Thursday, March 24, 2011

good ipv6 linux info

http://www.redhat.com/mirrors/LDP/HOWTO/html_single/Linux+IPv6-HOWTO/

Sunday, March 20, 2011

chkconfig equivalence on ubuntu

red@ubuntu:~$ update-rc.d
usage: update-rc.d [-n] [-f] <basename> remove
       update-rc.d [-n] <basename> defaults [NN | SS KK]
       update-rc.d [-n] <basename> start|stop NN runlvl [runlvl] [...] .
       update-rc.d [-n] <basename> disable|enable [S|2|3|4|5]
        -n: not really
        -f: force

The disable|enable API is not stable and might change in the future.

Tuesday, March 08, 2011

Hide User Accounts in windows Vista and Windows 7

Hide User Accounts in windows Vista and Windows 7
at Run type regedit
Once in regedit go to HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Winlogon

In the left panel, right click on Winlogon and click New and click Key.

Type SpecialAccounts and press Enter

In the left panel, right click on SpecialAccounts and click New and click Key.

Type UserList and press Enter.

In right panel of UserList, right click on a empty area and click New then click DWORD (32bit) Value.

Type in the name of the user account that you want to hide and press Enter.eg: Everyday Account.

 In the right panel, right click on the user account name and click Modify.

 To hide the user account – Type 0 and click OK. (number zero not the letter)
Whenever you want to use the account just unhide the it by typing 1 instead of zero.

Saturday, March 05, 2011

Desktop Capture to Video file tool for Ubuntu (xvidcap)

I installed xvidcap like so: System -> Administration -> Synaptic Package Man...

remote DoS in sftp via crafted glob expressions (CVE-2010-4755) :: Thanks Vincent Danen!!!









We were made aware of a MITRE CVE assignment on OpenSSH for a remote DoS
in sftp, described as:

The (1) remote_glob function in sftp-glob.c and the (2) process_put
function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3
and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote
authenticated users to cause a denial of service (CPU and memory
consumption) via crafted glob expressions that do not match any
pathnames, as demonstrated by glob expressions in SSH_FXP_STAT
requests to an sftp daemon, a different vulnerability than
CVE-2010-2632.


This looks to have been corrected in NetBSD, but I don't know how
portable their fix is.  Here are some references:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4755
http://securityreason.com/achievement_securityalert/89
http://cxib.net/stuff/glob-0day.c
http://securityreason.com/exploitalert/9223
http://cvsweb.netbsd.org/cgi-bin/cvsweb.cgi/src/crypto/dist/ssh/Attic/sftp-glob.c#rev1.13.12.1
http://cvsweb.netbsd.org/cgi-bin/cvsweb.cgi/src/crypto/dist/ssh/Attic/sftp.c#rev1.21.6.1
http://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2010-008.txt.asc
https://bugzilla.redhat.com/show_bug.cgi?id=681698

I did try on a Red Hat Enterprise Linux 6 system and did see that
sftp-server and sshd were consistently consuming about 20% and 25% CPU
respectively for the one crafted ls command:

sftp> ls {..,..,..}/*/{..,..,..}/*/{..,
..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*/{..,..,..}/*cx

It did not prevent other sftp/ssh logins while this was running, but I
imagine a few of these commands running in parallel would tie up quite a
bit of CPU.

I'm bringing this up because I've not seen any mention of this on the
list, so I'm not sure as to whether or not upstream is aware of this.

It certainly isn't something critical, but I would think it deserves a
fix.

Note that the only reason why I would even consider this moderately
security-relevant is that you can restrict access to a system to
sftp-only using forced commands; if this was not possible and the user
had ssh/shell access guaranteed, then they could "DoS" the system just
as easily a hundred other ways.

Thanks.

--
Vincent Danen / Red Hat Security Response Team

Friday, March 04, 2011

Multi line matching in Perl ...

From this web page: http://perldoc.perl.org/perlfaq6.html#How-can-I-pull-out-lines-between-two-patterns-that-are-themselves-on-different-lines?

Here's what I did ...
#!/bin/sh

for i in `perl -ne 'print if /<blocks>/ .. /<\/blocks>/' our_config.xml | sed -e "s/<blocks>//g" | sed -e "s/<\/blocks>//g"`
do
        IPADDRS="$IPADDRS $i"
done
IPADDRS=`echo $IPADDRS | sort -u`
for i in $IPADDRS
do
        echo "`host $i | awk '{print $5}'` $i"
done

How do I use SOAP::Lite to generate Perl Module ?

You need your wsdl file (Mine has a .xml extension but it is still a wsdl file) then you use "/usr/perl/bin/stubmaker.pl" like so ...
red.cricket@bugs:~/akamai/monitorTrafficManagement$ stubmaker.pl "file://`pwd`/PublishTrafficManagement.xml"
Accessing...
Writing...
./PublishTrafficManagement.pm done

Thursday, March 03, 2011

Python Tk - please install the python-tk package

I got error message: please install the python-tk package
I googled the error message and found this:

http://ubuntuforums.org/showthread.php?t=655307

The instruction there gave me a hint of what to do.
I opened System -> Administration -> Synaptic Package Manager -> Settings
then I found   Python Programming language in the window there ... and highlighted "Python Programming language" and clicked on python-tk and finally got the tool to install it.