Stoic Joker

It sounds like your issue is with the printer port LPT1, is it in ECP mode? I would recommend uninstalling the printer, then going into DM and uninstalling LPT1, reboot and go into the bios (don't let windows start), Completely disable LPT1, then restart Windows so it can "see" LPT1 is gone. Now reboot and reenable LPT1 with these (typically default) settings: Port 03F8 IRQ 7 DMA 3 ECP mode enabled Boot into Windows and the port should be detected as new hardware and installed, check DM and make sure there are no resource conflicts. Use the Add Printers wizard to install the 4V with the MS driver, print a test page, and then reboot to make sure it stays put (it should). If this doesn't work let us know how & where it failed, as this will help to pinpoint the issue.

While the above information is correct, here's a bit more detail on the differences between TS & RDP/RDC Terminal Services in Win2k could be installed on a server in one of two modes. Administrative Mode - Could only be accessed by administrators and was typically used for managing "Headless" (no keyboard, mouse, monitor) servers. This option was limited to a max of 2 connections and required no additional licensing. User Mode - could be accessed with any account that was granted the TS access permission. The TS required activation before it was allowed to validate licensed connections. This option was limited only by the number of connection licenses purchased & the servers hardware. TS in 2k required you install a Connection Client to access the server. Terminal Services in Win2k3 requires installation only if User Mode is needed. Administrative Mode - Can only be accessed by administrators, is replaced with the XP like Remote Desktop Connection and is installed by default. The differences being 3 simultaneous connections are allowed (XP allows only 1), and connection to an existing console session is optional (it's forced in XP). User Mode - Is identical to the Win2k implementation, install, activate, license and enjoy. TS in 2k3 uses the native XP RDC client to access the server so no client install is required. Both TS & RDC/RDP run on port 3389 and are basically identical. The differences are in the intended usage of the connection and the licensing required for that purpose. Both 2k & 2k3 TS user mode offered the option to "Application Lock" a TS session (I love this feature). The program started as soon as the connection was made, and the session was closed if the application was exited. This allowed users to access a key application while cleanly preventing them from mucking around with anything. Hope that helps Stoic Joker

Just out of curiosity... After the GP changes are you doing a policy refresh on the server & client? [gpupdate /force] If not the policy changes won't go into/be in effect till the next refresh interval (approx 90min). After user group membership changes, are you doing a logoff/logon so a new security access token can be generated reflection this change? Just a thought Stoic Joker

Generally much more detail is required to make recommendations for this type of question, but I'll wing-it with two possible options. Quick-N-Dirty - Make server 2 (from domain 2) a member server of domain 1. Then Machine Lock any publicly used service accounts to the member server. This just leaves them "Stuck on the Porch" so to speak. Option 2 - Use server 2 to create an empty forest root. Most of the networks I deal with are small that this type of configuration needs, so I can't provide any detail on how it works. But if I recall correctly this is the MS recommended configuration. I'm currently pre-Coffee... Stoic Joker

Okay, I say we give him that point. Because granted the Notification Area is part of the System Tray, which is part of the Task Bar, so it is logical for the controls to be there. But...It has indeed been in the Adjust Audio Properties dialog since Win95 - Making it a rather obvious first place to look. ...Its removal irked me too.

Configure Power Profile->Advanced Profile Options->Default Shutdown type ...It's there.

The profile tab in the user account properties dialog has what you're looking for.

Okay... That's close to what I was looking for. I'd already understood the relationship between MSS & MTU, MTU being MSS + the 40 byte TCP header. Most of the (till now) stack tuning consisted of balancing the best average MTU so that the MSS was an even multiple of the RWIN and would neatly and completely fill the RWIN without overflowing it, then letting PMTU and Window Scaling swing it to-and-fro if/as needed. So the stack tweaking really just sets a base-line that the other options then revolve around (for better or worse...). What I was getting at (or pondering aloud) was, might the AutoTuning algorithm be using the PMTU option (among other things) to do an on-the-fly adjustment of the RWIN to more closely hit an ideal base-line and maintain that balance? If so ... Then all of the previously popular stack tweaking options would become (/are) obsolete and rather detrimental to network/internet performance.

I've found that searching with the right terminology can usually make things easier to find. So...While I don't know the answer to your question I thought I'd point out that they're called Context Menus. Just a Thought Stoic Joker

While it seems a safe assumption (I can't find anything one way or the other) ... Does the AutoTuning feature also adjust the MSS/MTU to match/balance with the RWIN?

Guys, I gota go with Spooky and Tarun on this. Yes disabling "things" will help performance on some low-resource machines but it needs to be done far more surgically and with a much greater understanding of how the services interact and what they actually do. Consider, the above mentioned (as useless) Windows Time Service which keeps your computers clock synchronized with a predetermined time server. Is that really useless? Not if your on a domain. If your system clock skews more that 5min (by default) from the servers clock, you will be locked-out of Everything including LocalMachine! Disabling the IKE service will (most likely) go unnoticed right up until you try to connect to a VPN (yes that even includes a 3rd party VPN Client) the connection will quite transparently fail ... leaving you on the phone with Tech Support for about 100yrs trying to figure out why. Etc. etc. etc...

...So it's too much of a hassle to forward two ports for web & ftp services?!? Granted I'm not sure exactly what the IPTV thing you're referring to is but I seriously doubt it requires enough ports open to warrant running it in a DMZ (unless you're hosting the **** thing).Running in a DMZ is only for a completely fortified box that has no non-public services running on that interface (e.g. there is no point in blocking ports that aren't open). Passive Mode FTP - Client sets transfer port. Active Mode FTP - Server sets transfer port, and gives it to client on port 20. The only way to blow Passive Mode FTP with NAT is to (Assume your running Active and open/forward port 20). Either that or a completely botched dual NIC config has completely borked the routing table to where the machine can't find its own a** let alone decide which version of "out" to send a packet to. The IIS FTP is and always has been a Passive FTP Server, I've been running one for years, and doing it behind a NAT firewall. My typical transfers are 100-700MB and stability has never been an issue. I also run web, email, & remote access services (on various machines) behind the same NAT router. It is possible you had a bad router ... but that is not the OS's fault.

