VMware Fusion keyboard problems and Checkpoint VPN

Blogged by webmilhouse as Mac — webmilhouse Tue 9 Oct 2007 7:23 pm

Apparently, VMware Fusion 1.0 (51348) has problems accepting keyboard input when Checkpoint SecureRemote VPN client is running on Mac OS X 10.4.10. Turning off the SecureRemote client allows

I find this only affects my machine after I have VPN into the network and then tried to launch Fusion.
What is interesting is that according to this post the way to discover that it is the SecureRemote client is to issue the following on the command line of the Mac:

ioreg -l -w 0 | grep SecureInput

“IOConsoleUsers” = ({”kCGSSessionGroupIDKey”=20,”kCGSSessionOnConsoleKey”=Yes,”kCGSSessionIDKey”=256,” … “kCGSSessionUserIDKey”=501, “kCGSSessionSecureInputPID”=311}) “IOConsoleUsersSeed” = <14000000>

Then take the value of kCGSSessionSecureInputPID and search for it in the process list:

ps auxww | grep 311

In my case, that was the PID for the SecureRemote client. Very cool.

SQL Injection Cheat Sheet and Intro

Blogged by webmilhouse as Security — webmilhouse Mon 8 Oct 2007 6:57 am

Saw this post about a pretty comprehensive SQL Injection cheat sheet:

http://ferruh.mavituna.com/makale/sql-injection-cheatsheet/ 

Thought it went into some great detail, so check it out.

Also, this article was pretty good as well as an introduction to SQL injection:
http://webappsec.org/projects/articles/091007.shtml 

Encrypted Disk for OS X

Blogged by webmilhouse as Mac — webmilhouse Fri 5 Oct 2007 7:08 am

Here is how you can set up an encrypted disk within OS X to store sensitive files:

  1. Open up the Disk Utility (don’t click on a volume)
  2. Select “New Image”
  3. Select name, location, size, and then select encryption > AES 128 bit
  4. Select “create”
  5. Type in the password, but make sure you do NOT select to store it in the keystore *
  6. That’s it. Just drag and drop all files to the volume, and unmount it when you are done.

* This defeats the purpose of having a separate encrypted volume because OS X will keep the key in escrow and allow the volume to be mounted by anyone with your credentials on your computer. This password should be different from your OS X password and the FileVault master password for maximum protection. Also, for extra protection, make sure the password is over 30 characters in length and is a mix of uppercase, lowercase, numbers, and special characters.
Taken some from this article: http://www.macosxhints.com/article.php?story=20070711100831587

Proudly powered by wordpress 2.7 - Theme based on Back in Black 2 by neuro, modded by me.