geekism and nerdism – Page 13

Bookmarks for 22 giu 2014 through 23 giu 2014

These are my links for 22 giu 2014 through 23 giu 2014:

TCnext | Site dedicated to the next "truecrypt" – TrueCrypt.ch is the gathering place for all up-to-date information. If TrueCrypt.org really is dead, we will try to organize a future.
#UnethicalHacks – These are satire. Don't be a sociopath, k?
IT Security and Hacking knowledge base – SecDocs – Hacking and security documentation: slides, papers, video and audio recordings. All in high-quality, daily updated, avoiding security crap documents. Spreading hacking knowledge, for free, enjoy.

Bookmarks for 4 giu 2014 through 18 giu 2014

These are my links for 4 giu 2014 through 18 giu 2014:

Bash: parsing arguments with ‘getopts’ | rsalveti’s random thoughts – Today I was writing some scripts, and in every script I wanted something to handle all input arguments, in a good way, so I could pass my arguments in any order and my program would know about it. I used ‘getopts’ before, but this time I decided to write some stuff here about it.
A Hacker’s Guide to Git | Wildly Inaccurate –
jasonlong/lavalamp – A text editor theme that visually differentiates languages.
dayid’s screen and tmux cheat sheet – A comparison of the features (or more-so just a table of notes for accessing some of those features) for GNU screen and BSD-licensed tmux.
JS NICE: Statistical renaming, Type inference and Deobfuscation – Welcome to JSNice — we make even obfuscated JavaScript code readable. We will rename variables and parameters to names that we learn from thousands of open source projects. Furthermore, often we are also able to guess or infer type annotations. Try JSNice on your JavaScript code to see how it works! Override the names suggested by JSNice (by enabling "interactive renames" in settings).

Bookmarks for 15 mag 2014 through 2 giu 2014

These are my links for 15 mag 2014 through 2 giu 2014:

Babun | A windows shell you will love! – Would you like to use a linux-like console on a Windows host without a lot of fuzz? Try out babun!
OpenSSH – Wikibooks, open books for an open world – The OpenSSH suite provides secure remote access and file transfer. Since its initial release, it has grown to become the most widely used implementation of the SSH protocol. During the first ten years of its existence, ssh has largely replaced older corresponding unencrypted tools and protocols. The OpenSSH client is included by default in most operating system distributions, including OS X, Linux, BSD and Solaris. Any day you use the Internet, you are using and relying on dozens if not hundreds of machines operated and maintained using OpenSSH. A survey in 2008 showed that of the SSH servers found running, just over 80% were OpenSSH. [1] OpenSSH was first released towards the end of 1999. It is the latest step in a very long and useful history of networked computing, remote access and telecommuting. This book is for fellow users of OpenSSH to help them save effort and time through using OpenSSH, and especially SFTP, where it makes sense to use it.
ssl-cert-check » Linux Shtuff – […] Digital certificates have become an essential part of Internet commerce, and are widely used to verify the identity of clients and servers. All digital certificates contain an expiration date which most client and server applications will check before using the certificates contents. If a client or server application detects that a certificate has expired, one or more implementation specific actions (e.g., abort connection, check or update a revocation list, alert user, etc.) are typically performed.[…]

Bookmarks for 6 mag 2014 through 15 mag 2014

These are my links for 6 mag 2014 through 15 mag 2014:

Send ePub to Kindle – What is my Send-to-Kindle email address? Your Send-to-Kindle email address is a unique email address assigned to your Kindle device or reading app when it is registered. Each Kindle device or reading app has its own email address. These email addresses will always end with “@kindle.com”, and supported files sent to them will automatically appear in your Kindle library.
redsocks – transparent socks redirector – This tool allows you to redirect any TCP connection to SOCKS or HTTPS proxy using your firewall, so redirection is system-wide. Why is that useful? I can suggest following reasons: you use tor and don't want any TCP connection to leak you use DVB ISP and this ISP provides internet connectivity with some special daemon that may be also called "Internet accelerator" and this accelerator acts as proxy. Globax is example of such an accelerator Linux/iptables, OpenBSD/pf and FreeBSD/ipfw are supported. Linux/iptables is well-tested, other implementations may have bugs, your bugreports are welcome.
Unbound – Unbound is a validating, recursive, and caching DNS resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular components, so that also DNSSEC (secure DNS) validation and stub-resolvers (that do not run as a server, but are linked into an application) are easily possible. The source code is under a BSD License.

