Friday, May 25, 2007

SMS Support in Sun Java System Messaging Server version 6.3

This article discusses Short Message Service (SMS) support within Sun Java System Messaging Server 6.3. You can utilize SMS as a means to quickly notify users with a more real-time, "push" style of communications, for example, to let users know of emergency conditions that require their prompt action.


Quick SMS Overview

Here is the definition of "Short message service" from Wikipedia*:

Short Message Service (SMS) is a telecommunications protocol that allows the sending of "short" (160 characters or less) text messages. It is available on most digital mobile phones and some personal digital assistants with onboard wireless telecommunications. The individual messages which are sent are called text messages, and more colloquially SMSes, texts, or even txts (in "text speak").

SMS gateways exist to connect mobile SMS services with instant message (IM) services, the world wide web, desktop computers, and even landline telephones (through speech synthesis). Devices which can connect to mobile phones and PDAs through protocols such as Bluetooth can also sometimes use that link to send SMS messages over the wireless network. SMS arose as part of the widely deployed GSM protocol, but is now also available with non-GSM systems.

The most common application of the service is person-to-person messaging, but text messages are also often used to interact with automated systems, such as ordering products and services for mobile phones, or participating in contests. There are some services available on the Internet that allow users to send text messages free of direct charge to the sender, although users of North American networks will often have to pay to receive any SMS text message.


SMS Support in Messaging Server 6.3

The short of it is that yes, Messaging Server does support SMS, specifically as a channel within the Messaging Server Message Transfer Agent (MTA).

Messaging Server implements email-to-mobile and mobile-to-email messaging using SMS. You can configure SMS as either one-way (email-to-mobile only) or two-way (both email-to-mobile and mobile-to-email). To enable one-way service only, you must add and configure the SMS channel. To enable two-way service, you must add and configure the SMS channel, and in addition, configure the SMS Gateway Server.

For both one- and two-way SMS, the generated SMS messages are submitted to a Short Message Service Center (SMSC) using the Short Message Peer to Peer (SMPP) protocol. Specifically, the SMSC must provide a V3.4 or later SMPP server that supports TCP/IP.

The following figure shows these configurations:

logFlowOneTwoWaySMS

One-way SMS: To enable one-way service, the Messaging Server implements an SMPP client (the MTA SMS channel) that communicates with remote SMSCs. The SMS channel converts enqueued email messages to SMS messages as described in C.2.2 The Email to SMS Conversion Process of multipart MIME messages, as well as handling character set translation issues. Operating in this capacity, the SMS channel functions as an (SMPP) External Short Message Entity (ESME).

Two-way SMS: Two-way SMS enables the mail server not only to send email to remote devices, but allows for receiving replies from the remote devices and for remote device email origination. Enabling two-way SMS service requires both the MTA SMS channel (SMPP client), as explained in the previous topic, and the SMS Gateway Server. Sun Java System Messaging Server installs an SMS Gateway Server as part of its general installation process, which you must then configure.

For more information, see Appendix C, Short Message Service (SMS) in the Sun Java System Messaging Server 6.3 Administration Guide.



SMS Mailbox Access and Calendar Gateway



In addition to the SMS functionality built-in to Messaging Server, a couple of Sun Professional Services folks independently developed an SMS Gateway solution for use with Messaging Server and Calendar Server. Dubbed SMS Mailbox Access and Calendar Gateway, this solution is primarily targeted at service providers to add value for their subscriber base, though other types of organizations could certainly also use the gateway.

The SMS Gateway provides the following functionality:

  1. SMS Notification. Receive SMS information about each email delivered to the subscriber's mailbox. Depending on user-configured settings, the following information can be sent in the SMS body: sender, email subject, date and time, size attachment information, and more. Furthermore, the subscribers can read emails using their mobile phones. It is just a matter of responding to the SMS notification and the first part of the email body will be received as another SMS on the mobile device shortly thereafter. To receive another part the subscriber has to respond with SMS to the first one, to receive the third, respond to the second, and so on, until the whole body has been transferred.
  2. Mailbox management via SMS. This enables support for basic email services. Subscribers can use SMS messages to reply to, forward, or delete the mail stored in their mailbox to receive mailbox status information (for example, the number of messages, how many have been read, and so on), as well as detailed attachment data (filename, type, and size). Mailbox management features also include the ability to send emails using SMS messages and to change notification parameters.
  3. Calendar Event Information. SMS Gateway sends SMS messages containing information on events in the subscriber's calendar (Calendar Server) to the subscriber's mobile phone (depending on user-configured settings). These can include reminders for pending appointments, invitations to meetings, and so on.

The SMS Gateway requires Messaging Server, Calendar Server, Directory Server, and custom components developed by Sun.


