audit – jtheo

Bookmarks for 24 Mar 2016 through 25 Mar 2016

These are my links for 24 Mar 2016 through 25 Mar 2016:

Coderwall | Dump all variables – For debugging purposes it can be useful to not just dump hostvars but also all other variables and group information. You can do this using a jinja template which you could include in a debug task
Using Ansible to create AWS instances | Tivix – Ansible is a great tool for enhancing productivity. With a vast array of modules to choose from, it can save you a lot of time by automating away common tasks. At Tivix we use it for single-command deployment, with the most common destination being Amazon EC2 instances created beforehand. Since Ansible is capable of managing EC2 resources, we can improve this setup by making a playbook to create an instance for us.
Home | OpenSCAP portal – The OpenSCAP ecosystem provides multiple tools to assist administrators and auditors with assessment, measurement and enforcement of security baselines. We maintain great flexibility and interoperability, reducing costs of performing security audits.
The OpenSCAP project provides a wide variety of hardening guides and configuration baselines developed by the open source community, ensuring that you can choose a security policy which best suits the needs of your organization, regardless of its size.
SCAP is U.S. standard maintained by National Institute of Standards and Technology (NIST). The OpenSCAP project is a collection of open source tools for implementing and enforcing this standard, and has been awarded the SCAP 1.2 certification by NIST in 2014.
Wazuh | Augmenting OSSEC Host IDS – Wazuh contributes to Open Source Security developing and integrating new modules to extend OSSEC capabilities and functionality.

Bookmarks for 28 nov 2014 through 1 dic 2014

These are my links for 28 nov 2014 through 1 dic 2014:

SIAMO GEEK – Sperimentatori, entusiasti della tecnologia | Rigenerare le chiavi ssh – Quanto è vecchia la vostra chiave ssh? Rigenerare le chiavi ssh usate per collegarsi ai server è una rottura di scatole, ma potrebbe essere una rottura di molte unità di grandezza inferiore rispetto allo scoprire che una chiave ssh viene usata da mesi a nostra insaputa. Quanto sono corte/lunghe le chiavi ssh registrate nei file authorized-keys dei vostri server? Per fortuna a questa ultima domanda c’è una risposta veloce sotto forma di un pratico script shell.
Downloading Java RPM from wget | Giuseppe Paternò – This is a very basic post, but I consider it for myself rather for public consumption. I needed to download the Java RPM from the Oracle website from command line, as I’m connected to my systems from a low bandwidth site. I needed to find the cookies that Oracle website uses for “accepting” Oracle license to use properly wget from command line.
urlwatch – a tool for monitoring webpages for updates (thp.io) – This script is intended to help you watch URLs and get notified (via email or in your terminal) of any changes. The change notification will include the URL that has changed and a unified diff of what has changed. The script supports the use of a filtering hook function to strip trivially-varying elements of a webpage.
Gravit – unlock your design potential. – Meet Gravit – the cutting-edge design app that will take your creativity to new heights. Gravit offers the creative possibilities of a full-scale design suite – but in a snug app-sized package. Powerful yet easy-to-handle, Gravit has been custom designed from the ground up with an emphasis on versatility, fluidity and elegance – complex design tasks are made simple through its robust suite of tools and highly responsive smart work environment. Express yourself in a new way with Gravit – the new must-have tool for today’s pioneering design professionals! [ via http://www.lffl.org/2014/11/gravit-il-nuovo-software-di-disegno-vettoriale-open-per-linux-windows-e-mac.html ]

Bookmarks for 28 ott 2014 through 29 ott 2014

These are my links for 28 ott 2014 through 29 ott 2014:

High Performance Browser Networking – Enjoy this free online version of High Performance Browser Networking. Purchase and download the DRM-free ebook on oreilly.com.
AWS Tips I Wish I’d Known Before I Started – W(e)blinks – A collection of random tips for Amazon Web Services (AWS) that I wish I'd been told a few years ago, based on what I've learned by building and deploying various applications on AWS. [ via Bru ]
rss2email 3.9 : Python Package Index – A python script that converts RSS/Atom newsfeeds to email
Lynis – Security auditing tool for Unix/Linux systems – Lynis is an open source security auditing tool. Primary goal is to help users with auditing and hardening of Unix and Linux based systems. The software is very flexible and runs on almost every Unix based system (including Mac). Even the installation of the software itself is optional!

Bookmarks for 29 lug 2014 from 19:48 to 20:16

These are my links for 29 lug 2014 from 19:48 to 20:16:

FhGFS Wiki: Tips and Recommendations for Storage Server Tuning – Here are some tips and recommendations on how to improve the performance of your storage servers. As usual, the optimal settings depend on your particular hardware and usage scenarios, so you should use these settings only as a starting point for your tuning efforts.
Linux NAS optimizations ← BAFM – […] Well, I recently had to flatten my archive NAS (well only the OS part … *wheeeh*). Since I didn’t have the chance to backup the old settings I had to do everything from scratch … And this time I decided, I wasn’t doing a script but rather the proper way. I spent a while reading through the Internetz about the various settings until I stumbled upon a Frauenhofer Wiki entry. From there I ended up writing those udev-rules and the sysctl configs…[…]
Some MySQL security tips | code.openark.org – This is a brief list of security tips for MySQL. It is by no means complete.
openarkkit – Common utilities for MySQL – Google Project Hosting – The openark kit provides common utilities to administer, diagnose and audit MySQL databases.
outbrain/orchestrator – MySQL replication topology manager/visualizer

