security – Page 8

Bookmarks for 10 apr 2012 through 13 apr 2012

These are my links for 10 apr 2012 through 13 apr 2012:

php:zerobin [sebsauvage] – ZeroBin is a minimalist, opensource online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES. You can test it online.
logstash – open source log management – logstash is a tool for managing events and logs. You can use it to collect logs, parse them, and store them for later use (like, for searching). Speaking of searching, logstash comes with a web interface for searching and drilling into all of your logs.
It is fully free and fully open source. The license is Apache 2.0, meaning you are pretty much free to use it however you want in whatever way.
Exploit Exercises – exploit-exercises.com provides a variety of virtual machines, documentation and challenges that can be used to learn about a variety of computer security issues such as privilege escalation, vulnerability analysis, exploit development, debugging, reverse engineering.
[ via http://www.afhome.org ]

Bookmarks for 27 feb 2012 through 5 mar 2012

These are my links for 27 feb 2012 through 5 mar 2012:

Hardening of a Linux System – Sicurezza informatica in ambiente Linux – Sicurezza informatica in ambiente Linux
Sviluppare, versionare e rilasciare in automatico: una soluzione basata su Subversion, Apache e SSH – Mia mamma usa Linux! – In ambiente enterprise vi è sempre più sovente l’esigenza di automatizzare qualsiasi processo sistemistico; uno dei processi che toglie tempo al lavoro di amministrazione delle macchine è quello dei rilasci (soprattutto in ambiente di test).
In questo articolo verrà spiegato come poter automatizzare rilasci di siti attraverso SubVersion, Apache e SSH.

Il nostro obiettivo e’ quello di rendere il più possibile automatica tutta l’operazione di rilascio in ambiente di test di alcuni siti statici e di permettere estrema flessibilita’ agli sviluppatori di tali siti, in maniera tale da renderli autonomi per modifiche, aggiornamenti ed eventuali roll-back. Gioca un ruolo molto importante il fatto che, sfruttando SubVersion (e quindi un sistema di versioning), e’ possibile per lo sviluppatore riportare il sito ad una revision specifica in ogni momento.
http://www.corporesano.org/doc-site/grepawksed.html – grep – awk – sed
(quelque exemples en francais)

Bookmarks for 13 feb 2012 through 15 feb 2012

These are my links for 13 feb 2012 through 15 feb 2012:

Configuring a site-to-site VPN between a Sonicwall and Linux Openswan – Mike A. Leonetti – I have had the fortune of having the challenge to set up a site-to-site (or BOVPN/Branch Office VPN) between a Sonicwall and Openswan. I have searched for other articles that cover this topic and found plenty of information that got me far enough to get some of it working. However, getting the whole thing working took quite some time and I found the guides to be incomplete. So for the sake of even my own remembrance, I will write a mini guide up. Of course I will link all of the guides I've used in a references section.
VPN Site-to-Site Openswan x ASA (Cisco) – House of Linux – Ladies and gentleman, today I am going to demonstrate how to integrate technologies from different platforms. It is possible to use Cisco to integrate with Windows and Linux using protocol such as LDAP. In this case the communication between Linux and ASA (Adaptive Security Appliances) is straight. We will only need to check the cryptography configuration and that it, the connection is established.
Linux Commands – SkullSecurity – Recon, scanning, exploitation and password from comman line in linux (netcat, metasploit, etc)
Windows Commands – SkullSecurity – Recon, scanning and exploitation in a windows command line

Bookmarks for 1 feb 2012 through 2 feb 2012

These are my links for 1 feb 2012 through 2 feb 2012:

WP WAF – WordPress Web Application Firewall | Gianni Amato – Ecco la preview di ciò che inizialmente è nato come IDS per monitorare gli attacchi ai miei blog e man mano cresciuto fino a prendere le sembianze di un IPS.
WP WAF è un plugin per WordPress (leggero e per nulla invasivo) il cui scopo è quello di bloccare ed eventualmente notificare alla propria casella di posta i dettagli dell’attacco alla piattaforma.

[via http://www.afhome.org/2012/02/01/un-firewall-per-wordpress/ ]
Sumo Paint | Online Image Editor – Sumo Paint – online image editor and drawing application
PHP and AJAX shell console – Ever wanted to execute commands on your server through php to mimick a shell login? Now you can. I'm calling this file (see below) shell.php and it allows you to run commands on your web server with the same permissions that your php executable has.

Bookmarks for 8 nov 2011 through 14 nov 2011

These are my links for 8 nov 2011 through 14 nov 2011:

using mod_auth_kerb and Windows 2000/2003/2008R2 as KDC – This tutorial contains my knowledge about using Apache/mod_auh_kerb and Windows 2000/2003/2008R2 as KDC.
Squid kerberos authentication and ldap authorization in Active Directory « Klaubert’s Blog – The squid web cache include a authenticator for kerberos, it is simple to use, but the documentation is not very clear about how to make it work. Below some steps use by me to make Squid 3.0 Stable1 and Squid 2.6 Stable17 authenticate against Active Directory (Windows 2003 Directory Service) and also to make it make the authorization using Ldap. This setup was not used in production environment yet, so its possible to had some problems not seen by me or scalabilities issues.
active directory – Getting Squid to authenticate with kerberos and Windows 2008/2003/7/XP – Server Fault – This is setup with Squid 3.0, has also been tested with Squid 3.1 and should work with Squid 2.7. Your Windows user must be a member of the SQUID_USERS group in Active Directory (for this case anyway).
On the Windows side, Windows XP and Windows 2007 have been tested against Windows 2008, and Windows XP against Windows 2003.
Open vSwitch – What is Open vSwitch?
Open vSwitch is a production quality, multilayer virtual switch licensed under the open source Apache 2.0 license. It is designed to enable massive network automation through programmatic extension, while still supporting standard management interfaces and protocols (e.g. NetFlow, sFlow, RSPAN, ERSPAN, CLI, LACP, 802.1ag). In addition, it is designed to support distribution across multiple physical servers similar to VMware's vNetwork distributed vswitch or Cisco's Nexus 1000V.
21 Ruby Tricks You Should Be Using In Your Own Code – 2009 Update: This post was written in early 2008 and looking back on it, there are a couple of tricks that I wouldn't recommend anymore – or to which extra warnings need to be added. I've added paragraphs like this where necessary. Enjoy! 🙂

