CSS11501 - source port and IP address for logging & TACACS

Similar Messages

• Can oracle audit logs keep info of Blocking or blacklisting a user ID, terminal or access port, and the reason for the action?

  Hello,
  I am workin on Oracle 11G STIGs and one STIGs states that audit log should include followings;
  - User ID.
  - Successful and unsuccessful attempts to access security files
  - Date and time of the event.
  - Type of event.
  - Success or failure of event.
  - Successful and unsuccessful logons.
  - Denial of access resulting from excessive number of logon attempts.
  - Blocking or blacklisting a user ID, terminal or access port, and the reason for the action.
  - Activities that might modify, bypass, or negate safeguards controlled by the system.
  I know how to enable audit trial with OS or DB, EXTENDED levels.  However, I could not find if it is possible that audit logs can contain info of Blocking or blacklisting a user ID, terminal or access port, and the reason for the action.

  2687254 wrote:
  Hello,
  I am workin on Oracle 11G STIGs and one STIGs states that audit log should include followings;
  - User ID.
  - Successful and unsuccessful attempts to access security files
  - Date and time of the event.
  - Type of event.
  - Success or failure of event.
  - Successful and unsuccessful logons.
  - Denial of access resulting from excessive number of logon attempts.
  - Blocking or blacklisting a user ID, terminal or access port, and the reason for the action.
  - Activities that might modify, bypass, or negate safeguards controlled by the system.
  I know how to enable audit trial with OS or DB, EXTENDED levels.  However, I could not find if it is possible that audit logs can contain info of Blocking or blacklisting a user ID, terminal or access port, and the reason for the action.
  Think about that.  If the port or terminal (client ip address) is blocked, then the communication never got to the database.  So how would the database be able to audit an action that never got there?

• HT1051 Trying to change Shipping and Delivery address for one in the US, from Canada, and can't do it. State and zip code appears in red but no change in country name.  Using French (Canada) iPhoto app.

  Trying to change Shipping and Delivery address for one in the US, from Canada, and can't do it. State and zip code appears in red but no change in country name.  Using French (Canada) iPhoto app.

  Larry's right, You can still use your credit card, you just need to change the "billing address" to the recievers address. It gets billed to your CC and delivered to the US

• What is the web address for logging into my one to one account?

  I cannot find where I am supposed to log in to my one to one account. The guy I dealt with at the Apple store wasn't very helpful.

  I think you just need to make the iTunes sidebar visible.  The "source list" is the sidebar.  From the iTunes menu bar, under View, select Show Sidebar.
  iTunes is an application, not a web site, so there is no Internet address for iTunes, except for the web page to download the latest iTunes app (and that's probably not what you are asking about).

• LCCS + RTMFP ports and IP addresses/host names

  Hey guys,
  Where could I get the ports + IP addresses that we must have open in order to use RTMFP + LCCS services ?
  I've found:
  http://forums.adobe.com/thread/583118 which seems to be related due to talking about RTMFP ports
  http://www.iana.org/assignments/port-numbers - port 1935 that you've registered with IANA
  http://kb2.adobe.com/cps/164/tn_16499.html - FMS using1935
  http://help.adobe.com/en_US/flashmediaserver/configadmin/WSdb9a8c2ed4c02d261d76cb3412a40a4 90be-8000.html - some more info on ports
  http://allthingsadobeconnect.blogspot.com/2011/02/what-is-list-of-ip-addresses-for.html One of your partmers listed the IP addresses/host names, which is another piece of info I'm searching
  http://learn.adobe.com/wiki/display/lccs/LiveCycle+Collaboration+Service - nothing here ? :/
  Is there an official doc for this type of info or can some validate the following:
  1) Must have ports 80 (RTMP), 443 (RTMPS) and 1935 (RTMFP - tcp+udp); however, once the application connects on port 1935 it will be redirected to any port between 19350-65535.
  2) The fms*.na*.acrobat.com ip address are always going to be in the:
  209.34.68.0/24 subnet
  66.235.155.0/24 subnet
  Thanks
  Alex G.

