HomeHub security concern - Fon and Openzone share ...

I have recently joined BT on Total Broadband Option 3 to find that my HomeHub has opened a BTFon and BTOpenzone connection. I'm quite content with this arrangement, but have found that they all share the same channel. Having done some research, the BTFon describes FON as secure because "BT FON members agree to securely share a portion of their Wi-Fi bandwidth through a separate channel on their wireless router".
I called BT about this but was told only how I could turn Fon and Openzone off - which I'd only want to do if they are compromising the security of my WPA encrypted connection by sharing the same channel. I don't know if I should be concerned by shared channel. Any advice would be welcomed.

Hi Mr Jones.
First of all the youdo not share the same channel, they USE the same channel, much the same as I could be using the same channel as you.
Fon and OZ are a separate thing from your connection, except to say they do use some of your Bandwidth when actually being use by another party, but you should have priority.
As for security, I think its fair to say that it is secure as much as possible, I leave it running and so far no problems, now and again a couple of youngster sit on my garden wall and use it, but I do live in a quiet somewhat "respectable area", but had no problems with it.
Like most it can be cracked if someone is dedicated enough, but there must be easier picking out there, and WPA should protect you.
Ray
Ray.

Similar Messages

  • Fon and openzone on same hub

    im just wondering if i should be seeing both openzone and fon on my home hub wireless conections when i look for wireless conections , am i right in thinking it should just be 1 or the other ?
    Solved!
    Go to Solution.

    OK.  Irrespective of which phone you have - 'old' or a T2/Hero - was there a point in the set up with BT software (of the 620/710) or the configuring of wireless connectivity with the T2/Hero where you could have selected Openzone/Fon as your primary Wi-Fi network, and not your home hub (I assume your hub wireless key is also displaying as being 'available.'
    (There is a known issue with the 620/710 using the BT software about trying to connect to your hub following a BTOZ/Fon connection other than in the home, but stick with the above first).
    If during setup, you selected Openzone as your primary connection and not your hub (or have changed the wireless key of your hub/or have a new hub subsequently), this could account for it.
    Without star gazing too much, the other option at this stage is to simply reset your hub, and then see what happens.
    There are other possibilities as well I'm afraid.  Its not a connectivity issue, more a functionality one I venture to think, interesting (but let me assure you, not without precedent).
    AQ.
    "Welcome to Royston Vasey - You'll never leave."

  • Why Fon and Openzone

    Why do hubs put out 2 signals, BTFon and BTOpenzone but both give a choice of logins? Perhaps there should be an BTtotalbroadband signal as well

    Hi Chrisrae,
    BTFON is the chosen name for the BT WiFi community, this would rule out the need for a "BT Total Broadband" SSID, the reason that Openzone is also broadcast is because BT Openzone subscribers (not necessarly BT broadband customers) can use these hotspots as well as the standard commercial Openzone hotspots found in coffee shops and hotels etc.  At one time the Hubs would only broadcast Openzone, however with the succesfull take up of BTFON and its rapid expansion, BT decided to add "BTFON" as an additional SSID so that users could recognise it as being a community hotspot.

  • Iphone 3gs and openzone and bt fon

    a very good evening,
    i have just got a iphone 3gs with orange, they seem to think that i cannot log onto BT fon, 
    only BY openzone, true or not please. hving spoken to the orange help desk today they are sure that
    openzone is ok but fon is not ok i thought from the forums that i could do both, help please
    julian

    Im not an i phone user [HTC Desire], so I am making some assumptions about i phone functionality here.
    First, your 'into Fon' is pretty quick, but it takes 24hrs ish for your hub to be updated - with a fair wind that it, and we have had some issues with Fon and hubs on here these last few weeks 
    Assuming you've joined Fon, and that your hub is Fon activated, having had a long  time with this issue I would say;
    Firstly, do not muck about with the BT Fon app. just yet.  Simply see what wi fi connectivity is available from the device.  You should see your own BT hub serial key code and BTOpenzone [or Fon - but probably the former] as well.  Whether [at first] on your own hub or elsewhere, just hook your device up to Fon landing page, and sign in a BTBB customer [very important detail].  You sign in using your primary BT e mail username and password.  
    But there are dragons, some hubs are not giving out a Fon signature.  Sign in is case sensitive, watch out for any auto capitalization etc.
    It should be simple.  Once you've got a Fon enabled hub and managed to sign in, then go to the BT Fon app., and once you installed in on your device ensure that you check the username and password that will come as soon as the download to your device is complete.  Dont assume that because it is complete on your device it will be complete on the Fon app. You dont need the Fon app. to sign in though, it has to be said.
    If you are a BTBB customer you can log into BTOZ and Fon, with the proviso's I've put above, and as doubtless some of the other 'Fon victims' may also add to this thread on the forum  Orange have mis-informed you.
    Come back if you need any more steer on this.
    Hope that helps 
    AQ.
    "Welcome to Royston Vasey - You'll never leave."

