exceed 78F, turn on your home furnace until the temp gets to about 80F and keep it there for a couple of hours. Does that cause an issue? Now take the modem and set it on top of one of your air ducts to make sure that it gets warmer than 80F then plug it back in to see if things work. Most electronics are designed to work at 120F or maybe higher so the modem should be working fine. If things work under those conditions then a problem outside is much more likely. >From what you're saying, it's just the outside temp that causes the problem. Good Luck! Dan -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gary Kjos Sent: August 17, 2017 10:17 To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study I've got a weird router related thing going on at home. We use the Comcast provided combination Modem/Router. It's a Cisco Model DPC3941T DOCSIS 3.0 24x4 Wireless Residential Voice Gateway - wireless router - cable mdm - 802.11b/g/n/ac - desktop But I am pretty sure it's not a router problem. Everything works perfectly most of the time. BUT when the outside temp is over 78 degrees we have no internet connection. The WIFI Still works and I can get from one machine to another inside the house. But no Internet available UNTIL the outside temp goes back down below 78 or so. So this has meant that on warmer days we have no internet from about 10:30 am until about 7:30 pm. TV still works perfectly during that time and it comes in on the same cable. PHONE does NOT work during that time. Comcast wants to come and look at the wiring and I guess I probably need to have them do that. When it's working I get upwards of 180 MB download and 12 MB uploads so it's very fast. On days when it's cooler - like today it's only going to be a high of 69, it will work perfectly all day. I have gotten a new router and it hasn't changed anything. I think the problem is outside of our house someplace. Maybe a network switch in a cabinet someplace in my neighborhood that sits in the sun and is overheating. I just don't like having the Comcast guys poking around in my house so I've resisted having them out to do that when I know it will be working again as soon as it cools off outside. And it should be noted that we run our A/C most of the time when it's warm out. but it won't normally kick on until about 4 or 5 pm in the afternoon when the sun starts to bake us from the west. The wiring enters the house on the northeast corner of the house. It's in a shady location protected by shrubbery. The local cable box that we plug into is also shaded by shrubbery. It's just goofy. Oh and while the internet and phone is not working we still get the caller ID notifications on our televisions that tell us who is calling but the phone doesn't ring. On Wed, Aug 16, 2017 at 10:37 PM, John Bartow wrote: > Your trusted home office/small business router is quite likely to be a lemon, according to findings from a new http://resources.sei.cmu.edu/asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon researchers. The study, released this month, found security flaws in all of its test models, all from leading brands. > The flaws included cross-site request forgery vulnerabilities, default login credentials, vulnerability to DNS spoofing and outdated versions of the embedded Linux utility, BusyBox. > The researchers analyzed 13 routers from such manufacturers as Apple, Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. > The researchers said they hoped their study would provide clear metrics about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, which refers to the term for how quality products disappear from a market, driving down prices and value. > When vulnerabilities were found in products, Carnegie Mellon contacted the manufacturers, giving them 45 days to work on the issues before publicly releasing the details. In general, the vendors were slow to respond, with some not responding at all. > For example, the study found several issues with Securifi's Almond router, notably that it was vulnerable to clickjacking, cross-site request forgery and, in one older model, didn't deliver firmware updates over HTTPS. > Securifi said it would release an update within 45 days. Although the company provided an update to the researchers, it failed to announce the update on its website. The vendor did not list the update on its support website or on the router's update interface. > The sheer volume of vulnerabilities in routers demands a new approach, one that could more tightly monitor router manufacturers and "help form a clearer picture of how different vendors and products measure up," claimed the study, which was funded by the U.S. Department of Defense. > One solution to router problems is a public database of vulnerabilities that could help clean up the industry, noted the study. Bug reports could be left for open comments, allowing for further validation and providing a clearer picture on how vendors deal with issues. > "Following widely accepted disclosure practices, a vendor would be given 45 days to respond to vulnerability reports," the study observed. "After the 45 days, the report would be added to a public database." > Unfortunately, the study did not recommend any router. So, if you're in the market for a new router or simply want to ditch your present lemon, there's not much left to say, other than to read https://www.pcmag.com/article2/0,2817,2398080,00.asp for possible inspiration. > > https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/ > ?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_camp > aign=Newsletter_08162017&utm_content=Brand_Routers > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Gary Kjos garykjos at gmail.com _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From garykjos at gmail.com Thu Aug 17 10:41:38 2017 From: garykjos at gmail.com (Gary Kjos) Date: Thu, 17 Aug 2017 10:41:38 -0500 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study In-Reply-To: References: Message-ID: Thanks for your thoughts Dan. I'm pretty sure that the room the router is in it NEVER gets above 75. It's in the basement. We are pretty well insulated. We leave the A/C on almost all of the time with a programmable thermostat cycling it on to cool down in the late afternoon through the night and it gets down to about 70 in that room overnight and stays there or close to it. There is a digital thermometer 5 feet away from the router with indoor and outdoor temps. I'll try and look at that the next time I am there watching it for when it starts to fail. We do get warmer on our second floor and the main floor as heat rises and it's more exposed to the afternoon sun. This particular room is shaded by a deck to the west so it doesn't get much if any solar gain. I'm not sure I can get that room to 80 without getting the second floor to 90. On Thu, Aug 17, 2017 at 10:24 AM, Dan Waters wrote: > Here's a test if you want to do it. > > On a colder day when the outside temp won't exceed 78F, turn on your home furnace until the temp gets to about 80F and keep it there for a couple of hours. Does