You wouldn't be changing the router, Just putting one between your "network" and the ISP's PPPoE bridge. The catch to PPPoE is that it will assign a Public (e.g. routable) IP address to local machine which puts Vista in Paranoid Psychotic Mode. The 2nd router will handle the PPPoE "Dial-in" separating the Public IP issue from the Vista box. Once "Safely behind" the NAT firewall and using a Private (e.g. non-Routable IP Address) the Vista box will come out of it shell and allow you to share files. Any other configuration is a recipe for disaster.

I've never been a fan of finding the right way of configuring something wrong... (So basically) You can't enable filesharing on you internet connection ... Christ I Hope Not! Dual NIC configurations are great If (on a server...) you need them, on a typical workstation is more a case of complexity for the sake of itself. You need (and frankly must have) a single device that draws a "line in the sand" between Public and Private networks. If your ISP stuck you with one of those PPPoE bridges that need to "dial" the connection, get a second router that will handle the "dial-in" for you and then NAT between the Public (internet) & Private (Your comp & 360) networks. Any of the Cable/ADSL routers sold these days (I'm partial to Linksys) can do this for you and run about $50. This configuration will allow Vista to "relax" due to there being a Clearly Defined private network and simplify any file sharing config you need.

lol Seems kinda harsh don't it? Seriously, the memory score is being pulled down due to the lack of video (card) memory. The EAX300 I have only has 128MB on it, however Glass & Flip3D run just fine. @amit_talkin - I hadn't thought about the ECC angle but you could be right. I'm running a customized Supermicro Xeon "Workstation" (Hay that's what they called it...) with Corsair PC2700 RAM. Frankly I don't give a **** what the report says ... This thing will fly!

Same here, keys listed, but no downloads ... I'm glad I grabbed them the other day. The DL took bloody forever and kept stalling, so you could be on to something with the extra download servers idea.

...Thanks for pointing out I forgot to catch the ending... Yes the Vista install is much more streamlined than its predecessors and should be far less daunting for the average Joe users that run it. Hell, it's almost too easy.

Processor Xeon 3.0 x 2 - 4.8 Memory 4Gig - 4.4 Graphics ATi EAX300 - 2.2 Gaming Graphics - 3.2 HDD SATA2 RAID 0 - 5.9

I don't know what hardware that vid claims to be running on, but I got a dual 3.0Ghz Xeon box with 4Gig of RAM and SATA2 RAID0 that didn't install any where near that fast. I'll have to say that vid clip is (time compressed) BS.

Right click the target file Select properties On the general tab - Hit the "UnBlock" button in the security section at the bottom.

How many users/mailboxes are you going to be dealing with? Sure Exchange is great if you need all the bells and whistles (The company I work for does & I'm the Admin) ... But if you just need control of your E-mail, have less than 20-30 users, and no huge groth plans, the IIS POP3/SMTP server that comes with Win2k3 server works quite well. I've been running one at another location for a few years and have had no problems with it so far. Hell it's almost too simple to break. Just a Thought Stoic Joker

Yes the raw socket part is a given, and I've been working with that from the start of this project. I guess I hadn't been paying attention when the MS crippeled raw socket support memo was sent (hehe). ...As that was half of my problem. The other half is getting the packet header(s) coded properly so they make sense to the target when they get there. I've been using eEye's Iris to analyse the out going packets and the headers are either being ignored, mangled, or both (and I do have SOL_HDRINCL set). Any suggestions appreciated. Thank You Stoic Joker

Greetings Okay...As I know this can be a bit of a "touchy" subject, I'll answer a few things right-up-front. Q. What are my plans for the resulting code? A. Testing in (my) lab only. I'm an MCSA working for an MCSP & working on a CEH certification. Q. Am I trying to build a "Nuker"? A. Yes, but, as stated above it is/will only be used for lab testing and for the purpose of better understanding how to defend a network properly. So... While there are tons of sample code bits available, most are for *niX and don't seen to work well when compiling on a Windows box (I'm using MS Visual Studio 2005). The part I keep getting hung on is finding working code that will allow me to spoof the source IP of the packet being sent. I'm not posting any of the code I'm currently using to avoiding it's missuse, but will provide it to anyone who is willing to assist me on this project (assuming they properly grasp its intention). Thank You Stoic Joker

Um... (several threads on that page) ...assuming you were referring to the "forced" sa password change; It's a good idea...but I can't use it. If I do a forced reset of the sa pw then I can get into the back, but the accounting app won't be able to get into the "front" anymore. <-kinda throwing the baby out with the bath water) I've basically resigned myself to having to brute force this project, so any recommendations on what utility to use would be greatly appreciated. Thank You Stoic Joker

Greetings (I do hope this is in the right form...) Okay, just to get this cleared up; I am the Network Administrator for the company I work for, and this action was requested directly by the owner of the company. So...Yes I am legally allow to be asking/doing this. Now (that that's outa the way...) What we have is a Pervasive SQL based accounting application, that only allows write access to the db via the main GUI interface. Unfortunately we need to access the db from the backend (e.g. direct SQL Queries) to resolve some misc. issues with the db. The db's SA password is hard coded into the application in question (**** if I know where...I l00ked), and is "other wise un-available". So...What I'm looking for is either a password recovery utility that works on Pervasive SQL dbs or a method of "extracting" said password from the db by (Um...) "force". Thank You Stoic Joker