  Sorry, I thought I replied to this the other day. Not sure of what happen of my post.
  Anyway, this is the list of ports used by FMS in LCCS:
  - tcp 443 for rtmps (rtmp over SSL)
  - udp 1935 for rtmfp
  - udp 19350-19400 (I need to check the upper bound) : FMS listen on udp 1935 for the incoming connection and then redirects the request to one of those (not sure of the fine details for this, but we had to configure our firewall to have these inbound ports open).
  So in order to succesfully connect to LCCS via RTMFP you need to allow UDP traffic and outbound connections to 1935 and 19350-up.
  You also want tcp 443 open (that you should already have) to access the web services and downgrade to rtmps for recording and/or if a client requires it.
  Let us know if these information are sufficient or if you need more details. Since we are relying on FMS the best place to look for documentation would be the reference documentation for FMS 4.x. Here is a link that explains the server-side configuration for RTFMP support. The client should have the same set of ports open (outbound instead of inbound):
  http://help.adobe.com/en_US/flashmediaserver/configadmin/WS5b3ccc516d4fbf351e63e3d119f2925 e64-7fd2.html
  This other link explain how to configure a TURN proxy if you want to limit the access to outbound UDP to only the Flash clients:
  http://www.adobe.com/devnet/flashplayer/articles/rtmfp_cirrus_app.html (see the "firewall traversal" section)

• How to get source code and build files for Eudora 7, and price?

  Looking for source code and build/make files for Eudora 7 to port to Win7 and Ubuntu 14. Where is a source for this and what is the cost?

  You best ask qualcomm. It is their intellectual property.
  Eudora OSE was based on Thunderbird and the source code for the Penelope add-on is open source (that is what made Thunderbird over to OSE)

• Friendly and static address for WSDL

  Hi,
  In NW7.1 one can see binded web service's WSDL from the SOAMANAGER.
  The resulting URL includes a GUID, that actually changes each time a new binding is done.
  I'd like to set a friendly and permanent URL for the WSDL.
  The alternate URL address only affects the SOAP call binding.
  I cannot find where to set an alternate address for the WSDL.
  Any clues?
  Thank you

  Hi Enrique,
  Use http://<hostname_>:<port>/sap/bc/bsp/sap/WebServiceBrowser/search.html, in order to browse web services on web browser. Then, select a function module and click on WSDL link on the upcoming screen. So, you can use that url in order to access wsdl.
  Best regards,
  Orkun Gedik

• How can I set up and email address for my grandson without giving him general access to the internet? email only

  My grandson's school needs him to have his own email address. For some reason, his is not able to use my address. I do not want him to have general access to the internet. His older brother caused my computer to be infected with a virus in a very short time. It took three weeks and one hundred dollars to get the use of my computer back.
  I do not want him to have access to the internet, but his school wants him to have an email address to communicate with him about school work. I am concerned that once he has an email address, someone (not the school) will send him a web site address in a message and he will be able to just click on it to get into the internet.

  You can use an email program (e.g. Outlook Express or Windows Live or Thunderbird) and disable HTML for that email (text only mode) to access the email account. You can create a new email account if your your ISP supports it or use a online service that allows POP3 access with an email program (most popular services allow that).

• Select between home and work addresses for Autofill

  I've searched and browsed for this and I think I know the answer but I want to check before I submit a feature request to Apple and give up for now:
  Can we choose between home and work addresses on our contact card when we have Safari perform autofills?
  I think the answer is no, that only the first address listed in our contact card is used.
  It would be most useful to be able to select the address used. Many of us have our contacts synced now between home and work computers and some of us are allowed to do occassional home business on work computers, or use our home computers for work.
  I experimented with an alternative. I set up two contacts for myself, a home contact and a work contact. They both use my name. I find that in the Contacts app I can select which card is "my card", and that will be used by autofill. But I have to open Contacts to switch "my card" to use that for autofill. It would be more useful if Safari would simply provide a way to switch between home and work contact info on the fly, or at least switch between cards.
  Am I missing anything?

