tag:blogger.com,1999:blog-79379402067269888132024-03-08T21:08:40.479+11:00another sysadmin blog“random bits of my day”Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comBlogger44125tag:blogger.com,1999:blog-7937940206726988813.post-52183737524250629582013-05-08T14:56:00.001+10:002013-08-22T19:51:50.006+10:00IIS looks normal, but site won't load.Someone updated .Net Framework on Win2003 server (required for another app). Unfortunately didn't check existing IIS sites and their requirements so it broke a custom c# web site. Uninstalled without error in the OS, but website still 404ing, reboot and iisreset didn't fix it. <br><p><br><code>"%systemroot%\Microsoft.NET\Framework\<b><u>VERSION</u></b>\aspnet_regiis.exe" –i</code><br><p><br>Then iisreset. All good :) <br><p><br>Read about it here <a href="http://msdn.microsoft.com/en-us/library/k6h9cz8h(v=vs.80).aspx">http://msdn.microsoft.com/en-us/library/k6h9cz8h(v=vs.80).aspx</a>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-4314329222154160592013-03-07T07:47:00.001+11:002013-08-22T19:51:50.015+10:00Memorise it..class C subnets<p>Here are the possible Class C subnets:</p><pre> | Bits | Mask | CIDR | Subnets | Hosts | <br /> | 0 | 255.255.255.0 | /24 | 1 | 254 | <br /> | 1 | 255.255.255.128 | /25 | 2 | 126 | <br /> | 2 | 255.255.255.192 | /26 | 4 | 62 | <br /> | 3 | 255.255.255.224 | /27 | 8 | 30 | <br /> | 4 | 255.255.255.240 | /28 | 16 | 14 | <br /> | 5 | 255.255.255.248 | /29 | 32 | 6 | <br /> | 6 | 255.255.255.252 | /30 | 64 | 2 | <br /></pre><p>* Classless Inter-Domain Routing notation</p>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-84772821633730867862013-03-06T07:48:00.001+11:002013-08-22T19:51:50.021+10:00Example, Add Cisco AP to a netwrork.<p>I always set a scheduled reload of the remote device just-in-case there's a chance of breaking it (I'm still learning). 10 mins should give you enough time to implement your changes, test it and save it. Depending on the site and how many admins touch the device you could in theory leave your changes unsaved for a few days just to be sure, then get an onsite person to power cycle it if problems occur.</p><pre><code><br />reload in 10<br />config t<br /># config the ssid and map it to a vlan, 1 per vlan.<br />dot11 ssid YOUR_SSID<br />vlan YOUR_VLAN<br />authentication open <br />authentication key-management wpa<br />wpa-psk ascii 0 YOUR_PASSWORD<br /> <br /># assign encryption to ssid<br />interface Dot11Radio0<br />encryption vlan YOUR_VLAN mode ciphers aes-ccm<br />ssid YOUR_SSID<br /> <br /># config the sub interfaces for dot11 radio and ethernet<br />interface Dot11Radio0.YOUR_VLAN<br /> encapsulation dot1Q YOUR_VLAN<br /> no ip route-cache<br /> bridge-group YOUR_VLAN<br /> bridge-group YOUR_VLAN subscriber-loop-control<br /> bridge-group YOUR_VLAN block-unknown-source<br /> no bridge-group YOUR_VLAN source-learning<br /> no bridge-group YOUR_VLAN unicast-flooding<br /> bridge-group YOUR_VLAN spanning-disabled<br /> <br />interface FastEthernet0.YOUR_VLAN<br /> encapsulation dot1Q YOUR_VLAN<br /> no ip route-cache<br /> bridge-group YOUR_VLAN<br /> no bridge-group YOUR_VLAN source-learning<br /> bridge-group YOUR_VLAN spanning-disabled<br /> <br /># happy?<br />reload cancel<br /> <br /># not happy?<br />wait 10 mins<br /> <br /># want to undo some stuff manually? use the "no" form.<br />interface Dot11Radio0.YOUR_VLAN<br />interface FastEthernet0.YOUR_VLAN<br /> <br /># or<br />no bridge-group YOUR_VLAN subscriber-loop-control<br /> </code></pre><p>There's great article <a href="http://packetlife.net/blog/2012/feb/20/aironet-aps-bridge-groups-and-bvi/">here</a> that talks about bridge groups and bvi.</p>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-70757011119908476662013-03-05T07:45:00.000+11:002013-03-05T07:45:01.042+11:00Powershell<p>I am only just getting to scratch the surface of Powershell's awesomeness as we only recently started rolling out Windows 7 to the enterprise. More to come..... hopefully.</p>
<p>This simple PS exports an AD report of users to CSV.</p>
