08.31.11
Posted in Uncategorized at 6:15 pm by jgraham
Recently a number of fraudulent SSL certificates for high profile websites, including Google, were obtained from the Dutch Certificate Authority DigiNotar.
These certificates could be used to impersonate or intercept legitimate services.
One method for dealing with this situation is to mark DigiNotar’s root certificate as untrusted.
Unfortunately due to a bug in Mac OS X DigiNotar signed EV certificates will still appear to be valid.
To work around this one can delete the certificate from the system trust roots with the following command:
security delete-certificate -Z \
C060ED44CBD881BD0EF86C0BA287DDCF8167478C \
/System/Library/Keychains/SystemRootCertificates.keychain
Permalink
Posted in Uncategorized at 5:46 pm by jgraham
With the release of Mac OS X 10.7 (Lion) Apple has switched from MIT Kerberos to Heimdal Kerberos.
By default Heimdal will attempt to communicate with KDCs over UDP.
In some cases it is desirable to default to TCP.
Heimdal can be instructed to prefer TCP by prepending the KDC hostnames in /etc/krb5.conf with tcp/.
For example:
[realms]
EXAMPLE.COM = {
kdc = tcp/kerberos-1.example.com:88
kdc = tcp/kerberos-2.example.com:88
}
Permalink
09.04.09
Posted in Uncategorized at 12:20 pm by jgraham
Update: It appears that Xerox is now distributing a 10.6 “Snow Leopard” driver package on their website.
According to the Xerox website the Phaser 6120 is not supported in Snow Leopard. However if one downloads the custom PPD file from the OpenPrinting database the printer works perfectly.
Full instructions follow:
Read the rest of this entry »
Permalink
08.08.09
Posted in Uncategorized at 2:49 pm by jgraham
Say you wanted to create an empty branch of an existing git repository. That is a new branch with no history, say to track your project docs.
Read the rest of this entry »
Permalink
05.15.08
Posted in Uncategorized at 6:35 pm by jgraham
After a recent security update I noticed that my bookmarks were no longer synchronizing over .Mac between any of my systems. To fix the issue I had to unregister and reregister Safari’s sync client. Open a terminal and run: /Applications/Safari.app/Contents/SafariSyncClient.app/Contents/MacOS/SafariSyncClient --unregistersyncclient com.apple.Safari This will return NO, then run /Applications/Safari.app/Contents/SafariSyncClient.app/Contents/MacOS/SafariSyncClient --register which should return YES.
Permalink
04.10.08
Posted in Uncategorized at 6:09 am by jgraham
While moving some data between drives today I decided to test the drive build functionality of my external RAID array.
I have an IOI FWBU2SATA35DMR Firewire/USB enclosure with two 500GB SATA drives in a RAID 1 configuration. Following the instructions I powered down the array, removed one of the disks, powered it back up, wrote some data, powered the array down and reinstalled the second drive. To my dismay instead of rebuilding the second disk the drive would begin the rebuild (indicated by the status lights) and then immediately return to 1 good 1 failed. I let this run for a good 12 hours without luck.
So I decided that for my needs the software RAID supplied by OS X would be sufficient. Off to Disk Utility to build the set. Disk Utility allows you to create a mirrored RAID array in a degraded state (preserving any data on the drive) and then add members to the array and rebuild. I created the initial array with a single partition member and then attempted to add the second partition only to receive Unrecognized Filesystem.
Read the rest of this entry »
Permalink