Local KDC (LKDC) relating to Leopard clients logging into Tiger Server

Similar Messages

• Leopard client login problem (Tiger server)... why can't I authenticate?

  I look after a number of Macs and PCs at my company. Most Macs are running the latest version of Tiger but the newest machine came with Leopard. All users log into network accounts on our Xserve, running OSX Server (Tiger). However, the Leopard client machine refuses to log in to any network account, including the one I set up specifically for the machine's user, shaking its login window at me.
  Users connect using Open Directory Master on the server and none of the Tiger clients have ever had problems logging in.
  On the troublesome client machine, I have bound to the server correctly in Directory Utility which declares that the server is responding normally. At the login screen I get a green light and "Network Accounts Available" when I click through the options above the user name field so I know the machine can see the server.
  I can successfully log in to a local account and subsequently mount the server volumes using the new name and password I've set up for the user.
  What have I missed?
  So far, in my attempts to resolve this I have done the following:
  Removed the password from the new account;
  Unbound from the server, changed the short name of the computer, re-bound to the server;
  Tried logging in to other accounts known to be working;
  In WGM checked that the NFSHomeDirectory entry shows the complete path for the user's home directory;
  Trawled through endless forums for clues.
  Kerberos is not running. Does it need to be for authenticating Leopard users?
  Is there an issue with clear text passwords in Leopard? Seemingly eliminated through a no-password test account.
  I'm sure that I logged in successfully once after setting up the machine but, after installing Leopard updates, logging in has consistently failed.
  Anyone else having similar problems? Better yet, anyone have any answers?

  No need to apologize. I learned the same way you are...
  I think you may end up re-binding the 10.4 clients if you kerberize the server.
  You may want to go to the server forum for folks with more definitive annswers.
  http://discussions.apple.com/category.jspa?categoryID=96
  In any case, make sure you have a reliable backup before you do anything.
  Jeff
  Message was edited by: Jeff Kelleher

• Panther and leopard clients on a tiger server...expected problems...

  I wanted to share a scenario that is happening in the school district I work for and see if anyone has had any experiences similar and can offer some advise before I blindly proceed.
  One of the schools I work in uses a single 10.4x server, and all the users in the school have a network account where they can log into managed work groups.
  The computers are all running 10.3x and I have had no problems at all. Users are able to log in, see their network home folders, launch all the allowed applications.
  The school is purchasing 76 new Imac computers with the new 10.5 OS on them and I was wondering what kind of problems users might experience when logging into these new workstations if they are bound to the existing server.
  I was able to bind a 10.5 mac to the 10.4 server and was able to log in using a network account, see the items that were in my network home folder, launch applications I was permitted to launch and was denied applications denied in the applications preference in workgroup manager for the workgroup I was logged in to.
  This is very preliminary testing and was wonder what some of you who are in similar situations have experienced.
  Another concern is best described by painting a scenario.
  A user logs onto a 10.3 computer and launches an application like imovie, an older version of imovie, and does some work on a project. He then saves it and moves to one of the new imacs with 10.5 on it and a newer version of imovie.
  Will the newer version of the application run with the older preference files for it.
  Will the preference files be rewritten and if so will the old version of imovie be able to read those or will it try and rewrite them.
  Will the project created with the old version of imovie be readable by the new version.
  Will the new version of imovie update the project file and if so with the old version of imovie still be able to open it?
  I seem to remember reading something about how panther wrote preference files for applications completely differently than tiger did, and if so then can I expect the same for leopard client written pref files.
  As you can see I have lots of questions and if I can learn from other peoples experiences then I can go into this knowing a little bit on what I can expect and hopefully this wont be a big disaster.
  Mark
  SD34

  Will the newer version of the application run with the older preference files for it.
  While I dont know this for certain, I do know that when I did an archive and install (which copies the old preferences for applications as well as the apps themselves to the new system folder) things have worked fine. I think the preference-writing scheme depends on the individual program version, and minor updates to the program (ie: Safari 3.0.3b vs 3.0.4) shouldnt change this.
  Will the preference files be rewritten and if so will the old version of imovie be able to read those or will it try and rewrite them.
  When you modify any preferences the files will be rewritten. If the programs have similar versions then they should be fine. All preferences are written to the same directory (~/Library/Preferences/) so if the program versions are the same then the preferences will be written similarly.
  Will the project created with the old version of imovie be readable by the new version.
  I'm assuming you mean going from iMovie HD to iMovie '08. I've not done this personally, but as far as I know the files will import, but the transistions and other special effects that are only available in the older version of iMovie will be removed. The media files and sequences should be preserved.
  Will the new version of imovie update the project file and if so with the old version of imovie still be able to open it?
  I dont know about the old version of iMovie being able to import the new version's projects, but the new version will update the projects when you save it.
  I seem to remember reading something about how panther wrote preference files for applications completely differently than tiger did, and if so then can I expect the same for leopard client written pref files.
  I believe the writing of preference files usually depends on the individual application, not the system.

• Having problem with svchost.exe/ntdll.dll errors causing GPSVC (Group Policy Client) to crash preventing users from logging into the server.

  Recently (within the past 2 weeks) I have noticed a few of our servers will have problems with the svchost.exe application causing the GPSVC (Group Policy Client) to crash. The only fix at that point is to reboot the server since the GPSVC service is tied
  to svchost.exe and therefore is protected from being manually restarted.
  I noticed the following errors when this occurs:
  Log Name:      Application
  Source:        Application Error
  Date:          7/23/2013 4:35:26 AM
  Event ID:      1000
  Task Category: (100)
  Level:         Error
  Keywords:      Classic
  User:          N/A
  Computer:      Server1.xxx.xxx.net
  Description:
  Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
  Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec4aa8e
  Exception code: 0xc0000024
  Fault offset: 0x00000000000cd7d8
  Faulting process id: 0x46c
  Faulting application start time: 0x01ce877f9476ac07
  Faulting application path: C:\Windows\system32\svchost.exe
  Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
  Report Id: d252d26d-f372-11e2-8ad4-005056ac00e8
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Application Error" />
      <EventID Qualifiers="0">1000</EventID>
      <Level>2</Level>
      <Task>100</Task>
      <Keywords>0x80000000000000</Keywords>
      <TimeCreated SystemTime="2013-07-23T08:35:26.000000000Z" />
      <EventRecordID>158950</EventRecordID>
      <Channel>Application</Channel>
      <Computer>AAW19XM2.agency.nwie.net</Computer>
      <Security />
    </System>
    <EventData>
      <Data>svchost.exe</Data>
      <Data>6.1.7600.16385</Data>
      <Data>4a5bc3c1</Data>
      <Data>ntdll.dll</Data>
      <Data>6.1.7601.17725</Data>
      <Data>4ec4aa8e</Data>
      <Data>c0000024</Data>
      <Data>00000000000cd7d8</Data>
      <Data>46c</Data>
      <Data>01ce877f9476ac07</Data>
      <Data>C:\Windows\system32\svchost.exe</Data>
      <Data>C:\Windows\SYSTEM32\ntdll.dll</Data>
      <Data>d252d26d-f372-11e2-8ad4-005056ac00e8</Data>
    </EventData>
  </Event>
  All of our servers are running Server 2008 R2 Enterprise where we use Citrix to deliver desktop sessions to our users, but some are virtual and some are physical. This seemingly impacts our virtual machines more, and our VMs are hosted through VMWare, however,
  about 5 months ago a similar error fired on a non-virtual machine:
  Log Name:      Application
  Source:        Application Error
  Date:          2/27/2013 6:57:58 AM
  Event ID:      1000
  Task Category: (100)
  Level:         Error
  Keywords:      Classic
  User:          N/A
  Computer:      AAW29033
  Description:
  Faulting application name: svchost.exe_gpsvc, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1
  Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec4aa8e
  Exception code: 0xc0000024
  Fault offset: 0x00000000000cd7d8
  Faulting process id: 0x6c0
  Faulting application start time: 0x01ce14e1af313fd9
  Faulting application path: C:\Windows\system32\svchost.exe
  Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
  Report Id: ed3d01c4-80d4-11e2-9128-b499baa9e5e8
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Application Error" />
      <EventID Qualifiers="0">1000</EventID>
      <Level>2</Level>
      <Task>100</Task>
      <Keywords>0x80000000000000</Keywords>
      <TimeCreated SystemTime="2013-02-27T11:57:58.000000000Z" />
      <EventRecordID>286291</EventRecordID>
      <Channel>Application</Channel>
      <Computer>AAW29033</Computer>
      <Security />
    </System>
    <EventData>
      <Data>svchost.exe_gpsvc</Data>
      <Data>6.1.7600.16385</Data>
      <Data>4a5bc3c1</Data>
      <Data>ntdll.dll</Data>
      <Data>6.1.7601.17725</Data>
      <Data>4ec4aa8e</Data>
      <Data>c0000024</Data>
      <Data>00000000000cd7d8</Data>
      <Data>6c0</Data>
      <Data>01ce14e1af313fd9</Data>
      <Data>C:\Windows\system32\svchost.exe</Data>
      <Data>C:\Windows\SYSTEM32\ntdll.dll</Data>
      <Data>ed3d01c4-80d4-11e2-9128-b499baa9e5e8</Data>
    </EventData>
  </Event>
  I've searched and cannot seem to find any information as to what may be causing this, or even really where to start. Would someone be able to help me identify what might be causing this event, specific with the Exception code: 0xc0000024, which causes
  the Group Policy Client service to stop?