Comparison of Messaging Server SMS Channel and SMS Mailbox Access and Calendar Gateway

It's interesting to note that the built-in SMS functionality to Messaging Server and the SMS Mailbox Access and Calendar Gateway do not compete, but are in fact complementary. Here is a summary of the features in both:

SMS Channel

  • General-purpose email/SMS and SMS/email gateway
  • SMS notification sent as email passes via the channel; mailboxes are not involved
  • Provides historical record of the messages sent, so mobile users can respond to notifications to reply to email messages
  • Supports Delivery Status Notifications (DSNs)

SMS Gateway

  • SMS Gateway sends notifications when emails are delivered to mailboxes, so they can contain backward references to messages.
  • Mailboxes must be involved if you want to interact with mailbox but you can think of the Gateway as a general-purpose tool for changing some user parameters in LDAP by means of SMS messages sent.
  • SMPP connectivity is through the Messaging Server SMS Channel but also SEMA-OIS, UCP, and CIMD2 connectivity independently, if needed, as not all SMSC devices use SMPP.

Very briefly:

  • Use SMS Channel if you want to configure your Messaging Server to be an SMTP to SMS converter, so mail messages transferred through are converted to SMS messages and sent to mobile users, regardless of whether they have mailboxes on your server.
  • Use SMS Gateway if you want your Messaging Server users to be notified with SMS about messages that arrive in their mailboxes and to be able to manipulate them by means of SMS messages.

Another Alternative: Multimedia Messaging Service (MMS) Support in Messaging Server

MMS, like Short Messaging Service (SMS), is a way to send a message from one mobile device to another. The difference is that MMS can include not just text, but also sound, images and video. It is also possible to send MMS messages from a mobile phone to an email address.

While Messaging Server has supported SMS for some time, it does not provided built-in support for MMS. Instead, Sun has partnered with companies such as Logica CMG to provide the additional functionality required.


For More Information

For more information on the SMS Mailbox Access and Calendar Gateway, contact Andrzej Zagrodzinski or Wojciech Chemijewski.

See the BigAdmin Communications Suite Hub for more information about Sun Java Communications Suite:

http://www.sun.com/bigadmin/hubs/comms

*Note: Content from Wikipedia is available under the GNU Free Documentation License (GFDL).

Thursday, May 24, 2007

Tips to Keep your computer Clean, Neat and Fast

Hi All,
This I got this piece of text from Internet while I was searching for an Anti-Adware software. I felt this one is good. so sharing with you too.....

Here's the deal, my way.
by Brianstech - 3/23/07 7:28 PM

In reply to: How to Remove Malware, et al, like the computer repair shops

I'm one of those who makes decent money fixing people's computers. I'm an independent, someone who has gained many clients through my years of knowledge, buying and selling, building, networking, and repairs.

Do you want to know how I keep my own computers running well?

1. I use a hardware router, Linksys, Netgear, D-Link, it doesn't matter. And I don't use extreme security settings.

2. I use Firefox as my browser. Maybe once every few months I'll use Internet Explorer to achieve something I can't with Firefox, and that's usually for experimental purposes. A few years back I got fed up with all the crap invading my computer EVERY FEW MINUTES with IE. Switched to Firefox, and the whole internet world opened its arms to me. I never looked back.

I CANNOT use Firefox without some enhancements. They're called extensions. NoScript is the most important, it won't allow a single site to run scripts (including bad ones) without your approval. Next is Adblock Plus, something that speeds loading times with every click as it blocks all those "leecher" ads from loading. I compliment that with AdBlock FiltersetG Updater.

Go to http://www.mozilla.com/en-US/firefox/ to learn all about it.

Also, I always install SpywareBlaster. I'm not sure exactly how it works, but it helps keep the bad guys out. That's always good.

3. CCleaner. It's a simple small free program I couldn't live without. It takes mere seconds to eliminate all my internet history, cookies and cache. Not to mention emptying the Recycle Bin, and it even has a simple Registry cleaner.

CCleaner is not a security program, it qualifies as a utility. But it makes all my security scanning programs almost completely worthless. I know, I've tested it too many times. After a week or so of internet usage I've run Spybot or AdAware to see they would find the usual list of benign cookies. Running CCleaner first makes AdAware, Spyboy S&D, Ewido, and even Doctor Alex a waste of my time. They all find nothing, for about 2 years now.

http://www.ccleaner.com/

4. Background programs. I DO NOT ALLOW programs to load and run with Windows. Install your camera software, scanner software, TV tuner software, DVD media player, sound card and mixer, Itunes, it doesn't stop. They all want to be in your face every minute you are on your computer. And they are constantly hovering, waiting for you to request their services, at the cost of your time and RAM. Why do they do this? Obviously it's greed.

So you shut them down. And still they occupy CPU cycles while they constantly seek updates because you didn't STOP that also!

I use my digital camera about once every few months, my scanner even less. Why do they embed their software up my operating system's wahoo?

STOP THEM.

