You have allready installed APF on your server and now you want it to run at boot time, you can make APF Start automatically at boot time

To autostart apf on reboot, run this:

chkconfig –level 2345 apf on

To remove it from autostart, run this:

web hosting service

chkconfig –del apf

Unblocking IPs with APF Firewall

A) pico /etc/apf/deny_hosts.rules

Find where the IP is listed and remove the line that has the IP.
After this is done save the file and reload apf to make the new changes active.

/etc/apf/apf -r

B) If the IP isn’t already listed in deny_hosts.rules and you wish to allow it, then,

/etc/apf/apf -a IP Reason
–> The -a flag means ALLOW the IP address
–> IP is the IP address you wish to allow
–> Reason is comments to why the IP is being unblocked
Example:

./apf -a 267.14.188.1 Reason

pico /etc/apf/allow_hosts.rules

# added 267.14.188.1 on 09/15/06 03:12:50
# UNBLOCKING
267.14.188.1

Hello,

If your os keeps on giving you the alert that ur xp is not genuine, you know that it is not but how will you avoid it.

Just try this patch
Lauch Windows Task Manager.
End wgatray.exe process in Task Manager.
Restart Windows XP in Safe Mode.
Delete WgaTray.exe from c:\Windows\System32.

Delete WgaTray.exe from c:\Windows\System32\dllcache.

Lauch RegEdit.

Enjoy..

Hello,

If you are searching for any article on how to disable USB drive then here is the solution for it. Below mentioned method explains how to disable ONLY USB storage devices (flash/Jump/external HD’s) completely without disabling keyboards, mice, etc.

The first thing you will do is that you will disable it from the BIOS setting but it may not be possible to secure the BIOS setting from other users to set by setting the password for it cause if you are going to do that on too many computer then you will have to remember the BIOS password for all the computer. If it is for few computer then your best option is to disable the USB ports in BIOS settings. Then, set a BIOS password. Finish up with case locks or other security hardware so that users cannot open the case, and then reset the CMOS memory.

What you will do if that may not be possible for you to remember the BIOS password for all of them and you do not want it to be disable from the BIOS.

If you want to do some tweaks in windows and if you are a real technician then you will read this sol
First thing to do is this solution.

I. Go to start >> run >> regedit and navigate to HKLM\system\currentcontrolset\services\USBstor.

II. Change the value of the REG_DWORD “Start” from Value Data 3 to 4. If the dword “Start” doesnt exist, create it. This will prevent a previously installed USB device from loading when the device is plugged into the machine. ((As most of you know this a Microsoft suggestion, which does work perfectly at disabling previously installed devices, however, this alone will not disable USB storage completely. If a user plugs a new USB storage device into the machine the device will install and the dword value will be reset to 3. Now if you incorporate adding this into a script it alone will disable USB drives, but only after a user plugs a device in, removes it without uninstalling it, logs off then logs back on, thereby running the script. This means that there is a window of opportunity for users to have access to new devices, this may be acceptable for some, but not for others.))

II. The next thing to do is to change the permisions on the USBSTOR key. You need to DENY full control on the “system” group.

What this does is denies everyone the ability to access the USBStor key, effectively killing the ability for any user (including admins) to install USB storage devices. Now the reason you deny the “system” group is because windows will use this account if no one is logged onto the machine yet. What I mean by this is if say you want to deny a group of users called “staff”, you would need to deny them using GP or a logon script. This will work great, but, if a “staff” group user plugs a USB drive in before logging in to Windows the device will be installed using in the backgroud using the “system” group, then when the user logs in the “staff” group policy is applied dening the user access to the USBstor key, but by this point it makes no difference because the devices is already installed and accessible and once a device is installed the usbstor key is no longer used.))

III. So now that these two steps are are done, *NO ONE* will be able to install USB drives.

If a user tries to use a previously installed drive the device will be blocked and nothing will happen, no prompts, nothing. This is accomplished through step 1, the dword value.

What happens if a user plugs in a “New” device that was not previously installed, the hardware wizard will run, asking for the location of drivers. Regardless of whether a user selects the “automatically” search and install or if they attempt to manually install 3rd party drivers, the HW wizard will prompt the user that “access is denied” once the drivers are selected. This is the result of step 2, denying “system”.

Now that we know how to disable USB storage devices we need to find an efficient way to do this without driving through the registry on each and every machine.

` killing USB drives quickly and easily.

Create 2 batch files, 1 batch to disable and another for administrators that will re-enable USB drives if the need arises.

1: First thing is to get a copy of the tool “subinacl.exe”. This tool is included with MS Server 2003 RK.

(What subinacl allows you to due is set specific permissions on the exact group or user, etc.. that you need to, this includes permissions on registry Keys which is what we will be doing.)

2: Once you have a copy of “subinacl.exe” set up a folder for your batch files. In my particular case I wanted these batch files available on the network so I created a shared folder named “DisableUSB” on a server. Next I created a subfolder within “DisableUSB” called “subinacl”. Put a copy of “subinacl.exe” in this folder.

3. Next thing to do is create 2 “reg” files in the subfolder “subinacl”. I named the 2 files “dword3.reg” and “dword4.reg”. These files are going to be used to change the value of the dword “start” in the registry key Usbstor.