  You still out there looking at things? If so I have an update. The issue hasn't stopped, even though it did seemingly die down for awhile, however, it is now back with a vengeance.
  I am able to force it to happen by killing the svchost process that is hosting GPSVC. If I run gpupdate /force, then logout/login it does get GPSVC running again. Furthermore, if I simply start svchost again via the Task Manager GPSVC starts running again.
  When I access the server remotely with KVM it acts just like it does as if I'm logging into it via Citrix/RDP which for Admin IDs gives an error saying "Failed to connect to a windows service. Windows could not connect to the Group Policy Client service...",
  however, normal user accounts just get a message when logging into the server "The Group Policy Client Service Failed the Logon. Access is denied."
  I haven't opened a case with Microsoft yet, but we about ready to because of the increase in these errors.
  If you have any further suggestions that would be great, otherwise I'll provide an update once I get word back from Microsoft.
  **EDIT -- apparently I mistook the the server's SCM's actions as my own. I was able to successfully crash the GPSVC service by killing the hosting svchost process, however, after I crashed it and let it sit crashed for awhile when I attempted
  to restart either by starting a svchost task, or running gpupdate /force it failed. Either that, or there is a timing issue where if we don't restart the svchost process, or run gpupdate /force quickly enough it won't be able to recover without a reboot.

• Multiple users logged into one server, each users printer has a different name, application needs ONE name to print to.

  Multiple users logged into one server, each users printer has a different name, application needs ONE name to print to. 
  I'm NOT in any way a Terminal Services expert and I need help trying to get an application program working in a multi-user environment.
  The issue is that the printer changes for every user that is logged in. The application needs to print NOT to the default printer, but to a "special" printer which is selected in the application... let's call it a label printer to simplify the explanation.
  You have your default regular printer, easy for the application to find that one, and then you have a special printer that labels get printed onto. The application needs to know what printer is the label printer. So we allow the user to select that in the
  application and the selection is stored in a config file in 
  C:\ProgramData\mfgr\prog\setting files
  I don't have access to the application so I can't change how this works.  
  In the "regular" world, selecting the label printer driver to use should be per machine, NOT per user. When a new user logs into a machine, the physical printer doesn't go "poof" and a new printer suddenly appear. Same printer for all
  users.
  Yet in terminal services, the physical machine is "merged" with the virtual machine on the server. And there can be many users logged in at the same time. So each users real machine (and real printer) is injected into the "fake" terminal
  services machine. The name of the printers is made unique for each user. So the printers DO go "poof" and change names depending on the user logged into terminal services.
  So user "A" logs in and sets up the application to print to "LabelPrinterForUserA" (or whatever the name of the printer happens to be), that setting is stored in the ProgramData subfolder, and all is well. Later, user "B" logs
  in, and when they print, the application tries to print to "LabelPrinterForUserA" which doesn't exist for user B or is only accessible by user A. If user B re-configures, that breaks it for user A. 
  SOLUTION 1: The way that /should/ work (in my mind) is that you define one "generic" printer in Terminal Services... call it "Virtual Label printer" and when the user wants to print to it, the print job gets re-directed back to whatever
  physical printer is actually connected to their local workstation. There is a map of virtual printer to actual printer depending on the current user. The application is told once to print to "Virtual Label Printer" for all users.
  SOLUTION 2: Or... there should be some way to make the ProgramData sub folders separate per user. E.g. when user "A" tries to access:
  C:\ProgramData\mfgr\prog\setting files
  they actually get 
  C:\UserData\UserA\AppData\mfgr\prog\setting files
  and user "B" gets
  C:\UserData\UserB\AppData\mfgr\prog\setting files
  So the question I have is: Does either of those solutions exist hidden somewhere in the setup of terminal server? Or is there another way around this issue that I don't know?

  I don't really have a "for sure" answer to this, but because people here can't seem to deal with a question that hasn't been answered I'll provide the best answer I did receive from ServerFault.com user Nathan:
  I can feel your pain with using old software on terminal servers ...the solution I've come up with definitely won't scale as it requires some manual configuration, but I've gotten this method to work with our label printers (which require to be
  printed to an LPT port...yep, that old).
  Share your USB-connected printers to the network on each machine. Then, have the user log in on aunique session for each of them
  (a TS account cannot be shared among computers for this to work) and install a network printer pointing to the USB one they shared. Try to use a DNS name to account for possible DHCP movements.
  After, it should work. Each user can do this since display names can be identical as long as the ports are different (which they are).
  This was clarified by the following series of comments:
  I think you are on to something here, and I originally advised the admin to do this. The problem he ran into is that it setup the printer names in the TS as "printer on usersworkstation"
  and he could not rename it except to change the "printer" to whatever. E.g. the "on userworkstation" remained. I believe there is another way of installing the printer which avoids this, but I can't find it. Ages ago, one used to do NET
  USE LPT2 \\computer\printer password /USER:domain\user /PERSISTENT:YES and then tell the driver to print to LPT2 –  James
  Newton Mar
  17 at 16:21   
  @JamesNewton That's actually the exact method we used. The way around the "network printer" part is to install it as local printer and map it to a TCP/IP port that way. –  Nathan
  C Mar
  17 at 16:28
  You mean in the case where the printers are TCP/IP connected and not local USB / LPT to the users workstation? That makes sense. Wonder if this will work for USB connected printers... –  James
  NewtonMar
  17 at 16:35   
  @JamesNewton You'd share the local printer on the client's PC then on the server connect via TCP/IP to it. You'd need static addresses or use DNS names if DHCP, though. –  Nathan
  C Mar
  17 at 16:51
  Ah. Yes. I see. Looks like the LPT thing should work even with a USB connected printer:superuser.com/questions/182655/… –  James
  Newton Mar
  17 at 17:09   

• Logging into 'Other' (Server) login doesn't show though bind does

  Working on an OS 10.5.6 Advanced server that was set and users were only using AFP, but no DNS and Open Directory. So carefully went through and set these up.The standard testing 'checkhost' and all, shows DNS is working correctly. Client computers had the DNS pointer changed and went through Dirctory Utility and did the binding. Server indicates these computers are bound. One of four client computers works as expected, "Other" shows as a login choice and can log into the server. All the different client accounts work throught this station. Three computers show as Bind being setup, but the "Other" login simply doesn't appear. All but one are running 10.5.6, with one computer running 10.4.11. All three computers that show as bound, can sign in via Go > to the AFP share(s) just fine, only the server/network login doesn't appear. Have checked everything we can think of and need further suggestions on how to resolve this issue? - Lewis

  LDAP is indeed listed and home folders have been created in an Auto-Mount directory. Everything appears just like the computers on this network that are binding OK and show an "Other" login. Now I have noticed one thing... every so often when I open Directory Utility - it shows the staus as "nonresponding" with a red dot. If I hit "Connect" it changes to a green OK dot, but upon logout/login the "Other" is still not a choice. Ran Disk Repair, Repair Permissions, re-ran the combo updater of the current system - 10.5.6. Ran the unbind on the computer and removed computer from Workgroup manager... still no joy. Just do not see a way to get a reliable Bind and network login? Bind seems to be happening... but "Other" as a network login just doesn't show.

