Finally I Could Connect My Virtual Networks

Yeah...just like the title of this article, i finally succeeded connecting my virtual network running from VMware to the physical network. This time using bridged connection.

I was very surprised because just like on my previous article, i told that i was failed connecting my virtual network using bridged connection.

Yesterday night, at 10 PM approximately, i was very upset and i had no hope. But in my sadness i tried to do experiment one more time.

I bridged vmnet0 adapter from Virtual Network Settings menu to my physical LAN. But i met some strange thing that night. The vmnet0 adapter didn't appear in Network Connections list.

Then i run Windows Server 2003 on VMware and i switch the network interfaces connected to my laptop using Bridged connections
. I switch on DHCP client and....

Booommmm

It could get the IP from the server

I try to ping the gateway on Software Engineering Lab on my college 10.126.17.1/24 and it was replied.

I opened the browser, enter the proxy, and i open google.com, and successfull.

Huuuhhh

It just like a dream, dream comes true

Now i'm writing this article from Debian Linux runnin on VMware. hahaha

Don't forget to leave a comment, bro!!!

Configuring Windows as PC router

It has been my obsession to connect my virtual machine to my physical local area network. I have tried it by using bridge connection but it couldn't. And yesterday i was doing my experience again, and this time i try to use router.

I configured my laptop (Windows XP Pro) to be a PC router which is connected to two of virtual networks running on VMware.

In the first network, 10.10.1.1/29, i run Windows Server 2003 Standard Edition which has IP address: 10.10.1.2/29 connected to the gateway 10.10.1.1/29 (VMware Network Adapter). Whereas, in the second network, 10.10.1.8/29, i run Debian GNU/Linux Etch which has IP address: 10.10.1.10/29 and connected to gateway 10.10.1.9/29.

After setting up all the network and also the routing table, i connected my laptop to the LAN at Software Engineering Lab on my college with IP address: 10.126.17.121/24 and gateway 10.126.17.1/24.

And the result is???

Shown at tcpdump: ping 10.126.17.1 from Debian

kresna:/home/fitrah# tcpdump -nt
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes
arp who-has 10.10.1.9 tell 10.10.1.10
arp reply 10.10.1.9 is-at 00:50:56:c0:00:02
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 1, length 64
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 2, length 64
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 3, length 64
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 4, length 64
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 5, length 64
IP 10.10.1.10 > 10.126.17.1: ICMP echo request, id 9507, seq 6, length 64

8 packets captured
8 packets received by filter
0 packets dropped by kernel

It was failed, Nooo!!!

I didn't know what was the problem because i can't run windump from my laptop so i couldn't see the packets which moved between laptop and 10.126.17.1.24. But i had my assumption:

The ICMP packets sent from 10.10.1.10/29 could move to 10.126.17.1/24, BUT 10.126.17.1/24 couldn't reply because it didn't know where the network 10.10.1.8/29 is.

or

my routing table was wrong

Microsoft Windows XP [Version 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\Documents and Settings\M. Fithrah Muttaqin>route print
===========================================================================
Interface List
0×1 ……………………… MS TCP Loopback interface
0×2 …00 50 56 c0 00 02 …… VMware Virtual Ethernet Adapter for VMnet2
0×3 …00 50 56 c0 00 01 …… VMware Virtual Ethernet Adapter for VMnet1
0×10005 …00 0f b0 d2 b7 d0 …… Realtek RTL8139/810x Family Fast Ethernet NIC - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.126.17.1 10.126.17.121 20
10.10.1.0 255.255.255.248 10.10.1.1 10.10.1.1 20
10.10.1.1 255.255.255.255 127.0.0.1 127.0.0.1 20
10.10.1.8 255.255.255.248 10.10.1.9 10.10.1.9 20
10.10.1.9 255.255.255.255 127.0.0.1 127.0.0.1 20
10.126.17.0 255.255.255.0 10.126.17.121 10.126.17.121 20 <— 10.126.17.121 255.255.255.255 127.0.0.1 127.0.0.1 20
10.255.255.255 255.255.255.255 10.10.1.1 10.10.1.1 20
10.255.255.255 255.255.255.255 10.10.1.9 10.10.1.9 20
10.255.255.255 255.255.255.255 10.126.17.121 10.126.17.121 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 10.10.1.1 10.10.1.1 30
224.0.0.0 240.0.0.0 10.10.1.1 10.10.1.1 20
224.0.0.0 240.0.0.0 10.10.1.9 10.10.1.9 20
224.0.0.0 240.0.0.0 10.126.17.121 10.126.17.121 20
255.255.255.255 255.255.255.255 10.10.1.1 10.10.1.1 1
255.255.255.255 255.255.255.255 10.10.1.9 10.10.1.9 1
255.255.255.255 255.255.255.255 10.126.17.121 10.126.17.121 1
Default Gateway: 10.126.17.1
===========================================================================
Persistent Routes:
None

But it's ok, there are still many ways, though i've not think yet. At least i have something to post in this blog.

Here is the way to configure Windows as a PC router:

By default, Windows can't forward incoming IP address, as a result it can't route IP address between networks.

But we could make Windows as a PC router by adding little modification on the registry.


