security – Page 2

Bookmarks for 15 mag 2015 through 17 mag 2015

These are my links for 15 mag 2015 through 17 mag 2015:

OS X Wireless Connection Problems Solved (??) — REDELIJKHEID – Ever since the upgrade to Apple OS X Mountain Lion (10.8) on my MacBook (v5.1) I encountered wireless problems every now and then.
jq – jq is a lightweight and flexible command-line JSON processor.
Wapiti : a Free and Open-Source web-application vulnerability scanner in Python for Windows, Linux, BSD, OSX – Wapiti allows you to audit the security of your web applications. It performs "black-box" scans, i.e. it does not study the source code of the application but will scans the webpages of the deployed webapp, looking for scripts and forms where it can inject data. Once it gets this list, Wapiti acts like a fuzzer, injecting payloads to see if a script is vulnerable.

Bookmarks for 30 mar 2015 through 31 mar 2015

These are my links for 30 mar 2015 through 31 mar 2015:

5 easy tips to accelerate SSL – Unhandled expression – SSL is slow. These cryptographic algorithms eat the CPU, there is too much traffic, it is too hard to deploy correctly. SSL is slow. Isn’t it? HELL NO! SSL looks slow, because you did not even try to optimize it! For that matter, I could say that HTTP is too verbose, XML web services are verbose too, and all this traffic makes the website slow. But, SSL can be optimized, as well as everything!
Cybrary – Free Online IT and Cyber Security Training, Forever! – Cybrary is a free and open source, online information technology (IT) and cyber security training environment for the world. We are dedicated to keeping the world’s IT professionals prepared for this ever changing industry and its technologies. You can learn almost anything IT and security related for free, and you can help others to do the same. Take a look at what you can learn: Systems Administration Network Administration Cyber Security Our free IT training classes include everything from industry certifications such as Certified Ethical Hacker, CISSP and CCNA to advanced niche skill sets like advanced penetration testing and cloud administration. Our training includes instructional lectures, interactive lab demonstrations, exam study guides, white papers, case studies and more. [ via https://delicious.com/farmando]
Exploit Exercises – exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering, and general cyber security issues. [ via https://delicious.com/farmando ]

Bookmarks for 24 mar 2015 through 29 mar 2015

These are my links for 24 mar 2015 through 29 mar 2015:

Candlepin – Home – Candlepin is a collection of tools which allow companies to manage software subscriptions. The subscriptions allow users to access provided content over secure connections.
Rockhopper VPN: IPsec/IKEv2-based VPN software for Linux, implemented in user space. – Rockhopper VPN is IPsec/IKEv2-based VPN software based on modern design and considerations for Linux. All components of this VPN software are implemented in user space only, including the ESP protocol stack.
Taiga.Io | Agile, Open Source, Free Project Management System – Free. Open Source. Powerful. Taiga is a project management platform for startups and agile developers & designers who want a simple, beautiful tool that makes work truly enjoyable.
Git-ftp by git-ftp – I use git-ftp for my script based projects, mostly PHP. Most of the low-cost web hosting companies do not provide SSH or git support, but only FTP. That is why I needed an easy way to deploy my git tracked projects. Instead of transfering the whole project, I thought, why not only transfer the files that changed since the last time, git can tell me those files. Even if you are playing with different branches, git-ftp knows which files are different. No ordinary FTP client can do that. [ via http://onethingwell.org/post/114496962991/git-ftp ]
IE Supported Cipher Suites · client9/sslassert Wiki · GitHub – Summary: SSL cipher suite support on Internet Explorer depends both on the version of IE and on the version of the operating system. Internet Explorer 8 is crippled if it runs on Windows XP.

