last update: November 18th 2019 Hacking nsroot on a NetScaler with default settings is completely easy! I missed this one in Neil Spelling’s excellent blog about penetration testing NetScalers. What do you need to hack a NetScaler if you forgot your nsroot password? An external authentication source. My 1st idea would be: Use nerecover user. But this dies not work, as it uses the same...
Usually, the admin page is protected by a self-signed certificate. So if you surf to your NetScaler using SSL (and you always should manage your NetScaler using SSL!!!) you’ll face a certificate warning. Eventually, you could consider this warning to be of no relevance. It is your NetScaler, your intimate friend, so why worry? True. There is no problem as long as your network is safe. We...
I wanted to customise my blog, but I did not want to dig deep into wordpress. This seemed to much effort, and I don’t know if next update of WordPress would compromise my changes. I wanted to make permanent changes in a way that would survive any update. So I had to do it externally, in a quick and easy way, I had to do it using my NetScaler. I had a look at the server response flowing...
In one of my previous posts I installed badstore.net on my XenServer. This was not that easy, i solved all problems, however the results had not been so very good. There are 2 reasons for this: Badshop uses a java script to forward users to . So it will forward all your requests to an external website, even if you host it on your own environment. some of the hyperlinks on the web page are no...
It should be easy: download the CD image and install. However you’ll end up with following message: The bootloader for this VM returned an error — did the VM installation succeed? UNSUPPORTED_INSTAL_METHOD I asked Google and found a solution: find the UUID of this machine. It’s listed on the General page of your XenCenter or you can find out by asking the console for xe vm-list set...
This question was asked by one of my students during one of my last NetScaler CNS 207 classes. It should not be a difficult problem. So what do we need to do? rewrite requests to /Citrix/StoreWeb. filter on requests without URL specified. bind it to the load balancing server. (there is also a 2nd way using a responder policy, but I preferred the rewrite policy) The rewrite action: we locate...