Bookmarks for 28 feb 2015 from 19:57 to 20:29

These are my links for 28 feb 2015 from 19:57 to 20:29:

  • MDwiki – Markdown based wiki done 100% on the client via javascript – MDwiki is a CMS/Wiki completely built in HTML5/Javascript and runs 100% on the client. No special software installation or server side processing is required. Just upload the mdwiki.html shipped with MDwiki into the same directory as your markdown files and you are good to go!
  • Step by Step Installation and Configuration of OpenLDAP as Proxy to Active Directory | haroonferoze – This guide describes how to install and configure OpenLDAP as proxy to Active Directory.
  • Integrate Active Directory and OpenLDAP | Networking content from Windows IT Pro – OpenLDAP’s proxy service can allow LDAP operations to cross the boundaries between AD and OpenLDAP deployments. To demonstrate this proxy service, we walk through the steps to make AD’s cn=Users container, which by default contains all user objects, part of an OpenLDAP directory. To produce the examples in this article, I used CentOS 4.3, OpenLDAP 2.2.13, and AD running on Windows Server 2003 R2. Later in the article, I’ll show you a limitation in the commonly deployed OpenLDAP 2.2, which you can solve by installing OpenLDAP 2.3 on CentOS 4.3.
  • Let’s Chat — Self-hosted chat for small teams – WHAT IS THIS THING? Some backstory. Way back in 2012, we didn't like any of the existing chat services out there. So we decided to write our own. Let's Chat is a persistent messaging application that runs on Node.js and MongoDB. It's designed to be easily deployable and fits well with small, intimate teams. It's free (MIT licensed) and ships with killer features such as LDAP/Kerberos authentication, a REST-like API and XMPP support. Let's Chat is a side-project of the development team at Security Compass. (A real life 10% time project!)

Bookmarks for 18 set 2014 through 19 set 2014

These are my links for 18 set 2014 through 19 set 2014:

  • httpry – httpry is a specialized packet sniffer designed for displaying and logging HTTP traffic. It is not intended to perform analysis itself, but to capture, parse, and log the traffic for later analysis. It can be run in real-time displaying the traffic as it is parsed, or as a daemon process that logs to an output file. It is written to be as lightweight and flexible as possible, so that it can be easily adaptable to different applications.
  • 3 ways to find and restore a (single) “lost” document stored in Alfresco | Alfresco & Share Blog – This week, someone of my team told me he “lost” one document when working in Alfresco. He told me he did some cut and copy actions using CIFS (windows explorer) and that he experienced some unexpected system behaviour…finally he was not able to find the document anymore in the Alfresco space…
  • How to find (and restore) a single document from your Alfresco backup ? | Alfresco & Share Blog – If you want to find/restore a copy of a single document from a previous “alf_data/contentstore” backup, you can use the following steps

Bookmarks for 28 ago 2014 from 09:32 to 11:55

These are my links for 28 ago 2014 from 09:32 to 11:55:

  • Keepalived for Linux – Keepalived is a routing software written in C. The main goal of this project is to provide simple and robust facilities for loadbalancing and high-availability to Linux system and Linux based infrastructures. Loadbalancing framework relies on well-known and widely used Linux Virtual Server (IPVS) kernel module providing Layer4 loadbalancing. Keepalived implements a set of checkers to dynamically and adaptively maintain and manage loadbalanced server pool according their health. On the other hand high-availability is achieved by VRRP protocol. VRRP is a fundamental brick for router failover. In addition, Keepalived implements a set of hooks to the VRRP finite state machine providing low-level and high-speed protocol interactions. Keepalived frameworks can be used independently or all together to provide resilient infrastructures.
  • The BIRD Internet Routing Daemon Project – BIRD is an Internet Routing Daemon designed to avoid all of these shortcomings, to support all the routing technology used in the today's Internet or planned to be used in near future and to have a clean extensible architecture allowing new routing protocols to be incorporated easily. Among other features, BIRD supports: * both IPv4 and IPv6 protocols * multiple routing tables * the Border Gateway Protocol (BGPv4) * the Routing Information Protocol (RIPv2) * the Open Shortest Path First protocol (OSPFv2, OSPFv3) * the Router Advertisements for IPv6 hosts a virtual protocol for exchange of routes between different routing tables on a single host a command-line interface allowing on-line control and inspection of status of the daemon soft reconfiguration[…]
  • How to make MaxScale High Available with Corosync/Pacemaker | MariaDB – MaxScale, an open-source database-centric router for MySQL and MariaDB makes High Availability possible by hiding the complexity of backends and masking failures. MaxScale itself however is a single application running in a Linux box between the client application and the databases – so how do we make MaxScale High Available? This blog post shows how to quickly setup a Pacemaker/Corosync environment and configure MaxScale as a managed cluster resource.