  • Want to modify sysvol and netlogon share permissions

    HI all,
    As per security concern we need to remove the everyone from share permission on SYSVOL and NETLOGON share.......can anyone provide me the suggesstion for the same...or any documented article which says that how to do it or what precaution showld we take....
    Or if the permission is by design has any document or Kb article which says the permission should not be changed.
    Appreciate any help.
    Thanks........
    Ahmed Gaziyani Enterprise Admin.

    Hello,
    If you remove such permission then you will have issues in appliance of group policies and netlogon scripts on your users. Users should have at least read permission on the SYSVOL folder so that group policies and netlogon scripts will be applied.
    More if you ask them here: http://social.technet.microsoft.com/Forums/en-US/winserverGP/threads
    This
    posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
    Microsoft Student
    Partner 2010 / 2011
    Microsoft Certified
    Professional
    Microsoft Certified
    Systems Administrator: Security
    Microsoft Certified
    Systems Engineer: Security
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Active Directory, Configuration
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Network Infrastructure, Configuration
    Microsoft Certified
    Technology Specialist: Windows Server 2008 Applications Infrastructure, Configuration
    Microsoft
    Certified Technology Specialist: Windows 7, Configuring
    Microsoft
    Certified Technology Specialist: Designing and Providing Volume Licensing Solutions to Large Organizations
    Microsoft Certified
    IT Professional: Enterprise Administrator
    Microsoft Certified IT Professional: Server Administrator
    Microsoft Certified Trainer

  • BB Browser Cipher RC4 128 bit Security Concerns

    When you check Browserspy from your BlackBerry browser via this link:
    http://browserspy.dk/
    Then select "Security" from the list
    Then select "SSL Encryption Check"
    For my Z30 I get RC4 128 bit (see picture.)
    I also get the same results using this test:
    https://www.fortify.net/
    There are security concerns for RC4 128 bit to the extent Microsoft has recommended not using it.  See these two links:
    http://en.wikipedia.org/wiki/RC4
    http://technet.microsoft.com/en-us/library/cc179125.aspx
    I do not have any device connecting to the web using RC4 128 bit.
    Is there a way to change the cipher strength or order for the BlackBerry browser?
    (Just as a side note - because BlackBerry uses WebKit for the browser (Apple uses WebKit) a lot of the browser tester sites pick it up as Safari. I woder if browser testing to determine market share doesn't flag some of Blackberry as Apple due to this "confusion.")
    Solved!
    Go to Solution.

    foryour information, here is what I get for my desktop browsers :
    AES128 for Mozilla Firefox 36.0
    AES128 for Google Chromium 42.0
    AES256 for MS Internet Explorer 11
    and also...
    AES128 for Mozilla Firefox 35.0.1 APK on my Passport
    The search box on top-right of this page is your true friend, and the public Knowledge Base too:

  • Can my Wife and I share an iPad?

