geekism and nerdism

Bookmarks for 9 lug 2013 through 11 lug 2013

These are my links for 9 lug 2013 through 11 lug 2013:

  • AppArmor – Ubuntu Wiki – AppArmor is a Mandatory Access Control (MAC) system which is a kernel (LSM) enhancement to confine programs to a limited set of resources. AppArmor's security model is to bind access control attributes to programs rather than to users. AppArmor confinement is provided via profiles loaded into the kernel, typically on boot. AppArmor profiles can be in one of two modes: enforcement and complain. Profiles loaded in enforcement mode will result in enforcement of the policy defined in the profile as well as reporting policy violation attempts (either via syslog or auditd). Profiles in complain mode will not enforce policy but instead report policy violation attempts.
  • AppArmor – Documentation
  • SmoothSec – Smooth-Sec is a fully-ready IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on Debian 7 (wheezy), available for 32 and 64 bit architecture. The distribution includes the latest version of Snorby, Snort, Suricata, PulledPork and Pigsty. An easy setup process allows to deploy a complete IDS/IPS System within minutes, even for security beginners with minimal Linux experience. [ via https://delicious.com/farmando ]
  • Ninite – Install or Update Multiple Apps at Once – Install and Update All Your Programs at Once

Bookmarks for 5 lug 2013 from 10:30 to 10:51

These are my links for 5 lug 2013 from 10:30 to 10:51:

  • Learn X in Y Minutes: Scenic Programming Language Tours – Imparare un linguaggio di programmazione in pochi minuti analizzando pezzetti di codice [ via http://pollycoke.org/aemme/socialbox/76340 ]
  • kaniini/tpe-lkm · GitHub – Trusted Path Execution is a security feature that denies users from executing programs that are not owned by root, or are writable. This closes the door on a whole category of exploits where a malicious user tries to execute his or her own code to attack the system. Since this module doesn't use any kind of ACLs, it works out of the box with no configuration. It isn't complicated to test or deploy to current production systems. Just install it and you're done! [ via http://braindead.tumblr.com/post/54604427204 ]
  • Rizzoma is a zoomable and free collaboration service. – Realtime collaboration service for group work. Any-place foldable comments, representing documents as a mindmap, flexible and clear structure.

Bookmarks for 27 giu 2013 through 3 lug 2013

These are my links for 27 giu 2013 through 3 lug 2013:

  • Miniflux – Minimalist and Open Source News Reader – Miniflux is a minimalist and open source news reader. Features: Optimized for readability Very easy to use Minimalist design Fast Efficient No social network support No advertising and user tracking Privacy No data locking, host anywhere Web based Mobile ready Secure Translated into several languages Super simple installation Open source and free software [ via http://tinyapps.org/blog/nix/201307020700_miniflux.html ]
  • Cozy, a personal cloud you can hack, host and delete – Cozy a personal cloud you can host, hack, and delete [ via http://onethingwell.org/post/54433660862/cozy ]
  • How to interpret the status of dpkg (–list)? | Programming in Linux – dpkg (debian package manager) is the package manager for Ubuntu (debian based distributions). dpkg can be used to install packages in Ubuntu. With dpkg, you can see the status of various packages like: the packages are currently installed the packages are removed the configuration files are present marked for removal Let’s explore the output of dpkg –list.
  • Jugnu Life :-): How to install Tomcat in Linux (Ubuntu) – To install Tomcat we need Java to be installed in the system. If you want to know how to install Java on Linux you can refer this earlier post on the same. We can install Java either using packages (apt , yum) or manually. This post explains how to do it manually. The main advantage of doing it manually is that all the tomcat files are in one location. The automated installation will spread the setup files across various locations. It places the Tomcat configuration files at various non standard places.

Bookmarks for 21 giu 2013 through 24 giu 2013

These are my links for 21 giu 2013 through 24 giu 2013:

  • Base64 Decode and Encode – Online – Have to deal with Base64 format? Then this site is made for You! Use the super simple online form below to decode or encode Your data. If You're interested about the inner workings of the Base64 format, just read the detailed description at the bottom of the page. Welcome!
  • Simple Base64 Encode & Decode on Mac OSX / Linux with OpenSSL – Drew Morris – Looking for a fast and convenient way to Base64 encode / decode a given string using your Mac or Linux machine? You can do it using the pre-installed OpenSSL package.
  • http://www.ndchost.com/wiki/mail/test-smtp-auth-telnet – Below are instructions on how to test SMTP AUTH against a mail server using Telnet and entering the commands by hand. ( base64 via openssl: http://drewsymo.com/how-to/quick-and-simple-base64-encode-on-mac-osx-terminal/ )
  • Two default routes – Linux has very advanced routing, filtering and traffic shaping options. Here is how to configure a system with two default routes.
  • Getting Started with Puppet – Hello World! | ScriptRock – As there’s a lot of interest out there in the various automation tools on offer I thought I’d do a series of blogs covering getting started on each. In particular I wanted to put them to the test regarding how simple it is to go from zero to “Hello World” *. This way I get to play the truly dumb user (not much of a stretch, I know), which is kinda fun too.

