Bounced Email or Backscatter

The Concurrent Versions System (CVS), also known as the Concurrent Versioning System, implements a version control system: it keeps track of all work and all changes in a set of files, typically the implementation of a software project, and allows several (potentially widely separated) developers to collaborate. CVS has become popular in the open-source world. CVS is released under the GNU General Public License.

Source: http://en.wikipedia.org/wiki/Concurrent_Versions_System

If ModSecurity is Turned On via your Web Server , then build a .htaccess file and place it in the root of the folder running the script that may be having issues.

Issues such as Web Scripts and Broken Graphics also any script that use’s the Spaw Editor will break the format of the editor button layout, this is due to Mod_Security in effect.

Building a .htaccess file and / or adding the noted commands below will resolve. this.

ModSecurity is an open source embeddable web application firewall, or intrusion detection and prevention engine for web applications. ModSecurity provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring and real-time analysis with no changes to existing infrastructure, by operating as an Apache Web server module mod_security or standalone, and thus increase web application security. However, misconfigured or overly strict rule sets, ModSecurity may cause your website to return various errors such as HTTP 403 Forbidden error or access denied error, login problems, or HTTP 412 Precondition Failed error, or HTTP 406 Not Acceptable error and other false positive symptoms.

To make matter worse, the configuration of ModSecurity rules and filters have to be done manually. Although there are free predefined certified rule set which can be used with ModSecurity out of the box, however the rule sets may be not suitable for each and every environment and may interfere with the operation of websites or blogs, and customizing and modifying the rules may be too sophisticated or complicated for some users. And for some websites that hosted on shared hosting service, the mod_security may be enable by default without options. So in this case, the best solution or workaround for mod security related issues is to disable mod_security filtering and rules.

If you’re using Apache web server (which mostly do), mod_security can be disabled by adding a specific in .htaccess file. Locate the .htaccess file in Apache web root directory (public_html or /var/www/ or others), if it does not exist, create a new file named .htaccess, and add in the following code:

SecFilterEngine Off
SecFilterScanPOST Off

The above entries in the .htaccess will disable the ModSecurity (mod_security) module for the domain.

Uninstallation of ModSecurity (mod_security) from Apache module

The easiest way to remove and uninstall mod_security is to comment out or delete the related mod_security entries from httpd.conf Apache configuration file. The lines that should be removed include:

AddModule mod_security.c
LoadModule security_module modules/mod_security.so
Include “/usr/local/apache/conf/modsec.conf” This line may be different depending on what variant of Linux or Unix you used and the installation location

Save the httpd.conf and restart the Apache. ModSecurity will not be loaded and as if uninstalled.

If you’re using WebHost Manager (WHM), uninstallation is even simpler. Just scroll to cPanel section, and click on Addon Modules. Then scroll to module named modsecurity. It should be checked Install and Keep Updated currently. Just click on Uninstall to remove the mod security feature from Apache web server.

Bit off topic from Web Hosting but it does related to mail clients such as Outlook. 

Source: http://office.microsoft.com/en-us/outlook/HA010563001033.aspx 

The file path below may be MSMAPI vs MAPI 

If you are keeping Outlook data on your computer, you are using a Personal Folders file (.pst) or an Offline Folder file (.ost). To prevent data loss, you need to know how to repair these files.

If your .pst file becomes damaged, Outlook includes a tool that may be able to correct the problem without your switching to a backup copy. This tool, the Inbox Repair Tool, is installed on your hard disk when you install Outlook.

If your .ost file becomes damaged, Outlook includes a tool that may be able to correct the problem. This tool, the OST Integrity Tool, can scan and repair .ost files. If that doesn’t completely solve the problem, you can disable the .ost file and create a new one.

Repairing a Personal Folders file (.pst)

You may need to use the Inbox Repair Tool if you open your Outlook .pst file and receive this message:

Unable to expand the folder. The set of folders could not be opened. Errors could have been detected in the file drive:Documents and SettingsuserLocal SettingsApplication DataMicrosoftOutlookOutlook.pst. Quit all mail-enabled applications, and then use the Inbox Repair Tool.

Note  The path to the file specified in the message may vary depending upon the operating system you are using on your computer.