Bookmarks for 30 apr 2014 through 6 mag 2014

These are my links for 30 apr 2014 through 6 mag 2014:

Ralentir le débit de postfix pour wanadoo/orange – Le blog de Michauko – Si vous avez un serveur d’envoi de mails (je ne parle pas d’être un spammeur) et beaucoup d’abonnés chez Wanadoo et Orange, vous risquez fort le rejet temporaire de votre serveur si le débit d’envoi est trop fort. C’est ce qui m’est arrivé et hop, 5000 mails entassés dans la file de postfix.
smtp-in.orange.fr refused to talk to me: postfix solution | floriancrouzat.net – Orange sadly limits inbound connexion to it’s MX to 1 connexion per IP, which is a total pain in the ass when you try to deliver newsletter, or manage a MTA. Here is a sample log from their MX: Jul 4 10:42:42 smtp.example.com postfix/smtp[32347]: 0123456789: host smtp-in.orange.fr[193.252.22.65] refused to talk to me: 421 mwinf5c34 ME Trop de connexions, veuillez verifier votre configuration. Too many connections, slow down. OFR004_104 [104] However, since they won’t change anything, we have to take mesures, here’s what you can do if you run postfix: you have to set a per-destination concurrency limit.
Aral Balkan: Historical Archiveâ€Š—â€ŠHow to revert (roll back) to a previous revision with Subversion – Here, then, is a very simple, plain English explanation of how to revert to a previous version of your application in Subversion, to help anyone who may be starting out with it and is lost.
Tmux: A Simple Start – In all likelihood, you’ve probably already heard of tmux. However, you may not be using it everyday. If tmux is on your “Someday” list because you think it is too complicated (I mean, c’mon, the word “multiplexer” is just plain scary), then I am here to show you just how easy it is to put tmux into your workflow.
Tyblog | Yet Another Vim Setup – Vim is an excellent text editor. I’ve used it for many years and like most vim users, have collected a fairly large collection of settings in my .vimrc and learned how to grok my vim usage effectively through a lot of trial and error. To that end, I’ve tried to assemble a useful overview of my experience with vim.

Bookmarks for 18 apr 2014 through 30 apr 2014

These are my links for 18 apr 2014 through 30 apr 2014:

JoshData/mailinabox · GitHub – Mail-in-a-Box helps individuals take back control of their email by defining a one-click, easy-to-deploy SMTP+everything else server: a mail server in a box.
SSH Multi-hop Connections With Netcat Mode Proxy | Click & Find Answer ! – Since OpenSSH 5.4 there is a new feature called natcat mode, which allows you to bind STDIN and STDOUT of local SSH client to a TCP port accessible through the remote SSH server. This mode is enabled by simply calling ssh -W [HOST]:[PORT] Theoretically this should be ideal for use in the ProxyCommand setting in per-host SSH configurations, which was previously often used with the nc (netcat) command. ProxyCommand allows you to configure a machine as proxy between you local machine and the target SSH server, for example if the target SSH server is hidden behind a firewall. The problem now is, that instead of working, it throws a cryptic error message in my face: Bad packet length 1397966893.Disconnecting: Packet corrupt
Tyblog | SSH Kung Fu – OpenSSH is an incredible tool. Though primarily relied upon as a secure alternative to plaintext remote tools like telnet or rsh, OpenSSH (hereafter referred to as plain old ssh) has become a swiss army knife of functionality for far more than just remote logins. I rely on ssh every day for multiple purposes and feel the need to share the love for this excellent tool. What follows is a list for some of my use cases that leverage the power of ssh.
Baseimage-docker: A minimal Ubuntu base image modified for Docker-friendliness – YOUR DOCKER IMAGE MIGHT BE BROKEN without you knowing it Learn the right way to build your Dockerfile.
NetApp – Index – The following documentation is a guide on using and configuring the NetApp servers, there is also a commandline cheat sheet. I have tried to make this section as brief as possible but still cover a broad range of information regarding the NetApp product but I point you to the Official NetApp web site which contains all the documentation you will ever need.