• Blue screen when logging into windows server 2008 r2

  when logging into windows server 2008 r2, all I have is a blue screen and the mouse. 
  I tried looking for solutions on the internet, then I found a microsoft hotfix "http://support.microsoft.com/kb/2590550" I run the hotfix in command line but it gave me nothing, no error or success messages.
  I tried to reboot but I still have the same problem. 
  Is there any solution to this problem ?? 

  Hi,
  Thank you for posting in Windows Server Forum.
  Did you face this issue during remote session or console session?
  In addition, have you try to change or install any driver\software which cause this problem?
  Have you use any debugging tools from Microsoft to find respective error cause?
  You can refer following article for memory dump.
  How to read the small memory dump file that is created by Windows if a crash occurs
  http://support.microsoft.com/kb/315263/en-us
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• I have a macbook pro can can log into a server, but my new iMac with lion can't even see the server--both are over wifi- how do i get the new iMac to see the server?

  i have a macbook pro can can log into a server, but my new iMac with lion can't even see the server--both are over wifi- how do i get the new iMac to see the server?

  Without knowing what you have tried please open System Preferences - Sharing - File Sharing and select File Sharing. If you still have trouble you can call AppleCare in the morning when they re-open. You have 90 days of telephone support if you haven't already bought AppleCare.

• Exceptions thrown when news items are viewed without logging into Personalisation server

  Hi all
  I am currently getting some exceptins thrown each time I view any news items without
  logging into personalisation server.
  It is a warning but exceptions are being thrown
  Here are the errors in the attached file
  Any help would be appreciated
  Bola
  [errors.txt]

  Bola,
  This is a benign warning message, but indeed a bug. It is currently being tracked
  as CR059395 internally. It did not make it into the upcoming 3.5 sp2. If this
  problem is causing you trouble, you may wish to request a patch through your Support
  channel.
  Cheers,
  PJL
  "Bola Taylor" <[email protected]> wrote:
  >
  >
  >
  Hi all
  I am currently getting some exceptins thrown each time I view any news
  items without
  logging into personalisation server.
  It is a warning but exceptions are being thrown
  Here are the errors in the attached file
  Any help would be appreciated
  Bola

• I keep getting a message that I have logged into the server maximum times or server has timed out

  I had an upgrade to my system and it changed my logging into the server to every 10 minutes. Can you reset it on your end so I can use my email again. We fixed the logging into the server so that will not happen again. I cannot send or receive emails on Thunderbird and I also get a connection to server has timed out when I try to send an email. Thanks

  Update your Firefox to latest version
  *www.Mozilla.org
  Many site issues can be caused by corrupt cookies or cache. In order to try to fix these problems, the first step is to clear both cookies and the cache.
  Note: ''This will temporarily log you out of all sites you're logged in to.''
  To clear cache and cookies do the following:
  #Go to Firefox > History > Clear recent history or (if no Firefox button is shown) go to Tools > Clear recent history.
  #Under "Time range to clear", select "Everything".
  #Now, click the arrow next to Details to toggle the Details list active.
  #From the details list, check ''Cache'' and ''Cookies'' and uncheck everything else.
  #Now click the ''Clear now'' button.
  Further information can be found in the [[Clear your cache, history and other personal information in Firefox]] article.
  Did this fix your problems? Please report back to us!

• Is there an application to monitor users who log into Windows Server 2012 R2?

  I'm looking at Family Safety Feature in Windows 8 and like what they can do.  I have a request to monitor, track users who log into Windows Server 2012 R2 to see how many users login, how long each login is for each user so a monthly report can be generated.  
  1.  I just wonder if Windows Essential 2012 can be used for this purpose or not.  If it can, is Windows Essential 2012 a feature can be added or installed on Windows Server 2012 R2?
  2.  If Window Essential 2012 cannot be used for this purpose, is there any feature in Windows Server 2012 R2 that can be used for this purpose?
  3.  Is there any other suggestions?
  Thank you for your help.
  Thanks and Regards,
  Hien Phan

  Hi Hien,
  Anything updates?
  It seems that there is no feature can do that. I agree with Tim that you can check the event logs. In general, the event 4624 would be created when a user was logged on, and the event 4634 would be created when a user account was logged
  off.
  More information:
  Tracking User Logon Activity Using Logon Events
  Best regards,
  Susie
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• Can log into Yosemite server (4.0) VPN service with a Mavericks client, but not Yosemite client

