Latest posts

Sophos UTM 9.409-9 – Cisco VPN Client bug

Martin 19/01/2017

After upgrading to 9.409-9, Cisco VPN client in Remote Access is broken, symptoms are that you can connect as usual with your client, but no traffic get’s through, the fix is to change the way that SHA2 is being truncated, user HolgerLehn in the Sophos Community has described this: Community link: https://community.sophos.com/products/unified-threat-management/f/hardware-installation-up2date-licensing/84979/since-9-409-8-and-9-ipsec-cisco-vpn-not-working/319183#319183 So in short, go into Shell in the UTM as loginuser, then su for root access, and type this: “cc change_object REF_IPsecPolicyCisco ipsec_auth_alg sha2_256_96″… Sophos UTM 9.409-9 – Cisco VPN Client bug

Read More Sophos UTM 9.409-9 – Cisco VPN Client bug

Sophos UTM 9.409-9 released

Martin 21/12/2016

Sophos has released 9.409-9 today, fixing many issues, see the release notes here: Up2Date 9.409009 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-2392]: [AWS] Allow the user to select the security group to port during conversion Fix [NUTM-5327]: [AWS] Confd object missing after instance recovery in HA scenario Fix [NUTM-5339]: [AWS] [RESTD] allow… Sophos UTM 9.409-9 released

Read More Sophos UTM 9.409-9 released

Compliance check: IIS leaks internal IP

Martin 21/12/2016

During security audit scans, it is sometimes seen that a Microsoft Internet Information Services (IIS) server is exposing the servers internal ip, when a speciel get request is sent to the server. This can be due to misconfig, unpatched server or maybe something that is default. It can be amended by running this on IIS servers from 2008 R2 and up: appcmd.exe set config -section:system.webServer/serverRuntime /alternateHostName:”mail.domain.com” /commit:apphost Reboot is not needed and now it will… Compliance check: IIS leaks internal IP

Read More Compliance check: IIS leaks internal IP

vSphere 6.5: The new vCenter server appliance finally here – how to migrate!

Martin 21/11/2016

VMWARE has just released vSphere 6.5 offering a lot of new and great features: vSphere 6.5 – Release Notes vSphere 6.5 – Whitepaper What’s new From my perspective, the biggest feature is the new “VMware vCenter Server 6.0 with an embedded VMware Platform Services Controller” The VCSA have been having a rough start in the early days, db errors and unresponsiveness, and most of all, the lack of Update Manager, but as of now, things… vSphere 6.5: The new vCenter server appliance finally here – how to migrate!

Read More vSphere 6.5: The new vCenter server appliance finally here – how to migrate!

Sophos UTM 9.408-4 released

Martin 09/11/2016

Sophos has released 9.408-4 of the UTM firmware today, it’s a big fix and fixes among other thing, the SMTP problem with same receipient set twice 🙂 Release notes: Up2Date 9.408004 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-5349]: [AWS] Restore fails if UTM is created with backup file in user data Fix [NUTM-5466]: [AWS] ssh disabled – No connection… Sophos UTM 9.408-4 released

Read More Sophos UTM 9.408-4 released

Synologo NAS: Parity Consistency Checking missing Percentage

Martin 08/11/2016

When adding bigger disks or rebuilding a volume, storage manager normally shows how far it’s gotten in the process, but sometimes this percentage is missing! For now, a workaround it to do a SSH to the terminal of the Synology, and issue this command: “cat /proc/mdstat” And you can see how far you are and a approx. time frame for the end 🙂

Read More Synologo NAS: Parity Consistency Checking missing Percentage

WordPress: How to change site URL and disallow robots

Martin 20/10/2016

When testing WordPress sites for development, it is often common, to restore the whole site to a testsite ex. test.domin.com, but we do not want to allow search engines to read data and index things on the test site after restore, we will have to change the site url, else we will be redirected to the normal url. Hardcoding site url: Edit wp-config.php and add theese lines:  

  This is a quick and… WordPress: How to change site URL and disallow robots

Read More WordPress: How to change site URL and disallow robots

Sophos XG firewall: usefull shell commands

Martin 19/10/2016

I’m beginning to collect shell commands also for XG firewall, so this article will be updated as they are learned 🙂 —————- Find raw text log files: Location: /var/tslog/ and symbolic link just /log —————- SMTP logfiles: Live logs: cd /log tail -f /log/awarrensmtp.log for Legacy mode tail -f /log/awarrenmta.log for MTA mode Check the status of Awarrensmtp service: #service awarrensmtp:status –ds  nosync (Should show 200 RUNNING) To get  debug logs: # service awarrensmtp:debug –d –s… Sophos XG firewall: usefull shell commands

Read More Sophos XG firewall: usefull shell commands

Arduino: Nano test script

Martin 05/10/2016

When testing out nano devices, you can use this script to simulate a breathing LED, this script will “breathe” on the “L” LED when uploaded:  

It’s made by GitHUB user cesschneider, read more here:

Read More Arduino: Nano test script