<div class="gist"><a href="https://gist.github.com/4108187">https://gist.github.com/4108187</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-78690682394756577972013-03-04T07:57:00.000+11:002013-03-04T07:57:00.355+11:00Mac OSX ssh remote commandssh user@hostname -x -o batchmode=yes softwareupdate -lMarkkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-34813596362383078032013-03-02T07:43:00.000+11:002013-03-02T07:43:00.126+11:00Don't use the GUI, use Robo.<div class="gist"><a href="https://gist.github.com/4108167">https://gist.github.com/4108167</a></div>
<p>I use this every week to copy files on WiFs shares internationally. Copy a directory and its contents verbosely (skipping items that exist in the destination, retry upon failure up to 3 times, wait 3 seconds between retries.)</p>
<p>Great way to avoid GUI copy errors.</p>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-35763797706040375652013-03-01T08:00:00.000+11:002013-03-01T08:00:04.121+11:00Enable Windows 7 Server Management Tools via the CLI<p>Download Remote Server Administration Tools for Windows 7 from Microsoft <a href="http://www.microsoft.com/en-us/download/details.aspx?id=7887">http://www.microsoft.com/en-us/download/details.aspx?id=7887</a></p>
<p>Then enable the features with DISM.</p>
<div class="gist"><a href="https://gist.github.com/4108859">https://gist.github.com/4108859</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-46598272716656568802013-02-27T07:38:00.000+11:002013-02-27T07:38:00.688+11:00Cisco AP troubleshooting<p>Just some more network stuff to remember...</p>
<div class="gist"><a href="https://gist.github.com/4108184">https://gist.github.com/4108184</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-71368894564780149972013-02-26T07:36:00.000+11:002013-02-26T07:36:00.308+11:00USB to Serial Mac OS X for console connections<p>Download the 32bit driver <a href="http://sourceforge.net/projects/osx-pl2303/">here</a> or the 64bit driver <a href="http://changux.co/osx-installer-to-pl2303-serial-usb-on-osx-lio">here</a> to be used with the PL2303 adapter that can be purchased cheap online.</p>
<p>To initiate an console connection find your device:</p>
<pre><code>bash-3.2$ ls -la /dev/tty.*<br />crw-rw-rw- 1 root wheel 18, 2 26 Oct 08:32 /dev/tty.Bluetooth-Modem<br />crw-rw-rw- 1 root wheel 18, 0 26 Oct 08:32 /dev/tty.Bluetooth-PDA-Sync <br />crw-rw-rw- 1 root wheel 18, 6 26 Oct 14:40 /dev/tty.PL2303-000013FA </code>
</pre>
<p>Execute:</p>
<pre><code> screen /dev/tty.PL2303-000013FA 9600 </code>
</pre>
<p>If it doesn't work for you uninstall it this way;</p>
<pre><code>kextunload /System/Library/Extensions/osx-pl2303.kext/<br />sudo rm -r /System/Library/Extensions/osx-pl2303.kext/<br />sudo rm -r /Library/Receipts/osx-pl2303.pkg</code></pre>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-37211377119917756872013-02-25T07:59:00.000+11:002013-02-25T07:59:00.499+11:00DISM.. list features via the clidism /online /get-features /format:tableMarkkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-59299807979836873562013-02-24T07:58:00.000+11:002013-02-24T07:58:00.100+11:00Mac OS X key-based ssh loginTo set up key-based SSH, you must generate the keys the two computers will use to establish and validate the identity of each other. To do this run, the following commands in Terminal:
Check to see whether a .ssh folder exists in your home directory by running the command ls -ld ~/.ssh. If .ssh is listed in the output, move to step 2. If .ssh is not listed in the output, run mkdir ~/.ssh and continue to step 2.
Run:
cd ~/.ssh
Run:
ssh-keygen -b 1024 -t dsa -f id_dsa -P ''
This command generates the public and private keys. The -b flag sets the length of the keys to 1,024-bits, -t indicates to use the DSA hashing algorithm, -f sets the file name as id_dsa, and -P '' sets the private key password to be null. The null private key password allows for automated SSH connections.
Run:
touch authorized_keys2
Run:
cat id_dsa.pub >> authorized_keys2
Run:
chmod 400 id_dsa
The permissions on the private key must be set so that the file is not world readable.