  Sever Info:
  Yosemite Server 4.0 running on a late 2009 Mac Mini with 8 GB RAM with vpnd service enabled
  The server was upgraded to Yosemite - not clean install - this may not matter (see below)
  Airport extreme router with standard VPN UDP ports for L2TP forwarded to server (500, 1701, 4500)
  Client info:
  MB Air 13" early 2014 with 8 GB RAM
  Yosemite
  Mavericks 10.9.5 running as a Parallels virtual machine (don't ask - I need it to run an app for work that is not yet compatible with Yosemite)
  OD service is NOT running - no VPN connections ever occurred from ANY client with this service running - OD is not needed in my case fortunately
  With the OD service off, I can connect via the Mavericks virtual machine just fine, but not with Yosemite. With Yosemite, the ppp connection appears to occur, but server config requests appear to fall on deaf ears (client side doesn't appear to respond) until the connection times out. Can't figure out what triggers the client response to a server config request. Client side complains about no route to host and IP addresses don't get assigned to the connection.
  The connection happens successfully in an eyeblink with the Mavericks client. Same username/password/shared secret in both instances.
  Tried a generated .vpnconfig from the server, this also did not work.
  It's possible that it is an auth problem, but can't figure out how the process occurs or what may be going wrong. There does not seem to be an obvious way to increase the granularity of the logging such that it might give other hints - at least that I can find. I found plenty of references to VPN issues when people upgraded from Mountain Lion to Mavericks as well as work arounds for this. I tried the most promising looking of those - no love. I reverted everything back to stock install since I could at least connect with Mavericks.
  If log entries would be helpful, they are included below. I've stared at them long enough - perhaps a new set of eyes can provide a hint.
  In addition, I can find no documentation regarding the VPN service in Yosemite server so as to get a clue as to whether there have been changes in racoon since Mavericks.
  Thanks in advance for any suggestions. I would be glad to supply any other info needed for an accurate diagnosis .
  Pat
  ==
  Regarding the Yosemite client connection in the Yosemite server VPN Service log:
  2014-10-21 12:18:30 MDT
  Incoming call... Address given to client = 192.168.1.228
  Tue Oct 21 12:18:30 2014 : Directory Services Authentication plugin initialized
  Tue Oct 21 12:18:30 2014 : Directory Services Authorization plugin initialized
  Tue Oct 21 12:18:30 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:18:30 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:18:30 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:18:30 2014 : L2TP incoming call in progress from 'my.dotted.quad.address'...
  Tue Oct 21 12:18:30 2014 : L2TP received SCCRQ
  Tue Oct 21 12:18:30 2014 : L2TP sent SCCRP
  Tue Oct 21 12:18:30 2014 : L2TP received SCCCN
  Tue Oct 21 12:18:30 2014 : L2TP received ICRQ
  Tue Oct 21 12:18:30 2014 : L2TP sent ICRP
  Tue Oct 21 12:18:30 2014 : L2TP received ICCN
  Tue Oct 21 12:18:30 2014 : L2TP connection established.
  Tue Oct 21 12:18:30 2014 : using link 0
  Tue Oct 21 12:18:30 2014 : Using interface ppp0
  Tue Oct 21 12:18:30 2014 : Connect: ppp0 <--> socket[34:18]
  Tue Oct 21 12:18:30 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:33 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:36 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:39 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:42 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:45 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:48 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:51 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:54 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:18:57 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x93542b1> <pcomp> <accomp>]
  Tue Oct 21 12:19:00 2014 : LCP: timeout sending Config-Requests
  Tue Oct 21 12:19:00 2014 : Connection terminated.
  Tue Oct 21 12:19:00 2014 : L2TP disconnecting...
  Tue Oct 21 12:19:00 2014 : L2TP sent CDN
  Tue Oct 21 12:19:00 2014 : L2TP sent StopCCN
  Tue Oct 21 12:19:00 2014 : L2TP disconnected
  2014-10-21 12:19:00 MDT
     --> Client with address = 192.168.1.228 has hungup
  ==
  Client side log for this connection using the Yosemite client:
  Tue Oct 21 14:32:08 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 14:32:08 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 14:32:08 2014 : L2TP connecting to server 'myserver.com' (my.dotted.quad.address)...
  Tue Oct 21 14:32:08 2014 : IPSec connection started
  Tue Oct 21 14:32:09 2014 : IPSec connection established
  Tue Oct 21 14:32:10 2014 : L2TP connection established.
  Tue Oct 21 14:32:10 2014 : L2TP set port-mapping for en0, interface: 4, protocol: 0, privatePort: 0
  Tue Oct 21 14:32:10 2014 : Using interface ppp0
  Tue Oct 21 14:32:10 2014 : Connect: ppp0 <--> socket[34:18]
  Tue Oct 21 14:32:10 2014 : L2TP port-mapping for en0, interfaceIndex: 0, Protocol: None, Private Port: 0, Public Address: 3fe4b3e8, Public Port: 0, TTL: 0.
  Tue Oct 21 14:32:10 2014 : L2TP port-mapping for en0 inconsistent. is Connected: 1, Previous interface: 4, Current interface 0
  Tue Oct 21 14:32:10 2014 : L2TP port-mapping for en0 initialized. is Connected: 1, Previous publicAddress: (0), Current publicAddress 3fe4b3e8
  Tue Oct 21 14:32:10 2014 : L2TP port-mapping for en0 fully initialized. Flagging up
  Tue Oct 21 14:32:25 2014 : write: No route to host
  Tue Oct 21 14:32:25 2014 : write: Host is down
  Tue Oct 21 14:32:28 2014 : write: Host is down
  Tue Oct 21 14:32:28 2014 : write: Host is down
  Tue Oct 21 14:32:31 2014 : write: Host is down
  Tue Oct 21 14:32:31 2014 : write: Host is down
  Tue Oct 21 14:32:34 2014 : write: Host is down
  Tue Oct 21 14:32:34 2014 : write: Host is down
  Tue Oct 21 14:32:37 2014 : write: Host is down
  Tue Oct 21 14:32:37 2014 : write: Host is down
  Tue Oct 21 14:32:40 2014 : LCP: timeout sending Config-Requests
  Tue Oct 21 14:32:40 2014 : Connection terminated.
  Tue Oct 21 14:32:40 2014 : L2TP disconnecting...
  Tue Oct 21 14:32:40 2014 : L2TP error sending CDN (Host is down)
  Tue Oct 21 14:32:40 2014 : L2TP clearing port-mapping for en0
  Tue Oct 21 14:32:40 2014 : L2TP disconnected
  ==
  Pertinent client side log for connection of Mavericks client to Yosemite server:
  Tue Oct 21 13:29:13 2014 : Connect: ppp0 <--> socket[34:18]
  Tue Oct 21 13:29:13 2014 : L2TP port-mapping for en0, interfaceIndex: 0, Protocol: None, Private Port: 0, Public Address: 3fe4b3e8, Public Port: 0, TTL: 0.
  Tue Oct 21 13:29:13 2014 : L2TP port-mapping for en0 inconsistent. is Connected: 1, Previous interface: 4, Current interface 0
  Tue Oct 21 13:29:13 2014 : L2TP port-mapping for en0 initialized. is Connected: 1, Previous publicAddress: (0), Current publicAddress 3fe4b3e8
  Tue Oct 21 13:29:13 2014 : L2TP port-mapping for en0 fully initialized. Flagging up
  Tue Oct 21 13:29:21 2014 : local  IP address 192.168.1.229
  Tue Oct 21 13:29:21 2014 : remote IP address 192.168.1.2
  Tue Oct 21 13:29:21 2014 : primary   DNS address 192.168.1.2
  Tue Oct 21 13:29:21 2014 : secondary DNS address 8.8.8.8