    My Wife and I both have an iPhone 4, and have our own set of Apps, E-mail, photos music, etc. We have pre-ordered the New iPad. My question is - can we use multiple accounts on the same iPad - or does it have to be either/or?
    More specifically, the only thing I'd like to have shared is our photos - can I set up the iPad so that pictures from both our photostreams appear on the one iPad?
    Thanks!

    re: Sharing...
    I can't speak to what is different with iOS 5 and iCloud because we're still on 4.3.4, but I'll soon update to 5.1, since it fixes some concerns we had with 5.0 and 5.0.1. (And I want to get the new iPhoto app!)
    We have a 64GB iPad 2 WiFi-only.
    My wife and I 'share' an iPad in this way:
    My wife has always been 'PC-averse'. She hated using Windows and MS Office at work. She recently retired, and needed 'something' to send and receive email and occasionally browse the web, and shop online.  A netbook would have sufficed, but still had Windows. The iPad 2 is perfect for her, because it is 'instant on' in standby with a smart cover, has huge battery life for her occasional use (she checks email once a day, and we charge it every couple of weeks), and still has lots of functionality, (and free apps for me to play with!) well beyond her basic needs.
    Email:
    She retrieves all her email exclusively on her iPad.
    I get all my email on my MacBook.
    Apps:
    You do not need to sign-in/sign-out to use the Apps you've downloaded.
    All apps are available to everyone, but...
    we don't usually use social networking apps on the iPad, and I did notice that the Twitter free app stays 'signed-in' all the time, if you let it.
    AND... Update requires signing out of one Apple ID and signing-in with the other Apple ID in order to update ALL the Apps. It's not difficult. If you're in one Apple ID and Update requires the other Apple ID, you are simply shown the Apple ID that 'purchased' the App, and prompted for that password.  If you cancel, you can let the other person do 'update' when they're signed in.
    My wife uses almost exclusively 'Home Page' apps: Mail, Maps, Safari, IMDB, WeatherBug, a Bible app, and iPod (Music Player).
    I've downloaded apps I'm interested in and put them in folders on additional Apps pages, separate from the 'Home page' that she uses. My apps are a few games, almost 100 photo apps, a few music apps, and one magazine app subscription that was free with a print subscription.
    Music, Video, podcasts
    All the music on the iPad are her songs. We've downloaded a few free TV episodes, but don't rent or buy movies on the iPad.
    All my music and podcasts are on my MacBook exclusively.
    Photos:
    I shoot most photos with a Canon point & shoot and upload everything to my MacBook iPhoto.
    I upload family event photos directly from the SD memory cards to her iPad 2 with the camera connection kit. I've used the built-in iPad cameras to 'play' with the photo apps I've downloaded, and occasionally I manipulate some of the Canon images. If I want a copy of one or two back on my Mac, I email them from the iPad.
    Backup/Sync:
    Since we're still on iOS 4, backup and sync are done on two user identities on my MacBook, rather than iCloud. Neither account is set to automatically sync. I do only manual backups on both accounts.
    Problems?
    Not really. It took a while to 'grow' organically into this arrangement. Once I accidentally synced to my account, and all the apps I had downloaded moved out of the folders I had created, so I had to re-create and re-arrange them. Time consuming, but no apps or data was lost.
    Message was edited by: kostby

  • My wife and I share our Mac OS 10.6.8 since downloading Skype on her account she can not stay connected to any web site she pulls up. I removed Skype from here account but it stll happens. What can I do to clear this up?

    My wife and I share the same Mac OS 10.6.8 and since downloading Skype on her accout she came not asty connected to any web site for more than a few seconds. I have remove Skype from her account but not mine. I don't have the problem on my accout and I still have Skype loaded. How can I fix this problem?

    O.k. Thanks for the clarification. I poked around in my TimeCapsule router's settings (TimeCapsule is an Apple Airport Extreme router with attached hard drive for wireless backup/storage). Unfortunately, it doesn't look like I can disable multicasting with the TimeCapsule. I can change the multicasting 'rate'. Settings are Low, Medium, High. It's currently set to Low.
    I did a few web searches, and found an Apple.com article: <http://support.apple.com/kb/HT3789?viewlocale=en_US> which explained how to disable Bonjour Service Advertisements. I believe this is the same thing as 'Multicasting'. The process is a modification of "/System/Library/LaunchDaemons/com.apple.mDNSResponder.plist", and a restart of the Mac is required afterwards.
    I'm a bit concerned that disabling multicasting will interfere with my AppleTVs and iTunes music sharing, but I may try it next time I'm up for a computer workout. This task will require editing of system preference files, could require multiple restarts, might interfere with my AppleTVs, could interfere with my iTunes file sharing, doesn't have a documented relationship to my problem.
    This is way to difficult for something that should just work. Did you say you had read something about a relationship between this bonjour multicasting and smb connectivity? If it was online could you post the link?
    I'm currently able to connect to the drive using NFS, but I have to manually configure that connection each time I reboot (can't get the 'Disk Utility' configured to do it automatically). While it's working with NFS, it's not my preferred connect method (for various reasons).