  Thanks, fruhulda. I do have both my work and home address on my card in
  Address Book, and I agree that I should be able to choose which to use to fill in fields on a fax form. My question is how do I do that. I want to send a fax; I want it to feature my home information, but it's the work information that's automatically filling in. How do I change that?

• Absolute and relative addressing for stylesheets: issue with IE6 and pages not in the root

  The following conditional comment gives me a problem when I arrange my site into folders (instead of all pages in one directory, or all in the root). The directories are built according to the site hierarchy.
  <!--[if lte IE6]>
  <link rel="stylesheet" media="all" type="text/css" href="../styles/dropdown_ie.css />
  <![endif]-->
  <!--[if IE]>
  My homepage is in the rootfolder, the dropdown_ie.css is in the folder "styles".
  I use the dropdown menu from Stu Nichols http://www.cssplay.co.uk/menus/dd_valid.html and this works as long as all pages are in the same folder (or, in my case, as long as they all are together with the homepage in the rootfolder). But when pages are in different folders, the dropdown_ie.css is not read anymore when using IE6. Other browsers are ok; for those I use:
  <style type="text/css">
  <!--
  @import url("../styles/flyout.css");
  @import url("../styles/dropdown.css");
  -->
  </style>
  What do you suggest I do to get the pages not in the root to read the dropdown_ie.css file when using IE6?
  And I have a feeling that the way I import the styles may not be right, but I am not sure.
  Any help will be greatly appreciated.
  Erik

  I solved this one by changing the relative addressing of my stylesheet location in absolute addressing. And I had to do this not only for the stylesheet, but for all addressing in the html related to this drop down menu:
  href="http://mysafety.be/styles/dropdown_ie.css"
  Changing the location of my files into subdirectories (and removing the spaces in the file names) also means that all my google indexing got screwed up; I submitted to google the whole list of addresses for removal from their cache. It will be another 4 weeks before everything is indexed correctly again, but I guess I better do this now before the site becomes fully operational.

• Table for Email and Postal Address for payers

  Hi ,
  I would like to know how to download email address and postal address of list of payers i have. Which is the table that has this data?

  Dear Vinod,
  Addresses of both Customers & Vendors is stored in ADRC tabbe. ADRC is master table of all Addresses in  the system.
  From KNA1 take Customer Code & Address field.
  From ADRC take list of all address. Here Address Number field is same as Address field in Csutomer Master. 
  In Excel run Vlookup on above two files with Address & address numbers feilds as common.
  Hope the above is useful..
  Reward if you like to..
  Thanks,
  Jignesh Mehta
  Mumbai
  98700 10230

• Lync 2010 : Using same FQDN and IP address for SIP access Edge, Web Conferencing Edge, A/V Edge

  Hi Friends,
  Please assist on below query.
  Will it possible to use the same FQDN in Lync Edge? Since it has different Port numbers for each service, one public IP  for all FQDN for access will save me purchasing multiple Certificates for SANs
  FQDN
  IP Address
  Port
  Map to
  Sip.domain.com
  12.34.34.34
  5061 (TLS)
   SIP Access Edge
  Sip.domain.com
  12.34.34.34
  444(TLS
  Web Conferencing Edge
  Sip.domain.com
  12.34.34.34
  443(TCP
  A/V Edge
  I have a wildcard SSL purchased already and for this purpose I need to purchase more certificates per SAN if unique FQDN required.
  Thank You.