  Tue Oct 21 13:29:21 2014 : l2tp_wait_input: Address added. previous interface setting (name: en0, address: 10.0.1.38), current interface setting (name: ppp0, family: PPP, address: 192.168.1.229, subnet: 255.255.255.0, destination: 192.168.1.2).
  Tue Oct 21 13:29:21 2014 : Committed PPP store
  Tue Oct 21 13:29:21 2014 : Committed PPP store
  Tue Oct 21 13:52:32 2014 : [DISCONNECT]
  Tue Oct 21 13:52:32 2014 : Hangup (SIGHUP)
  Tue Oct 21 13:52:32 2014 : Connection terminated.
  Tue Oct 21 13:52:32 2014 : Connect time 23.4 minutes.
  Tue Oct 21 13:52:32 2014 : Sent 2674664 bytes, received 10680854 bytes.
  Tue Oct 21 13:52:32 2014 : L2TP disconnecting...
  Tue Oct 21 13:52:32 2014 : L2TP clearing port-mapping for en0
  Tue Oct 21 13:52:32 2014 : L2TP disconnected
  ==
  Regarding the Mavericks client connection in the Yosemite server VPN Service log:
  2014-10-21 12:09:48 MDT Incoming call... Address given to client = 192.168.1.226
  Tue Oct 21 12:09:48 2014 : Directory Services Authentication plugin initialized
  Tue Oct 21 12:09:48 2014 : Directory Services Authorization plugin initialized
  Tue Oct 21 12:09:48 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:09:48 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:09:48 2014 : publish_entry SCDSet() failed: Success!
  Tue Oct 21 12:09:48 2014 : L2TP incoming call in progress from ‘my.dotted.quad.address’…
  Tue Oct 21 12:09:48 2014 : L2TP received SCCRQ
  Tue Oct 21 12:09:48 2014 : L2TP sent SCCRP
  Tue Oct 21 12:09:48 2014 : L2TP received SCCCN
  Tue Oct 21 12:09:48 2014 : L2TP received ICRQ
  Tue Oct 21 12:09:48 2014 : L2TP sent ICRP
  Tue Oct 21 12:09:49 2014 : L2TP received ICCN
  Tue Oct 21 12:09:49 2014 : L2TP connection established.
  Tue Oct 21 12:09:49 2014 : using link 0
  Tue Oct 21 12:09:49 2014 : Using interface ppp0
  Tue Oct 21 12:09:49 2014 : Connect: ppp0 <--> socket[34:18]
  Tue Oct 21 12:09:49 2014 : sent [LCP ConfReq id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x4bc40d9f> <pcomp> <accomp>]
  Tue Oct 21 12:09:49 2014 : rcvd [LCP ConfReq id=0x1 <asyncmap 0x0> <magic 0x71598937> <pcomp> <accomp>]
  Tue Oct 21 12:09:49 2014 : lcp_reqci: returning CONFACK.
  Tue Oct 21 12:09:49 2014 : sent [LCP ConfAck id=0x1 <asyncmap 0x0> <magic 0x71598937> <pcomp> <accomp>]
  Tue Oct 21 12:09:49 2014 : rcvd [LCP ConfAck id=0x1 <asyncmap 0x0> <auth chap MS-v2> <magic 0x4bc40d9f> <pcomp> <accomp>]
  Tue Oct 21 12:09:49 2014 : sent [LCP EchoReq id=0x0 magic=0x4bc40d9f]
  Tue Oct 21 12:09:49 2014 : sent [CHAP Challenge id=0x73 <074a110a5e0620296b1937345c34090e>, name = “myserver.private”]
  Tue Oct 21 12:09:49 2014 : rcvd [LCP EchoReq id=0x0 magic=0x71598937]
  Tue Oct 21 12:09:49 2014 : sent [LCP EchoRep id=0x0 magic=0x4bc40d9f]
  Tue Oct 21 12:09:49 2014 : rcvd [LCP EchoRep id=0x0 magic=0x71598937]
  Tue Oct 21 12:09:49 2014 : rcvd [CHAP Response id=0x73 <dfed1e41e1fb8c1132387c3d7792b1880000000000000000b2b163259cbe410aae792093680ba7 a89da3b46737c0d8d200>, name = "somelocaluser"]
  Tue Oct 21 12:09:54 2014 : sent [CHAP Success id=0x73 "S=00EDB07933CE697641E2263A2A76386389512329 M=Access granted"]
  Tue Oct 21 12:09:54 2014 : CHAP peer authentication succeeded for somelocaluser
  Tue Oct 21 12:09:54 2014 : DSAccessControl plugin: User 'somelocaluser' authorized for access
  Tue Oct 21 12:09:54 2014 : sent [IPCP ConfReq id=0x1 <addr 192.168.1.2>]
  Tue Oct 21 12:09:54 2014 : sent [ACSCP ConfReq id=0x1]
  Tue Oct 21 12:09:54 2014 : rcvd [CHAP Response id=0x73 <dfed1e41e1fb8c1132387c3d7792b1880000000000000000b2b163259cbe410aae792093680ba7 a89da3b46737c0d8d200>, name = "somelocaluser"]
  Tue Oct 21 12:09:54 2014 : sent [CHAP Success id=0x73 "S=00EDB07933CE697641E2263A2A76386389512329 M=Access granted"]
  Tue Oct 21 12:09:54 2014 : rcvd [IPCP ConfReq id=0x1 <addr 0.0.0.0> <ms-dns1 0.0.0.0> <ms-dns3 0.0.0.0>]
  Tue Oct 21 12:09:54 2014 : ipcp: returning Configure-NAK
  Tue Oct 21 12:09:54 2014 : sent [IPCP ConfNak id=0x1 <addr 192.168.1.226> <ms-dns1 192.168.1.2> <ms-dns3 8.8.8.8>]
  Tue Oct 21 12:09:54 2014 : rcvd [IPV6CP ConfReq id=0x1 <addr fe80::021c:42ff:febf:bf66>]
  Tue Oct 21 12:09:54 2014 : Unsupported protocol 0x8057 received
  Tue Oct 21 12:09:54 2014 : sent [LCP ProtRej id=0x2 80 57 01 01 00 0e 01 0a 02 1c 42 ff fe bf bf 66]
  Tue Oct 21 12:09:54 2014 : rcvd [ACSCP ConfReq id=0x1 <route vers 16777216> <domain vers 16777216>]
  Tue Oct 21 12:09:54 2014 : sent [ACSCP ConfRej id=0x1 <route vers 16777216>]
  Tue Oct 21 12:09:54 2014 : rcvd [IPCP ConfAck id=0x1 <addr 192.168.1.2>]
  Tue Oct 21 12:09:54 2014 : rcvd [ACSCP ConfAck id=0x1]
  Tue Oct 21 12:09:54 2014 : rcvd [IPCP ConfReq id=0x2 <addr 192.168.1.226> <ms-dns1 192.168.1.2> <ms-dns3 8.8.8.8>]
  Tue Oct 21 12:09:54 2014 : ipcp: returning Configure-ACK
  Tue Oct 21 12:09:54 2014 : sent [IPCP ConfAck id=0x2 <addr 192.168.1.226> <ms-dns1 192.168.1.2> <ms-dns3 8.8.8.8>]
  Tue Oct 21 12:09:54 2014 : ipcp: up
  Tue Oct 21 12:09:54 2014 : found interface en0 for proxy arp
  Tue Oct 21 12:09:54 2014 : local  IP address 192.168.1.2
  Tue Oct 21 12:09:54 2014 : remote IP address 192.168.1.226
  Tue Oct 21 12:09:54 2014 : Received acsp/dhcp dictionaries
  Tue Oct 21 12:09:54 2014 : Received acsp/dhcp dictionaries
  Tue Oct 21 12:09:54 2014 : l2tp_wait_input: Address added. previous interface setting (name: en0, address: 192.168.1.2), current interface setting (name: ppp0, family: PPP, address: 192.168.1.2, subnet: 255.255.255.0, destination: 192.168.1.226).
  Tue Oct 21 12:09:54 2014 : rcvd [ACSCP ConfReq id=0x2 <domain vers 16777216>]
  Tue Oct 21 12:09:54 2014 : sent [ACSCP ConfAck id=0x2 <domain vers 16777216>]
  Tue Oct 21 12:09:54 2014 : Received protocol dictionaries
  Tue Oct 21 12:09:54 2014 : Committed PPP store
  Tue Oct 21 12:09:54 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:09:54 2014 : rcvd [IP data <src addr 192.168.1.226> <dst addr 255.255.255.255> <BOOTP Request> <type INFORM> <client id 0x08000000010000> <parameters = 0x6 0x2c 0x2b 0x1 0xf9 0xf>]
  Tue Oct 21 12:09:54 2014 : sent [IP data <src addr 192.168.1.2> <dst addr 192.168.1.226> <BOOTP Reply> <type ACK> <server id 0xc0a80102> <domain name "local">]
  Tue Oct 21 12:09:57 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:10:00 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:10:03 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:10:06 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:10:09 2014 : sent [ACSP data <payload len 24, packet seq 0, CI_DOMAINS, flags: START END REQUIRE-ACK>
      <domain: name private>
      <domain: name local>]
  Tue Oct 21 12:10:09 2014 : rcvd [LCP TermReq id=0x2 "User request"]
  Tue Oct 21 12:10:09 2014 : LCP terminated by peer (User request)
  Tue Oct 21 12:10:09 2014 : ipcp: down
  Tue Oct 21 12:10:09 2014 : sent [LCP TermAck id=0x2]
  Tue Oct 21 12:10:09 2014 : l2tp_wait_input: Address deleted. previous interface setting (name: en0, address: 192.168.1.2), deleted interface setting (name: ppp0, family: PPP, address: 192.168.1.2, subnet: 255.255.255.0, destination: 192.168.1.226).
  Tue Oct 21 12:10:09 2014 : L2TP received CDN
  Tue Oct 21 12:10:09 2014 : Connection terminated.
  Tue Oct 21 12:10:09 2014 : Connect time 0.4 minutes.
  Tue Oct 21 12:10:09 2014 : Sent 1003 bytes, received 646 bytes.
  Tue Oct 21 12:10:09 2014 : L2TP disconnecting...
  Tue Oct 21 12:10:09 2014 : L2TP disconnected
  2014-10-21 12:10:09 MDT   --> Client with address = 192.168.1.226 has hungup