Note:
On Windows 2000/NT we don't need to modify the registry because there is an option to make Windows as PC router
enter control panel> network > TCP/IP Properties > router > IP Forwarding


In order to know the changes before and after modifying windows registry, run ipconfig /all on command prompt. Before act as router, "IP Routing Enabled""false".
(on Windows IP Configuration section) should be

Here is windows registry modification:

1. Open windows registry editor

Start -> Run -> type regedit

2. Find this key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters

3. Change dword value IPEnableRouter to 1

4. Restart windows

After windows reboot, run ipconfig /all on command prompt, if "IP Routing Enabled" value is set to "yes", then Windows has been a PC Router. The next step is creating routing table by route command on command prompt.

That's all folks, don't forget to leave your comment yeah!

New Google OpenSocial application hacked in minutes

A hacker has claimed to have hacked the first of Google’s OpenSocial application on Plaxo –“emote” — within 45 minutes of its launch.

The hacker, who goes by the alias “theharmonyguy,” said that he has added a number of emoticons to Plaxo VP Marketing John McCrea’s profile. He also claimed to have hacked a number of Facebook applications including the Superpoke app.

In an email to Michael Arrington of TechCrunch, McCrea initially denied the hacker’s claims saying that his account didn’t appear to be hacked. But later he spotted and acknowledged that there were foreign changes made to his account.

By Arrington’s request, theharmonyguy demonstrated his hack technique by adding four quick emoticon messages in a very short span of time to Arrington’s Plaxo account.

Source: Tech Blorge

Users are a bigger headache than hackers: survey

IT managers are more concerned about end-user abuse of IT systems than attacks from hackers and other threats, according to new research.

The 2007 State of Security Report, sponsored by security vendor Websense, surveyed 158 employees and 159 IT managers at Australian companies with more than 50 staff.

Managing end-user online activity is the most frustrating part of the IT manager role, according to the survey, which found 59% of surveyed companies do not block peer-to-peer file sharing, while 47% don't enforce internet usage policies through filtering applications.

Budget constraints were the second highest concern, and were reported by 48% of IT managers. Other conceerns cited include lax attention to security (25%) and ease of deployment (18%).

Source: Computer World (NZ)

20 years in prison and $250,000 fine for hacking into the school's system to change grades

Two California men are facing 20 years in prison on charges they hacked into a California state university's PeopleSoft system to change their grades. In an October 25 grand jury indictment, John Escalera, 29, and Gustavo Razo, 28, were charged with using Escalera's position within California State University, Fresno's IT help desk center to gain access to the university's grades database.

The men could face 20 years in prison and $250,000 in fines if convicted of the eleven counts on the indictment, which includes charges of unauthorized computer access, identity theft, conspiracy, and wire fraud.

Though they are charged with identity theft, a university spokeswoman could not immediately say whether or not sensitive information such as social security numbers had been compromised during the crime.

Source: Info World

Stealth Windows update prevents XP repair

A silent update that Microsoft deployed widely in July and August is preventing the "repair" feature of Windows XP from completing successfully.

Ever since the Redmond company's recent download of new support files for Windows Update, users of XP's repair function have been unable to install the latest 80 patches from Microsoft.

Repaired installations of XP can't be updated

Accounts of conflicts with XP's repair option came to our attention after Microsoft's "silent install" of Windows Update (WU) executable files, known as version 7.0.600.381, was reported in the Sept. 13 and 20 issues of the Windows Secrets Newsletter.

The trouble occurs when users reinstall XP's system files using the repair capability found on genuine XP CD-ROMs. (The feature is not present on "Restore CDs.") The repair option, which is typically employed when XP for some reason becomes unbootable, rolls many aspects of XP back to a pristine state. It wipes out many updates and patches and sets Internet Explorer back to the version that originally shipped with the operating system.

Normally, users who repair XP can easily download and install the latest patches, using the Automatic Updates control panel or navigating directly to Microsoft's Windows Update site.

However, after using the repair option from an XP CD-ROM, Windows Update now downloads and installs the new 7.0.600.381 executable files. Some WU executables aren't registered with the operating system, preventing Windows Update from working as intended. This, in turn, prevents Microsoft's 80 latest patches from installing — even if the patches successfully downloaded to the PC.

Source: Windows Secrets

More malware coming for Macs

Hackers and malware creators are clearly taking a greater degree of interest in the ever growing community of Mac owners with the discovery of the OSX.RSPlug.A Trojan masquerading as a video plug-in at some porn sites, diverting some of their attention away from the Windows world to try their hand at hacking the Mac. Now more than ever with the launch of Leopard, any of Apple’ Mac models are excellent, multipurpose computers that are easy to use, have a wealth of native software available, are fully compatible with PCs right down to native or virtual running of Windows.

The number of Mac owners and users is growing quarter by quarter, and while they won’t outnumber Windows users anytime soon, as there has never been a better time to buy a Mac.

Apple’s user base is growing better than ever and it’s like honey to the bee for hackers and malware writers, meaning there’s never been a better time to try to hack the Mac – or just hack their users through ‘social engineering’ tricks.

Source: iTWire