Hodžův blog

30 Zář

How to find: Exchange Administration Center URL

In Exchange Management Shell run this command:
Get-ECPVirtualDirectory | Format-List InternalURL,ExternalURL

20 Zář

MikroTik: disconnected, unicast key exchange timeout

I just fixed this problem by removing a space from the end of the PSK.

08 Zář

Windows, PowerShell a nastavení vlastníka adresáře podle názvu složky

Když vám třeba někdo rozbijete oprávnění na domovských složkách uživatelů z Active Directory…
Foreach ($Folder in Get-ChildItem "D:\data\home-students") {
$domain=”nazev.domeny”
$Username=$Folder.Name
$ID=new-object System.Security.Principal.NTAccount($domain, $username)
$Path="D:\data\home-students\$username"
write-host $path
$acl=get-acl $path
$acl.SetOwner($ID)
set-acl -path $path -aclObject $acl
}

25 Srp

PowerShell – Start All Exchange Services

Get-Service *Exchange* | Start-Service

06 Čvn

Change Hyper-V IP addres in Synology Active Backup for Business

1. Enable SSH

2. Sign as root user

3. Run SQLite3
sqlite3 /volume1/\@ActiveBackup/config.db

4. Determine inventory_id:
sqlite> SELECT inventory_id, host_name, host_addr FROM inventory_table;
1|172.26.1.3|172.26.1.3

5. Update IP address and host name (on row with correct inventory_id):
sqlite> update inventory_table set host_name = "172.26.1.3", host_addr = "172.26.1.3" WHERE inventory_id = '1';

6. Terminate SQLite3 program:
sqlite> .exit

7. Check Synology Active Backup for Business web interface if it’s ok…

09 Kvě

Create desktop shortcut to windows update (Windows 10/Windows Server 2019)

1. Right-click an empty area on the desktop and select New > Shortcut
2. In the Location field, enter the following URI and click Next

ms-settings:windowsupdate

3. In the next field type in a shortcut name (Windows Update) and click Finish

09 Kvě

GPG error: https://download.jitsi.org stable/ InRelease: The following signatures couldn’t be verified

Error:
# apt update
Hit:1 http://security.debian.org/debian-security buster/updates InRelease
Hit:2 http://deb.debian.org/debian buster InRelease
Get:3 https://download.jitsi.org stable/ InRelease [1,882 B]
Err:3 https://download.jitsi.org stable/ InRelease
The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
Reading package lists... Done
Building dependency tree
Reading state information... Done
12 packages can be upgraded. Run 'apt list --upgradable' to see them.
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://download.jitsi.org stable/ InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Failed to fetch https://download.jitsi.org/stable/InRelease The following signatures couldn't be verified because the public key is not available: NO_PUBKEY B4D2D216F1FD7806
W: Some index files failed to download. They have been ignored, or old ones used instead.

Quick fix:
# curl https://download.jitsi.org/jitsi-key.gpg.key | sh -c 'gpg --dearmor > /usr/share/keyrings/jitsi-keyring.gpg'
# apt-get update

24 Bře

The following signatures were invalid: EXPKEYSIG B188E2B695BD4743

Error:
root@mailgw:~# apt update
Hit:1 http://deb.debian.org/debian buster InRelease
Hit:2 http://security.debian.org/debian-security buster/updates InRelease
Hit:3 http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid InRelease
Hit:4 https://packages.sury.org/php buster InRelease
Err:4 https://packages.sury.org/php buster InRelease
The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key
Reading package lists... Done
Building dependency tree
Reading state information... Done
All packages are up to date.
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: https://packages.sury.org/php buster InRelease: The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key
W: Failed to fetch https://packages.sury.org/php/dists/buster/InRelease The following signatures were invalid: EXPKEYSIG B188E2B695BD4743 DEB.SURY.ORG Automatic Signing Key
W: Some index files failed to download. They have been ignored, or old ones used instead.

Quick fix:
# apt-key del 95BD4743; wget -nv -O - "https://packages.sury.org/php/apt.gpg" | apt-key add -
# apt-get update

08 Úno

Xorg a rozlišení 2560×1440

Koupil jsem si nový monitor s rozlišením 2560×1440 pixelů, ale Xorg ho nerozpoznal korektně

xrandr --listmonitors
Monitors: 1
0: +*HDMI-1 1920/725x1440/428+0+0 HDMI-1

…takže jsem musel rozlišení nastavit ručně. Nejdříve jsem si vygeneroval adekvátní modeline (rozlišení 2560×1400 pixelů při 60Hz):

$ cvt 2560 1440 60
# 2560x1440 59.96 Hz (CVT 3.69M9) hsync: 89.52 kHz; pclk: 312.25 MHz
Modeline "2560x1440_60.00" 312.25 2560 2752 3024 3488 1440 1443 1448 1493 -hsync +vsync

a ten následně nacpal do xrandr

xrandr --newmode "2560x1440_60.00" 312.25 2560 2752 3024 3488 1440 1443 1448 1493 -hsync +vsync
xrandr --addmode HDMI-1 2560x1440_60.00
xrandr --output HDMI-1 --mode 2560x1440_60.00

04 Úno

.CSR, .CRT a .KEY aneb patří k sobě?

Dnes jsem zákazníkovi obnovoval certifikáty. Jelikož jsem generování a stažení certifikátů dělal z různých počítačů, chtěl jsem mít 100% jistotu, že soubory k sobě patří. S OpenSSL to lze naštěstí velmi snadno ověřit:

# CSR
$ openssl req -in domena.cz.csr -pubkey -noout -outform pem | sha256sum
a9a2390ea6ea6a3d5a186b5ee137f89909f533031fab9e2010a8f2c237fb9b7e -

# Certifikát
$ openssl x509 -in domena.cz.crt -pubkey -noout -outform pem | sha256sum
a9a2390ea6ea6a3d5a186b5ee137f89909f533031fab9e2010a8f2c237fb9b7e -

# Privátní klíč
$ openssl pkey -in domena.cz.key -pubout -outform pem | sha256sum
a9a2390ea6ea6a3d5a186b5ee137f89909f533031fab9e2010a8f2c237fb9b7e -

Takže patří…

Hodžův blog is is proudly powered by Wordpress and the Magellan Theme