  1. This procedure is a diagnostic test. It changes nothing, for better or worse, and therefore will not, in itself, solve the problem. But with the aid of the test results, the solution may take a few minutes, instead of hours or days.
  Don't be put off by the complexity of these instructions. The process is much less complicated than the description. You do harder tasks with the computer all the time.
  2. If you don't already have a current backup, back up all data before doing anything else. The backup is necessary on general principle, not because of anything in the test procedure. Backup is always a must, and when you're having any kind of trouble with the computer, you may be at higher than usual risk of losing data, whether you follow these instructions or not.
  There are ways to back up a computer that isn't fully functional. Ask if you need guidance.
  3. Below are instructions to run a UNIX shell script, a type of program. As I wrote above, it changes nothing. It doesn't send or receive any data on the network. All it does is to generate a human-readable report on the state of the computer. That report goes nowhere unless you choose to share it. If you prefer, you can act on it yourself without disclosing the contents to me or anyone else.
  You should be wondering whether you can believe me, and whether it's safe to run a program at the behest of a stranger. In general, no, it's not safe and I don't encourage it.
  In this case, however, there are a couple of ways for you to decide whether the program is safe without having to trust me. First, you can read it. Unlike an application that you download and click to run, it's transparent, so anyone with the necessary skill can verify what it does.
  You may not be able to understand the script yourself. But variations of the script have been posted on this website thousands of times over a period of years. The site is hosted by Apple, which does not allow it to be used to distribute harmful software. Any one of the millions of registered users could have read the script and raised the alarm if it was harmful. Then I would not be here now and you would not be reading this message.
  Nevertheless, if you can't satisfy yourself that these instructions are safe, don't follow them. Ask for other options.
  4. Here's a summary of what you need to do, if you choose to proceed:
  ☞ Copy a line of text in this window to the Clipboard.
  ☞ Paste into the window of another application.
  ☞ Wait for the test to run. It usually takes a few minutes.
  ☞ Paste the results, which will have been copied automatically, back into a reply on this page.
  The sequence is: copy, paste, wait, paste again. You don't need to copy a second time. Details follow.
  5. You may have started the computer in "safe" mode. Preferably, these steps should be taken in “normal” mode, under the conditions in which the problem is reproduced. If the system is now in safe mode and works well enough in normal mode to run the test, restart as usual. If you can only test in safe mode, do that.
  6. If you have more than one user, and the one affected by the problem is not an administrator, then please run the test twice: once while logged in as the affected user, and once as an administrator. The results may be different. The user that is created automatically on a new computer when you start it for the first time is an administrator. If you can't log in as an administrator, test as the affected user. Most personal Macs have only one user, and in that case this section doesn’t apply. Don't log in as root.
  7. The script is a single long line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, though you may not see all of it in the browser window, and you can then copy it. If you try to select the line by dragging across the part you can see, you won't get all of it.
  Triple-click anywhere in the line of text below on this page to select it:
  PATH=/usr/bin:/bin:/usr/sbin:/sbin:/usr/libexec;clear;cd;p=(Software Hardware Memory Diagnostics Power FireWire Thunderbolt USB Fonts SerialATA 4 1000 25 5120 KiB/s 1024 85 \\b%% 20480 1 MB/s 25000 ports ' com.clark.\* \*dropbox \*genieo\* \*GoogleDr\* \*k.AutoCAD\* \*k.Maya\* vidinst\* ' DYLD_INSERT_LIBRARIES\ DYLD_LIBRARY_PATH -86 "` route -n get default|awk '/e:/{print $2}' `" 25 N\\/A down up 102400 25600 recvfrom sendto CFBundleIdentifier 25 25 25 1000 MB com.apple.AirPortBaseStationAgent 464843899 51 5120 files );N5=${#p[@]};p[N5]=` networksetup -listnetworkserviceorder|awk ' NR>1 { sub(/^\([0-9]+\) /,"");n=$0;getline;} $NF=="'${p[26]}')" { sub(/.$/,"",$NF);print n;exit;} ' `;f=('\n%s: %s\n' '\n%s\n\n%s\n' '\nRAM details\n%s\n' %s\ %s '%s\n-\t%s\n' );S0() { echo ' { q=$NF+0;$NF="";u=$(NF-1);$(NF-1)="";gsub(/^ +| +$/,"");if(q>='${p[$1]}') printf("%s (UID %s) is using %s '${p[$2]}'",$0,u,q);} ';};s=(' s/[0-9A-Za-z._]+@[0-9A-Za-z.]+\.[0-9A-Za-z]{2,4}/EMAIL/g;/\/Shared/!s/(\/Users\/)[^ /]+/\1USER/g;s/[-0-9A-Fa-f]{22,}/UUID/g;' ' s/^ +//;/de: S|[nst]:/p;' ' {sub(/^ +/,"")};/er:/;/y:/&&$2<'${p[10]} ' 1s/://;3,6d;/[my].+:/d;s/^ {4}//;H;${ g;s/\n$//;/s: [^EO]|x([^08]|02[^F]|8[^0])/p;} ' ' 5h;6{ H;g;/P/!p;} ' ' ($1~/^Cy/&&$3>'${p[11]}')||($1~/^Cond/&&$2!~/^N/) ' ' /:$/{ N;/:.+:/d;s/ *://;b0'$'\n'' };/^ *(V.+ [0N]|Man).+ /{ s/ 0x.... //;s/[()]//g;s/(.+: )(.+)/ (\2)/;H;};$b0'$'\n'' d;:0'$'\n'' x;s/\n\n//;/Apple[ ,]|Genesy|Intel|SMSC/d;s/\n.*//;/\)$/p;' ' s/^.*C/C/;H;${ g;/No th|pms/!p;} ' '/= [^GO]/p' '{$1=""};1' ' /Of/!{ s/^.+is |\.//g;p;} ' ' $0&&!/ / { n++;print;} END { if(n<200) print "com.apple.";} ' ' $3~/[0-9]:[0-9]{2}$/ { gsub(/:[0-9:a-f]{14}/,"");} { print|"tail -n'${p[12]}'";} ' ' NR==2&&$4<='${p[13]}' { print $4;} ' ' END { $2/=256;if($2>='${p[15]}') print int($2) } ' ' NR!=13{next};{sub(/[+-]$/,"",$NF)};'"`S0 21 22`" 'NR!=2{next}'"`S0 37 17`" ' NR!=5||$8!~/[RW]/{next};{ $(NF-1)=$1;$NF=int($NF/10000000);for(i=1;i<=3;i++){$i="";$(NF-1-i)="";};};'"`S0 19 20`" 's:^:/:p' '/\.kext\/(Contents\/)?Info\.plist$/p' 's/^.{52}(.+) <.+/\1/p' ' /Launch[AD].+\.plist$/ { n++;print;} END { print "'${p[41]}'";if(n<200) print "/System/";} ' '/\.xpc\/(Contents\/)?Info\.plist$/p' ' NR>1&&!/0x|\.[0-9]+$|com\.apple\.launchctl\.(Aqua|Background|System)$|'${p[41]}'/ { print $3;} ' ' /\.(framew|lproj)|\):/d;/plist:|:.+(Mach|scrip)/s/:[^:]+//p ' '/^root$/p' ' !/\/Contents\/.+\/Contents|Applic|Autom|Frameworks/&&/Lib.+\/Info.plist$/ { n++;print;} END { if(n<1100) print "/System/";} ' '/^\/usr\/lib\/.+dylib$/p' ' /Temp|emac/{next};/(etc|Preferences|Launch[AD].+)\// { sub(".(/private)?","");n++;print;} END { print "'${p[41]}'.plist\t'${p[42]}'";if(n<500) print "Launch";} ' ' /\/(Contents\/.+\/Contents|Frameworks)\/|\.wdgt\/.+\.([bw]|plu)/d;p;' 's/\/(Contents\/)?Info.plist$//;p' ' { gsub("^| |\n","\\|\\|kMDItem'${p[35]}'=");sub("^...."," ") };1 ' p '{print $3"\t"$1}' 's/\'$'\t''.+//p' 's/1/On/p' '/Prox.+: [^0]/p' '$2>'${p[43]}'{$2=$2-1;print}' ' BEGIN { i="'${p[26]}'";M1='${p[16]}';M2='${p[18]}';M3='${p[31]}';M4='${p[32]}';} !/^A/{next};/%/ { getline;if($5<M1) a="user "$2"%, system "$4"%";} /disk0/&&$4>M2 { b=$3" ops/s, "$4" blocks/s";} $2==i { if(c) { d=$3+$4+$5+$6;next;};if($4>M3||$6>M4) c=int($4/1024)" in, "int($6/1024)" out";} END { if(a) print "CPU: "a;if(b) print "I/O: "b;if(c) print "Net: "c" (KiB/s)";if(d) print "Net errors: "d" packets/s";} ' ' /r\[0\] /&&$NF!~/^1(0|72\.(1[6-9]|2[0-9]|3[0-1])|92\.168)\./ { print $NF;exit;} ' ' !/^T/ { printf "(static)";exit;} ' '/apsd|BKAg|OpenD/!s/:.+//p' ' (/k:/&&$3!~/(255\.){3}0/ )||(/v6:/&&$2!~/A/ ) ' ' $1~"lR"&&$2<='${p[25]}';$1~"li"&&$3!~"wpa2";' ' BEGIN { FS=":";p="uniq -c|sed -E '"'s/ +\\([0-9]+\\)\\(.+\\)/\\\2 x\\\1/;s/x1$//'"'";} { n=split($3,a,".");sub(/_2[01].+/,"",$3);print $2" "$3" "a[n]$1|p;b=b$1;} END { close(p);if(b) print("\n\t* Code injection");} ' ' NR!=4{next} {$NF/=10240} '"`S0 27 14`" ' END { if($3~/[0-9]/)print$3;} ' ' BEGIN { L='${p[36]}';} !/^[[:space:]]*(#.*)?$/ { l++;if(l<=L) f=f"\n   "$0;} END { F=FILENAME;if(!F) exit;if(!f) f="\n   [N/A]";"file -b "F|getline T;if(T!~/^(AS.+ (En.+ )?text$|(Bo|PO).+ sh.+ text ex)/) F=F" ("T")";printf("\nContents of %s\n%s\n",F,f);if(l>L) printf("\n   ...and %s more line(s)\n",l-L);} ' ' s/^ ?n...://p;s/^ ?p...:/-'$'\t''/p;' 's/0/Off/p' ' END{print NR} ' ' /id: N|te: Y/{i++} END{print i} ' ' / / { print "'"${p[28]}"'";exit;};1;' '/ en/!s/\.//p' ' NR!=13{next};{sub(/[+-M]$/,"",$NF)};'"`S0 39 40`" ' $10~/\(L/&&$9!~"localhost" { sub(/.+:/,"",$9);print $1": "$9;} ' '/^ +r/s/.+"(.+)".+/\1/p' 's/(.+\.wdgt)\/(Contents\/)?Info\.plist$/\1/p' 's/^.+\/(.+)\.wdgt$/\1/p' ' /l: /{ /DVD/d;s/.+: //;b0'$'\n'' };/s: /{ /V/d;s/^ */- /;H;};$b0'$'\n'' d;:0'$'\n'' x;/APPLE [^:]+$/d;p;' ' /^find: /d;p;' "`S0 44 45`" ' BEGIN{FS="= "} /Path/{print $2} ' ' /^ *$/d;s/^ */   /;' );c1=(system_profiler pmset\ -g nvram fdesetup find syslog df vm_stat sar ps sudo\ crontab sudo\ iotop top pkgutil 'PlistBuddy 2>&1 -c "Print' whoami cksum kextstat launchctl sudo\ launchctl crontab 'sudo defaults read' stat lsbom mdfind ' for i in ${p[24]};do ${c1[18]} ${c2[27]} $i;done;' defaults\ read scutil sudo\ dtrace sudo\ profiles sed\ -En awk /S*/*/P*/*/*/C*/*/airport networksetup mdutil sudo\ lsof test osascript\ -e );c2=(com.apple.loginwindow\ LoginHook '" /L*/P*/loginw*' "'tell app \"System Events\" to get properties of login items'|tr , \\\n" 'L*/Ca*/com.ap*.Saf*/E*/* -d 1 -name In*t -exec '"${c1[14]}"' :CFBundleDisplayName" {} \;|sort|uniq' '~ $TMPDIR.. \( -flags +sappnd,schg,uappnd,uchg -o ! -user $UID -o ! -perm -600 \)' '.??