The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

    Mastodon

  • Twitter Updates

  • My Flickr Stream

    20140508-Delphi-2007--Project-Options--Cannot-Edit-Application-Title-HelpFile-Icon-Theming20140430-Fiddler-Filter-Actions-Button-Run-Filterset-now20140424-VMware-Fusion-6.0.3.-no-reclaimable
    More Photos

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 1,862 other subscribers

Archive for the ‘*nix’ Category

« Previous Entries
Next Entries »

/etc/netconfig conflict

Posted by jpluimers on 2015/12/13

Hmm:

Detected 1 file conflict:

File /etc/netconfig
  from install of
     libtirpc3-1.0.1-1.1.x86_64 (Main Repository (OSS))
  conflicts with file from install of
     libtirpc1-0.2.5-1.1.x86_64 (openSUSE-20150508-0)

File conflicts happen when two packages attempt to install files with the same name but different contents. If you continue, conflicting files will be replaced losing the previous content.

Changes: go figure (:

revue:/etc # diff netconfig.201507191158 netconfig
13,14d12
< udp6       tpi_clts      v     inet6    udp     -       -
 udp6       tpi_clts      v     inet6    udp     -       -
> tcp6       tpi_cots_ord  v     inet6    tcp     -       -

–jeroen

Posted in *nix, Linux, openSuSE, Power User, SuSE Linux | Leave a Comment »

NameBasedSSLVHostsWithSNI – Httpd Wiki

Posted by jpluimers on 2015/12/02

For my link archive:

# Ensure that Apache listens on port 443
Listen 443
    
# Listen for virtual host requests on all IP addresses
NameVirtualHost *:443

# Go ahead and accept connections for these vhosts
# from non-SNI clients
SSLStrictSNIVHostCheck off


  # Because this virtual host is defined first, it will
  # be used as the default if the hostname is not received
  # in the SSL handshake, e.g. if the browser doesn't support
  # SNI.
  DocumentRoot /www/example1
  ServerName www.example.com

  # Other directives here




  DocumentRoot /www/example2
  ServerName www.example2.org

  # Other directives here

One more time as WordPress screws XML:


# Ensure that Apache listens on port 443
Listen 443
# Listen for virtual host requests on all IP addresses
NameVirtualHost *:443
# Go ahead and accept connections for these vhosts
# from non-SNI clients
SSLStrictSNIVHostCheck off
<VirtualHost *:443>
# Because this virtual host is defined first, it will
# be used as the default if the hostname is not received
# in the SSL handshake, e.g. if the browser doesn't support
# SNI.
DocumentRoot /www/example1
ServerName http://www.example.com
# Other directives here
</VirtualHost>
<VirtualHost *:443>
DocumentRoot /www/example2
ServerName http://www.example2.org
# Other directives here
</VirtualHost>

view raw

apache-sni-vhost.conf

hosted with ❤ by GitHub

–jeroen
Source: NameBasedSSLVHostsWithSNI – Httpd Wiki

Posted in *nix, Apache2, Power User | Leave a Comment »

Index of /materials/haxpo2015ams

Posted by jpluimers on 2015/11/27

It feels like yesterday, but haxpo2015ams was already six months ago!

Session materials index:

Index of /materials/haxpo2015ams

[ICO] Name Last modified Size Description
[PARENTDIR] Parent Directory
[ ] D1 – Frank Breedijk – Help my Security Officer is Allergic to DevOps.pdf 2015-05-28 07:19 6.7M
[ ] D1 – Lisha Sterling – Hacking Humanitarian Project for Fun and Profit.pdf 2015-05-27 18:27 6.1M
[ ] D1 – Marc Newlin – ReDECTed.pdf 2015-05-27 16:56 1.7M
[ ] D1 – P. Mason, K. Flemming A. Gill – All Your Hostnames Are Belong to Us.pdf 2015-05-27 16:03 2.8M
[ ] D1 – Wouter van Rooij – Future Privacy.pdf 2015-05-27 16:16 715K
[ ] D2 – Bob Baxley – Privacy and Security in the Internet of Things.pdf 2015-05-28 17:00 7.1M
[ ] D2 – Edwin Sturrus – Data Security and Privacy in the Age of Cloud.pdf 2015-05-28 15:24 1.2M
[ ] D2 – Jessica Maes – Privacy in Digital Society.pdf 2015-05-28 12:18 4.1M
[ ] D2 – Jimmy Shah – BYOD is Now BYOT – Current Trends in Mobile APT.pdf 2015-05-28 15:55 3.6M
[ ] D3 – Jaya Baloo – Crypto is Dead Long Live Crypto.pdf 2015-05-29 17:17 4.4M
[ ] D3 – Jeroen van der Ham – Responsible Disclosure in The Netherlands.pdf 2015-05-29 16:37 1.7M
[ ] D3 – Oliver Matula and Christopher Scheuring – Evaluating the APT App Armor.pdf 2015-05-29 11:55 3.9M
[ ] D3 – R. Schaefer and J. Salazar – Pentesting in the Age of IPv6.pdf 2015-05-29 16:22 1.8M
[ ] D3 – Ruben van Vreeland – New Attack Vectors for Exploiting Web Platforms.pdf 2015-05-29 11:55 816K
[ ] HAXPO HIGHLIGHT – Andrew Tanenbaum – MINIX3.pdf 2015-05-28 15:19 9.2M
[ ] HAXPO HIGHLIGHT – Eleanor Saitta – Designing Security Outcomes.pdf 2015-05-29 15:15 1.4M
[ ] HAXPO HIGHLIGHT – Reuben Paul – The A-to-Z of CyberSecurity.pdf 2015-05-28 15:19 17M
[ ] HAXPO WELCOME – Richard Thieme – Too Much to Know.pdf 2015-05-27 13:37 6.3M
Apache/2.4.7 (Ubuntu) Server at haxpo.nl Port 80