To repair the .pst file

1. On the Start menu, click Run.
2. In the Open box, typedrive:Program FilesCommon FilesSystemMapiLocaleIDscanpst.exe

   where LocaleID is the locale identifier (LCID) for your installation of Microsoft Office. For example, the LCID for English (United States) is 1033. For a list of LCIDs, see Microsoft Office Help.

3. Click OK.
4. In the Enter the name of the file you want to scan box, type the path and file name given in the error message above.Note  You may not be able to use the Browse button to locate this file because it is located in a hidden folder.
5. To change the options for logging errors during the scan, click Options. If you choose Replace log or Append to log, the log file is saved to the same directory as the .pst file.
6. Click Start.
7. When the file scan is completed, select the Make a backup of scanned file before repairing check box.
8. Click Repair.

If the file is successfully repaired, you will see a Repair complete message. If the Inbox Repair Tool was unable to repair the file, you will need to use a backup of your file.

To begin using your backup file as your new primary file

1. Start Outlook.
2. On the File menu, click Data File Management.
3. Select the .pst that is damaged, and then click Remove.
4. Click Add, select Personal Folders File (.pst), click OK, and then select the .pst file you want to use as the new primary file.
5. Click OK.

Important   You should not rely solely on the Inbox Repair Tool for disaster recovery. A system of regular backups of your .pst file is an important part of preventing data loss. You can back up the file in several ways, including copying it to another location, backing up all of the files on your computer, or by using the Personal Folders Backup utility, available on the Microsoft Office Online site.

Repairing an Offline Folder file (.ost)

You may want to scan and repair your .ost if you:

• Encounter a large numbers of conflict items.
• Cannot open particular Outlook items when offline.
• Receive unexpected synchronization error messages (as shown in the synchronization log in the Deleted Items folder).
• Receive the message:Unable to expand the folder. The set of folders could not be opened. Errors could have been detected in the file drive:Documents and SettingsuserLocal SettingsApplication DataMicrosoftOutlookOutlook.ost. Quit all mail-enabled applications, and then use the Inbox Repair Tool.

  Note  The file path specified in the message may vary depending upon the operating system you are using on your computer.

In addition, you might be able to open folders in the .ost but get synchronization error messages that do not go away. This happens when a single e-mail message is damaged and the synchronization process cannot correct it. You can use the OST Integrity Tool to fix damaged messages or to move them so you can synchronize successfully.

Important  You may need to run scanpst.exe (see the first procedure above) first if the OST Integrity Tool cannot open the .ost file.

To scan and repair the .ost file

1. Close Outlook.
2. On the Start menu, click Run.
3. In the Open box, typedrive:Program FilesCommon FilesSystemMapiLocaleIDscanost.exe

   where LocaleID is the locale identifier (LCID) for your installation of Microsoft Office. For example, the LCID for English (United States) is 1033. For a list of LCIDs, see Microsoft Office Help.

4. Click OK.
5. Click either Scan all folders or Choose folder to scan. If you click Scan all folders, this may take several minutes.
6. Select the Repair errors check box.
7. Click Begin Scan.

Details of actions performed during the scan and repair are saved as a message in your Outlook Deleted Items folder with the subject “OST Integrity Check.”

If the Offline Folder file cannot be repaired, you can disable it and create a new one.

To disable the .ost file and create a new one

1. On the Tools menu, click E-mail Accounts, click View or change existing e-mail accounts, and then click Next.
2. In the list, click Microsoft Exchange Server, and then click Change.
3. Click More Settings.
4. Click the Advanced tab, and then click Offline Folder File Settings.
5. Click Disable Offline Use.
6. In the File box, type the path to the file you want to use as the new .ost file. The default file name is outlook.ost. If this file name already exists, you are prompted for a new name.

For liability concerns, an acquirer should not directly advocate any one ASV or QSA to their merchants, however it is acceptable for the acquirer to tell the merchants what third party company or companies that they have strategic partnerships with.

“Try to seek a partner who you can rely on to assist with your PCI Compliance program, ControlScan offers a number of solutions for merchants, ISOs and acquirers and currently partners with one of the largest acquirers in the United States,” said Stanton.

As well, the PCI Security Council has a list of approved ASVs and QSAs. Visa and MasterCard also offer their own lists on each Web site.

“Acquirers and ISOs should establish a relationship with a trusted, association-approved PCI assessor, and develop a program for all their merchants to establish compliance, and ensure periodic testing so that compliance remains intact moving forward,” wrote Gray.

