Misc

Citrix PNAgent Shortcut

"C:\Program Files (x86)\Citrix\ICA Client\pnagent.exe" /QLaunch "CrouseCTXFarm:Soarian No Proxy"
http://support.citrix.com/article/CTX122795

baikal - reset admin pw

sudo php -r 'echo md5("admin:auth_realm:password");'

Remove IE 11 CmdLine

FORFILES /P %WINDIR%\servicing\Packages /M Microsoft-Windows-InternetExplorer-*11.*.mum /c "cmd /c echo Uninstalling package @fname && start /w pkgmgr /up:@fname /quiet /norestart"

 

Lockdown info.crouse.org as prescribed by the pen test results we've received

Description :

three of the High vulnerabilities have been corrected. This is also good for anyone that uses Wordpress on the outside. I have included reference articles as well as the data that goes in the config files

Title: Protect Your Admin folder in WordPress by Limiting Access in .htaccess
/var/www/info.crouse.org/wp-admin/.htaccess
 #AuthUserFile /dev/null
 #AuthGroupFile /dev/null
 AuthName "WordPress Admin Access Control"
 AuthType Basic
 <LIMIT GET>
 order deny,allow
 deny from all
 allow from 64.129.121.111 #Did not work, because it's internal, but just in case
 allow from 10.52.2.27  #Rich's machine
 </LIMIT>
https://www.wpbeginner.com/wp-tutorials/protect-your-admin-folder-in-wordpress-by-limiting-access-in-htaccess/


Title: Directory listing of Info Site's data
/var/www/info.crouse.org/wp-content/uploads/.htaccess
 Options -Indexes
https://stackoverflow.com/questions/7840323/apache-deny-listing-directory-but-allow-access-to-all-subfolders


Title: "XML-RPC server accepts POST requests only"
/var/www/info.crouse.org/.htaccess
 <files xmlrpc.php>
 Order allow,deny
 Deny from all
 </files>
https://www.rosehosting.com/blog/what-is-wordpress-xml-rpc-and-how-to-stop-an-attack/
https://www.greengeeks.com/tutorials/article/how-to-enable-and-disable-xmlrpc-php-in-wordpress-and-why/

Title: Errata
https://www.codeinwp.com/blog/secure-your-wordpress-website/


Title: .htaccess not working apache
sudo a2enmod rewrite
sudo nano /etc/apache2/sites-available/000-default.conf
 <Directory "/var/www/html">
   AllowOverride All
 </Directory>

https://stackoverflow.com/questions/12202387/htaccess-not-working-apache