Bookmarks for 18 giu 2013 through 19 giu 2013

These are my links for 18 giu 2013 through 19 giu 2013:

  • CommuniGate Pro: Cluster Load Balancers – The DSR/DR is the preferred Load-Balancing method for larger installations. When this method is used, each Server is configured to have the VIP (Virtual IP) shared addresses as its local IP addresses. This allows each Server to receive all packets directed to the VIP addresses, and to send responses directly to the clients using the VIP as the "source" address. The servers should not respond to the arp requests for these VIP addresses. Instead the load balancer responds to these requests, and thus all incoming packets directed to the VIP addresses are delivered to the load balancer, which redirects them to Servers. When redirecting these incoming packets, the load balancer sends them directly to the Server MAC address, without changing the packet destination address, that remains the VIP address.
  • Using arp announce/arp ignore to disable ARP – LVSKB
  • Configuring DSR on the Alteon load balancers | Remsys – As per Wikipedia, load balancing is a technique to spread work between two or more computers, network links, CPUs, hard drives, or other resources, in order to get optimal resource utilization, maximize throughput, and minimize response time. Usage of multiple components with load balancing, instead of a single component, may increase reliability through redundancy. DSR is a way for outbound traffic to bypass the load balancer, sending traffic directly to the default router of that network.
  • FreeIPA – FreeIPA is a Red Hat sponsored open source project which aims to provide an easily managed Identity, Policy and Audit (IPA) suite primarily targeted towards networks of Linux and Unix computers. FreeIPA can be compared to Novell's Identity Manager or Microsoft's Active Directory in that the goals and mechanisms used are similar.

Bookmarks for 14 giu 2013 through 18 giu 2013

These are my links for 14 giu 2013 through 18 giu 2013:

  • apache2-mpm-itk – apache2-mpm-itk (just mpm-itk for short) is an MPM (Multi-Processing Module) for the Apache web server. mpm-itk allows you to run each of your vhost under a separate uid and gid—in short, the scripts and configuration files for one vhost no longer have to be readable for all the other vhosts. mpm-itk is based on the traditional prefork MPM, which means it's non-threaded; in short, this means you can run non-thread-aware code (like many PHP extensions) without problems. On the other hand, you lose out to any performance benefit you'd get with threads, of course; you'd have to decide for yourself if that's worth it or not. You will also take an additional performance hit over prefork, since there's an extra fork per request. [ via http://bastian.rieck.ru/blog/posts/2012/secure_owncloud_installation/ ]
  • iTerm2 – Mac OS Terminal Replacement – iTerm2 is a replacement for Terminal and the successor to iTerm. It works on Macs with OS 10.5 (Leopard) or newer. Its focus is on performance, internationalization, and supporting innovative features that make your life better.
  • Introducing Pysa – Reverse your servers’ configurations! | MadeiraCloud – We are excited to announce the Alpha release of our new open-source configuration reverse engineering tool: Pysa Pysa aims to help anyone who wants to replicate an existing configuration and not simply clone the entire machine. It can be use to migrate configurations from one computer to another (as physical machines to virtual clouds), backup existing configurations, or for any other migration purpose.

Bookmarks for 9 giu 2013 through 11 giu 2013

These are my links for 9 giu 2013 through 11 giu 2013:

Bookmarks for 24 mag 2013 through 29 mag 2013

These are my links for 24 mag 2013 through 29 mag 2013:

  • DNSViz | A DNS visualization tool – DNSViz is a tool for visualizing the status of a DNS zone. It was designed as a resource for understanding and troubleshooting deployment of the DNS Security Extensions (DNSSEC). It provides a visual analysis of the DNSSEC authentication chain for a domain name and its resolution path in the DNS namespace, and it lists configuration errors detected by the tool.
  • intoDNS: checks DNS and mail servers health – IntoDNS checks the health and configuration and provides DNS report and mail servers report. And provides suggestions to fix and improve them, with references to protocols’ official documentation.
  • Master & Slave PowerDNS – LinuxManage.com – In this short tutorial we will show you how to configure powerdns running as master and slave. For this tutorial purpose, master powerdns host will have ip address 192.168.56.3 and hostname ns1.example.com, slave ip: 192.168.56.4 and hostname: ns2.example.com
  • Sendmail relay configuration on AIX | Leave No Bit Unturned – This document describes how to set up a Sendmail e-mail gateway or relay which will be able to process incoming mail and route it to different mail servers based on domain information. The routing table is based on the Sendmail mailertable feature instead of the usual MX record based routing. This will come handy when there is a need to route mail internally in a different way than externally.

Bookmarks for 14 mag 2013 through 21 mag 2013

These are my links for 14 mag 2013 through 21 mag 2013:

  • Caching Nameserver using dnsmasq – dnsmasq is a lightweight, open-source DNS forwarder and DHCP server. In this article we go through how to prepare the system in order to run dnsmasq and also how to configure the latter as a caching-only DNS server. A configuration file is also provided as a drop-in replacement for the default dnsmasq.conf that ships with your system. dnsmasq is available in most Linux distributions.
  • Docker – the Linux container engine – Docker is an open-source engine which automates the deployment of applications as highly portable, self-sufficient containers which are independent of hardware, language, framework, packaging system and hosting provider.
  • 5G Blacklist 2012 : Perishable Press – The 5G Blacklist helps reduce the number of malicious URL requests that hit your website. It’s one of many ways to improve the security of your site and protect against evil exploits, bad requests, and other nefarious garbage. [ via http://www.skyflash.it/internet-reti/sicurezza/protezione-di-un-sito-web-tramite-htaccess-5g-blacklist-2013/8061/ ]