A model relationshipThird Party ASVControlScan, Inc. is an Atlanta, Ga.-based, PCI Security Standards Council–approved third party vendor (ASV), providing vulnerability scan and assessments, compliance assistance and network security. Their clients include Fortune 500 and billion dollar corporations such as: Travelers Insurance and PBS.The company offers a turnkey, no-software-needed approach to PCI compliance, and its security certificates assist in meeting the criteria for mandates in Europe, Japan, Canada, ISO and the USA, not only for PCI compliance but also for Sarbanes Oxley, HIPAA, GLBA and FISMA fulfillment. AcquirerAccording to ControlScan’s CTO & Founder, Richard Stanton, the company recently became the ASV for PowerPay, LLC, mentioned previously in this article.“PowerPay requested that we [ControlScan] conduct all of their mandated PCI compliance scans, for all 16,500 of their merchants,” said Stanton.“What sets us apart from other vendors, is that we actually call the merchants, directly, and we also provide a secure Web system, so a company like PowerPay can log into our system and check their merchant’s PCI status at any time.”He continued, “ControlScan is very proactive, providing contact with the merchant, in order to make sure each merchant is PCI compliant…we actually make direct phone calls to each merchant.”

According to PowerPay President Ron Greenberg, after meeting representatives from ControlScan at an industry conference, the company decided ControlScan offered the best PCI compliance scanning program.

“They have a very structured program of trained outbound sales agents along with personalized consulting to assist our merchants in complying with PCI DSS,” says Greenberg. “Other vendors typically did limited outbound sales with no technical support to the merchant.”

In addition to offering the quarterly network scans, mandated by PCI DSS, ControlScan offers an automatic submission solution, for merchants sending the 12-section PCI Self-Assessment Questionnaire.  

ISO

e-Online Data is a credit card processor, offering merchant solutions for Internet, Mail Order and Auction sellers. They service e-commerce merchants ranging from startups to billion-dollar companies, according to their Web site.

At the bottom of the e-Online Data homepage, there is a sentence that reads, “e-onlinedata is a registered ISO/MSP of HSBC Bank USA, National Association, Buffalo, NY”

In this model, HSBC Bank USA is the actual acquiring or ‘member bank’, and e-Online Data is considered an ISO.

The partnership between acquirer, member bank, ISO, third party ASV and merchant looks like this:

What Is DNS?

• DNS is a distributed database that is the default naming system for IP-based networks. DNS names are user-friendly, which means that they are easier to remember than IP addresses.
• DNS names remain more constant than IP addresses.
• DNS is used to resolve computer names to an IP address and to locate computers within local networks as well as on the Internet.
• Host names refer to specific computers on the Internet or a private network. A host name is the leftmost portion of a fully qualified domain name (FQDN), which describe the exact position of a host within the domain hierarchy (Example: spiceworks.rocks.com).

How DNS Works In Theory

Domain names, arranged in a tree, cut into zones, each served by a nameserver. The domain name space consists of a ‘tree” of domain names. Each node or leaf in the tree has one or more resource records, which hold information associated with the domain name. The tree sub-divides into zones. A zone consists of a collection of connected nodes authoritatively served by an authoritative DNS nameserver. (Note that a single nameserver can host several zones.) When a system administrator wants to let another administrator control a part of the domain name space within his or her zone of authority, he or she can delegate control to the other administrator. This splits a part of the old zone off into a new zone, which comes under the authority of the second administrator’s nameservers. The old zone ceases to be authoritative for what goes under the authority of the new zone. A resolver looks up the information associated with nodes. A resolver knows how to communicate with name servers by sending DNS requests, and heeding DNS responses. Resolving usually entails iterating through several name servers to find the needed information. Some resolvers function simplistically and can only communicate with a single name server. These simple resolvers rely on a recursing name server to perform the work of finding information for them.

