VMWare vSphere evaluation downgrade

 Techie Stuff  11 Responses »
Sep 252010
 

VMWare make their vSphere Hypervisor free to download and use which is an amazing deal, they also offer a free evaluation of VMWare vSphere which adds extra bells and whistles for enterprise level virtualisation. If you take the evaluation version, you have 60 days until the vSphere client locks down and stops you powering on your virtual machines. At that point, you will either have to pay for a full vSphere licence, or downgrade to the free version again. Of course, they haven’t made it very easy to find out how to do the downgrade!

If your evaluation has expired, your vSphere client should look something like this.

vclient expired 300x266 VMWare vSphere evaluation downgrade

vSphere Client showing expired license

To downgrade to the free version and regain control of your virtual machines, you need to get a new licence number – its free. I have heard reports that the licence key would have been sent to you in the initial email which you received from VMWare when you registered for the evaluation, but I couldn’t find it in any of the emails I had received. The best bet is probably to go ahead and reregister at the download page for ESXi – From the VMWare home page, open the ‘Products’ menu and choose VMware vSphere Hypervisor (ESXi) then click the download button on the left side. Login, or hit the continue button and fill out your information. Once you have completed the registration process you should receive an email with an ‘Activate your VMware ESXi 4.1 License’ link. Click that and you should be presented with your new license number.

new licence number 2 300x95 VMWare vSphere evaluation downgrade

New VmWare license number

Copy the license number and go into your vSphere client. At the top of the list of virtual machines, highlight your host machine. Go to the configuration tab and choose ‘Licensed Features’ under the software section. Click the small ‘edit’ link at the top right corner.

You should now see your current evaluation license with no license key. Click the ‘Assign a new license to this host’ radio button, click the ‘Enter Key’ button and paste in your new license number. Click ‘OK’

enter license 300x289 VMWare vSphere evaluation downgrade

New License entered

Check that the new licence key is valid and shows ‘Expires: Never’

You’re done. You should now be able to administer your virtual servers as before. I’m yet to find out what features are missing from the free version compared to the full vSphere version.

Let me know if this works for you!

iTunes 10 – Installation problem and solution

 Techie Stuff  22 Responses »
Sep 112010
 

When attempting an automatic upgrade of iTunes from version 9 to 10, I got a pop-up saying “Service ‘iPod Service’ (iPod Service) could not be installed. Verify that you have sufficient privileges to install system services.”

The solution I found was to download the installer only and run it manually.  Here’s a step by step guide of the problem you are likely to see. Before carrying this out, please back up your catalogue – I’m not responsible if you lose your music!

1. When installing iTunes, you get an error pop-up “Service ‘iPod Service’ (iPod Service) could not be installed. Verify that you have sufficient privileges to install system services.”

Itunes error 1 300x148 iTunes 10 Installation problem and solution

iTunes Installation Error

2. Without pressing any of the buttons, open the services manager by clicking the start menu, right click ‘computer’ and choose ‘manage’. Navigate through “Services and Applications” then “Services”. Find the iPod Service.

Itunes error 2 300x90 iTunes 10 Installation problem and solution

Services control panel

3. You should find that the iPod Service is stopped and disabled. Double click the service to see its properties.

Itunes error 3 266x300 iTunes 10 Installation problem and solution

iPod Service Properties

4. If you make any changes to the service (try changing it from ‘Disabled’ to ‘Automatic’ and press apply), you will see that “The specified service has been marked for deletion”.

5. It seems that the service needs to be deleted to allow the new version to be installed, but for some reason it hasn’t. The service will be deleted if you restart your computer though. Did I mention you should back up your catalogue before doing this?

6. Without cancelling the current iTunes installation, restart your computer. If you do cancel the install, iTunes will roll back to where you were before you started the install and the service will not be marked for deletion.

7. After your computer reboots, run the installer again and follow the prompts, it should install fine. In my case, all my music was still there. But if not, you can restore from the backup you took earlier – you did take a back up, didn’t you?!?

I hope this helps you get iTunes 10 installed – let me know how you get on!