* -path .Trash -prune -o -type d -name *.app -print -prune' :${p[35]}\" :Label\" '{/,}L*/{Con,Pref}* -type f ! -size 0 -name *.plist -exec plutil -s {} \;' "-f'%N: %l' Desktop L*/Keyc*" therm sysload boot-args status " -F '\$Time \$Message' -k Sender kernel -k Message Req 'bad |Beac|caug|corru|dead[^bl]|FAIL|fail|GPU |hfs: Ru|inval|jnl:|last value [1-9]|n Cause: -|NVDA\(|pagin|proc: t|Roamed|rror|ssert|Thrott|tim(ed? ?|ing )o|WARN' -k Message Rne 'Goog|ksadm|SMC:|suhel| VALI|xpma' -o -k Sender fseventsd -k Message Req 'SL' " '-du -n DEV -n EDEV 1 10' 'acrx -o comm,ruid,%cpu' '-t1 10 1' '-f -pfc /var/db/r*/com.apple.*.{BS,Bas,Es,J,OSXU,Rem,up}*.bom' '{/,}L*/Lo*/Diag* -type f -regex .\*[cght] ! -name .?\* ! -name \*ag \( -exec grep -lq "^Thread c" {} \; -exec printf \* \; -o -true \) -execdir stat -f:%Sc:%N -t%F {} \;|sort -t: -k2 |tail -n'${p[38]} '/S*/*/Ca*/*xpc* >&- ||echo No' '-L /{S*/,}L*/StartupItems -type f -exec file {} +' '-L /S*/L*/{C*/Sec*A,Ex}* {/,}L*/{A*d,Ca*/*/Ex,Co{mpon,reM},Ex,In{p,ter},iTu*/*P,Keyb,Mail/B,Pr*P,Qu*T,Scripti,Sec,Servi,Spo,Widg}* -path \\*s/Resources -prune -o -type f -name Info.plist' '/usr/lib -type f -name *.dylib' `awk "${s[31]}"<<<${p[23]}` "/e*/{auto,{cron,fs}tab,hosts,{[lp],sy}*.conf,mach_i*/*,pam.d/*,ssh{,d}_config,*.local} {,/usr/local}/etc/periodic/*/* /L*/P*{,/*}/com.a*.{Bo,sec*.ap}*t {/S*/,/,}L*/Lau*/*t .launchd.conf" list getenv /Library/Preferences/com.apple.alf\ globalstate --proxy '-n get default' -I --dns -getdnsservers\ "${p[N5]}" -getinfo\ "${p[N5]}" -P -m\ / '' -n1 '-R -l1 -n1 -o prt -stats command,uid,prt' '--regexp --only-files --files com.apple.pkg.*|sort|uniq' -kl -l -s\ / '-R -l1 -n1 -o mem -stats command,uid,mem' '+c0 -i4TCP:0-1023' com.apple.dashboard\ layer-gadgets '-d /L*/Mana*/$USER&&echo On' '-app Safari WebKitDNSPrefetchingEnabled' "+c0 -l|awk '{print(\$1,\$3)}'|sort|uniq -c|sort -n|tail -1|awk '{print(\$2,\$3,\$1)}'" );N1=${#c2[@]};for j in {0..9};do c2[N1+j]=SP${p[j]}DataType;done;N2=${#c2[@]};for j in 0 1;do c2[N2+j]="-n ' syscall::'${p[33+j]}':return { @out[execname,uid]=sum(arg0) } tick-10sec { trunc(@out,1);exit(0);} '";done;l=(Restricted\ files Hidden\ apps 'Elapsed time (s)' POST Battery Safari\ extensions Bad\ plists 'High file counts' User Heat System\ load boot\ args FileVault Diagnostic\ reports Log 'Free space (MiB)' 'Swap (MiB)' Activity 'CPU per process' Login\ hook 'I/O per process' Mach\ ports kexts Daemons Agents XPC\ cache Startup\ items Admin\ access Root\ access Bundles dylibs Apps Font\ issues Inserted\ dylibs Firewall Proxies DNS TCP/IP Wi-Fi Profiles Root\ crontab User\ crontab 'Global login items' 'User login items' Spotlight Memory Listeners Widgets Parental\ Controls Prefetching SATA Descriptors );N3=${#l[@]};for i in 0 1 2;do l[N3+i]=${p[5+i]};done;N4=${#l[@]};for j in 0 1;do l[N4+j]="Current ${p[29+j]}stream data";done;A0() { id -G|grep -qw 80;v[1]=$?;((v[1]==0))&&sudo true;v[2]=$?;v[3]=`date +%s`;clear >&-;date '+Start time: %T %D%n';};for i in 0 1;do eval ' A'$((1+i))'() { v=` eval "${c1[$1]} ${c2[$2]}"|'${c1[30+i]}' "${s[$3]}" `;[[ "$v" ]];};A'$((3+i))'() { v=` while read i;do [[ "$i" ]]&&eval "${c1[$1]} ${c2[$2]}" \"$i\"|'${c1[30+i]}' "${s[$3]}";done<<<"${v[$4]}" `;[[ "$v" ]];};A'$((5+i))'() { v=` while read i;do '${c1[30+i]}' "${s[$1]}" "$i";done<<<"${v[$2]}" `;[[ "$v" ]];};';done;A7(){ v=$((`date +%s`-v[3]));};B2(){ v[$1]="$v";};for i in 0 1;do eval ' B'$i'() { v=;((v['$((i+1))']==0))||{ v=No;false;};};B'$((3+i))'() { v[$2]=`'${c1[30+i]}' "${s[$3]}"<<<"${v[$1]}"`;} ';done;B5(){ v[$1]="${v[$1]}"$'\n'"${v[$2]}";};B6() { v=` paste -d: <(printf "${v[$1]}") <(printf "${v[$2]}")|awk -F: ' {printf("'"${f[$3]}"'",$1,$2)} ' `;};B7(){ v=`grep -Fv "${v[$1]}"<<<"$v"`;};C0() { [[ "$v" ]]&&sed -E "$s"<<<"$v";};C1() { [[ "$v" ]]&&printf "${f[$1]}" "${l[$2]}" "$v"|sed -E "$s";};C2() { v=`echo $v`;[[ "$v" != 0 ]]&&C1 0 $1;};C3() { v=`sed -E "${s[63]}"<<<"$v"`&&C1 1 $1;};for i in 1 2;do for j in 0 2 3;do eval D$i$j'(){ A'$i' $1 $2 $3; C'$j' $4;};';done;done;{ A0;D20 0 $((N1+1)) 2;D10 0 $N1 1;B0;C2 27;B0&&! B1&&C2 28;D12 15 37 25 8;A1 0 $((N1+2)) 3;C0;D13 0 $((N1+3)) 4 3;D23 0 $((N1+4)) 5 4;D13 0 $((N1+9)) 59 50;for i in 0 1 2;do D13 0 $((N1+5+i)) 6 $((N3+i));done;D13 1 10 7 9;D13 1 11 8 10;D22 2 12 9 11;D12 3 13 10 12;D23 4 19 44 13;D23 5 14 12 14;D22 6 36 13 15;D22 7 37 14 16;D23 8 15 38 17;D22 9 16 16 18;B1&&{ D22 35 49 61 51;D22 11 17 17 20;for i in 0 1;do D22 28 $((N2+i)) 45 $((N4+i));done;};D22 12 44 54 45;D22 12 39 15 21;A1 13 40 18;B2 4;B3 4 0 19;A3 14 6 32 0;B4 0 5 11;A1 17 41 20;B7 5;C3 22;B4 4 6 21;A3 14 7 32 6;B4 0 7 11;B3 4 0 22;A3 14 6 32 0;B4 0 8 11;B5 7 8;B1&&{ A2 19 26 23;B7 7;C3 23;};A2 18 26 23;B7 7;C3 24;D13 4 21 24 26;B4 4 12 26;B3 4 13 27;A1 4 22 29;B7 12;B2 14;A4 14 6 52 14;B2 15;B6 14 15 4;B3 0 0 30;C3 29;A1 4 23 27;B7 13;C3 30;D13 24 24 32 31;D13 25 37 32 33;A2 23 18 28;B2 16;A2 16 25 33;B7 16;B3 0 0 34;B2 21;A6 47 21&&C0;B1&&{ D13 21 0 32 19;D13 10 42 32 40;D22 29 35 46 39;};D23 14 1 62 42;D12 34 43 53 44;D12 22 20 32 25;D22 0 $((N1+8)) 51 32;D13 4 8 41 6;D12 26 28 35 34;D13 27 29 36 35;A2 27 32 39&&{ B2 19;A2 33 33 40;B2 20;B6 19 20 3;};C2 36;D23 33 34 42 37;B1&&D23 35 45 55 46;D23 32 31 43 38;D12 36 47 32 48;D13 20 42 32 41;D13 37 2 48 43;D13 4 5 32 1;D13 4 3 60 5;D12 26 48 49 49;B3 4 22 57;A1 26 46 56;B7 22;B3 0 0 58;C3 47;D22 4 4 50 0;D23 22 9 37 7;A7;C2 2;} 2>/dev/null|pbcopy;exit 2>&-
  Copy the selected text to the Clipboard by pressing the key combination command-C.
  8. Launch the built-in Terminal application in any of the following ways:
  ☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
  ☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
  ☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid.
  Click anywhere in the Terminal window and paste by pressing command-V. The text you pasted should vanish immediately. If it doesn't, press the return key.
  9. If you see an error message in the Terminal window such as "Syntax error" or "Event not found," enter
  exec bash
  and press return. Then paste the script again.
  10. If you're logged in as an administrator, you'll be prompted for your login password. Nothing will be displayed when you type it. You will not see the usual dots in place of typed characters. Make sure caps lock is off. Type carefully and then press return. You may get a one-time warning to be careful. If you make three failed attempts to enter the password, the test will run anyway, but it will produce less information. In most cases, the difference is not important. If you don't know the password, or if you prefer not to enter it, press the key combination control-C or just press return  three times at the password prompt. Again, the script will still run.
  If you're not logged in as an administrator, you won't be prompted for a password. The test will still run. It just won't do anything that requires administrator privileges.
  11. The test may take a few minutes to run, depending on how many files you have and the speed of the computer. A computer that's abnormally slow may take longer to run the test. While it's running, there will be nothing in the Terminal window and no indication of progress. Wait for the line
  [Process completed]
  to appear. If you don't see it within half an hour or so, the test probably won't complete in a reasonable time. In that case, close the Terminal window and report what happened. No harm will be done.
  12. When the test is complete, quit Terminal. The results will have been copied to the Clipboard automatically. They are not shown in the Terminal window. Please don't copy anything from there. All you have to do is start a reply to this comment and then paste by pressing command-V again.
  At the top of the results, there will be a line that begins with the words "Start time." If you don't see that, but instead see a mass of gibberish, you didn't wait for the "Process completed" message to appear in the Terminal window. Please wait for it and try again.
  If any private information, such as your name or email address, appears in the results, anonymize it before posting. Usually that won't be necessary.
  13. When you post the results, you might see an error message on the web page: "You have included content in your post that is not permitted," or "You are not authorized to post." That's a bug in the forum software. Please post the test results on Pastebin, then post a link here to the page you created.
  14. This is a public forum, and others may give you advice based on the results of the test. They speak only for themselves, and I don't necessarily agree with them.
  Copyright © 2014 by Linc Davis. As the sole author of this work, I reserve all rights to it except as provided in the Use Agreement for the Apple Support Communities website ("ASC"). Readers of ASC may copy it for their own personal use. Neither the whole nor any part may be redistributed.