Run:
scp authorized_keys2 user@host :~/.ssh/
This command copies the public key and the authorized key lists to the specified user's home directory on the remote computer. If you need to establish two-way communication between servers, repeat the above process on the second computer. It is not secure to copy the private key of one computer to another computer. This process must be repeated for each user that needs to be able to open a key-based SSH session. The root user is not excluded from this requirement. The home folder for the root user on OS X is typically located at /var/root/.Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-38207997956528375252013-02-23T20:20:00.000+11:002013-02-23T20:20:37.545+11:00Microsoft SQL Reporting Services FIX<p><strong>Scenario</strong></p>
<p>MS SQL 2005 Reporting Services on Windows Server 2003. App based on MS SQL Reporting services web service failing.</p>
<p>Error "<strong>System.Configuration.ConfigurationErrorsException: The RSA key container could not be opened"</strong></p>
<p>Trouble shooting steps I followed.</p>
<ol>
<li>Check IIS, how are you authenticating?</li>
<li>Check permissions on the sql database, ensure the web server HOSTNAME$ is db owner. If IIS is anonymous then NETWORK SERVICE must have db permissions too.</li>
<li>Check permissions on your web services via the admin interface usually something like this http://HOSTNAME/Reports$DBINSTANCENAME/Pages/Folder.aspx</li>
<li>Check you can access the web services from a workstation to ensure the service is "exposed"</li>
<li>Check you can access the web services from the web server, you should be able to enter the web service required variables and return data.</li>
</ol>
<p>If the site is running in the "Network Service" context then it is possible that the access to key store was removed. To reassign permissions to allow Network Service account access to the key store run the following command from the .net Framework folder.</p>
<p><span><code>%WINDOWS%\Microsoft.NET\Framework\v2.0.50727\aspnet_regiis -pa "NetFrameworkConfigurationKey" "Network Service"</code></span></p>
<p><span>This seems to occur sometimes with SUS security updates but I haven't completely figured it out, will update once I do.</span></p>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-28274265085573264792013-02-23T07:34:00.001+11:002013-02-23T07:35:18.603+11:00CatOS to IOSJust some more examples to jog my memory ;)<br><p>
<table border="1" bgcolor="ffffff">
<tbody><tr><td width="330" bgcolor="999999"><b>CatOS</b></td><td width="330" bgcolor="999999"><b>Native IOS</b></td></tr>
<tr><td valign="top">set vlan [vlan-id] [mod]/[port]</td><td>interface [gigabit/fastethernet][mod]/[port]<br> switchport<br> switchport mode access<br> switchport access vlan [vlan-id]</td></tr>
<tr><td valign="top">set port enable [mod]/[port]</td><td>interface [gigabit/fastethernet][mod]/[port]<br> no shutdown<br></td></tr>
<tr><td valign="top">set port disable [mod]/[port]</td><td>interface [gigabit/fastethernet][mod]/[port]<br> shutdown<br></td></tr>
<tr><td valign="top">set spantree portfast</td><td>interface [gigabit/fastethernet][mod]/[port]<br> spanning-tree portfast<br></td></tr>
<tr><td valign="top">set port speed [mod]/[port] [auto/10/100/1000]</td><td>interface [gigabit/fastethernet][mod]/[port]<br> speed [auto/10/100/1000]<br></td></tr>
<tr><td valign="top">set port duplex [mod]/[port] [half/full]<br>(Note: Auto duplex automatically set with <i>speed auto</i>)</td><td>interface [gigabit/fastethernet][mod]/[port]<br> duplex [auto/full/half]<br></td></tr>
<tr><td>reset system</td><td>reload</td></tr>
<tr><td>show cam dynamic</td><td>show mac-address-table dynamic</td></tr>
<tr><td>show channel</td><td>show etherchannel summary</td></tr>
<tr><td>show port [mod]/[port]</td><td>show interface [gigabit/fastethernet][mod]/[port]</td></tr>
<tr><td>show spantree</td><td>show spanning-tree</td></tr>
<tr><td>show trunk</td><td>show interfaces trunk</td></tr>
<tr><td>show vlan</td><td>show vlan</td></tr>
<tr><td>show vtp domain</td><td>show vtp status</td></tr>
<tr><td>set system name [label]</td><td>hostname [label]</td></tr>
<tr><td>set spantree backbonefast</td><td>spanning-tree backbonefast</td></tr>
<tr><td>set spantree macreduction table</td><td>spanning-tree extend system-id</td></tr>
<tr><td>reset</td><td>reload</td></tr>
</tbody></table>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-68135441728134272472013-02-23T07:22:00.000+11:002013-02-23T07:22:21.659+11:00CatOS/IOS example vlan trunk<p><strong>CatOS</strong></p>
<pre><code>sw> enable
sw> set trunk {port to trunk on} on dot1q {vlans to allow}<br>
<strong>EXAMPLE</strong>
set trunk 4/48 on dot1q 2-3,10,20,30,69,96-99
<p>(This example sets port 4/48 to the 802.1q standard, and only allows VLANs 2-3,10,20,30,69,96 to 99)</p></code></pre>
<p><strong>IOS</strong></p><pre><code>
sw> enable
sw> config t
sw> interface GigabitEthernet0/1
sw-if> switchport trunk encapsulation dot1q
sw-if> switchport mode trunk
sw-if> end
sw> write mem</code></pre>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-83037520376809844692013-02-17T19:35:00.001+11:002013-02-17T19:36:37.658+11:00Apple Software Update URLsHave trouble finding Safari 6.0.2 like everyone else?