5. Email. Not much to say, I simply DON'T allow HTML to get through all three accounts. All my email accounts are set up for "text only", so the crooks can't can't infest my computer as easily. I also take the time to block the address or domain of every spammer, and only get about 2 unwarranted emails a year. I'm very serious.

And my life will never be changed by ANYTHING I read in an email. It's email for gosh sakes! When I read "Your Paypal account has been accessed by a third party", I laughed. I logged onto Paypal to see it was only a scammer's attempt to get me to react through clicking their link to provide them with my account information. THERE ISN'T A SINGLE EMAIL THAT WOULD EVER RAISE MY BLOOD PRESSURE!! Nowadays they can install scary stuff in your PC as soon as you open their email, unless you use "text only".

I almost wish they would still try, but it's been over 2 years since the last scam emails.

THAT ABOUT SUMS IT UP.

I don't use an antivirus although I wouldn't recommend that to all common users.

And I download through torrents (filesharing) while surfing Russian Porno sites. I'm a registered hacker on a few gamer sites. Sometimes I go down those dark internet alleys looking for trouble, and I always find nothing.

I'm also an established member of eBay, almost 5 years of buying and selling on 2 accounts. Established means I'm also an active member of their communities, the Answer Center and different Groups.

Malware Alarm

Description of Malware Alarm

Malware Alarm is a Trojan disguised as an anti-spyware application. It installs stealthily onto a user's system, uses aggressive advertising, and produces false positives that may goad the user into purchasing the application.

Recommendation for Malware Alarm
It is highly recommended that this application be removed from the system.

Trusted: No
Trojan: Yes
Chronic: No
Adware: No
Carrier: No
Browser Hijacker: No
Dialer: No
Commercial Keylogger: No
Remote Administration Tool: No
Suspected: No

Company Name: NA
Platforms Affected:
Methods of Distribution: Downloadable from its site
Variants/Versions:
Release Date: NA

How to Remove MalwareAlarm?

You wont be able to uninstall this trojan. Or delete it. So for removing this do the following

  • Open Task manager by pressing Ctrl+Shift+Esc
  • Kill the process named MalwareAlarm
  • Goto C:\Program Files and delete the Folder MalwareAlarm
  • Delete the start menu entries by going to start->All Programs->MalwareAlarm
  • Next in Run type "regedit" and search for "MalwareAlarm" and remove all the entries

Tuesday, May 22, 2007

How to help prevent SSH attacks...

Im not a huge Linux Expert but i have enough knowledge to run and secure a server.

I was given some instructions on what to do to prevent this from happening so im going to share them here to help others secure their SSH and reduce the possibility of one of these bots (or humans) accessing your server via root.

Install Brute Force Detection (BFD)

This nifty tool will basically detect and help prevent people and bots trying to access your server by entering a list of random passwords - it will ban and block the IP’s that attempt to brute force your server.

To install BFD you must first install the APF firewall - instructions on doing so can be found over at webhostgear dot com

Once you have installed APF you may install BFD:

Step 1: Login to your server as "root"

Step 2: Download the latest release of BFD
wget http://www.rfxnetworks.com/downloads/bfd-current.tar.gz
Step 3:
Un-Tar the archive
tar -xvzf bfd-current.tar.gz
Step 4:
Move to the newly created BFD directory
cd bfd-0.X
Step 5:
Run the installation utility, once installed it will give you a completion message.
./install.sh
Step 6:
Edit the config file
nano /usr/local/bfd/conf.bfd
Change This:
ALERT_USR="0"
To This:
ALERT_USR="1"
and This:
EMAIL_USR="root"
To This:
EMAIL_USR="you@yourdomain.com"
Step 7:
Now to prevent getting locked out, its best that you edit the ignore list, this is a list of IP’s that wont be affected by the BFD system.
nano /usr/local/bfd/ignore.hosts
Add your IP to the list, e.g:
123.12.123.1
Step 8:
You can now start BFD by running the following command as root:
/usr/local/sbin/bfd -s
The install of BFD is now complete. Time for the next item on the security list…

Moving SSH To A New Port

As silly as this may sound, moving SSH is actually one of the better methods of helping to stop unauthorized access. Moving the port will give the impression that the server is either non-functional or does not have SSH setup.

If you have APF installed, make sure to add the new port to the list of open ports before applying the below modifications - failure to do so could leave you locked out of your system.

Step 1: Pick yourself a port number (higher 4 digit numbers are usually better as they are less likely to already be in use). E.g. 8470

Step 2:Here we will open up the SSH config file, at the top of the file is the current port number (22), you can just change this to the new one:
nano /etc/ssh/sshd_config
Step 3:
Restart the SSH server
/etc/rc.d/init.d/sshd restart
Step 4:
Login with the new port number!
If using putty the port number defaults to 22 however you can change this when entering the server IP.

Step 5: If everything is working, you can now edit your APF config and close off port 22 as its no longer needed!