Pullups

Pullups are my weakest physical test. As a kid, I twisted my arms on different occasions, and since then have weak elbows.

I happened to see this video.

So I thought why not try it out. There is pull up bar at the exercise corner.

Microsoft Windows password policy

As part of security policy, the Windows password policy ensures the user’s password is sufficiently complex and fresh.

Windows by default do not detect the difference between old and new password. It even accepts a password with one character different from the previous. Why? This is due to hashing. All authentication systems hash the password and the hashed copy stored. As long as the hashed copies differ, it will be accepted.

What if you need to increase the complexity of the user passwords to prevent dictionary attacks. For example, repeated characters with high complexity will still be accepted. In this day and age of high-speed computers, brute force dictionary attack makes password cracking very easy. To prevent this, a filter is required.

A password filter can filters out repeated characters. The default high complexity password filter, Passfilt.dll captures the following:

 

Character categories Examples
Uppercase letters of European languages (A through Z, with diacritic marks, Greek and Cyrillic characters) A, B, C, … Z
Lowercase letters of European languages (a through z, sharp-s, with diacritic marks, Greek and Cyrillic characters) a, b, c, … z
Base 10 digits (0 through 9) 0, 1, 2, … 9
Non-alphanumeric characters (special characters) $,!,%,^,(){}[];:<>?
Any Unicode character that is categorized as an alphabetic character but is not uppercase or lowercase. This includes Unicode characters from Asian languages.

Link

It is possible to install a third party filter like OpenPasswordFilte to give refined control of the user passwords.

OpenPasswordFilter

Cisco IOS scheduled tasks

I was wondering how to keep a “reload in” command to act as a fail-safe when working with remote equipment. There can be only a single reload  Someone recommended using scheduled tasks or Embedded Event Manager (EEM),

In the EEM, it is possible to schedule a task, at the desired time/trigger, execute the task or restart the router.  There are other monitoring actions the EEM can do, like send an email when a certain trigger has occurred.   EEM available on most routers and 3xxx series of switches.

The EEM process is based on core event publishers (event detectors), and the event subscribers (policies).  Obviously, the policy is based on what the detectors can detect/trigger.  Listed below are the detectors available.  Not all are available for the IOS version.

Application-Specific
CLI
Counter
Custom CLI
Enhanced Object Tracking
Environmental
Generic Online Diagnostic (GOLD)
Identity
Interface Counter
IPSLA
Mac-Address-Table
Neighbor Discovery
NetFlow (NF)
None
OIR
Resource
Redundancy Framework (RF)
Routing
RPC
SNMP
SNMP Proxy
SNMP Notification
SNMP Object
Syslog
System Manager
Timer
IOSWDSysMon (Cisco IOS watchdog)
WDSysMon (Cisco IOS Software Modularity watchdog)

 

For more info, check this link

Cisco LMS and SSH

In the Cisco LAN Management Solution or LMS, the Topology Services has a nifty feature.  Right mouse click on a device, you can choose to Telnet or SSH to the device.  This module based on the Java plugin is not without its headache.  The information to configure the plugin is not easily found.  After much grief and hair pulling, I found a blog post for  LMS 3.2 (gasps!) link.  Using the information from that post, I used the keywords to search through all the LMS 4.2 PDFs hoping for a match.

The configuration of the Java plugin for SSH is found in the “Monitoring and Troubleshooting with Cisco Prime LAN Management Solution 4.2” book.  Basically, you need to create a config file for the Java plugin to read.  This file, campusmgr.properties should be in the user home directory.  For Windows 2012, this is the location.

c:\users\<username>\campusmgr.properties

I recommend putting a copy in Default and “All users”.

The actual location of the SSH client software, I placed it in “Program Files (x86)”  or in DOS format, “C:\Progra~2”. For the 64 bit location,  “Program Files” is “C:\Progra~1”

Therefore, the file should contain the one line.

CMSSH=C:\\PROGRA~2\\putty\\putty.exe

Link