that cause an issue? Now take the modem and set it on top of one of your air ducts to make sure that it gets warmer than 80F then plug it back in to see if things work. Most electronics are designed to work at 120F or maybe higher so the modem should be working fine. If things work under those conditions then a problem outside is much more likely. > > From what you're saying, it's just the outside temp that causes the problem. > > Good Luck! > Dan > > -----Original Message----- > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gary Kjos > Sent: August 17, 2017 10:17 > To: Discussion of Hardware and Software issues > Subject: Re: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study > > I've got a weird router related thing going on at home. We use the Comcast provided combination Modem/Router. It's a Cisco Model DPC3941T DOCSIS 3.0 24x4 Wireless Residential Voice Gateway - wireless router - cable mdm - 802.11b/g/n/ac - desktop But I am pretty sure it's not a router problem. > > Everything works perfectly most of the time. BUT when the outside temp is over 78 degrees we have no internet connection. The WIFI Still works and I can get from one machine to another inside the house. But no Internet available UNTIL the outside temp goes back down below 78 or so. So this has meant that on warmer days we have no internet from about 10:30 am until about 7:30 pm. TV still works perfectly during that time and it comes in on the same cable. PHONE does NOT work during that time. Comcast wants to come and look at the wiring and I guess I probably need to have them do that. When it's working I get upwards of 180 MB download and 12 MB uploads so it's very fast. On days when it's cooler - like today it's only going to be a high of 69, it will work perfectly all day. I have gotten a new router and it hasn't changed anything. I think the problem is outside of our house someplace. Maybe a network switch in a cabinet someplace > in my neighborhood that sits in the sun and is overheating. I just > don't like having the Comcast guys poking around in my house so I've resisted having them out to do that when I know it will be working again as soon as it cools off outside. And it should be noted that we run our A/C most of the time when it's warm out. but it won't normally kick on until about 4 or 5 pm in the afternoon when the sun starts to bake us from the west. The wiring enters the house on the northeast corner of the house. It's in a shady location protected by shrubbery. The local cable box that we plug into is also shaded by shrubbery. It's just goofy. > > Oh and while the internet and phone is not working we still get the caller ID notifications on our televisions that tell us who is calling but the phone doesn't ring. > > On Wed, Aug 16, 2017 at 10:37 PM, John Bartow wrote: >> Your trusted home office/small business router is quite likely to be a lemon, according to findings from a new http://resources.sei.cmu.edu/asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon researchers. The study, released this month, found security flaws in all of its test models, all from leading brands. >> The flaws included cross-site request forgery vulnerabilities, default login credentials, vulnerability to DNS spoofing and outdated versions of the embedded Linux utility, BusyBox. >> The researchers analyzed 13 routers from such manufacturers as Apple, Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. >> The researchers said they hoped their study would provide clear metrics about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, which refers to the term for how quality products disappear from a market, driving down prices and value. >> When vulnerabilities were found in products, Carnegie Mellon contacted the manufacturers, giving them 45 days to work on the issues before publicly releasing the details. In general, the vendors were slow to respond, with some not responding at all. >> For example, the study found several issues with Securifi's Almond router, notably that it was vulnerable to clickjacking, cross-site request forgery and, in one older model, didn't deliver firmware updates over HTTPS. >> Securifi said it would release an update within 45 days. Although the company provided an update to the researchers, it failed to announce the update on its website. The vendor did not list the update on its support website or on the router's update interface. >> The sheer volume of vulnerabilities in routers demands a new approach, one that could more tightly monitor router manufacturers and "help form a clearer picture of how different vendors and products measure up," claimed the study, which was funded by the U.S. Department of Defense. >> One solution to router problems is a public database of vulnerabilities that could help clean up the industry, noted the study. Bug reports could be left for open comments, allowing for further validation and providing a clearer picture on how vendors deal with issues. >> "Following widely accepted disclosure practices, a vendor would be given 45 days to respond to vulnerability reports," the study observed. "After the 45 days, the report would be added to a public database." >> Unfortunately, the study did not recommend any router. So, if you're in the market for a new router or simply want to ditch your present lemon, there's not much left to say, other than to read https://www.pcmag.com/article2/0,2817,2398080,00.asp for possible inspiration. >> >> https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/ >> ?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_camp >> aign=Newsletter_08162017&utm_content=Brand_Routers >> >> >> _______________________________________________ >> dba-Tech mailing list >> dba-Tech at databaseadvisors.com >> http://databaseadvisors.com/mailman/listinfo/dba-tech >> Website: http://www.databaseadvisors.com > > > > -- > Gary Kjos > garykjos at gmail.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Gary Kjos garykjos at gmail.com From eptept at gmail.com Thu Aug 17 10:59:45 2017 From: eptept at gmail.com (Ed Tesiny) Date: Thu, 17 Aug 2017 11:59:45 -0400 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study In-Reply-To: References: Message-ID: If the room has a door a portable heater might work. Do any of your neighbors have Comcast, do they have the same problem? On Thu, Aug 17, 2017 at 11:41 AM, Gary Kjos wrote: > Thanks for your thoughts Dan. I'm pretty sure that the room the > router is in it NEVER gets above 75. It's in the basement. We are > pretty well insulated. We leave the A/C on almost all of the time > with a programmable thermostat cycling it on to cool down in the late > afternoon through the night and it gets down to about 70 in that room > overnight and stays there or close to it. There is a digital > thermometer 5 feet away from the router with indoor and outdoor temps. > I'll try and look at that the next time I am there watching it for > when it starts to fail. We do get warmer on our second floor and the > main floor as heat rises and it's more exposed to the afternoon sun. > This