Bookmarks for 4 nov 2011 from 16:39 to 16:41

These are my links for 4 nov 2011 from 16:39 to 16:41:

What is FreeIPA? – FreeIPA is an integrated security information management solution combining Linux (Fedora), 389 (formerly known as Fedora Directory Server), MIT Kerberos, NTP, DNS. It consists of a web interface and command-line administration tools.
In IPA v2 we added DNS and Dogtag Certificate Server, enhanced administrative framework, added support for host identities, netgroups, automount per location and more.
FreeIPA and Samba 3 Integration – techslaves.org – FreeIPA makes a pretty excellent backend for Samba 3. While all the information one needs to set this up is available online, I wasn’t able to find it all in one location so I’ve decided to try my best at filling that gap here on techslaves.org. Hopefully this short guide will aid those trying to piece together the various parts necessary to integrate FreeIPA v2 and Samba 3, at least until FreeIPA v3 where there is talk of enabling Samba integration with a simple command line argument to the “ipa-server-install” script.
Time Navigator HA Cluster Agent Configuration – techslaves.org – I’ve been wanting to post about a configuration that allows for seamless file-level backup of storage attached to an active/passive high availability cluster in an uninterrupted fashion using Atempo’s Time Navigator and I’m finally going to do it.

Bookmarks for 18 set 2011 through 20 set 2011

These are my links for 18 set 2011 through 20 set 2011:

NetWorker Information Hub – Welcome to the NetWorker Information Hub. 
 
The goal of this site is to evolve into a central repository of information regarding EMC NetWorker, a world-class and highly scaleable data protection product. Formerly known as Legato NetWorker, NetWorker was the flagship product of Legato Systems Incorporated up until EMC's acquisition of Legato in October 2003. While EMC owns a variety of backup products, including Dantz Retrospect, Avamar and Mozy, NetWorker remains the core and most trusted backup product in the EMC stables.
500 Internal Server Error – 500 Internal Server Error
Small Unix Distributions : Ben Gross, PhD – Unix distributions for embedded devices 
 
 
Embedded devices include those from Soekris Engineering, PC Engines WRAP boards or other PC/104 compliant devices.

Bookmarks for 12 set 2011 through 16 set 2011

These are my links for 12 set 2011 through 16 set 2011:

How To Harden a Linux or OpenBSD Installation – Many of these work on both Linux and OpenBSD. Some are only relevant on Linux
VMware Communities: ghettoVCB.sh – Free alternative for backing up VM’s for ESX(i) 3.5, 4.x+ & 5.x – Updated 06/28/2011 – This script performs backups of virtual machines residing on ESX(i) 3.5/4.x+/5.x servers using methodology similar to VMware's VCB tool. The script takes snapshots of live running virtual machines, backs up the master VMDK(s) and then upon completion, deletes the snapshot until the next backup. The only caveat is that it utilizes resources available to the Service Console of the ESX server or Busybox Console (Tech Support Mode) of the ESXi server running the backups as opposed to following the traditional method of offloading virtual machine backups through a VCB proxy.
Effettuare Backup di macchine virtuali su NFS con Vmware ESX/ESXi « Davide Bombarda – Spesso capita di dover efettuare backup di maccine virtuali. E come al solito senza voler spendere soldi in prodotti ulteriori. 
 
Il seguente procedimento si basa sul documentatissimo script Ghettovcb.sh

Bookmarks for 1 set 2011 through 5 set 2011

These are my links for 1 set 2011 through 5 set 2011:

Hashchecker.de – Passwörter finden! – Multi Hash Engine for the Password 
 
[via http://www.delicious.com/farmando ]
Offline Windows Password & Registry Editor –
Scripting out DHCP reservations in Windows Server 2008 with Netsh | TechRepublic – Scripting out DHCP reservations can save a lot of time for large pools of reservations. See how the Windows Server 2008 Netsh tool can help out in this regard.

Bookmarks for 20 ago 2011 from 06:00 to 17:41

These are my links for 20 ago 2011 from 06:00 to 17:41:

Percona XtraBackup for InnoDB and XtraDB Data – Percona Software – Percona XtraBackup is the world's only open-source, free MySQL hot backup software that performs non-blocking backups for InnoDB and XtraDB databases. With Percona XtraBackup, you can achieve the following benefits: 
 
Backups that complete quickly and reliably 
Uninterrupted transaction processing during backups 
Savings on disk space and network bandwidth 
Automatic backup verification 
Higher uptime due to faster restore time 
XtraBackup makes MySQL hot backups for all versions of Percona Server, MySQL, MariaDB, and Drizzle. It performs streaming, compressed, and incremental MySQL backups.
The Ethical Hacker Network – Free Armitage and Metasploit Video Training Course – Armitage is a front-end for Metasploit that allows team collaboration and exposes the advanced features of the framework. Raphael Mudge has made a six-part training series on Armitage and Metasploit for the ethicalhacker.net community. These demonstration-heavy lectures introduce the penetration testing process and walk you through each step. You'll learn how to break into hosts, carry out post-exploitation activities, develop more access from your initial foothold, and you'll do this in a team environment.
500 Internal Server Error – 500 Internal Server Error