  • Security breach - keychain and device not de-registered

    I recently was given an iPad 2
    The problem is that the device is registered to someone else and the keychain is or looks to be part of someone else network.  Is there a chance that this's iPad could be accessed remotely and all my data could be viewed?
    I have the 3G Wi Fi version.
    I could not get my 3G sim data card to work either.  My Cellular provider said there is nothing wrong on the connection side, that it is something to do with the iPad 2
    Please can anyone shed any welcoming light

    Hi Meg St_Clair,
    Thank you for your reply.
    The thing is when I was given the iPad, what should have happened at the beginning was the de-registration of the iPad from that user by releasing the serial number with Apple so I could then re-register it with Apple.  Then the removal of the iPad from that persons network and keychain list of devices, the amount of messages about keychain being released or not recognised was so concerning.  The amount of messages I got about this iPad has been deactivated from find my iPad from my iPhone!
    The really worrying concern is that I do not have an Apple iPhone.  I feel like I have been given something, but now that I am complaining about my security concerns he now wants it back!
    My real question is that say if that person intended to access my iPad, he could with keychain still being part of his network, surely?
    I am so concerned that my privacy has bee invaded, my data captured.  I wonder what Apple would do for me in this instance.

  • Safari password auto fill security concern

    Just discovered what I consider to be a big security concern with iCloud Keychain. If you go into Settings, then Safari and your iCloud Keychain is under stored passwords and auto fill, the passwords are stored in plain text with no asterisk or anything. This means that all someone needs is your 4digit unlock code and they are then able to view all your stored passwords in Safari. They should at least require your iCloud Keychain password to view these, or just asterisk them out. If someone saw you enter your four digit unlock code, and then put your phone down, they could get this information without you even knowing it. This is not safe.

    The purpose of that section is so that you can see your passwords, there wouldn't be much point in replacing them with asterisks. They are password protected, just don't give others your password.

  • DSGETDCNAME advertising test failing. SYSVOL and NETLOGON shares not replicating. Please help!!!