I assume most probably know how do create reg files, this is what should be in the files:

For “dword3.reg”
******
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\USBSTOR]
“Start”=dword:00000003

*change the 3 to a 4 for “dword4.reg”*

4. Now put these 2 files in the “subinacl” folder if they weren’t created there.

All the pieces should now be in place. For this example we have a shared folder (on no particular server) called “disableUSB”. Within this folder is a subfolder “subinacl” that has subinacl.exe, dword3.reg, and dword4.reg within it.

5 . Now to create the 2 batch files. I created these 2 files under the main share folder (disableUSB). One is called “disableUSBdrives.bat” which, you guessed it, disables drives, and the other for re-enabling drives, “enableUSBdrives.bat”.

This is how disableUSBdrives.bat is set up:

@echo off
cls
regedit /s \\servername\disableUSB\Subinacl\dword4.reg
\\servername\DisableUSB\Subinacl\subinacl.exe /keyreg \system\currentcontrolset\services\usbstor /deny=system
pause
cls
echo.
echo **USB drives disabled**
echo.
Pause

*the path will differ of course. \\servername is just an example.

for “enableUSBdrives.bat” simply change change “dword4.reg” to “dword3.reg” AND “deny=system” to “grant=system”

Notice that the only real meat to these batch’s is running regedit and running subinacl. Everything else (cls,pause,echo) is optional, for my particular situation it was needed.

6. Go the machines that you want to disable USB drives on and run the disableUSBdrives batch from the network share.

And that’s it.
USB drives gone.

Now of course running a batch from each machine is still time consuming, but In my particular situation it had to be done this way, and is obviously much faster than driving through the registry.

The most efficient way to incorporate this would be with logon scripting. Unlike with just using the dword start=4 trick, after this script is run, there is no way for joe blow user to use any of his nifty little Jumpdrives or his hot new hard drives.

Also note that folder names and locations can be set up in any way and anywhere as long as the batch files point to the right place.

Enjoy

cheap web hosting

Hi Friends,

Hacker the first inpression comes to our mind is the computer criminal sitting at some unkknown location and fetching or destrying our important data. Most people straightway start associating the term Hackers with computer criminals or people who cause harm to systems, release viruses and so on. In reality, that is not true at all!

Hackers are actually good, pleasant and extremely intelligent people, who by using their knowledge in a constructive manner help organizations to secure documents and company secrets, help the government to protect national documents of strategic importance and even sometimes help justice to meet its ends by ferreting out electronic evidence. Rather, these are the people who help to keep computer criminals on the run.

On the other hand, crackers are the real bad guys or the criminals who indulge in cyber crime, deface websites, release viruses, steal credit card numbers and create havoc on the Internet.

If everybody who uses the Internet understood its risks, if everybody who uses the Internet understood how the computer criminals work, if everybody who uses the Internet understood the tools and techniques already known to the bad guys, then the Internet would be a much safer place to be in. Wouldn’t Internet users be able to better protect their data and systems if they were more aware of how computer criminals work? If we are able to learn and understand how someone can break into our system, then wouldn’t we fix the loopholes even before the cracker strikes? All I want to say is that instead of being resentful and afraid of fire, it would be much better if we learn to live with fire. Let us fight fire with fire itself! We manufacture knives every single day. A knife in the hands of a murderer can take lives, but the same knife in the hands of a surgeon can save lives! So just because there is a risk of a knife being misused by murderers, that does not mean that we should stop manufacturing knives.

Thats why learn how to hack but do not missuse your talent.
Enjoy..

cheap web hosting

Hi Friends..

Do you want to block some website to be browsed from personal computer which have windows operatiing system.

Ok then do this just Go to.

C:\WINDOWS\system32\drivers\etc

Open a “host” file in notepad. At the bottom of the line, you can see as per below
127.0.0.1 localhost

Add the following line at end now
127.0.0.1
www.blocksitename.com put there the site name to which you want to block.

Enjoy ..

Take the following precaution to prevent the site from hacking :-

1) Remove executable software that is just “sitting around.
2) Change your passwords often.
3) Use firewalls & anti-virus on your local PCs
4) Update your online software often.
5) Developed Software VS “Home-Grown” Software.
6) Password protect online folders.
7) Turn Telnet off.
8) Put CGI / PL / PHP / etc. only in the cgi-bin.
9) Place an index.html in every folder.
10) Log 404’s
11) Have a Security Audit

For Internet Explorer
:
To clear the cache; you would need to click on: ‘Tools’ >> ‘Internet Options’ >> ‘Delete Files’. This will bring up a popup box. Here check the option: ‘Delete all offline content’ then hit ‘Ok’ and then hit ‘Apply’ and ‘Ok’ on ‘Internet Options’ popup box.

For Netscape:
To clear the cache; you would need to click on: ‘Edit’ >> ‘Preference’ >> ‘Advanced’ >> ‘Cache’ >> ‘Clear Cache’. Then hit ‘Ok’.

We also request you to try out the following:
If you are accessing WebSite as http://yourdomain.com then try accessing it as http://www.yourdomain.com or vice versa.