particular room is shaded by a deck to the west so it doesn't get > much if any solar gain. I'm not sure I can get that room to 80 > without getting the second floor to 90. > > On Thu, Aug 17, 2017 at 10:24 AM, Dan Waters > wrote: > > Here's a test if you want to do it. > > > > On a colder day when the outside temp won't exceed 78F, turn on your > home furnace until the temp gets to about 80F and keep it there for a > couple of hours. Does that cause an issue? Now take the modem and set it > on top of one of your air ducts to make sure that it gets warmer than 80F > then plug it back in to see if things work. Most electronics are designed > to work at 120F or maybe higher so the modem should be working fine. If > things work under those conditions then a problem outside is much more > likely. > > > > From what you're saying, it's just the outside temp that causes the > problem. > > > > Good Luck! > > Dan > > > > -----Original Message----- > > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf > Of Gary Kjos > > Sent: August 17, 2017 10:17 > > To: Discussion of Hardware and Software issues > > Subject: Re: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New > Study > > > > I've got a weird router related thing going on at home. We use the > Comcast provided combination Modem/Router. It's a Cisco Model DPC3941T > DOCSIS 3.0 24x4 Wireless Residential Voice Gateway - wireless router - > cable mdm - 802.11b/g/n/ac - desktop But I am pretty sure it's not a > router problem. > > > > Everything works perfectly most of the time. BUT when the outside temp > is over 78 degrees we have no internet connection. The WIFI Still works > and I can get from one machine to another inside the house. But no > Internet available UNTIL the outside temp goes back down below 78 or so. > So this has meant that on warmer days we have no internet from about 10:30 > am until about 7:30 pm. TV still works perfectly during that time and it > comes in on the same cable. PHONE does NOT work during that time. Comcast > wants to come and look at the wiring and I guess I probably need to have > them do that. When it's working I get upwards of 180 MB download and 12 MB > uploads so it's very fast. On days when it's cooler - like today it's only > going to be a high of 69, it will work perfectly all day. I have gotten a > new router and it hasn't changed anything. I think the problem is outside > of our house someplace. Maybe a network switch in a cabinet someplace > > in my neighborhood that sits in the sun and is overheating. I just > > don't like having the Comcast guys poking around in my house so I've > resisted having them out to do that when I know it will be working again as > soon as it cools off outside. And it should be noted that we run our A/C > most of the time when it's warm out. but it won't normally kick on until > about 4 or 5 pm in the afternoon when the sun starts to bake us from the > west. The wiring enters the house on the northeast corner of the house. > It's in a shady location protected by shrubbery. The local cable box that > we plug into is also shaded by shrubbery. It's just goofy. > > > > Oh and while the internet and phone is not working we still get the > caller ID notifications on our televisions that tell us who is calling but > the phone doesn't ring. > > > > On Wed, Aug 16, 2017 at 10:37 PM, John Bartow > wrote: > >> Your trusted home office/small business router is quite likely to be a > lemon, according to findings from a new http://resources.sei.cmu.edu/ > asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon > researchers. The study, released this month, found security flaws in all of > its test models, all from leading brands. > >> The flaws included cross-site request forgery vulnerabilities, default > login credentials, vulnerability to DNS spoofing and outdated versions of > the embedded Linux utility, BusyBox. > >> The researchers analyzed 13 routers from such manufacturers as Apple, > Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. > >> The researchers said they hoped their study would provide clear metrics > about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, > which refers to the term for how quality products disappear from a market, > driving down prices and value. > >> When vulnerabilities were found in products, Carnegie Mellon contacted > the manufacturers, giving them 45 days to work on the issues before > publicly releasing the details. In general, the vendors were slow to > respond, with some not responding at all. > >> For example, the study found several issues with Securifi's Almond > router, notably that it was vulnerable to clickjacking, cross-site request > forgery and, in one older model, didn't deliver firmware updates over HTTPS. > >> Securifi said it would release an update within 45 days. Although the > company provided an update to the researchers, it failed to announce the > update on its website. The vendor did not list the update on its support > website or on the router's update interface. > >> The sheer volume of vulnerabilities in routers demands a new approach, > one that could more tightly monitor router manufacturers and "help form a > clearer picture of how different vendors and products measure up," claimed > the study, which was funded by the U.S. Department of Defense. > >> One solution to router problems is a public database of vulnerabilities > that could help clean up the industry, noted the study. Bug reports could > be left for open comments, allowing for further validation and providing a > clearer picture on how vendors deal with issues. > >> "Following widely accepted disclosure practices, a vendor would be > given 45 days to respond to vulnerability reports," the study observed. > "After the 45 days, the report would be added to a public database." > >> Unfortunately, the study did not recommend any router. So, if you're in > the market for a new router or simply want to ditch your present lemon, > there's not much left to say, other than to read https://www.pcmag.com/ > article2/0,2817,2398080,00.asp for possible inspiration. > >> > >> https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/ > >> ?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_camp > >> aign=Newsletter_08162017&utm_content=Brand_Routers > >> > >> > >> _______________________________________________ > >> dba-Tech mailing list > >> dba-Tech at databaseadvisors.com > >> http://databaseadvisors.com/mailman/listinfo/dba-tech > >> Website: http://www.databaseadvisors.com > > > > > > > > -- > > Gary Kjos > > garykjos at gmail.com > > > > _______________________________________________ > > dba-Tech mailing list > > dba-Tech at databaseadvisors.com > > http://databaseadvisors.com/mailman/listinfo/dba-tech > > Website: http://www.databaseadvisors.com > > > > _______________________________________________ > > dba-Tech mailing list > > dba-Tech at databaseadvisors.com > > http://databaseadvisors.com/mailman/listinfo/dba-tech > > Website: http://www.databaseadvisors.com > > > > -- > Gary Kjos > garykjos at gmail.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > From garykjos at gmail.com Thu Aug 17 11:07:41 2017 From: garykjos at gmail.com (Gary Kjos) Date: Thu, 17 Aug 2017 11:07:41 -0500 Subject: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New Study In-Reply-To: References:

