A Term coined by the MIT Media Lab several years ago, Yak shaving is the last step in a series of "countermeasures" you need to perform in order to reach a specific end result.

This is the Irish version of Yak shaving, mainly focused at people in Dublin, Ireland.

So you have an IP on the wrong interface and you need to migrate it to another one without any downtime, what do you do? This might happen if you’re in an environment that was using VLAN 1 everywhere, and you’ve decided to enact of the recommendations in the Cisco Best Practices guide so now you need to move the IP from VLAN 1 to VLAN 10.

SELinux is a set of extra security restrictions on top of the normal Linux security tools. It gives the systems administrator a finer grain of control than what the kernel typically provides.

But SELinux can sometimes get in your way. For example, Typical services, such as Apache, appear to start up correctly, but remain inaccessible from the outside world because you forgot to allow the apache user rights to open that port.

You can extract all the data present in your Active Directory onto a file using the following command (please ensure you are logged in with sufficient rights to do this).

Some times you need to run a very small, low powered web server from a Windows XP machine, be it for budget reasons or whatever. You may notice that when several users try to access web pages at the same time you get the following error:

403.9 error messages (Access Forbidden: Too many users are connected Internet Information Services)

This is because the IIS Configuration on Windows XP comes configured out of the box for a maximum of 10 HTTP connections. Also URLMON seems to use up 2 connections when hitting a website. This can be increased to 40 but not higher (40 is the hardcoded limit).

Similar to the article on Asymmetric routing, where you have two different Internet Providers which need to be active at the same time. Triangle routing (aka flow-based triangle routing) can pose some interesting challenges.

You have two sets of routers. Router A routes for 10.0.0.0/24 and router B routes for 10.1.0.0/24. But you need one IP address (for some very peculiar reason) from Router B in Router A. So you choose to use 10.1.0.250 on router A.

When running a Postfix Mail server you will quickly realise that external DNS servers quickly begin to timeout since you have begun to become throttled due to the amount of requests you are making against specific DNS servers. "Named" or BIND by default on some Linux and BSD machines will normally do quite well, but there is the disadvantage of high load on your local machine crashing the DNS Service. An easy way around this is through the use of DJBDNS aka TinyDNS.

Resetting the root password on an OpenBSD machine is not hard. There are many ways to change it. First the easy way:

Login to the server as a normal user with a sudo account

Run the following command
sudo su

Then proceed to change the password
passwd

The root password has now been changed.

If you do not have an account with sudo access...