<div class="gist"><a href="https://gist.github.com/cgerke/4970677">https://gist.github.com/cgerke/4970677</a></div>
(Just replace Safari6 with other software strings).Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-91904063731030851832013-02-07T11:46:00.001+11:002013-02-07T11:54:38.273+11:00FAT32 file size limitDon't forget about the cli utility, <code>convert</code><br><p><br>
<code>convert E: /FS:NTFS</code><br><p><br>
You can perform this on a device that has files on it such as a USB disk but probably best to take a backup beforehand ;). Just make sure that you have sufficient free space on the partition, so that there’s room for temporary files that are created during the process; note that Windows will warn you if there is not enough space on the partition.Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-60995113410185634742013-02-01T12:27:00.002+11:002013-02-01T12:27:44.659+11:00Mac OS X DNS Resolver.<p>Had an interesting problem today with a Mac OS X 10.7.5 end user working with the Apple built-in Cisco IPSEC VPN client. The end user was using a VPN profile that has split tunneling enabled.</p>
<p>Internal servers could not be reached via their DNS address (ip address did work). The vpn interface was getting the correct DNS settings, the Ethernet interface and WiFi interface were only getting the end users home internet connection DNS settings.</p>
<p>Unfortunately the VPN DNS isn't overriding the ISP's. Doesn't matter whether I change the order of services either.</p>
<p>Manually added the DNS to the interfaces and it works as expected but doing it that way means the end user won't be able to resolve anything when not connected to the VPN.</p>
<p>This is a workaround... real quick one, haven't researched it yet. Will update with more details when I have time.</p>
<div class="gist"><a href="https://gist.github.com/4536687">https://gist.github.com/4536687</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-36237931536336389472012-11-19T10:18:00.003+11:002013-01-23T21:16:47.076+11:00arpAuditing my asset list, I like to ensure assets have mac addresses documented, helps with locating them on a switch. Found a couple entries missing and didn't want to bother the end users with a phone call. Don't forget arp :)
Just ping the host address of the machine, then check your arp table.<br>
<div class="gist"><a href="https://gist.github.com/4084091">https://gist.github.com/4084091</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-68232650357217617642012-07-04T20:11:00.000+10:002013-01-19T15:39:53.799+11:00CatOS to IOS<div class="gist"><a href="https://gist.github.com/4108157">https://gist.github.com/4108157</a></div>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-78325538550283747602012-06-27T10:06:00.001+10:002013-01-19T15:40:19.778+11:00CLI Mac OS X VersionA simple "1-liner" that I use quite a bit to get the OS version, makes it easy to create a single script that can be deployed universally.