Message-ID: Not sure what my neighbors on my side of the street have. My neighbors across the street both have Comcast and they do not have any problem. It will be winter soon. ;-) On Thu, Aug 17, 2017 at 10:59 AM, Ed Tesiny wrote: > If the room has a door a portable heater might work. Do any of your > neighbors have Comcast, do they have the same problem? > > On Thu, Aug 17, 2017 at 11:41 AM, Gary Kjos wrote: > >> Thanks for your thoughts Dan. I'm pretty sure that the room the >> router is in it NEVER gets above 75. It's in the basement. We are >> pretty well insulated. We leave the A/C on almost all of the time >> with a programmable thermostat cycling it on to cool down in the late >> afternoon through the night and it gets down to about 70 in that room >> overnight and stays there or close to it. There is a digital >> thermometer 5 feet away from the router with indoor and outdoor temps. >> I'll try and look at that the next time I am there watching it for >> when it starts to fail. We do get warmer on our second floor and the >> main floor as heat rises and it's more exposed to the afternoon sun. >> This particular room is shaded by a deck to the west so it doesn't get >> much if any solar gain. I'm not sure I can get that room to 80 >> without getting the second floor to 90. >> >> On Thu, Aug 17, 2017 at 10:24 AM, Dan Waters >> wrote: >> > Here's a test if you want to do it. >> > >> > On a colder day when the outside temp won't exceed 78F, turn on your >> home furnace until the temp gets to about 80F and keep it there for a >> couple of hours. Does that cause an issue? Now take the modem and set it >> on top of one of your air ducts to make sure that it gets warmer than 80F >> then plug it back in to see if things work. Most electronics are designed >> to work at 120F or maybe higher so the modem should be working fine. If >> things work under those conditions then a problem outside is much more >> likely. >> > >> > From what you're saying, it's just the outside temp that causes the >> problem. >> > >> > Good Luck! >> > Dan >> > >> > -----Original Message----- >> > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf >> Of Gary Kjos >> > Sent: August 17, 2017 10:17 >> > To: Discussion of Hardware and Software issues >> > Subject: Re: [dba-Tech] Most Brand Name Routers Are Lemons, Claims New >> Study >> > >> > I've got a weird router related thing going on at home. We use the >> Comcast provided combination Modem/Router. It's a Cisco Model DPC3941T >> DOCSIS 3.0 24x4 Wireless Residential Voice Gateway - wireless router - >> cable mdm - 802.11b/g/n/ac - desktop But I am pretty sure it's not a >> router problem. >> > >> > Everything works perfectly most of the time. BUT when the outside temp >> is over 78 degrees we have no internet connection. The WIFI Still works >> and I can get from one machine to another inside the house. But no >> Internet available UNTIL the outside temp goes back down below 78 or so. >> So this has meant that on warmer days we have no internet from about 10:30 >> am until about 7:30 pm. TV still works perfectly during that time and it >> comes in on the same cable. PHONE does NOT work during that time. Comcast >> wants to come and look at the wiring and I guess I probably need to have >> them do that. When it's working I get upwards of 180 MB download and 12 MB >> uploads so it's very fast. On days when it's cooler - like today it's only >> going to be a high of 69, it will work perfectly all day. I have gotten a >> new router and it hasn't changed anything. I think the problem is outside >> of our house someplace. Maybe a network switch in a cabinet someplace >> > in my neighborhood that sits in the sun and is overheating. I just >> > don't like having the Comcast guys poking around in my house so I've >> resisted having them out to do that when I know it will be working again as >> soon as it cools off outside. And it should be noted that we run our A/C >> most of the time when it's warm out. but it won't normally kick on until >> about 4 or 5 pm in the afternoon when the sun starts to bake us from the >> west. The wiring enters the house on the northeast corner of the house. >> It's in a shady location protected by shrubbery. The local cable box that >> we plug into is also shaded by shrubbery. It's just goofy. >> > >> > Oh and while the internet and phone is not working we still get the >> caller ID notifications on our televisions that tell us who is calling but >> the phone doesn't ring. >> > >> > On Wed, Aug 16, 2017 at 10:37 PM, John Bartow >> wrote: >> >> Your trusted home office/small business router is quite likely to be a >> lemon, according to findings from a new http://resources.sei.cmu.edu/ >> asset_files/SpecialReport/2017_003_001_502618.pdf done by Carnegie Mellon >> researchers. The study, released this month, found security flaws in all of >> its test models, all from leading brands. >> >> The flaws included cross-site request forgery vulnerabilities, default >> login credentials, vulnerability to DNS spoofing and outdated versions of >> the embedded Linux utility, BusyBox. >> >> The researchers analyzed 13 routers from such manufacturers as Apple, >> Belkin, Huawei, Motorola and Netgear, between 2014 and 2016. >> >> The researchers said they hoped their study would provide clear metrics >> about the https://en.wikipedia.org/wiki/The_Market_for_Lemons effect, >> which refers to the term for how quality products disappear from a market, >> driving down prices and value. >> >> When vulnerabilities were found in products, Carnegie Mellon contacted >> the manufacturers, giving them 45 days to work on the issues before >> publicly releasing the details. In general, the vendors were slow to >> respond, with some not responding at all. >> >> For example, the study found several issues with Securifi's Almond >> router, notably that it was vulnerable to clickjacking, cross-site request >> forgery and, in one older model, didn't deliver firmware updates over HTTPS. >> >> Securifi said it would release an update within 45 days. Although the >> company provided an update to the researchers, it failed to announce the >> update on its website. The vendor did not list the update on its support >> website or on the router's update interface. >> >> The sheer volume of vulnerabilities in routers demands a new approach, >> one that could more tightly monitor router manufacturers and "help form a >> clearer picture of how different vendors and products measure up," claimed >> the study, which was funded by the U.S. Department of Defense. >> >> One solution to router problems is a public database of vulnerabilities >> that could help clean up the industry, noted the study. Bug reports could >> be left for open comments, allowing for further validation and providing a >> clearer