Server Gate Cryptography secrets

 Security, Techie Stuff  1 Response »
Aug 292010
 
padlock 300x225 Server Gate Cryptography secrets

Padlock by Ralph Aichinger

Certification Authorities (CAs) offer two types of SSL certificate, one type includes Server Gate Cryptography (SGC) and is often promoted as a premium, or high security option and is charged at a much higher price than the non-SGC equivalent. So, it should be a no-brainer that you should buy the best, most expensive certificate you can afford to ensure the security of traffic with your website, shouldn’t it?

Well, no.

Until late 1999, the United States were imposing restrictions on the export of strong cryptography which resulted in ‘export versions’ of Internet Explorer, Netscape and other web browsers which did not enable high encryption by default. Instead, browsing SSL sites with an ‘export version’ browser resulted in a connection which was encrypted with 40 or 56-bit encryption. A non-export version would negotiate 128-bit encryption. To allow very sensitive sites to step-up the encryption to 128-bit even on an export version browser, special certificates were issued to authorised sites, for example government sites and financial institutions, which would unlock the high encryption functionality and allow 128-bit secure connections.
By 2000, the export restrictions were dropped and the international browser versions began supporting 128-bit encryption by default. At the same time, SGC certificates were offered to anyone who wanted them to allow older export browsers to use high encryption.

For a few years after 2000, it made sense to use an SGC enabled certificate if you wanted to ensure everyone could access your site securely and it was worth paying a premium to ensure that your site was available to the maximum number of customers. Now, though, there are many fewer users with the old browsers, so you won’t affect as many customers by removing the SGC capability.

But, it can’t hurt to use an SGC certificate, can it?

Well, yes.

These old browsers (e.g. Internet Explorer 4.01 to 5.01, Netscape 4.07 to 4.72) are over 10 years old now, they have not received security updates or patches since 2000. The security patches which have been released for more modern browsers in the past ten years help to protect the system against keyloggers, viruses and other malware which can intercept data on the client, even if it is transmitted across the network securely encrypted. This means that the connection which is assumed to be secure by the user probably isn’t, and malware in the browser could potentially be carrying out unauthorised transactions on your server using the client’s credentials. Worse still, the malware could hide the fraudulent transactions from the user so he never sees evidence of a problem.

Updating these browsers to modern, secure versions is free and simple. High-encryption packs are available from Microsoft for older operating systems – Windows 95, Windows 98, Windows NT and Windows 2000, and a huge variety of secure browsers are available for free download.

So, how many customers are likely to be unable to access my site when I move to non-SGC certificates?

In an Entrust Whitepaper on the subject from July 2009, the estimate is that 0.07% of browsers on the Internet would be affected, less than 1 in a thousand, and this number is likely to be even lower now.

This small percentage of users who will be unable to connect to your site are unlikely to be surprised as more and more of the Internet will be becoming unavailable to them every day as other sites move away from these outdated certificates. It really is time they dragged themselves into the 21st Century and spent 5 minutes upgrading their browsers to ensure their connection is secure. By making sites unavailable to them, you are doing your customers a favour by encouraging them to upgrade, and are helping to protect your other customers by making it harder for malware to get a foothold on your server.

There is one very important change you need to make to your server though, ensure that weak encryption is not supported otherwise these old browsers will negotiate 40 or 56-bit connections with your server!

Android on three.co.uk

 Techie Stuff  No Responses »
Apr 242010
 

Today I changed my mobile provider after a number of problem-free years with T-Mobile to Three who have a good deal on at the moment for a 30-day contract SIM only with ‘unlimited’ (1Gb/mo) data for £15. I had a T-Mobile G1, but bought a SIM free Nexus One from Google a couple of months ago. Now that my 12 month contract with T-Mobile has finished, I grudged paying them £35 per month. The best deal they could do on a 30 day contract with unlimited data was £20/mo according to their website.

