Firefox: ocsp stapling

OCSP stands for Online Certificate Status Protocol. It’s basically a protocol that’s used to make sure that an SSL certificate is still valid and hasn’t been revoked.

Firefox appears to be the only browser that does an additional security check for OCSP and also does a hard fail. This is a security feature of Firefox.

If your SSL report is fail the OCSP stapling, then the site will unable to access by Mozilla Firefox. This is the message from Mozilla FireFox

sec_error_ocsp_try_server_later

How to get the SSL report, you can always use the SSL report tools

You could try disabling stapling support from Mozilla FireFox

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful.

(2) In the search box above the list, type or paste ocsp and pause while the list is filtered

(3) Double-click the security.ssl.enable_ocsp_stapling preference to switch the value from true to false

 

Dynamic DNS – The automated rapid record updates

DNS which is know as Domain Name System which the record is key in manually and fix. When the DNS record is edited, it will always take 1-2 hours to fully resolved. By using the DNS, the server need to have a fixed IP. If you use the dynamic IP, the domain DNS record need to edit if the server dynamic IP is change to other dynamic IP. To address the issue of rapid change of dynamic IP (if the server is using the dynamic IP), Dynamic DNS might be the solution.
Dynamic Domain Name System or DDNS, is the solution if the server is using the dynamic IP. The basic idea is replace the IP by hostname, and the hostname A record will rapid change when the IP of that server is change. For the domain that use the DNS , the A record insert manually which normally use the fixed IP. The reason is because the A record will not change if there is no edit done. For the DDNS, the domain A record will change if the server IP is change. Here is the diagram.  Continue reading “Dynamic DNS – The automated rapid record updates”

WireShark: The NPF driver isn’t running

After you install WIRESHARK , you will receive the error “The NPF driver isn’t running” and there is not interface for trace. This is because the NPF service is not runnig by default.

To check the NPF service if running, you can run a command in command prompt (by Administrator)

sc qc npf

The output as below mean that the service will not auto start but manual start

C:\Users\KCYEAP>sc qc npf
[SC] QueryServiceConfig SUCCESS

SERVICE_NAME: npf
TYPE : 1 KERNEL_DRIVER
START_TYPE : 3 DEMAND_START
ERROR_CONTROL : 1 NORMAL
BINARY_PATH_NAME : system32\drivers\npf.sys
LOAD_ORDER_GROUP :
TAG : 0
DISPLAY_NAME : NetGroup Packet Filter Driver
DEPENDENCIES :
SERVICE_START_NAME :

So you need to start the service by

sc start npf

For set it to auto run, you can use the command

sc config npf start=auto

How to find IP Address and MAC Address

Windows 7

1. Click Start, All Programs, Accessories, Command Prompt.Find your IP address using the ipconfig command.

2. In the prompt that appears, type ipconfig /all and click Return.

3. The prompt will return network information for each network adapter in your computer. Find the section for the adapter that’s connected to your network. For example, you can find the network information for your wireless adapter by looking under the ‘Ethernet Adapter Wireless Network Connection’ section.

4. To find your computer’s IP address, look for the ‘IPv4 Address’ or ‘IP Address’ entry. This line will display the IP address for your system; typically it looks like a string of numbers separated by periods, such as 192.168.1.1.

5. To find your computer’s MAC address, look for the ‘Physical Address’ entry. This line will display your adapter’s MAC address, which typically looks like a string of letters and numbers separated by dashes.

Mac OS X

1. Click the Apple menu on the upper left part of the screen.

2. Click System Preferences. In the resulting System Preferences menu, select Network.

3. In the Network window, select the network adapter you’re interested in. Your IP address will appear in the right-hand pane of the window.

Your MAC address is listed at the bottom of the Wi-Fi menu.4. To find your MAC address for the adapter, click the Advanced… button. Your MAC address should appear at the bottom of the window.

Enable ping for Windows Server 2003 firewall

(1) Remote Desktop into your server

(2) Go to Start > Control Panel

(3) Open Windows Firewall

(4) Check if th firewall is turned on

(5) Click the Advanced tab

(6) Under the ICMP box, click the Settings button

(7) tick the ‘Allow incoming echo request‘ checkbox

(8) Click on OK and then OK again to close the dialog boxes

Done