Bookmarks for 10 apr 2014 through 15 apr 2014

These are my links for 10 apr 2014 through 15 apr 2014:

ditaa – ditaa is a small command-line utility written in Java, that can convert diagrams drawn using ascii art ('drawings' that contain characters that resemble lines like | / – ), into proper bitmap graphics. This is best illustrated by the following example — which also illustrates the benefits of using ditaa in comparison to other methods 🙂
RegExr: Learn, Build, & Test RegEx – RegExr is an online tool to learn, build, & test Regular Expressions (RegEx / RegExp). * Results update in real-time as you type. * Roll over a match or expression for details. * Save & share expressions with others. * Explore the Library for help & examples. * Undo & Redo with Cmd-Z / Y. * Search for & rate Community patterns.
BASH with Debugger and Improved Debug Support and Error Handling – The Bash Debugger Project is a source-code debugger for bash that follows the gdb command syntax. The version 4.0 series is a complete rewrite of the previous series along the lines of my other POSIX shell debuggers and other debuggers mentioned below.
Opencall – Open Source Call Tracking Software – Call tracking is a method of monitoring inbound phone calls. It allows you to record conversations, track key statistics such as caller id, call duration, call source and streamline your sales, customer service and marketing. Opencall is the world’s first (and only) open source call tracking software. The software is available under the GPL v3 license, is written in PHP and utilises MySQL as the database platform. The original Opencall source code was written and developed by CallTracking Hong Kong to service clients in Hong Kong and other Asian countries. After 8 months of internal development the founder of CallTracking, Scott Bowler, decided to release their proprietary code to the public and change his business model to servicing companies who would make use of the open source call tracking platform. The major driver behind this choice was to open up the product to a global user base and encourage more rapid development of the platform.

Bookmarks for 1 apr 2014 from 13:31 to 14:21

These are my links for 1 apr 2014 from 13:31 to 14:21:

Configuring Apache, Nginx, and OpenSSL for Forward Secrecy | Security Labs | Qualys Community – This time, I am following up with detailed configuration examples for Apache, Nginx, and OpenSSL.
SSL Labs: Deploying Forward Secrecy | Security Labs | Qualys Community – With revelations about mass surveillance in the news everywhere, an obscure feature of SSL/TLS called Forward Secrecy has suddenly become very interesting. So what is it, and why is it so interesting now?
OpenNetAdmin – OpenNetAdmin is a system for tracking IP network attributes in a database. A web interface is provided to administer the data, and there is a fully functional CLI interface for batch management (for those of you who prefer NOT to use a GUI). There are also several backend processes for building DHCP, DNS, router configuration, etc.
What is a keytab, and how do I use one? – Knowledge Base – What is a keytab, and how do I use one?

Bookmarks for 28 mar 2014 through 29 mar 2014

These are my links for 28 mar 2014 through 29 mar 2014:

LDAP org chart | bitcube.co.uk – For centralised authentication and authorisation, LDAP is the de-facto standard. Whether in its pure form on Unix or in Active Directory guise on Windows, everyone uses it. What many people don't realise is that you can store all sorts of useful (and not so useful) information in LDAP. One field which can be useful is the "manager" attribute. One of our customers use that and so we've written a small script to graph it using the excellent Graphviz tool. It will probably need customising for specific cases, however we hope that people find it useful nonetheless. If you want to alter the output, do have a look at the record format documentation.
Puppet errors explained | bitcube.co.uk – Puppet is a wonderful system automation tool, however the learning curve can be a little steep. We've collected some of the errors messages and "strange" behaviour you may come across together with explanations to help overcome these hurdles and boost adoption of this fabulous tool. If you have any useful errors and explanations, please do send them in and we'll update this article.
SCAP: Guide To The Secure Configuration of Red Hat Enterprise Linux 5 – This guide has been created to assist IT professionals, in effectively securing systems with Red Hat Enterprise Linux 5.
DNS Load Balancing and Using Multiple Load Balancers in the Cloud – […] Load balancing in general is a complicated process, but there's some secret sauce in managing DNS along with multiple load balancers in the cloud. It requires that you draw from a few different sets of networking and “cloudy” concepts. In this second article in my best practices series (my first post covered how to use credentials within RightScale for storing sensitive or frequently used values), I'll explain how to set up load balancers to build a fault-tolerant, highly available web application in the cloud. Here's what you’ll need: Multiple A records for a host name in the DNS service of your choice Multiple load balancers to protect against failure […]
gdnsd – gdnsd is an Authoritative-only DNS server which does geographic (or other sorts of) balancing, redirection, weighting, and service-state-conscious failover at the DNS layer. gdnsd is written in C using libev and pthreads with a focus on high performance, low latency service. It does not offer any form of caching or recursive service, and notably does not support DNSSEC. There's a strong focus on making the code efficient, lean, and resilient. The code has a decent regression testsuite with full branch coverage on the core packet parsing and generation code, and some scripted QA tools for e.g. valgrind validation, clang-analyzer, etc. The geographically-aware features also support the emerging EDNS Client Subnet draft for receiving more-precise network location information from intermediate shared caches.

Bookmarks for 25 mar 2014 through 28 mar 2014

These are my links for 25 mar 2014 through 28 mar 2014:

blblack/gdnsd – gdnsd is an Authoritative-only DNS server. The initial g stands for Geographic, as gdnsd offers a plugin system for geographic (or other sorts of) balancing, redirection, and service-state-conscious failover. The plugin system can also do things like weighted address/cname records. If you don't care about these features you can ignore them :).
How to Create and Apply Patches in GIT using diff and apply Command – Creating a patch in GIT is a great way to share changes that you are not yet ready to push to a public branch of a project.
Your own Dynamic DNS in 3 steps | The Nexus – This is a "niche" post: it will really only appeal to you if you have access to your own — or a friend's — name servers and want to use your own domain to track your dynamic IP addresses, such as your home router's. You will still have to buy your own domain, cheap if you go to internet.bs or namecheap.com. I hear that the latter even provide their own dynamic DNS service although I cannot tell you anything about its quality/flexibility. So, why this post? It's for you, my friends, budding entrepreneurs who wish to bootstrap your business and know that every cent counts. Maybe you feel that you could host your product's web site on a home computer. Maybe you need more control over what happens on that server. Or maybe you want to be able to log on to your development machine from anywhere in the world. Whatever your reasons, you're still here. So let's get started.
Apache – Prefork or Worker | Code Bucket – Apache is the most common and famous webserver. Everyone knows about apache and most of us also have hands on experience with apache. But few of us know that apcahe2 comes with 2 multi processing modules(MPMs): 1. Prefork 2. Worker
Ottimizzazione di Apache, dall’analisi ai parametri – […] I recenti sviluppi nel campo della virtualizzazione hanno accelerato la moltiplicazione di ambienti virtuali vps a basso costo, molto convenienti ma a volte carenti dal punto di vista delle risorse di sistema. Molto spesso questi ambienti vengono utilizzati a scopo di testing o come ambienti di produzione all'interno dei quali viene implementato l'utilizzo di un web server. Apache, come ben sappiamo ,e uno dei web server piu diffusi e nella maggioranza dei casi rappresenta la scelta di default su un grandissimo numero di installazioni […]