Bookmarks for 26 giu 2014 through 27 giu 2014

These are my links for 26 giu 2014 through 27 giu 2014:

Best of VIM Tips, gVIM’s Key Features zzapper – zzapper 15 Years of Vi + 8+ years of Vim and still learning 06Jun14 : Last Update (Now in VIM Help Format :h helptags) ### These Tips are now being maintained at zzapper.co.uk/vimtips.html
DMX Homepage – Typical X servers provide multi-head support for multiple displays attached to the same machine. When Xinerama is in use, these multiple displays are presented to the user as a single unified screen. Xdmx is proxy X server that provides multi-head support for multiple displays attached to different machines (each of which is running a typical X server). When Xinerama is used with Xdmx, the multiple displays on multiple machines are presented to the user as a single unified screen. A simple application for Xdmx would be to provide multi-head support using two desktop machines, each of which has a single display device attached to it. A complex application for Xdmx would be to unify a 4 by 4 grid of 1280×1024 displays (each attached to one of 16 computers) into a unified 5120×4096 display. Xdmx was developed and run under Linux (ia32 and x86_64) and has been tested with SGI Irix.
ZenAlert, la piattaforma per il monitoraggio delle Internet of Things | @Aghenor – ZenAlert propone una metodologia di monitoraggio e comunicazione molto semplice che si basa su due segnali che gli oggetti inviano alla nostra piattaforma cloud based.
HUBOT – What is Hubot? Hubot is your company's robot. Install him in your company to dramatically improve and reduce employee efficiency. No seriously, what is Hubot? GitHub, Inc., wrote the first version of Hubot to automate our company chat room. Hubot knew how to deploy the site, automate a lot of tasks, and be a source of fun in the company. Eventually he grew to become a formidable force in GitHub. But he led a private, messy life. So we rewrote him. Today's version of Hubot is open source, written in CoffeeScript on Node.js, and easily deployed on platforms like Heroku. More importantly, Hubot is a standardized way to share scripts between everyone's robots.
How can we audit a MySQL server ? « Serge Frezefond ‘s blog – Auditing of a MySQL server activity is a request raised more and more often as compliance rules are more strict for companies. MySQL is used in more and more critical areas.

Bookmarks for 18 nov 2013 through 4 dic 2013

These are my links for 18 nov 2013 through 4 dic 2013:

Ratuus – RATUUS is an easy to use, web based system for administration of POSTFIX virtual domains and users. Sounds good, but what does it really mean? Postfix mail server is able to work with non-system users, users which are not known to the operating system. This functionality is very useful since it gives you possibility to use one mail server for multiple domains without worrying that usernames will overlap. Like this you can have address [email protected] and also [email protected] and they can all point to different mailboxes. These kind of users are usually stored in some kind of a database, with MySQL database being most commonly used. And this is where RATUUS comes into play – it provides user friendly interface for managing these virtual users and domains. With RATUUS you can easily create, modify and delete domains, users and aliases and all your actions are immediately reflected to Postfix configuration. RATUUS is using the same database layout as famous PostfixAdmin so migration
Home · opensolutions/ViMbAdmin Wiki · GitHub – ViMbAdmin (pronounced vim-be-admin and meaning Virtual Mailbox Administration) is intended as an alternative to (and a near slot in replacement) for the popular but dated Postfix Admin application. It has been developed by Open Solutions, a company based in Dublin, Ireland specialising in PHP web application development, Linux and UNIX system administration and ISP grade networking and we are releasing it under a GPL V3 license. It is written in PHP using the Zend Framework, Doctrine ORM and Smarty with JQuery on the frontend.
linux.bonasia.info – […] Non sono un maestro di arti marziali, tanto meno di GNU/Linux, questo sito è una raccolta (forse disordinata e non tanto aggiornata oramai…) dedicata ai sistemisti che ho formato e supportato affiancandoli giorno dopo giorno […]
Beleth – Security101 – Blackhat Techniques – Hacking Tutorials – Vulnerability Research – Security Tools – Beleth is a multi-threaded asynchronous SSH password auditing tool written in C. There are plenty of other password cracking programs out there that can do the job, but I wanted something small, fast, and custom as a proof of concept. After preliminary tests, Beleth was able to outperform both THC-Hydra and Ncrack. Beleth also allows you to run a remote command after successfully cracking a password. [ via https://delicious.com/farmando ]

Bookmarks for 11 gen 2011 through 12 gen 2011

These are my links for 11 gen 2011 through 12 gen 2011:

500 Internal Server Error – 500 Internal Server Error
DISABLING BASH_HISTORY AND/OR LOGGING ALL USER’S CMDS – ancora su audit bash:<br />
Once you have logged out of your shell by default bash will store the last 500 previous cmds (commands), and/or 500 lines, you executed to your .bash_history file for easy recall on future sessions (Ctrl+R or ! or !!). Even passwords that were entered as plain text, such as: mysqladmin -u root password 'new-password'I've listed a number of different methods to disable it, limit it, or stop users from altering their own .bash_history for auditing needs. Depending on your own needs select a method/s.
History Time Format | Crisis – Un bel post di Giorgio in inglese su audit dell'history bash (inserire a fianco di ogni comando nella history, data e ora di esecuzione)