picture on how vendors deal with issues. >> >> "Following widely accepted disclosure practices, a vendor would be >> given 45 days to respond to vulnerability reports," the study observed. >> "After the 45 days, the report would be added to a public database." >> >> Unfortunately, the study did not recommend any router. So, if you're in >> the market for a new router or simply want to ditch your present lemon, >> there's not much left to say, other than to read https://www.pcmag.com/ >> article2/0,2817,2398080,00.asp for possible inspiration. >> >> >> >> https://www.vipre.com/blog/brand-name-routers-lemons-claims-new-study/ >> >> ?utm_source=email_VSN_Main_List&utm_medium=email%25(internal)&utm_camp >> >> aign=Newsletter_08162017&utm_content=Brand_Routers >> >> >> >> >> >> _______________________________________________ >> >> dba-Tech mailing list >> >> dba-Tech at databaseadvisors.com >> >> http://databaseadvisors.com/mailman/listinfo/dba-tech >> >> Website: http://www.databaseadvisors.com >> > >> > >> > >> > -- >> > Gary Kjos >> > garykjos at gmail.com >> > >> > _______________________________________________ >> > dba-Tech mailing list >> > dba-Tech at databaseadvisors.com >> > http://databaseadvisors.com/mailman/listinfo/dba-tech >> > Website: http://www.databaseadvisors.com >> > >> > _______________________________________________ >> > dba-Tech mailing list >> > dba-Tech at databaseadvisors.com >> > http://databaseadvisors.com/mailman/listinfo/dba-tech >> > Website: http://www.databaseadvisors.com >> >> >> >> -- >> Gary Kjos >> garykjos at gmail.com >> >> _______________________________________________ >> dba-Tech mailing list >> dba-Tech at databaseadvisors.com >> http://databaseadvisors.com/mailman/listinfo/dba-tech >> Website: http://www.databaseadvisors.com >> > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Gary Kjos garykjos at gmail.com From jbartow at winhaven.net Thu Aug 24 17:26:00 2017 From: jbartow at winhaven.net (John Bartow) Date: Thu, 24 Aug 2017 22:26:00 +0000 Subject: [dba-Tech] new email attack vector Message-ID: I thought our email and list master, Bryan, would find this most interesting but some of you may also: http://thehackernews.com/2017/08/change-email-content.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk From ssharkins at gmail.com Thu Aug 24 17:43:13 2017 From: ssharkins at gmail.com (Susan Harkins) Date: Thu, 24 Aug 2017 18:43:13 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: References: Message-ID: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> So the cure is -- don't click links in email, ever... right? Susan H. I thought our email and list master, Bryan, would find this most interesting but some of you may also: http://thehackernews.com/2017/08/change-email-content.html?utm_source=feedbu rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From carbonnb at gmail.com Thu Aug 24 17:46:00 2017 From: carbonnb at gmail.com (Bryan Carbonnell) Date: Thu, 24 Aug 2017 18:46:00 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: References: Message-ID: Yet ANOTHER reason why HTML email is an evil scourge foisted upon us. B On 24 August 2017 at 18:26, John Bartow wrote: > I thought our email and list master, Bryan, would find this most interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Bryan Carbonnell - carbonnb at gmail.com Life's journey is not to arrive at the grave safely in a well-preserved body, but rather to skid in sideways, totally worn out, shouting "What a great ride!" From carbonnb at gmail.com Thu Aug 24 17:46:58 2017 From: carbonnb at gmail.com (Bryan Carbonnell) Date: Thu, 24 Aug 2017 18:46:58 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> References: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> Message-ID: That is one of the take aways, yes. B On 24 August 2017 at 18:43, Susan Harkins wrote: > So the cure is -- don't click links in email, ever... right? > > Susan H. > > > I thought our email and list master, Bryan, would find this most interesting > but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source=feedbu > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News > +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Bryan Carbonnell - carbonnb at gmail.com Life's journey is not to arrive at the grave safely in a well-preserved body, but rather to skid in sideways, totally worn out, shouting "What a great ride!" From fuller.artful at gmail.com Thu Aug 24 17:47:13 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Thu, 24 Aug 2017 18:47:13 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> References: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> Message-ID: That sounds a sound policy, Susan. A. ? From fuller.artful at gmail.com Thu Aug 24 17:50:37 2017 From: fuller.artful at gmail.com (Arthur Fuller) Date: Thu, 24 Aug 2017 18:50:37 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: References:

Message-ID: Let us collectively adopt a policy whereby we agree to quote only the most immediate email, and further, only those portions thereof to which we feel the need to respond. In an act of faith on this principle, I hereby delete all traces of this thead. Arthur ? From ssharkins at gmail.com Thu Aug 24 18:41:09 2017 From: ssharkins at gmail.com (Susan Harkins) Date: Thu, 24 Aug 2017 19:41:09 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: References: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> Message-ID: <01c801d31d32$774ece60$65ec6b20$@gmail.com> Thanks. I don't, but it's easy to click those links when sent from known sources. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Bryan Carbonnell Sent: Thursday, August 24, 2017 6:47 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector That is one of the take aways, yes. B On 24 August 2017 at 18:43, Susan Harkins wrote: > So the cure is -- don't click links in email, ever... right? > > Susan H. > > > I thought our email and list master, Bryan, would find this most > interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source= > feedbu > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hacker > s+News > +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Bryan Carbonnell - carbonnb at gmail.com Life's journey is not to arrive at the grave safely in a well-preserved body, but rather to skid in sideways, totally worn out, shouting "What a great ride!" _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From accessd at shaw.ca Fri Aug 25 00:04:46 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Thu, 24 Aug 2017 23:04:46 -0600 (MDT) Subject: [dba-Tech] new email attack vector In-Reply-To: References:

Message-ID: <783261522.400248797.1503637486323.JavaMail.zimbra@shaw.ca> Hmmm... sometimes it might be nice to be able to modify an email after it was sent. ;-) Having an automated plain text email setting is a must in this day and age. The email client, Zimbra, I am currently using, sends all email in text first and then there is a setting that will allow me to switch the message to HTML. If I see 200 lines of Javascript code revealed or iframes, in the bucket it goes. ;-) Jim ----- Original Message ----- From: "carbonnb" To: "Discussion of Hardware and Software issues" Sent: Thursday, August 24, 2017 3:46:00 PM Subject: Re: [dba-Tech] new email attack vector Yet ANOTHER reason why HTML email is an evil scourge foisted upon us. B On 24 August 2017 at 18:26, John Bartow wrote: > I thought our email and list master, Bryan, would find this most interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com -- Bryan Carbonnell - carbonnb at gmail.com Life's journey is not to arrive at the grave safely in a well-preserved body, but rather to skid in sideways, totally worn out, shouting "What a great ride!" _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From stuart at lexacorp.com.pg Fri Aug 25 01:07:13 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Fri, 25 Aug 2017 16:07:13 +1000 Subject: [dba-Tech] new email attack vector In-Reply-To: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> Message-ID: <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> If you use a POS like Outlook, you don't need to click on anything. Outlook will automatically fetch the malicious CSS when you go to read the email. The cure is to use an email client that doesn't fetch external CSS, graphics etc unless you specifically tell it to for an individual email. Like Pegasus Mail :-) On 24 Aug 2017 at 18:43, Susan Harkins wrote: > So the cure is -- don't click links in email, ever... right? > > Susan H. > > > I thought our email and list master, Bryan, would find this most > interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source= > feedbu > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hacker > s+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > From stuart at lexacorp.com.pg Fri Aug 25 01:07:42 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Fri, 25 Aug 2017 16:07:42 +1000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , Message-ID: <599FBEAE.26206.A8F76CB@stuart.lexacorp.com.pg> Amen, brother! On 24 Aug 2017 at 18:46, Bryan Carbonnell wrote: > Yet ANOTHER reason why HTML email is an evil scourge foisted upon us. > > B > > On 24 August 2017 at 18:26, John Bartow wrote: > > I thought our email and list master, Bryan, would find this most > interesting but some of you may also: > > http://thehackernews.com/2017/08/change-email-content.html?utm_source= > feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+ > Hackers+News+-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > > _______________________________________________ > dba-Tech mailing > From stuart at lexacorp.com.pg Fri Aug 25 01:16:06 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Fri, 25 Aug 2017 16:16:06 +1000 Subject: [dba-Tech] new email attack vector In-Reply-To: <783261522.400248797.1503637486323.JavaMail.zimbra@shaw.ca> References: , , <783261522.400248797.1503637486323.JavaMail.zimbra@shaw.ca> Message-ID: <599FC0A6.31322.A9726C9@stuart.lexacorp.com.pg> Correction! Your Zimbra DISPLAYS the plain text version of an email by default - if it is a multipart/alternative message with both plain and HTML versions. It doesn't "send" anything. On 24 Aug 2017 at 23:04, Jim Lawrence wrote: > Hmmm... sometimes it might be nice to be able to modify an email after > it was sent. ;-) > > Having an automated plain text email setting is a must in this day and > age. The email client, Zimbra, I am currently using, sends all email > in text first and then there is a setting that will allow me to switch > the message to HTML. If I see 200 lines of Javascript code revealed or > iframes, in the bucket it goes. ;-) > > Jim > From accessd at shaw.ca Sat Aug 26 12:27:09 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Sat, 26 Aug 2017 11:27:09 -0600 (MDT) Subject: [dba-Tech] new email attack vector In-Reply-To: <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> References: <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> Message-ID: <2138899540.403206689.1503768429094.JavaMail.zimbra@shaw.ca> Can't argue with that logic. Jim ----- Original Message ----- From: "stuart" To: "Discussion of Hardware and Software issues" Sent: Thursday, August 24, 2017 11:07:13 PM Subject: Re: [dba-Tech] new email attack vector If you use a POS like Outlook, you don't need to click on anything. Outlook will automatically fetch the malicious CSS when you go to read the email. The cure is to use an email client that doesn't fetch external CSS, graphics etc unless you specifically tell it to for an individual email. Like Pegasus Mail :-) On 24 Aug 2017 at 18:43, Susan Harkins wrote: > So the cure is -- don't click links in email, ever... right? > > Susan H. > > > I thought our email and list master, Bryan, would find this most > interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source= > feedbu > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hacker > s+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From accessd at shaw.ca Sat Aug 26 12:45:45 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Sat, 26 Aug 2017 11:45:45 -0600 (MDT) Subject: [dba-Tech] new email attack vector In-Reply-To: <599FC0A6.31322.A9726C9@stuart.lexacorp.com.pg> References:

<783261522.400248797.1503637486323.JavaMail.zimbra@shaw.ca> <599FC0A6.31322.A9726C9@stuart.lexacorp.com.pg> Message-ID: <1401095739.403233850.1503769545277.JavaMail.zimbra@shaw.ca> You are right. Zimbra is a browser based client (it could be configured differently but...) so the hosting ISP/server/browser separates/sandboxes the actual mail message from the viewing station. To view a mail message's internal design all it takes is toggling the format to HTML, a right-mouse click and select the "inspect element" option. Jim ----- Original Message ----- From: "stuart" To: "Discussion of Hardware and Software issues" Sent: Thursday, August 24, 2017 11:16:06 PM Subject: Re: [dba-Tech] new email attack vector Correction! Your Zimbra DISPLAYS the plain text version of an email by default - if it is a multipart/alternative message with both plain and HTML versions. It doesn't "send" anything. On 24 Aug 2017 at 23:04, Jim Lawrence wrote: > Hmmm... sometimes it might be nice to be able to modify an email after > it was sent. ;-) > > Having an automated plain text email setting is a must in this day and > age. The email client, Zimbra, I am currently using, sends all email > in text first and then there is a setting that will allow me to switch > the message to HTML. If I see 200 lines of Javascript code revealed or > iframes, in the bucket it goes. ;-) > > Jim > _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From jbartow at winhaven.net Sat Aug 26 12:52:46 2017 From: jbartow at winhaven.net (John Bartow) Date: Sat, 26 Aug 2017 17:52:46 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> Message-ID: Only if you allow it to. There are settings and the default setting is not. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector If you use a POS like Outlook, you don't need to click on anything. Outlook will automatically fetch the malicious CSS when you go to read the email. The cure is to use an email client that doesn't fetch external CSS, graphics etc unless you specifically tell it to for an individual email. Like Pegasus Mail :-) On 24 Aug 2017 at 18:43, Susan Harkins wrote: > So the cure is -- don't click links in email, ever... right? > > Susan H. > > > I thought our email and list master, Bryan, would find this most > interesting but some of you may also: > http://thehackernews.com/2017/08/change-email-content.html?utm_source= > feedbu > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hacker > s+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From jbartow at winhaven.net Sat Aug 26 13:25:00 2017 From: jbartow at winhaven.net (John Bartow) Date: Sat, 26 Aug 2017 18:25:00 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg> Message-ID: I've tried to get some clients off of crap like Outlook Express, Windows Mail, Windows Live Mail, etc and have them use Pegasus mail but it does not go well. Not "end user" friendly. Kind of an old geek thing I guess. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Like Pegasus Mail :-) From gustav at cactus.dk Sat Aug 26 13:40:47 2017 From: gustav at cactus.dk (Gustav Brock) Date: Sat, 26 Aug 2017 18:40:47 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, Message-ID: Yes, to most normal users, e-mail "is" either GMail or Outlook (in some of its many varieties). And neither Outlook Express, Windows Mail, nor Windows Live Mail live any more. The current Mail app of Windows 10 is actually quite neat; I use that on my Windows tablets. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 26. august 2017 20:25:00 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector I've tried to get some clients off of crap like Outlook Express, Windows Mail, Windows Live Mail, etc and have them use Pegasus mail but it does not go well. Not "end user" friendly. Kind of an old geek thing I guess. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Like Pegasus Mail :-) From jbartow at winhaven.net Sat Aug 26 17:43:31 2017 From: jbartow at winhaven.net (John Bartow) Date: Sat, 26 Aug 2017 22:43:31 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, Message-ID: Hi Gustav, I cannot get anyone to use the Windows 8/10 mail app. I have zero clients using it, including home users. Is there a good resource for it on the web somewhere? John B -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gustav Brock Sent: Saturday, August 26, 2017 1:41 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Yes, to most normal users, e-mail "is" either GMail or Outlook (in some of its many varieties). And neither Outlook Express, Windows Mail, nor Windows Live Mail live any more. The current Mail app of Windows 10 is actually quite neat; I use that on my Windows tablets. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 26. august 2017 20:25:00 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector I've tried to get some clients off of crap like Outlook Express, Windows Mail, Windows Live Mail, etc and have them use Pegasus mail but it does not go well. Not "end user" friendly. Kind of an old geek thing I guess. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Like Pegasus Mail :-) _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From accessd at shaw.ca Sat Aug 26 17:43:50 2017 From: accessd at shaw.ca (Jim Lawrence) Date: Sat, 26 Aug 2017 16:43:50 -0600 (MDT) Subject: [dba-Tech] Google launches Chrome Enterprise subscription service for Chrome OS In-Reply-To: <176133744.358232672.1501803537876.JavaMail.zimbra@shaw.ca> References: <1501778431.139120713@f455.i.mail.ru> <176133744.358232672.1501803537876.JavaMail.zimbra@shaw.ca> Message-ID: <852138421.403603100.1503787430915.JavaMail.zimbra@shaw.ca> Google has created a complete enterprise package which will now be in direct competition with Microsoft. https://techcrunch.com/2017/08/22/google-launches-chrome-enterprise-for-businesses-that-want-to-use-chrome-os/ http://tcrn.ch/2vgLz30 Jim From gustav at cactus.dk Sun Aug 27 05:46:19 2017 From: gustav at cactus.dk (Gustav Brock) Date: Sun, 27 Aug 2017 10:46:19 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, , Message-ID: Hi John Not that I know of. I guess it is regarded that simple, that a guide is not needed. For home use, it is great, optimised as it is for touch use. For business, I think many will find it too limited. The only trouble I've had with it, was with import of contacts. It requires a special format CSV file including US English field names which a localised Windows cannot provide. The solution is to create some contacts, export these to CSV, study the exported file, and then modify you list to import to match the exported file format. Then import this file. "Of course", this is not documented anywhere. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 27. august 2017 00:43:31 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector Hi Gustav, I cannot get anyone to use the Windows 8/10 mail app. I have zero clients using it, including home users. Is there a good resource for it on the web somewhere? John B -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gustav Brock Sent: Saturday, August 26, 2017 1:41 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Yes, to most normal users, e-mail "is" either GMail or Outlook (in some of its many varieties). And neither Outlook Express, Windows Mail, nor Windows Live Mail live any more. The current Mail app of Windows 10 is actually quite neat; I use that on my Windows tablets. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 26. august 2017 20:25:00 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector I've tried to get some clients off of crap like Outlook Express, Windows Mail, Windows Live Mail, etc and have them use Pegasus mail but it does not go well. Not "end user" friendly. Kind of an old geek thing I guess. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Like Pegasus Mail :-) From jbartow at winhaven.net Sun Aug 27 13:00:18 2017 From: jbartow at winhaven.net (John Bartow) Date: Sun, 27 Aug 2017 18:00:18 +0000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , <018901d31d2a$642d2af0$2c8780d0$@gmail.com> <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, , Message-ID: Hi Gustav, Thank you. I have only tried it with home users. Business users either use Outlook/Exchange/O365 or an business type product. Thank you for the notice concerning importing contacts. That may come in helpful in the future. John B -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gustav Brock Sent: Sunday, August 27, 2017 5:46 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Hi John Not that I know of. I guess it is regarded that simple, that a guide is not needed. For home use, it is great, optimised as it is for touch use. For business, I think many will find it too limited. The only trouble I've had with it, was with import of contacts. It requires a special format CSV file including US English field names which a localised Windows cannot provide. The solution is to create some contacts, export these to CSV, study the exported file, and then modify you list to import to match the exported file format. Then import this file. "Of course", this is not documented anywhere. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 27. august 2017 00:43:31 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector Hi Gustav, I cannot get anyone to use the Windows 8/10 mail app. I have zero clients using it, including home users. Is there a good resource for it on the web somewhere? John B -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Gustav Brock Sent: Saturday, August 26, 2017 1:41 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Yes, to most normal users, e-mail "is" either GMail or Outlook (in some of its many varieties). And neither Outlook Express, Windows Mail, nor Windows Live Mail live any more. The current Mail app of Windows 10 is actually quite neat; I use that on my Windows tablets. /gustav ________________________________________ Fra: dba-Tech p? vegne af John Bartow Sendt: 26. august 2017 20:25:00 Til: Discussion of Hardware and Software issues Emne: Re: [dba-Tech] new email attack vector I've tried to get some clients off of crap like Outlook Express, Windows Mail, Windows Live Mail, etc and have them use Pegasus mail but it does not go well. Not "end user" friendly. Kind of an old geek thing I guess. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Like Pegasus Mail :-) _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com From stuart at lexacorp.com.pg Mon Aug 28 00:18:30 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Mon, 28 Aug 2017 15:18:30 +1000 Subject: [dba-Tech] new email attack vector In-Reply-To: References: , <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, Message-ID: <59A3A7A6.20055.19D564F1@stuart.lexacorp.com.pg> Where is that setting? I've never seen it. On 26 Aug 2017 at 17:52, John Bartow wrote: > Only if you allow it to. There are settings and the default setting is > not. > > -----Original Message----- > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On > Behalf Of Stuart McLachlan Sent: Friday, August 25, 2017 1:07 AM To: > Discussion of Hardware and Software issues > Subject: Re: [dba-Tech] new email > attack vector > > If you use a POS like Outlook, you don't need to click on anything. > Outlook will automatically fetch the malicious CSS when you go to read > the email. > > > The cure is to use an email client that doesn't fetch external CSS, > graphics etc unless you specifically tell it to for an individual > email. > > Like Pegasus Mail :-) > > > On 24 Aug 2017 at 18:43, Susan Harkins wrote: > > > So the cure is -- don't click links in email, ever... right? > > > > Susan H. > > > > > > I thought our email and list master, Bryan, would find this most > > interesting but some of you may also: > > http://thehackernews.com/2017/08/change-email-content.html?utm_sourc > > e= feedbu > > rner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hack > > er s+News +-+Security+Blog%29&_m=3n.009a.1564.kp0aof74zx.xtk > > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > From bheid at sc.rr.com Mon Aug 28 17:38:17 2017 From: bheid at sc.rr.com (Bobby Heid) Date: Mon, 28 Aug 2017 18:38:17 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: <59A3A7A6.20055.19D564F1@stuart.lexacorp.com.pg> References: , <599FBE91.413.A8F01EA@stuart.lexacorp.com.pg>, <59A3A7A6.20055.19D564F1@stuart.lexacorp.com.pg> Message-ID: <00cd01d3204e$580cfb20$0826f160$@sc.rr.com> In 2010+, File/Options/Trust Center. Then click on Trust Center Settings. https://support.office.com/en-us/article/Block-or-unblock-automatic-picture- downloads-in-email-messages-15e08854-6808-49b1-9a0a-50b81f2d617a Bobby -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Monday, August 28, 2017 1:19 AM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector Where is that setting? I've never seen it. On 26 Aug 2017 at 17:52, John Bartow wrote: > Only if you allow it to. There are settings and the default setting is > not. > From stuart at lexacorp.com.pg Mon Aug 28 17:56:45 2017 From: stuart at lexacorp.com.pg (Stuart McLachlan) Date: Tue, 29 Aug 2017 08:56:45 +1000 Subject: [dba-Tech] new email attack vector In-Reply-To: <00cd01d3204e$580cfb20$0826f160$@sc.rr.com> References: , <59A3A7A6.20055.19D564F1@stuart.lexacorp.com.pg>, <00cd01d3204e$580cfb20$0826f160$@sc.rr.com> Message-ID: <59A49FAD.9758.1D9E3EFE@stuart.lexacorp.com.pg> That's pictures, not remote CSS. On 28 Aug 2017 at 18:38, Bobby Heid wrote: > In 2010+, File/Options/Trust Center. Then click on Trust Center > Settings. > > https://support.office.com/en-us/article/Block-or-unblock-automatic-pi > cture- > downloads-in-email-messages-15e08854-6808-49b1-9a0a-50b81f2d617a > > > Bobby > > -----Original Message----- > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On > Behalf Of Stuart McLachlan Sent: Monday, August 28, 2017 1:19 AM To: > Discussion of Hardware and Software issues > Subject: Re: [dba-Tech] new email > attack vector > > Where is that setting? I've never seen it. > > On 26 Aug 2017 at 17:52, John Bartow wrote: > > > Only if you allow it to. There are settings and the default setting > > is not. > > > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > From bheid at sc.rr.com Wed Aug 30 18:10:29 2017 From: bheid at sc.rr.com (Bobby Heid) Date: Wed, 30 Aug 2017 19:10:29 -0400 Subject: [dba-Tech] new email attack vector In-Reply-To: <59A49FAD.9758.1D9E3EFE@stuart.lexacorp.com.pg> References: , <59A3A7A6.20055.19D564F1@stuart.lexacorp.com.pg>, <00cd01d3204e$580cfb20$0826f160$@sc.rr.com> <59A49FAD.9758.1D9E3EFE@stuart.lexacorp.com.pg> Message-ID: <00ac01d321e5$2c8334e0$85899ea0$@sc.rr.com> Sorry, I misread the question. -----Original Message----- From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On Behalf Of Stuart McLachlan Sent: Monday, August 28, 2017 6:57 PM To: Discussion of Hardware and Software issues Subject: Re: [dba-Tech] new email attack vector That's pictures, not remote CSS. On 28 Aug 2017 at 18:38, Bobby Heid wrote: > In 2010+, File/Options/Trust Center. Then click on Trust Center > Settings. > > https://support.office.com/en-us/article/Block-or-unblock-automatic-pi > cture- > downloads-in-email-messages-15e08854-6808-49b1-9a0a-50b81f2d617a > > > Bobby > > -----Original Message----- > From: dba-Tech [mailto:dba-tech-bounces at databaseadvisors.com] On > Behalf Of Stuart McLachlan Sent: Monday, August 28, 2017 1:19 AM To: > Discussion of Hardware and Software issues > Subject: Re: [dba-Tech] new email > attack vector > > Where is that setting? I've never seen it. > > On 26 Aug 2017 at 17:52, John Bartow wrote: > > > Only if you allow it to. There are settings and the default setting > > is not. > > > > > _______________________________________________ > dba-Tech mailing list > dba-Tech at databaseadvisors.com > http://databaseadvisors.com/mailman/listinfo/dba-tech > Website: http://www.databaseadvisors.com > _______________________________________________ dba-Tech mailing list dba-Tech at databaseadvisors.com http://databaseadvisors.com/mailman/listinfo/dba-tech Website: http://www.databaseadvisors.com