• Macbook air logging into windows server

  I am new to Apple with a Macbook air.
  I do need to log into a window server 2003 R2, via external desktop. All my work is on there.
  How do I do this? I am not very digital mindet.
  Are there special App's or programs I need to download, I heard something about  " Office" for aple?
  Any help welcome.
  Helmut

  John4186 –
  Welcome to the Mac Forms – give this link a try.
  http://www.microsoft.com/mac/products/remote-desktop/default.mspx
  I am still running 10.5.3 due to the numerous Mac/Active Directory issues; but I am able to access my Windows 2003 servers with this client. I am also able to make to my local (Mac) drives as well.
  Best of Luck –
  BH

• I am unable to log into the server wiki. I can get as far as the login page.

  When I attempte to log into our company server wiki I can get as far as the login page.
  When I type in any user/pass all I see is a spinning wheel on the login panel.
  The error that is occuring in the back ground is  as follows
  ActiveRecord::StatementInvalid in LoginController#plain_login
  SQLite3::SQLException: attempt to write a readonly database: INSERT INTO "users" ("uid", "created_at", "shortname", "longname", "generated_uid", "updated_at") VALUES (...)
  I have confirmed that the postgres server for collab is running and I am able to connect to it through a Database Utility. I can also verify through this database utility that the Wiki is in tact. I do not know where else to go form here or if the errors I am seeing are not related to the wiki.
  I am open to any possible assistance through this endeavor. I am running a Mac OS X server version 10.7.5.

  Thank you so much. I deleted all of the Netflix history and the cookie. and it works fine now. Thank you again.

• Automatically log into iChat server via Single Sign On

  I'd like to set up our clients to automatically log into an iChat server (SL 10.6.6) when users log into their client Macs (single sign on). Catch is I'd like to set this up remotely...via WGM probably via an "always" or "once" Preference configuration...but can't remember details.
  Anyone point me in the right direction.

  Integration of PowerBuilder into Portal