    Hello all. We are currently running a Windows Server 2003 ADDC as a virtual machine on a Windows Server 2012 host using Hyper-V. We have recently added a second Windows Server 2012 ADDC also as a Hyper-V VM. I promoted the 2k12 to a DC, transferred all FMOS
    roles, and tested AD replication. All AD data was replicated fine. However a DCDIAG (the results of which I have attached to this post) show a few errors.
    First off, it is failing the advertising test. This is more than likely due to a DNS error. Unfortunately, I can not seem to find the error within the DNS to resolve it. 
    Secondly, it is failing the KccEvent test; also seeming as a DNS related error.
    Thirdly, both SYSVOL and NETLOGON shares were not successfully replicated. This is likely the basis for the other issues. Without these successfully replicated, I can not demote the 2K3 server; which is the goal in the end, to replace the old server with
    the new. 
    I am willing to try just about anything, so any suggestions would be greatly appreciated. As for what I have tried, I have tried a non-authoritative restore using burr flags with no success. I CAN ping both DCs from each other ensuring connectivity. All
    users can currently log on to the server (due to the fact that the 2K3 server is still running and still holds the SYSVOL and NETLOGON shares).
    Once again, any help would be greatly appreciated! Thank you in advance!
    DCDIAG Output:
    Directory Server Diagnosis
    Performing initial setup:
    Trying to find home server...
    Home Server = RETIRED2012
    * Identified AD Forest.
    Done gathering initial info.
    Doing initial required tests
    Testing server: Default-First-Site\RETIRED2012
    Starting test: Connectivity
    ......................... RETIRED2012 passed test Connectivity
    Doing primary tests
    Testing server: Default-First-Site\RETIRED2012
    Starting test: Advertising
    Warning: DsGetDcName returned information for
    \\retired1.RetireFirst.local, when we were trying to reach
    RETIRED2012.
    SERVER IS NOT RESPONDING or IS NOT CONSIDERED SUITABLE.
    ......................... RETIRED2012 failed test Advertising
    Starting test: FrsEvent
    There are warning or error events within the last 24 hours after the
    SYSVOL has been shared. Failing SYSVOL replication problems may cause
    Group Policy problems.
    ......................... RETIRED2012 passed test FrsEvent
    Starting test: DFSREvent
    ......................... RETIRED2012 passed test DFSREvent
    Starting test: SysVolCheck
    ......................... RETIRED2012 passed test SysVolCheck
    Starting test: KccEvent
    An error event occurred. EventID: 0xC0000827
    Time Generated: 08/09/2013 22:08:34
    Event String:
    Active Directory Domain Services could not resolve the following DNS host name of the source domain controller to an IP address. This error prevents additions, deletions and changes in Active Directory Domain Services from replicating between one or more domain controllers in the forest. Security groups, group policy, users and computers and their passwords will be inconsistent between domain controllers until this error is resolved, potentially affecting logon authentication and access to network resources.
    A warning event occurred. EventID: 0x80000677
    Time Generated: 08/09/2013 22:10:02
    Event String:
    Active Directory Domain Services attempted to communicate with the following global catalog and the attempts were unsuccessful.
    An error event occurred. EventID: 0xC0000466
    Time Generated: 08/09/2013 22:10:06
    Event String:
    Active Directory Domain Services was unable to establish a connection with the global catalog.
    ......................... RETIRED2012 failed test KccEvent
    Starting test: KnowsOfRoleHolders
    ......................... RETIRED2012 passed test KnowsOfRoleHolders
    Starting test: MachineAccount
    ......................... RETIRED2012 passed test MachineAccount
    Starting test: NCSecDesc
    ......................... RETIRED2012 passed test NCSecDesc
    Starting test: NetLogons
    Unable to connect to the NETLOGON share! (\\RETIRED2012\netlogon)
    [RETIRED2012] An net use or LsaPolicy operation failed with error 67,
    The network name cannot be found..
    ......................... RETIRED2012 failed test NetLogons
    Starting test: ObjectsReplicated
    ......................... RETIRED2012 passed test ObjectsReplicated
    Starting test: Replications
    ......................... RETIRED2012 passed test Replications
    Starting test: RidManager
    ......................... RETIRED2012 passed test RidManager
    Starting test: Services
    ......................... RETIRED2012 passed test Services
    Starting test: SystemLog
    A warning event occurred. EventID: 0x00001695
    Time Generated: 08/09/2013 22:06:48
    Event String:
    Dynamic registration or deletion of one or more DNS records associated with DNS domain 'RetireFirst.local.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
    A warning event occurred. EventID: 0x000003F6
    Time Generated: 08/09/2013 22:06:49
    Event String:
    Name resolution for the name _ldap._tcp.Default-First-Site._sites.dc._msdcs.RetireFirst.local. timed out after none of the configured DNS servers responded.
    A warning event occurred. EventID: 0x00001696
    Time Generated: 08/09/2013 22:07:44
    Event String:
    Dynamic registration or deregistration of one or more DNS records failed with the following error:
    A warning event occurred. EventID: 0x000003F6
    Time Generated: 08/09/2013 22:07:51
    Event String:
    Name resolution for the name retired1.RetireFirst.local timed out after none of the configured DNS servers responded.
    A warning event occurred. EventID: 0x00001695
    Time Generated: 08/09/2013 22:08:23
    Event String:
    Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.RetireFirst.local.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
    A warning event occurred. EventID: 0x00001695
    Time Generated: 08/09/2013 22:08:35
    Event String:
    Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.RetireFirst.local.' failed. These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).
    An error event occurred. EventID: 0x0000041E
    Time Generated: 08/09/2013 22:08:45
    Event String:
    The processing of Group Policy failed. Windows could not obtain the name of a domain controller. This could be caused by a name resolution failure. Verify your Domain Name System (DNS) is configured and working correctly.
    An error event occurred. EventID: 0x00000423
    Time Generated: 08/09/2013 22:08:53
    Event String:
    The DHCP service failed to see a directory server for authorization.
    A warning event occurred. EventID: 0x000003F6
    Time Generated: 08/09/2013 22:10:04
    Event String:
    Name resolution for the name isatap timed out after none of the configured DNS servers responded.
    A warning event occurred. EventID: 0x000003F6
    Time Generated: 08/09/2013 22:10:08
    Event String:
    Name resolution for the name e45ad288-70ff-4d9e-adf9-3035e459e126._msdcs.RetireFirst.local timed out after none of the configured DNS servers responded.
    A warning event occurred. EventID: 0x000003F6
    Time Generated: 08/09/2013 22:10:21
    Event String:
    Name resolution for the name _ldap._tcp.Default-First-Site._sites.dc._msdcs.RetireFirst.local. timed out after none of the configured DNS servers responded.
    An error event occurred. EventID: 0x00000423
    Time Generated: 08/09/2013 22:11:14
    Event String:
    The DHCP service failed to see a directory server for authorization.
    An error event occurred. EventID: 0x0000041E
    Time Generated: 08/09/2013 22:13:45
    Event String:
    The processing of Group Policy failed. Windows could not obtain the name of a domain controller. This could be caused by a name resolution failure. Verify your Domain Name System (DNS) is configured and working correctly.
    ......................... RETIRED2012 failed test SystemLog
    Starting test: VerifyReferences
    ......................... RETIRED2012 passed test VerifyReferences
    Running partition tests on : ForestDnsZones
    Starting test: CheckSDRefDom
    ......................... ForestDnsZones passed test CheckSDRefDom
    Starting test: CrossRefValidation
    ......................... ForestDnsZones passed test
    CrossRefValidation
    Running partition tests on : DomainDnsZones
    Starting test: CheckSDRefDom
    ......................... DomainDnsZones passed test CheckSDRefDom
    Starting test: CrossRefValidation
    ......................... DomainDnsZones passed test
    CrossRefValidation
    Running partition tests on : Schema
    Starting test: CheckSDRefDom
    ......................... Schema passed test CheckSDRefDom
    Starting test: CrossRefValidation
    ......................... Schema passed test CrossRefValidation
    Running partition tests on : Configuration
    Starting test: CheckSDRefDom
    ......................... Configuration passed test CheckSDRefDom
    Starting test: CrossRefValidation
    ......................... Configuration passed test CrossRefValidation
    Running partition tests on : RetireFirst
    Starting test: CheckSDRefDom
    ......................... RetireFirst passed test CheckSDRefDom
    Starting test: CrossRefValidation
    ......................... RetireFirst passed test CrossRefValidation
    Running enterprise tests on : RetireFirst.local
    Starting test: LocatorCheck
    ......................... RetireFirst.local passed test LocatorCheck
    Starting test: Intersite
    ......................... RetireFirst.local passed test Intersite