Bookmarks for 26 ago 2014 from 11:20 to 11:53

These are my links for 26 ago 2014 from 11:20 to 11:53:

  • claudioc/jingo – A git based wiki engine written for node.js, with a decent design, a search capability and a good typography.
  • fastmonkeys/stellar – Stellar allows you to quickly restore database when you are e.g. writing database migrations, switching branches or messing with SQL. PostgreSQL and MySQL are supported.
  • Sandstorm Apps – This page is for people who already have a Sandstorm instance set up. Use the buttons below to install apps.
  • Sandstorm – Sandstorm's server-side sandboxing is based on the same underlying Linux kernel features as LXC and Docker. We use the system calls directly for finer-grained control.
  • apenwarr/sshuttle – Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

Bookmarks for 6 mag 2014 through 15 mag 2014

These are my links for 6 mag 2014 through 15 mag 2014:

  • Send ePub to Kindle – What is my Send-to-Kindle email address? Your Send-to-Kindle email address is a unique email address assigned to your Kindle device or reading app when it is registered. Each Kindle device or reading app has its own email address. These email addresses will always end with “@kindle.com”, and supported files sent to them will automatically appear in your Kindle library.
  • redsocks – transparent socks redirector – This tool allows you to redirect any TCP connection to SOCKS or HTTPS proxy using your firewall, so redirection is system-wide. Why is that useful? I can suggest following reasons: you use tor and don't want any TCP connection to leak you use DVB ISP and this ISP provides internet connectivity with some special daemon that may be also called "Internet accelerator" and this accelerator acts as proxy. Globax is example of such an accelerator Linux/iptables, OpenBSD/pf and FreeBSD/ipfw are supported. Linux/iptables is well-tested, other implementations may have bugs, your bugreports are welcome.
  • Unbound – Unbound is a validating, recursive, and caching DNS resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modular components, so that also DNSSEC (secure DNS) validation and stub-resolvers (that do not run as a server, but are linked into an application) are easily possible. The source code is under a BSD License.

Bookmarks for 18 apr 2014 through 30 apr 2014

These are my links for 18 apr 2014 through 30 apr 2014:

  • JoshData/mailinabox · GitHub – Mail-in-a-Box helps individuals take back control of their email by defining a one-click, easy-to-deploy SMTP+everything else server: a mail server in a box.
  • SSH Multi-hop Connections With Netcat Mode Proxy | Click & Find Answer ! – Since OpenSSH 5.4 there is a new feature called natcat mode, which allows you to bind STDIN and STDOUT of local SSH client to a TCP port accessible through the remote SSH server. This mode is enabled by simply calling ssh -W [HOST]:[PORT] Theoretically this should be ideal for use in the ProxyCommand setting in per-host SSH configurations, which was previously often used with the nc (netcat) command. ProxyCommand allows you to configure a machine as proxy between you local machine and the target SSH server, for example if the target SSH server is hidden behind a firewall. The problem now is, that instead of working, it throws a cryptic error message in my face: Bad packet length 1397966893.Disconnecting: Packet corrupt
  • Tyblog | SSH Kung Fu – OpenSSH is an incredible tool. Though primarily relied upon as a secure alternative to plaintext remote tools like telnet or rsh, OpenSSH (hereafter referred to as plain old ssh) has become a swiss army knife of functionality for far more than just remote logins. I rely on ssh every day for multiple purposes and feel the need to share the love for this excellent tool. What follows is a list for some of my use cases that leverage the power of ssh.
  • Baseimage-docker: A minimal Ubuntu base image modified for Docker-friendliness – YOUR DOCKER IMAGE MIGHT BE BROKEN without you knowing it Learn the right way to build your Dockerfile.
  • NetApp – Index – The following documentation is a guide on using and configuring the NetApp servers, there is also a commandline cheat sheet. I have tried to make this section as brief as possible but still cover a broad range of information regarding the NetApp product but I point you to the Official NetApp web site which contains all the documentation you will ever need.

Bookmarks for 18 feb 2014 from 01:19 to 22:32

These are my links for 18 feb 2014 from 01:19 to 22:32:

  • SubGit :: Svn To Git Migration – What is SubGit SubGit is tool for a smooth, stress-free Svn to Git migration. Create writable Git mirror of a local or remote Subversion repository and use both Subversion and Git as long as you like. Version 2.0 of SubGit introduces support for a remote Subversion repositories, so that to build a Git mirror, no shell access to Subversion repository is required (see complete release notes for a new version). […] You may use SubGit for evaluation purposes without a registration as long as you like. During that evaluation period SubGit will remind you on a necessity of registration with the help of post commit and post receive messages.
  • Apache Tips & Tricks: Deny access to some folders – MDLog:/sysadmin – Applies: apache 1.3.x / apache 2.0.x Required apache module: mod_access Scope: global server configuration, virtual host, directory, .htaccess Type: security Description: How to deny access to certain folders and the files inside them. Useful: to deny access to certain folders containing private information (log files, source code, password files, etc.). The example shown here will address the question posted by Saul Howard on how to deny access to all the subversion directories (.svn).
  • Polipo — a caching web proxy – Wikipedia: Polipo is a lightweight forwarding and caching web proxy server. Polipo is HTTP 1.1-compliant, supports IPv4, IPv6, traffic filtering and privacy-enhancement. To minimize latency, Polipo both pipelines multiple resource requests and multiplexes multiple transactions onto the same TCP/IP connection.[1] Polipo is free software[2] released under the MIT License.[3] It runs on GNU/Linux, OpenWrt, Microsoft Windows, Mac OS X, and FreeBSD. Polipo can be configured to use on-disk cache and serve cached content when offline and perform various forms of content filtering[…] E può usare upstream proxy socks… per chi se ne intende 😉