Bookmarks for 20 mar 2015 through 24 mar 2015

These are my links for 20 mar 2015 through 24 mar 2015:

Submin: git/subversion web administration – Submin provides a web-based admin interface to your SVN and git repositories. Its goal is to be easy to setup and easy to use.
bonasia.info: pdftk – PDFtk è un programma molto utile se dovete manipolare file nel comune formato di Adobe Acrobat.
How To Set Up a Chef 12 Configuration Management System on Ubuntu 14.04 Servers | DigitalOcean – In this guide, we will install the actual software. We will set up a centralized Chef server which will store and serve configuration instructions and node profiling information. We will also set up a workstation where the administrator can work with the code base and alter the characteristics of the infrastructure. We will follow this up by bootstrapping a new node to bring it under the management of the Chef ecosystem.

Bookmarks for 12 mar 2015 through 18 mar 2015

These are my links for 12 mar 2015 through 18 mar 2015:

OpenSSL Essentials: Working with SSL Certificates, Private Keys and CSRs | DigitalOcean – OpenSSL is a versatile command line tool that can be used for a large variety of tasks related to Public Key Infrastructure (PKI) and HTTPS (HTTP over TLS). This cheat sheet style guide provides a quick reference to OpenSSL commands that are useful in common, everyday scenarios. This includes OpenSSL examples of generating private keys, certificate signing requests, and certificate format conversion. It does not cover all of the uses of OpenSSL.
Change password The Foreman – Erwan Gallen –
OpenDJ Directory Services Project – The open source LDAP directory services in Java – The OpenDJ community actively develops open source directory services, including a high performance, highly available, secure directory server, built-in data replication, client tools, and an LDAP SDK. OpenDJ offers extensive LDAPv3 support, as well as RESTful access to directory data over HTTP. OpenDJ DSML gateway enables applications accessing directory data through DSMLv2. All modules are 100% Java based and require at least Java 6.

Bookmarks for 11 mar 2015 through 12 mar 2015

These are my links for 11 mar 2015 through 12 mar 2015:

GoAccess – Visual Web Log Analyzer – GoAccess is an open source real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems. It provides fast and valuable HTTP statistics for system administrators that require a visual server report on the fly.
bonasia.info: apt-get – Una guida veloce ad apt-get, apt-cache, etc
FastVPSEestiOu/fastnetmon – FastNetMon – high performance DoS/DDoS and netflowk load analyzer builded on top of multiple packet capture engines (netmap, PF_RING, sFLOW, Netflow, PCAP). What we do? We can detect hosts in our own network with big amount of packets per second/bytes per second or flow per second incoming or outgoing from certain host. And we can call external script which can send notify, switch off server or blackhole this client. [ via https://delicious.com/farmando ]

Bookmarks for 9 mar 2015 from 10:39 to 15:26

These are my links for 9 mar 2015 from 10:39 to 15:26:

Oliver | An Introduction to Unix – Everybody Knows How to Use a Computer, but Not Everyone Knows How to Use the Command Line. Yet This is the Gateway to Doing Anything and Everything Sophisticated with a Computer and the Most Natural Starting Place to Learn Programming [ via https://delicious.com/bru ]
Security Tips for Apache Web Server – Debian-based Systems – Apache is one of the most widely spread Open Source web server for web hosting in Internet due to its stability, robustness and rich variety of modules and features. Due to its popularity, Apache comes with pre-build binary packages for almost all major Linux distributions and can also be installed on other Operating Systems such as Unix, Windows, Mac OSX, BSD etc. However, a basic installation of Apache on Linux systems, by default, doesn’t offer a full protection against attackers, so a few security measures must be taken in order to protect your machines, web servers and web documents against such types of malicious attacks. This article will provide you a few tips on how you can secure and protect Apache Web Server installed on Debian-based Linux distributions.
Feed43 : Convert any web page to news feed on the fly – Your favorite site doesn't provide news feeds? This free online service converts any web page to an RSS feed on the fly.