    Thank you for your response first of all! And in response:
    1. "Retired1" is the 2k3 ADDC / DNS Server. It currently has a different IP than the 2K12 Server. Verified with ipconfig/all.
    2. I set 2K12 to only 2K3 for DNS; no external ISP servers or itself listed. Registered DNS, restarted netlogon; no success.
    3. ipconfig/all for 2K12 server here:
    Windows IP Configuration
    Host Name . . . . . . . . . . . . : RETIRED2012
    Primary Dns Suffix . . . . . . . : RetireFirst.local
    Node Type . . . . . . . . . . . . : Hybrid
    IP Routing Enabled. . . . . . . . : No
    WINS Proxy Enabled. . . . . . . . : No
    DNS Suffix Search List. . . . . . : RetireFirst.local
    Ethernet adapter Ethernet:
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft Hyper-V Network Adapter
    Physical Address. . . . . . . . . : 00-15-5D-01-33-0A
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    Link-local IPv6 Address . . . . . : fe80::8159:4f0c:4071:d780%12(Preferred)
    IPv4 Address. . . . . . . . . . . : 172.21.69.246(Preferred)
    Subnet Mask . . . . . . . . . . . : 255.255.255.192
    Default Gateway . . . . . . . . . : 172.21.69.250
    DHCPv6 IAID . . . . . . . . . . . : 251663709
    DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-74-BE-C0-00-15-5D-01-33-0A
    DNS Servers . . . . . . . . . . . : 172.21.69.240
    NetBIOS over Tcpip. . . . . . . . : Enabled
    Tunnel adapter isatap.{8317BEC2-079A-4846-B6B2-1AE3E2784691}:
    Media State . . . . . . . . . . . : Media disconnected
    Connection-specific DNS Suffix . :
    Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
    Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
    DHCP Enabled. . . . . . . . . . . : No
    Autoconfiguration Enabled . . . . : Yes
    4. The 2K12 is a GC; yes.
    Thanks again and hopefully we can work this out!
    Seems like you have/had a server named "retired1" with the same IP address as the new 2012 server? (if this is a old server) remove all references to it in DNS
    Make sure that on the 2012 server in the TCP/IP DNS Settings, you only point to the 2003 DC for DNS (Not it self for now, and no external ISP DNS servers) - Run ipconfig /registerdns and restart the netlogon service on the 2012 server.
    Can you post and unedited output of ipconfig /all from the 2012 server?
    Did you make the 2012 server a global catalog? (if not I would recommend that)http://support.microsoft.com/kb/296882
    Seems like you have/had a server named "retired1" with the same IP address as the new 2012 server? (if this is a old server) remove all references to it in DNS
    Make sure that on the 2012 server in the TCP/IP DNS Settings, you only point to the 2003 DC for DNS (Not it self for now, and no external ISP DNS servers) - Run ipconfig /registerdns and restart the netlogon service on the 2012 server.
    Can you post and unedited output of ipconfig /all from the 2012 server?
    Did you make the 2012 server a global catalog? (if not I would recommend that)http://support.microsoft.com/kb/296882
    Seems like you have/had a server named "retired1" with the same IP address as the new 2012 server? (if this is a old server) remove all references to it in DNS
    Make sure that on the 2012 server in the TCP/IP DNS Settings, you only point to the 2003 DC for DNS (Not it self for now, and no external ISP DNS servers) - Run ipconfig /registerdns and restart the netlogon service on the 2012 server.
    Can you post and unedited output of ipconfig /all from the 2012 server?
    Did you make the 2012 server a global catalog? (if not I would recommend that)http://support.microsoft.com/kb/296882

