Scott's Weblog The weblog of an IT pro specializing in virtualization, networking, open source, and cloud computing

Microsoft Patches for August

This MSRC blog posting outlines the patches that were released last Tuesday, and provides links to the security bulletins for each patch.

(Read more...)

Solaris 10 and Active Directory Integration

As with the procedure for authenticating Linux against Active Directory and providing Kerberos-based SSO with Apache, there are a few steps to be performed. Some of these steps are performed on the Active Directory side, some of them are performed on the Solaris 10 system.

(Read more...)

Who to Believe?

I won’t go into all the gory details, because I don’t want to speak ill of any person. Suffice it to say that events transpired in my church that led to the departure of a respected member, someone who had shown Christ in his/her actions every step of the way. If you’re a Christian, you know the kind of person I’m talking about—he/she is the one that you really respect, that you can just tell His Presence is with him/her. He/she is the one that you can always trust to be honest with you, even when the truth is not what you want to hear. He or she is that person that always speaks respectfully of others, even when in strong disagreement with those others. This was the kind of person that left our church, and in my humble opinion our church is lessened by his/her departure.

(Read more...)

A Couple Cool Mac Discoveries

The first of these discoveries I found while working on the Kerberos SSO article, and while verifying information for my updated Linux-AD integration instructions for Windows Server 2003 R2.

(Read more...) API Change

Fortunately, the fix for Cocoalicious is really straightforward; simply go into the preferences, change the API URI to “”, click OK, then exit and restart the application. All should be well after that. (At least, it worked for me.)

(Read more...)

Kerberos-Based SSO with Apache

The key to the magic here is the mod_auth_kerb module, which adds Kerberos authentication to Apache. This module not only allows Apache to use Kerberos on the “back-end,” so to speak, but also supports the SPNEGO and GSS-API stuff on the “front-end” that allow it to transparently authenticate users connecting with supported browsers, without ever prompting for a password.

(Read more...)

Linux, Active Directory, and Windows Server 2003 R2 Revisited

UPDATE: A revised version of these instructions is available here.

(Read more...)

VMware on Mac OS X

Various sources (this notice on and this notice on MacNN) alerted me this morning to the announcement by VMware of a Mac OS X-based version of VMware Workstation, intended to run on any Intel-based Mac system.

(Read more...)

Assorted Links

I have a variety of links and articles, mostly security related, that aren’t really substantial enough for a full-blown entry, but I wanted to mention them anyway.

(Read more...)

Disabling AD Replication

Replication is bidirectional, occurring both inbound and outbound. Each of these directions can be disabled/enabled indepedently of the other using the repadmin command. The repadmin command is part of the support tools, included on the Windows 2000 and Windows Server 2003 CDs but not installed by default. (Installing them is highly recommended in all situations.)

(Read more...)