Types Of DNS Records

• An A record or address record maps a hostname to a 32-bit IPv4 address.
• An AAAA record or IPv6 address record maps a hostname to a 128-bit IPv6 address. (Spiceworks does not work with Ipv6 at this time)
• A CNAME record or canonical name record is an alias of one name to another. The A record to which the alias points can be either local or remote - on a foreign name server. This is useful when running multiple services (like an FTP and a webserver) from a single IP address. Each service can then have its own entry in DNS (like ftp.example.com. and www.example.com.)
• An MX record or mail exchange record maps a domain name to a list of mail exchange servers for that domain.
• A PTR record or pointer record maps an IPv4 address to the canonical name for that host. Setting up a PTR record for a hostname in the in-addr.arpa. domain that corresponds to an IP address implements reverse DNS lookup for that address. For example (at the time of writing), www.icann.net has the IP address 192.0.34.164, but a PTR record maps 164.34.0.192.in-addr.arpa to its canonical name, referrals.icann.org.
• An NS record or name server record maps a domain name to a list of DNS servers authoritative for that domain. Delegations depend on NS records.
• An SOA record or start of authority record specifies the DNS server providing authoritative information about an Internet domain, the email of the domain administrator, the domain serial number, and several timers relating to refreshing the zone.
• An SRV record is a generalized service location record.
• A TXT Record allows an administrator to insert arbitrary text into a DNS record. For example, this record is used to implement the Sender Policy Framework and DomainKeys specifications.
• NAPTR records (”Naming Authority Pointer”) are a newer type of DNS record that support regular expression based rewriting.

Other types of records simply provide information (for example, a LOC record gives the physical location of a host), or experimental data (for example, a WKS record gives a list of servers offering some well known service such as HTTP or POP3 for a domain). When sent over the internet, all records use the common format specified in RFC 1035 shown below.

• The need to route traffic between the ever increasing number of networks

Why do I want a MAC address?

When computers talk over TCP/IP or UDP/IP the computers whom wish to speak to the destination IP computer ARP for the destination computer’s MAC address. The TCP/IP implementations require the IP to MAC translation and in reverse (RARP). This is the only way data gets transferred over the internet, by going through the layers from layer 7 to layer 1 and back. Hence when you send a packet to an IP address, the Network layer finds the destination MAC and sends the packets to that MAC address. In a LAN setting, you usually hit the destination ethernet card yourself through maybe some switches or hubs. In an internet setting, you go through various routers which do some analysis of TCP/IP headers and it finally arrives at the destination ethernet card. You must realize that every ethernet card in the world has a unique MAC address.

When you are a Winsock programmer dealing exclusively with sockets, I doubt you would care what the MAC addresses of the related NICs (Network Interface Card) are because you would never need to know about them. This is a low level issue which one needs not be exposed to in a network programming environment.

There are specific reasons why you may need to know the MAC address. Personally I had to write the Media Access Control Layer in an HDL language at one point. I had hard coded the FPGA to a certain MAC and created a static ARP so that I could write sockets software on my PC which would send UDP packets to my MAC. The MAC would then decipher and verify the checksum, and CRC of the UDP and MAC packets. It would then take the payload and forward it along to an RS232 interface. The RSR232 interface was connected to a Bluetooth device via RFCOMM. Your reason for knowing a MAC address may be different.

We will deal with enumerating the MAC address of all the NICs in your computer in a Windows environment.

Deciphering the 48-bit MAC address

The 48-bit MAC address is a globally unique identifier. Each ethernet card in the world has a unique MAC address. The first 24 bits correspond to the Organizationally Unique Identifier. The second 24 bits is administered by the company or organization that the OUI has been assigned to. You will notice that all 3Com cards, for example, will have the same OUI, the first 3 octets in a MAC address.

How do I get a MAC address via command line?

Okay, there are several command line utilities to get your MAC address. The first one that comes to mind is GetMAC. Simply open a command prompt and type GetMAC and it will return your 48-bit MAC address in the following format:

Physical Address   Transport Name ================== ==================================================== 00-40-CA-B5-5B-06  \Device\Tcpip_{B249BB63-9574-4061-817A-D62E1D12072F}

The next method of doing it is writing IPCONFIG /ALL, this will also get all the MAC addresses of your ethernet cards along with all the IP addresses setup for each ethernet card. Information such as your Gateway, WINS server, DNS server, subnet mask, and all the IPs associated with your each NIC.An interesting way to discover what MAC addresses you know of other people on your network is to type ARP -a in a command prompt and you should get a listing that is similar to this.

Interface: 192.168.1.102 — 0×2   Internet Address      Physical Address      Type   192.168.1.1           00-20-78-d9-5c-b3     dynamic   192.168.1.100         00-50-ba-b3-55-ec     dynamic   192.168.1.101         00-a0-cc-7a-7d-6d     dynamic