Bookmarks for 3 dic 2014 through 7 dic 2014

These are my links for 3 dic 2014 through 7 dic 2014:

View net surveillance online cameras – Welcome to Insecam project. The world biggest directory of online surveillance cameras.
getsentry/sentry – Sentry is a realtime event logging and aggregation platform. It specializes in monitoring errors and extracting all the information needed to do a proper post-mortem without any of the hassle of the standard user feedback loop.
Vim Regular Expressions 101 –

Bookmarks for 3 dic 2014 from 13:03 to 13:41

These are my links for 3 dic 2014 from 13:03 to 13:41:

git-flow cheatsheet – git-flow are a set of git extensions to provide high-level repository operations for Vincent Driessen's branching model. more This cheatsheet shows the basic usage and effect of git-flow operations
Voluntary – […] Our goal is to create open source software that promotes freedom of expression, privacy and the decentralization of power with an eye towards usability […] (Just for OSX at the moment)
A Visual Git Reference – This page gives brief, visual reference for the most common commands in git. Once you know a bit about how git works, this site may solidify your understanding.
SSH_VPN – Community Help Wiki – This page discusses using SSH to set up SSH-based point to point connections, which can then be used to create routes that create virtual private networks. Note that using SSH in this fashion is not the "best" way to create a permanent, stable VPN. Notably, SSH uses TCP, and TCP over TCP can provide abysmal performance under pathological conditions.
VPN over SSH – This how-to is intended to cover the details of how to establish a VPN (Virtual Private Network) over a SSH connection. Starting with open-ssh 4.3, you can now use a ssh connection to set up a VPN. This is technically termed "layer-3 IP-in-SSH tunnelling" and is not using ssh to port forward (ssh -L ) or create a dynamic "application level" forwarding (SOCKS) (ssh -D ). Rather a VPN is established using a SSH connection to create a virtual interface, tun0. Advantages : IMO, this technique is easier to set up then openvpn, especially if you are using a single client. Works with most Linux distributions without the need to install any additional software on the clients. The server only needs openssh-server. This protocol uses udp to transmit tunneled tcp connections resulting in a more stable connection compared with port forwarding (using ssh with the -L or -D options). Disadvantages : As of yet I do not know of a windows client which will use this protocol. If you are needing to set up a VPN with numerous clients I would use openvpn. Although there are several "how-to's" on the web, most of them assume you know something about networking and routing. This page attempts to explain some of the "missing details".

Bookmarks for 28 nov 2014 through 1 dic 2014

These are my links for 28 nov 2014 through 1 dic 2014:

SIAMO GEEK – Sperimentatori, entusiasti della tecnologia | Rigenerare le chiavi ssh – Quanto è vecchia la vostra chiave ssh? Rigenerare le chiavi ssh usate per collegarsi ai server è una rottura di scatole, ma potrebbe essere una rottura di molte unità di grandezza inferiore rispetto allo scoprire che una chiave ssh viene usata da mesi a nostra insaputa. Quanto sono corte/lunghe le chiavi ssh registrate nei file authorized-keys dei vostri server? Per fortuna a questa ultima domanda c’è una risposta veloce sotto forma di un pratico script shell.
Downloading Java RPM from wget | Giuseppe Paternò – This is a very basic post, but I consider it for myself rather for public consumption. I needed to download the Java RPM from the Oracle website from command line, as I’m connected to my systems from a low bandwidth site. I needed to find the cookies that Oracle website uses for “accepting” Oracle license to use properly wget from command line.
urlwatch – a tool for monitoring webpages for updates (thp.io) – This script is intended to help you watch URLs and get notified (via email or in your terminal) of any changes. The change notification will include the URL that has changed and a unified diff of what has changed. The script supports the use of a filtering hook function to strip trivially-varying elements of a webpage.
Gravit – unlock your design potential. – Meet Gravit – the cutting-edge design app that will take your creativity to new heights. Gravit offers the creative possibilities of a full-scale design suite – but in a snug app-sized package. Powerful yet easy-to-handle, Gravit has been custom designed from the ground up with an emphasis on versatility, fluidity and elegance – complex design tasks are made simple through its robust suite of tools and highly responsive smart work environment. Express yourself in a new way with Gravit – the new must-have tool for today’s pioneering design professionals! [ via http://www.lffl.org/2014/11/gravit-il-nuovo-software-di-disegno-vettoriale-open-per-linux-windows-e-mac.html ]