Bookmarks for 16 gen 2014 from 10:51 to 11:03

These are my links for 16 gen 2014 from 10:51 to 11:03:

  • Using KVM virtualization – Kernel Virtual Machine (KVM) virtualization has largely replaced Xen as the default open source mechanism for creating and supporting virtual machines (VMs) on most Linux systems. Though the motivation for this change is primarily build and support related rather than technical, the reality is that many enterprise IT groups that are interested in virtualization will need to learn the administrative command-and-control tools that KVM uses. Similarly, IT shops with an existing investment in Xen virtualization that are moving to KVM will probably want to convert existing VMs to the formats that KVM supports whenever possible, rather than having to re-create them.
  • Create Linux and Windows images for OpenStack private clouds – This article proposes a new way to construct Linux® and Windows® images for private clouds built with the OpenStack cloud operating system. Current image-creation methods for OpenStack environments are cumbersome and time-consuming. The authors present an online, self-service method that makes image construction faster and easier for operators and end users of private clouds.
  • The Tengine Web Server – Tengine is a web server originated by Taobao, the largest e-commerce website in Asia. It is based on the Nginx HTTP server and has many advanced features. Tengine has proven to be very stable and efficient on some of the top 100 websites in the world, including taobao.com and tmall.com. Tengine has been an open source project since December 2011. It is being actively developed by the Tengine team, whose core members are from Taobao, Sogou and other Internet companies. Tengine is a community effort and everyone is encouraged to get involved.

Bookmarks for 2 ott 2013 through 22 ott 2013

These are my links for 2 ott 2013 through 22 ott 2013:

  • Digital Attack Map – Digital Attack Map is a live data visualization of DDoS attacks around the globe, built through a collaboration between Google Ideas and Arbor Networks. The tool surfaces anonymous attack traffic data to let users explore historic trends and find reports of outages happening on a given day. [ via https://delicious.com/farmando ]
  • uProxy – What is uProxy? uProxy is a browser extension that lets users share alternative more secure routes to the Internet. It's like a personalised VPN service that you set up for yourself and your friends. uProxy helps users protect each other from third parties who may try to watch, block, or redirect users’ Internet connections. [ via https://delicious.com/farmando ]
  • Clustering with JBoss mod_cluster – jboss cluster – JBoss application server tutorials – Mod cluster is an http based load balancer which greatly simplify the setup of an http cluster. It ships as a set of modules which need to be installed on the httpd server and a Service Archive Library (.sar) which needs to be deployed on JBoss AS (It is built-in in JBoss AS 6/7).   Compared with the former mod_jk, the new mod_cluster has the great advantage to accept a dynamic configuration of httpd workers. This can be done through an advertise mechanism where all httpd workers communicate lifecycle events (like startup or shutdown) thus leveraging dynamic configuration of nodes.
  • How to configure mod_cluster with JBoss ? « JBoss – Like mod_jk, mod_cluster is also a httpd based load balancer which uses a communication channel to forward requests from the httpd to one of a set of application server nodes. So the question comes Why mod_cluster ? To answer this question we will let you know few advantages of mod_cluster over mod_jk and other httpd-based load balancers.

Bookmarks for 16 apr 2013 through 19 apr 2013

These are my links for 16 apr 2013 through 19 apr 2013:

  • Sequel Pro – Sequel Pro is a fast, easy-to-use Mac database management application for working with MySQL databases.
  • Squidblacklist.org’s Blacklists For Squid Proxy. – Squidblacklist.org is the worlds leading publisher of blacklists tailored for squid proxy. The data that we use to generate the blacklists that we offer is compiled from various sources including some of the top security researchers and threat mitigation organizations. We incorporate all of the best publicly available data, as well as aggregate from our own research. Then, the data is combined, parsed for dupes & errors, formatted for squid, ultimately the lists are tested and reviewed in a production environment before being published.
  • RDO – RDO is a community of people using and deploying OpenStack on Red Hat and Red Hat-based platforms. We have documentation to help get started, forums where you can connect with other users, and community-supported packages of the most up-to-date OpenStack releases available for download.