–jeroen

Posted in *nix, *nix-tools, Encryption, Hashing, https, LifeHacker, OpenSSL, PKI, Power User, Public Key Cryptography, Security, Signing | Leave a Comment »

Recommended read: What I learned while securing Ubuntu – major.io

Posted by jpluimers on 2015/11/24

Applying security hardening standards and generally securing Ubuntu has been a challenge.

Tell me about it (:

–jeroen

Source: What I learned while securing Ubuntu – major.io

Posted in *nix, *nix-tools, Linux, openSuSE, Power User, SuSE Linux | Leave a Comment »

Reminder to self: verify which temporary directories really need cleanup through systemd’s tmpfile mechanism

Posted by jpluimers on 2015/11/20

Message from package aaa_base:

sysconfig settings for cleaning up temporary directories are no longer
supported. Some of the features are provided by systemd's tmpfile
mechanism instead. Please refer to 'man tmpfiles.d' for more
information.

Here are the old settings for reference:

MAX_DAYS_IN_TMP=0
MAX_DAYS_IN_LONG_TMP=0
OWNER_TO_KEEP_IN_TMP=root

–jeroen

Posted in *nix, Linux, openSuSE, Power User, SuSE Linux | Leave a Comment »

StartSSL indeed offers free Class1 certificates for any subdomain

Posted by jpluimers on 2015/11/20

Thanks Craine for answering:

StartSSL does in fact offer free SSL certs for subdomains, though they are Class 1 certificates.

It works: just start the process for the domain, then when you get to the step for entering a subdomain, enter any one (of course www works, but you can do the process multiple times so register certificates for multiple subdomains).

–jeroen

via: tls – Free second-level domain SSL certificate – Information Security Stack Exchange

Posted in *nix, *nix-tools, Apache2, https, Power User, Security | Leave a Comment »

The Power of Open Source… Microsoft .NET and OpenShift: .Net on Linux

Posted by jpluimers on 2015/11/11

Really exiting times ahead: Microsoft .Net on Linux.

It’s not fully ready yet, but to get an idea to learn more about running OpenShift Enterprise 3 and a .NET application based on a Red Hat Enterprise Linux container, here are a few links to get started:

I wish that the demo repository at https://github.com/munchee13/snoopalicious.git and the rhosepaas.com domain were accessible (:

There are other alternatives too, but OpenShift (RedHat) and Microsoft working together is really exiting news to me.

If you’re on other distros, here are some more links:

And of course there has been Mono for a while, which is a different implementation of .NET:

Hopefully this will have search results soon: dnvm opensuse tumbleweed.

–jeroen

Posted in *nix, .NET, Development, Linux, OpenShift, openSuSE, Power User, RedHat, Software Development, SuSE Linux, Tumbleweed | Leave a Comment »

7 Linux Grep OR, Grep AND, Grep NOT Operator Examples

Posted by jpluimers on 2015/10/31

Question: Can you explain how to use OR, AND and NOT operators in Unix grep command with some examples?

Source: 7 Linux Grep OR, Grep AND, Grep NOT Operator Examples

Posted in *nix, *nix-tools, Power User, RegEx | Leave a Comment »

NOC Zone and NOC Apps – A Service and Free Mobile App for Website Monitoring

Posted by jpluimers on 2015/10/16

Interesting: this works through an on-line service that monitors up to 2 servers for free (including protocols like HTTP, SMTP and PING).

You can get reports at either through:

I’m using this to monitor my boxes at home.

A demo video is below.

–jeroen

Read the rest of this entry »

Posted in *nix, Communications Development, Development, HTTP, Internet protocol suite, Power User, SMTP, TCP | Leave a Comment »

Can a Raspberry Pi do NAT port forwarding to a non LAN address? If so, what…

Posted by jpluimers on 2015/09/19

Can a Raspberry Pi do NAT port forwarding to a non LAN address? If so, what distribution would be the easiest one?

Johannes Self added some nice comments for generic Linux distributions in the G+ thread, but just in case my blog readers have even more concrete answers…

–jeroen

Posted in *nix, Development, Hardware Development, Internet protocol suite, Power User, Raspberry Pi, TCP | Leave a Comment »

« Previous Entries
Next Entries »