The new Three SIM was enabled within an hour of purchasing it but, although I could make and receive calls, I had no network access. In order to get access, you need to set up an APN with these settings:

  • Name – 3
  • Apn – three.co.uk
  • proxy – not set
  • port – not set
  • Username – not set
  • Password – not set
  • Server – not set
  • MMSC – http://mms.um.three.co.uk:10021/mmsc
  • MMS proxy – mms.three.co.uk
  • MMS port – 8799
  • MCC – 234
  • MNC – 20
  • APN type – not set

To set up the APN on a Nexus One do Menu > Settings > Wireless & networks > Mobile networks > Access Point Names > Menu > New APN

Update: This morning, I called T-Mobile to get my pac code and to terminate my contract with them. To tempt me to stay with them, they offered me a £5/mo contract with 1Gb Data allowance, 100 minutes and 100 texts on a 24 month contract. I was extremely tempted, but didn’t want to be tied into a long contract, the rep then said he could do exactly the same deal but leave me out of contract – that means I can still cancel with 30 days notice! This is the best deal I’ve had from a mobile phone operator – good work T-Mobile! Anybody else paying less than 17p per day for their mobile service?

I called Three to cancel my new contract and they were also extremely helpful. Cancelling my account and promising that I would only pay pro rata for the 23rd to 26th of May (30 day notice required) – I expected to have to pay the full £15 for the month. Excellent service from Three too!

Domain Renewal Scam

 Security, Techie Stuff  1 Response »
Feb 032010
 

domainrenewalgroup 231x300 Domain Renewal Scam

When I came home from work, an official looking envelope from the ‘Domain Renewal Group’ was waiting for me. Inside was an equally official looking letter which I initially thought was a bill. It turns out it is just a marketing letter posing as a renewal notice for one of my domains.

It seems they look at the WHOIS records for domains which are expiring soon and send out these letters in the hope someone will think it is a bill and give them a cheque or credit card number. They expect me to pay £20 to renew my domain and make them my new registrar, this is vastly more expensive than renewing with my current registrar which would cost only £5.46 for a year.

I think this is a deliberately deceiving letter designed to look like a bill in the hope that it will just be paid and forgotten – many people with websites don’t really understand the roles of registrar, hosting company etc. and this will just confuse them further.

In short, if you’re happy with your current registrar, don’t bother changing. If you do decide to change, don’t be forced into it by someone sending you direct marketing letters.

DDOS on Twitter – happening now!

 Techie Stuff  No Responses »
Aug 062009
 

Twitter.com is currently down. Status.twitter.com reports that they are currently fighting a DDOS (Distributed Denial of Service) attack which has been running by my estimation since shortly before 15:00 BST.

In a DDOS attack, the server is sent enough requests to overwhelm the server and affect genuine users. In the case of a site like twitter, which has lots of bandwidth, the attack generally comes from a botnet (computers infected with malware which can be turned to a variety of uses – from sending spam emails to DDOSing sites).

There is speculation that this attack is being perpetrated by the same “Dastardly Hackers” who brought down Gawker on Sunday while ddosing consumerist.com.

DDOS on Twitter happening now!

Twitter status - down!

Twitter’s status page currently reports that the site is back up, but I have found that service is still intermittent.

I want my twitter back!

Installing Vista using an OEM product key with a Full Retail Disc

 Techie Stuff  No Responses »
Jul 282009
 

Often when you buy a new PC or laptop, you don’t get the operating system on CD in order to reinstall it if you hit any problems. Instead, they have a hidden partition on the hard drive which contains all the system software – if you need to restore the PC, you hit one of the function keys while the computer is booting and it takes you into a recovery program. If you wipe your hard drive, though, you can lose that partition and you’re left without an operating system.

If you bother reading the manual it’ll probably have instructions for creating recovery media – you really should do this as your first action, it’ll save lots of messing about later.

Suppose the worst has come to the worst, you’ve deleted the partition and haven’t burned any recovery disks.

vista label 300x125 Installing Vista using an OEM product key with a Full Retail DiscOn a PC which comes with Vista installed, you’ll find a blue, green and pink sticker on it somewhere with a 25 digit product key (XXXXX-XXXXX-XXXXX-XXXXX-XXXXX). If the sticker mentions the brand of your PC (Dell, Advent, HP etc) then you have an OEM version of the software. If it doesn’t you probably have the full retail version and likely have a boxed Vista installation disk somewhere.

In my case, I had an Advent OEM product key. I had a full retail version of Vista (Home Premium Upgrade version) which I had bought to upgrade an XP machine a while ago. The good thing is that the Vista installation disk actually contains all versions of the OS – the product key supplied with the disk is what determines which version of the software you can install. I tried installing Vista using the OEM product key from the bottom of my laptop, but it was rejected as not being a valid key!