  • Secured wireless network and open internet...

    I own a camp ground and  have people using my internet and I found out last week that could see in my laptops because I have a network and share files with all my computers. I am using a Wireless G router. Can I secure my network and leave the internet open to the people????   Thanks for your help....

    Another possible solution to you problem is to replace your current router with a router that supports multiple wireless networks, like the WRV200.
    The WRV200 allows you to setup 1 to 4 wireless networks.  These networks exist on separate secure VLANs (virtual LANs).  All of the networks can share the same Internet connection, but otherwise, their files are kept separated.
    The router sounds expensive, but I found it at CDW for $80.

  • Security concern when selling broken 3G

    I have an old iphone 3g that was submerged in water. I tried the "bag of rice" trick, but that didn't work so I bought a new 4S. My questions is: what are the security concerns of seeling the 3g on craigslist? I can't turn the phone on to reset it to factory settings. Is there anything I can do? Thanks for any input.

    Oh you would be surprised lol. Check ebay and you'll see broken 3G's going around the $50 range. They're only good for spare parts i would think.

  • Windows Server 2008 R2 RRAS NAT Security Concerns

    Recently we are deploying Windows Server 2008 R2 as the NAT gateway of our private network. During the testing, we found that the RRAS was doing its job as the NAT gateway,
    however it seemed that hosts in the private network were allowed to access any listening port opened on the server side (2008 R2). In the normal scenario, the server side will have the process "wininit.exe" running and listening on the TCP port 49152.
    We confirmed that all hosts in the private network were be able to connect to TCP port 49152 opened on the server (connecting by using the NAT's public IP), which introduced lots of security concerns and made us nervous. Since the server is acting as a NAT,
    IP packets sent by hosts in the private network will be translated and forwarded as if it is generated by the NAT server itself. Thus, the windows firewall will not block the connection at all while dealing with "local" traffic, which actually is
    the traffic from the host in the private network.
    What we need is a mechanism that can block the hosts in the private network to access the TCP/UDP ports opened on the NAT server side. Since the NAT server has it IP on
    the public network assigned dynamically (DHCP), static IP filtering on the private NIC does not fit our needs (Or probably we may use some hidden but advanced filter settings?). Which policy or setting should be used in our case?