<br />
<pre class="prettyprint">/usr/bin/sw_vers | /usr/bin/grep 'ProductVersion:' | /usr/bin/grep -o '[0-9]*\.[0-9]*\.[0-9]*' | /usr/bin/cut -c 1-4
</pre>
Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-81429615542151092812012-06-22T14:18:00.002+10:002013-01-19T15:40:25.915+11:00How to enable TFTP and Telnet in Windows 7 programmatically?A powerful tool to get familiar with in Windows 7....dism (Deployment Image Servicing and Management Technical) allows command line control of services, I do it via a DOS script. This is a nice one to start with so you have some tools to use with your Cisco infrastructure.<br />
<pre><code>
dism /online /Enable-Feature /FeatureName:TelnetClient
dism /online /Enable-Feature /FeatureName:TFTP
</code>
</pre>
Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-69809166414651253002012-05-31T16:22:00.001+10:002013-01-19T15:40:19.770+11:00Cisco Router Factory Reset<p>A simple one, don't do it often so thought I'd add it in a post so if I ever forget I know where to look. Theres two ways of doing it.</p>
<p><strong>Method 1, Using the config-register 0x2102</strong></p>
<pre><code>router> enable
router# configure terminal
router(config)# config-register 0x2102
router(config)# end
router# write erase
router# reload
router# System configuration has been modified. Save? [yes/no]: n
Proceed with reload? [confirm]
</code></pre>
<p><strong>Method 2, Using the config-register 0x2142</strong></p>
<pre><code>router> enable
router# configure terminal
router(config)# config-register 0x2142
router(config)# end
router# reload
router# System configuration has been modified. Save? [yes/no]: n
Proceed with reload? [confirm]
router> enable
router# configure terminal
router(config)# config-register 0x2102
router(config)# end
router# write memory
router# reload
router# System configuration has been modified. Save? [yes/no]: n
Proceed with reload? [confirm]
</code></pre>
<p>Note: the following configs are not reset to factory defaults using these methods as they are stored in ROMMON:</p>
<p>warm-reboot<br /> memory-size iomem</p>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-69755219286986912892012-05-25T20:22:00.000+10:002013-01-19T15:40:36.924+11:00TFTP on Mac OS X 10.7 shell scriptI've just started getting into Cisco support a little more. It's my goal to eventually specialise (its probably the first time I've found something in I.T. support that I don't eventually get bored with ). Since I've got about 1 of each OS I need make sure I can perform my job on anything. Was working on my macbook pro and needed to download some router configs. Give tftp a kick on Mac OS X 10.7
<pre><code>
#!/bin/bash
#* TFTP.sh
#+ A quick script to enable/disable tftp (for use with cisco devices).
#+ Usage: TFTP.sh on
NO_ARGS=0
if [ $# -eq "$NO_ARGS" ] # no arguments?
then
/bin/echo "Disabling tftp."
#+ Always unload, just to be on the safe side.
sudo launchctl unload -w /System/Library/LaunchDaemons/tftp.plist
#+ Cleanup any files so they aren't floating around ;)
/bin/echo "Removing default tftp files."
sudo /bin/rm -f /private/tftpboot/running-config
sudo /bin/rm -f /private/tftpboot/startup-config
sudo /bin/rm -f /private/tftpboot/flash
else
if [ $1 == on ]; then
/bin/echo "Enabling tftp."
#+ Load the daemon
sudo launchctl load -F /System/Library/LaunchDaemons/tftp.plist
#+ Must be a file to send/receive one. Setup some Cisco defaults.
/bin/echo "Creating default tftp files."
sudo touch /private/tftpboot/running-config
sudo chmod 777 /private/tftpboot/running-config
sudo touch /private/tftpboot/startup-config
sudo chmod 777 /private/tftpboot/startup-config
sudo touch /private/tftpboot/flash
sudo chmod 777 /private/tftpboot/flash
pushd /private/tftpboot
/bin/ls -la /private/tftpboot
fi
fi
exit 0
</code>
</pre>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-65579276879313841382012-05-24T11:19:00.001+10:002013-01-19T15:40:46.932+11:00Repair VSS CorruptionInternal DEV team still using VSS? Just a little snippet you may need to know every now and then when coming across database corruptions. Analyze.exe is your friend :)
<pre>analyze -f -c -d %PATH_TO_VSS_ANALYZE_LOG% %PATH_TO_VSS_DATA%
Analyze Report:
------------------
%PATH_TO_VSS_ANALYZE_LOG%d= Analyze log of corrupted files
-f =Automatically repairs inconsistencies and corruption that are detected
-c=Cleans up and compresses unused space in the database
-d=Deletes any unused files
</pre>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.comtag:blogger.com,1999:blog-7937940206726988813.post-90580178193848254002012-05-13T20:25:00.000+10:002013-01-19T15:40:59.287+11:00Code Snippet (Mac OSX Encryption)Need to encrypt a file? Don't have any budget to buy software? You don't need to really, there is plenty of opensource stuff out there and some built-in stuff to. Give openssl a try on Mac OS X.
<p>
<b>Encrypt</b><br />
<pre><code>
#!/bin/sh
in="$1"
out="$2"
openssl des3 -in "$1" -out "$2"
exit 0
</code>
</pre>
<p>
<b>Decrypt</b>
<pre>
<code>
#!/bin/sh
in="$1"
out="$2"
openssl des3 -d -in "$1" -out "$2"
exit 0
</code>
</pre>Markkuhttp://www.blogger.com/profile/16031283472547646899noreply@blogger.com