Thursday, August 8, 2024

Charter Spectrum SMTP Sending fails

Error: Customer reported they could not send emails from their charter.net email address through mobile.charter.net over 587 SSL when they were on their Clearwave wireless network.  If they turned off wifi, emails would send.

Answer: We configured Mozilla Thunderbird on their Clearwave network to use Charter, it immediately threw this error when we tried to send:

An error occurred while sending mail: Outgoing server (SMTP) error. The server responded:  impout004.msg.chrl.nc.charter.net cmsmtp *.*.*.* blocked. Please see https://www.spectrum.net/support/internet/understanding-email-error-codes  for more information. AUP#Out-1130.

1100 - 1150
The IP address you’re trying to connect from has an issue with the Domain Name System. Spectrum requires a full circle DNS for emails to be allowed through. Verify the IP you’re connecting from, and check the IP address to ensure a reverse DNS entry exists for the IP. If the IP address is a Spectrum-provided email address, contact us.

Summary: It seems, as a security measure, Spectrum will not let your IP connect to their outbound email relay servers if your public IP does not have a PTR / reverse lookup DNS record, of any kind. It just needs to exist, it does not have to match your company name or domain name or anything.  

We contacted Clearwave support and requested a DHCP PTR record be created.  They obliged and created it.  Mozilla was able to send emails and their phone worked too.  NOTE, with a dynamic address, if their IP changes, they will have to contact support again, but it works for now.

Sunday, December 17, 2023

HOW TO - Share a password

 q: With password complexity on the rise, what is a quick way to securely share a password without trying to spell it over the phone?

a: Password Pusher - https://pwpush.com/
You can provide your own data to share, or let the site generate a string for you.
You can control expiration by Day and View count.
You can even require a password, to access this string.
You can also share files & URLs securely. 



Saturday, December 16, 2023

WINRM cannot process the request | Kerberos authentication | unknown security error

q: A user tries to send a command to SERVER1 via PowerShell over WinRM and gets an error.
 PS > Invoke-Command -ComputerName SERVER1 -ScriptBlock {net localgroup administrators}

*[SERVER1] Connecting to remote server SERVER1 failed with the
following error message : WinRM cannot process the request. The following
error with errorcode 0x80090322 occurred while using Kerberos
authentication: An unknown*security error occurred.
Possible causes are:
-The user name or password specified are invalid.
-Kerberos is used when no authentication method and no user name are
specified.
-Kerberos accepts domain user names, but not local user names.
-The Service Principal Name (SPN) for the remote computer name and port
does not exist.
-The client and remote computers are in different domains and there is no
trust between the two domains.
After checking for the above issues, try the following:
-Check the Event Viewer for events related to authentication.
-Change the authentication method; add the destination computer to the
WinRM TrustedHosts configuration setting or use HTTPS transport.
Note that computers in the TrustedHosts list might not be authenticated.
-For more information about WinRM configuration, run the following
command: winrm help config. For more information, see the
about_Remote_Troubleshooting Help topic.
+ CategoryInfo : OpenError: (SERVER1:String) [],
PSRemotingTransportException
+ FullyQualifiedErrorId : -2144108387,PSSessionStateBroken

a: From the client machine, create this Reg Key and try again.
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Client
Value type: REG_SZ (string)
Value name: spn_prefix
Value data: WSMAN

Monday, October 16, 2023

Google Workspace - We couldn’t verify it’s you

q: Customer called with Google Workspace blocking their access to log into a user account via webmail.
    Google
    We couldn’t verify it’s you
    We want to make sure it’s really you trying to complete this action.
    To help us verify it’s really you
    Use a device and browser you’ve signed in on before
    Use a familiar Wi-Fi network, such as at home or work

a: Simply disable login challenge and it will let you through.
    Log into Google Workspace Admin https://admin.google.com/
    Click users
    Click the user / username affected
    Click the ‘Security’ section
    Click ‘Login challenge’ - Turn off identity questions for 10 minutes after a suspicious attempt to sign in
    Click <TURN OFF FOR 10 MIN>
    Then try to log in as that user again.


Sunday, October 15, 2023

Azure Arc Setup

q: Customer called because they had a new Azure Arc Setup utility in their system tray.
a: This is apparently a server feature to be removed through Server Manager.  Uncheck the box & don't forget to reboot when it finishes. 


C:\Windows\AzureArcSetup\ArcSetup\AzureArcSetup.exe
C:\Windows\AzureArcSetup\Systray\AzureArcSysTray.exe


Friday, October 13, 2023

HOW TO - Curl from Task Scheduler in Windows

q: A customer requested to run a curl command on a regular schedule from a windows computer.

a: Within Windows, create a Scheduled Task that runs as system, using Powershell and Invoke-WebRequest

General tab: Use the following user account: SYSTEM
Trigger tab: At system startup - After triggered, repeat every 5min
Action tab: Start a program - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe 
Add Arguments:  "Invoke-WebRequest -uri '"https://www.google.com/"' -usebasicparsing"

notes:
a) running an invoke-webrequest as system fails without the trailing switch -usebasicparsing
b) we ended up putting the entire argument within double quotes and then the URL nested within double quotes inside single quotes - single quote, double quote, URL, double quote, single quote.

HOW TO - Scrape an old htm / html website

q: Customer called requesting a method to download their htm based website to their local computer.

a: We recommended HTTrack - We tried a few different applications and none of them got every single site file. Some missed image files because they were configured as background images.  HTTrack got every single file and folder.  Download here: https://www.httrack.com/page/2/en/index.html
notes:
The application will rewrite an .htm site to all .html renaming files and updating hyperlinks.
The application will inject a line into each .html at the top and bottom of the file explaining that it was downloaded by httrack from the original URL.

Wikipedia: HTTrack is a free and open-source Web crawler and offline browser, developed by Xavier Roche and licensed under the GNU General Public License Version 3. HTTrack allows users to download World Wide Web sites from the Internet to a local computer.