    Hi Daniel,
    I am aware of what you are suggesting. Actually I have active the windows firewall to protect the server.
    Suppose I have a network configuration as follows:
    Private Network: 192.168.149.0 / 255.255.255.0 (Private NIC on server side IP:192.168.149.1)
    --------------Windows 2008 R2 RRAS NAT--------------------
    Public Network: 10.1.0.0 / 255.255.255.0 (Public NIC on server side IP:10.1.0.100 )
    The problem is that while the windows firewall is effectively protecting my server by filtering inbound traffic from the public network, the windows firewall will not filter the traffic from
    192.168.149.0 /255.255.255.0  to  10.1.0.100 (NAT's public IP)
    The reason is that the TCP/UDP connection from the private network (192.168.149.0 / 255.255.255.0) to any other networks will be NATed. Suppose TCP connection from
    192.168.149.23:50000 -> 10.1.0.100:1023
    It will be translated by NAT and becomes
    192.168.149.23:50000 <-NAT-> 10.1.0.100:60100 -> 10.1.0.100:1023
    From the windows firewall's point of view, the connection is essentially a 'local' TCP connection and should be allowed regardless of any inbound filtering rules. So vulnerability is introduced. After some research, we are almost sure that the windows firewall
    does not filter local traffic. Also, we are not able to guarantee any firewalls on the client side to be installed, since the nature of a NAT server is to provide such network access ability to clients and should not require the client side to change its configuration.
    I do think it is a common security concern in lots of enterprise networks where Windows Servers are deployed as NAT servers. Would you mind help us address this issue and give us some advice about best-practices related?
    Thank you

  • Fiori security concern

    Hi All
    We are now receiving security concerns from customer about FIORI.
    1.Information Leakage:
         for instance , when we clicked an item , then it failed, and we got the error message which might cause information leakage.
         Is it possible that the backend could provide some general information with no sensitive information involved.
    2.remember password option:
         after entering the password and username, the browser will prompt if you want to remember the password. there is security concern to remember password in browser. Is it possible to disable this pop-up window,  that is , is it possible to Set auto complete off in every form that is getting submitted.
    Thanks
    Message was edited by: Michael Appleby

    Hi Torren,
    i don't want to be a smartass, but do you really think it's a good idea to post an image, where you can see a productive URL of a customer? When we talk about security, we should start to hide or obfuscate such information, which are absolutely not necessary to investigate an issue. I think the customer itself doesn't want to see this information in a forum, which is available for everyone in the internet. Besides: Never post a real User of a productive System in a forum!!! I couldn't believe, that your Test-User "TEST*****" is actual a real one. A hacker has now perfect premises to start an attack on this system!
    Because i myself am a customer of SAP, i have the expectations, that SAP always works confidential with my data.
    Sry, if i can't answer your questions, but this topic is very important for me!
    Regards
    Michael

Maybe you are looking for

  • How to edit text on PDF form in Acrobat 8 professional

    I just took a Word doc and created a form for an application.  The client changed the deadline and I would like to know if I can make that change in Acrobat 8 Prof (MAC) or if I have to make the change in Word, create a PDF and completely re-do the f

  • Mount ISO in OS X?

    Hi folks. Just wondering if there is a way to mount and ISO image in OSX. If not, is there a program that can decompress it? Thanks.

  • Third Part Remittance - Garnishment posting

    Hi, While doing the Third party posting for Garnishments, it works fine when the EE doesn't have a retro. But if the EE has a retro, it doesn't post. It gives a message saying its already evaluated in the prior pay period. Can someone tell me how to

  • How to avoid server round trip?

    Hi, I am customizing UI for emergency contacts(ESS -> personnel info). When a value is corrected (changed after an error from server) in a text field and clicks review button nothing happens. It seems like I have to make a server round trip for the t

  • CS5; Image always opens on last monitor used instead of main monitor

    This problem is back. In CS4, when you opened an image it would always open on your main monitor regardless of which monitor you closed your last image. I have three monitors running and this is really annoying. CS4 was the only version I know of tha