  Yes, although a wildcard entry only will not work entirely for all Lync clients and versions.
  I would suggest something like this:
  Edge External
  CN: sip.domain.com
  SAN: sip.domain.com, webconf.domain.com
  Reverse Proxy Listener(s)
  CN: lyncwebexternal.domain.com
  SAN: lyncwebexternal.domain.com, *.domain.com
  The wilcard entrty can replace the SimpleURLs (meet, dialin) but some clients (like any Lync Phone Edition devices prior to the June 2012 firmware) do not support wildcard entries so providing the external web services FQDN is required.  also never
  put the wildcard etry in the Common Name as devices/client that do not support wildcard entries may be tripped up there and then never even look at the SAN field.
  A cheaper alternative (although not typically recommended, this does work) would be to use a single certificate for both servers, like this:
  Edge/RP Combo Cert
  CN: sip.domain.com
  SAN: sip.domain.com, webconf.domain.com, lyncwebexternal.domain.com, *.domain.com
  Jeff Schertz | Microsoft Solutions Architect - Polycom | Lync MVP

• "Example on reading combined signals from a serial port and separating them for display purposes". I am a beginner in Labview and would appreciate if anyone help with that

  I am working on a wireless vital sign monitor. I have 3 signals; heart rate and temperature. I filter and amplify the signals before converting them into digital form. I then pass them via MAX232 before passing them to RS232 serial cable.
  I am therefore working on a program to receive the combined signal and separate them.
  I have come across serial read and write examples on ni.com but am looking for one where I can actually separate combined signals and display them separately.

  Reading the serial port will give you a string. How you divide the channels depends on how the data was formatted before it was sent over the serial channel.
  If you are designing the instrument, as it seems from your query, then you can set up any form you wish. If your data is always floating point numeric, you could use space or tab characters to separate data words. You could use and XML format. If the instrument is provided by a vendor, contact them for the protocol.
  If tabs are used between words and returns between sets of readings, the resutlant string can be interpretted by the Spreadsheet String to Array function in LV.
  Things to avoid are characters often used by serial communications systems as control characters. Carraige returns are
  often used as command terminators by serial protocols, but may also be used by the port.
  Lynn

• The edit button disappears when I have the link window open, so how do I copy and paste address for email link?

  When I want to create a link to a web page in an email, I click the "link" icon and a window appears asking for the address. But simultaneously, the "edit" function and all other functions disappear from the Firefox toolbar. With no edit, how can I copy and paste the address? I have tried highlighting the address and dragging it into the window, but it won't drop into the window.
  I have resorted to copying the address to a document and then pasting it into the link window, but there must be a less cumbersome way.

  You see the orange (on Linux gray) Firefox button if the Menu Bar is hidden.<br />
  You can make the Menu bar visible via View > Toolbars, also accessible via Firefox > Options.<br />
  If you need to access the hidden Menu bar then press F10 or hold down the Alt key to make the Menu Bar appear temporarily.<br />
  * View > Toolbars : [X] Menu Bar

• Steps to Configure Port and Partner Profile for Outbound process

  Hi,
  I want to Configure the partner profile and Port definition for outbound Message type REMADV ( for Vendor). 
  Could anyone please tell me the steps to configure.
  Thank you,
  Renu

  Hi Renu,
  In partner profile we define the system which are going to communicate between themself and send data, here we give some logical name for the system which are going to be partners in data communication.we set it using WE20
  Port is a medium through which we send the data it connect one system with the system in other end its unique, depend on the scenario we use diff ports like file port(EDI) transactoional port(ALE) internet port(for internet apl), like this i dont remember all the name, so according to our application type we select the ports we set port using WE21 usally tport name start with A*** something like this. withour defining a port we cant communicate with other system its the linker b/w the 2 system.
  <b><u>For more information please refer the following links:</u></b>
  http://help.sap.com/saphelp_nw04/helpdata/en/3b/beb13b00ae793be10000000a11402f/content.htm
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/docs/library/uuid/4943f2b7-0a01-0010-37af-faff35b2f08c
  Regards,
  Moqeeth