After much trial and error, I found a solution. A non-profit organization called Neosmart have produced a Vista recovery disk which is intended to allow you to restore from backups if you don’t have an installation disk. It appears to be the installer from the official Vista disk repackaged. It doesn’t contain any of the files which would be required to install a complete working Vista system though.

Windows Vista 32-Bit (x86) Recovery Disc

Download the iso file from the link above (you may need to Google to find a working download link) – it’s about 120MB in size,  and burn it to a CD using your favourite CD creation software – I used the excellent and free InfraRecorder and boot your failed PC from this disk.

vista install welcome screen 300x221 Installing Vista using an OEM product key with a Full Retail Disc

Vista Recovery Disk Welcome Screen

Choose your language and location and then take the install option. You will be prompted at this point for your product key. At this point, eject the recovery CD and insert your Full Retail disc. Enter the product key from the sticker on your PC (don’t use an illegal one – it probably won’t work and you’ll soon have black helicopters circling your house, and guilt is a terrible thing to live with anyway)

The product key should be happily accepted and the Operating System will install as normal. Once the OS has installed, follow the wizard and set up your Admin user etc.

Once you are at the desktop go to the start menu, right-click on ‘computer’ and choose properties. Scroll down to the Windows activation section and you should see something like ‘3 days until automatic activation. Activate now‘. If you have an internet connection try activating by clicking the link – in my case this did not work. If this happens to you, choose the ‘automated telephone line‘ activation method. This will involve calling a toll-free number and entering the 54(!) numbers from the activation wizard using your phone, then typing the 48(!) numbers read out to you on the phone – this will result in an activated, legal copy of Vista.

Vista Phone Activation 300x245 Installing Vista using an OEM product key with a Full Retail Disc

Vista Phone Activation


Now make an image of your freshly installed system so you don’t have to go through all this next time! - I recommend Driveimage-XML

Please leave me a comment if you found this useful!

Blogging in the real world

 Creative Stuff, Techie Stuff  2 Responses »
Jul 152009
 

A couple of years ago, I got a Nokia N-95 mobile phone with a piece of software installed which would read 2d barcodes knows as ‘QR Codes’ (The QR stands for Quick Response). QR Codes were developed by Japanese corporation Denso-Wave in 1994 and were initially used for tracking parts for a car manufacturer. They can store 4,296 alphanumeric characters (or 7,089 numbers) – much better than the standard 10 digits you get with a ‘normal’ barcode.
The codes are very popular in Japan as most people have a smart phone, and any smart phone equiped with a camera can read and decode the matrix. They are used to store URLs, phone numbers, addresses etc. and are often seen next to contact details in adverts in magazines. They can even be used as billboard adverts to be read at a distance. This allows mobile users to access your website without typing in URLs.

Japan qr code billboard 225x300 Blogging in the real world

A giant QR Code linking to a website, to be read with a mobile phone.

Photo by Nicolas1981

It occurred to me that 4,296 characters is easily enough to write a short, informative description of a place of interest, and include a URL which could be clicked for more information.

This would integrate nicely with a blog where you could have a post describing a place and its history, other interesting areas nearby etc. The excerpt could be encoded as a QR code and printed as a sticky label (as small as possible so it is not intrusive) and stuck on a post/wall/information board at the physical location. This would allow any visitor to the area to read the excerpt without an internet connection. The excerpt would contain a link to the full article on the blog and the comments fields could be used by visitors to record their experiences and recommendations of other places to visit.

As more mobile phones have the ability to read these codes, I think this could be a really useful tool for visitors to a city. A nice crossover between the physical and virtual world!

WordPress 2.8.1

 Techie Stuff  1 Response »
Jul 142009
 

WordPress have released a bug-fix update to WordPress which fixes many bugs and tightens up security which was allowing certain plug-ins to leak information to unprivaleged users. Not all plugins were affected, but it is recommended that all WordPress users upgrade at their earliest opportunity.

There are reports that the dashboard in the new version is much faster than in 2.8.0, but I haven’t noticed a huge difference. I used the automatic upgrade path without any problem – all my plugins worked fine after the upgrade and the theme is unchanged.

 Older Entries  Newer Entries