last update: November 18th 2019 Hacking nsroot on a NetScaler with default settings is completely easy! I missed this one in Neil Spelling’s excellent blog about penetration testing NetScalers. What do you need to hack a NetScaler if you forgot your nsroot password? An external authentication source. My 1st idea would be: Use nerecover user. But this dies not work, as it uses the same...
Usually, the admin page is protected by a self-signed certificate. So if you surf to your NetScaler using SSL (and you always should manage your NetScaler using SSL!!!) you’ll face a certificate warning. Eventually, you could consider this warning to be of no relevance. It is your NetScaler, your intimate friend, so why worry? True. There is no problem as long as your network is safe. We...
I wanted to customise my blog, but I did not want to dig deep into wordpress. This seemed to much effort, and I don’t know if next update of WordPress would compromise my changes. I wanted to make permanent changes in a way that would survive any update. So I had to do it externally, in a quick and easy way, I had to do it using my NetScaler. I had a look at the server response flowing...
In one of my previous posts I installed badstore.net on my XenServer. This was not that easy, i solved all problems, however the results had not been so very good. There are 2 reasons for this: Badshop uses a java script to forward users to . So it will forward all your requests to an external website, even if you host it on your own environment. some of the hyperlinks on the web page are no...
last update: May 5th 2020 We all love to cook in our own Citrix environment. What do we need to be successfull? Well, even though this question may sound funny it is one of the most frequently asked questions in some of these Citrix forums out there. So I like to give an answer: A server, 24 to 32 GB RAM (64 or even 128 GB would be way better, but 32 is fine), round about 2 TB hard disk storage...
It should be easy: download the CD image and install. However you’ll end up with following message: The bootloader for this VM returned an error — did the VM installation succeed? UNSUPPORTED_INSTAL_METHOD I asked Google and found a solution: find the UUID of this machine. It’s listed on the General page of your XenCenter or you can find out by asking the console for xe vm-list set...
I started getting a bit confused about security of SSL during the last some month. First of all there was Mr. Edward Snowden. He told us about continuous massive attacks against SSL going on. NSA seems to be able to continuously trace our sessions. Next issue was Heartbleed (CVE-2014-0160). SSL renegotiation seemed to be a big issue. The last one is just a POODLE (CVE 2014-3566) (but never...
This question was asked by one of my students during one of my last NetScaler CNS 207 classes. It should not be a difficult problem. So what do we need to do? rewrite requests to /Citrix/StoreWeb. filter on requests without URL specified. bind it to the load balancing server. (there is also a 2nd way using a responder policy, but I preferred the rewrite policy) The rewrite action: we locate...
This is just another Citrix- Blog. The one by Johannes Norz. Johannes Norz is a Citrix- architect, member of the Citrix Technology Advocate (CTA) community, NetScaler evangelist and Citrix certified instructor, Austrian citizen, currently living in Austria, some miles south of Vienna in Baden. He holds several of the highest Citrix certifications like CCE-N (Citrix Certified Expert on Networking)...