Hello,
Today I gave a lecture for FOSsiL ( Free/Open Source software in Libya) group, the presentation about ” Is Linux by Default, Secure your webserver ( Apache ). we just get in hot topics ACL, MAC, Kerenl Patch , Linux Basic permisson , suPHP, mod_security and more about Apache security assumption. the presentation available for download here .
May Allah’s peace, mercy, and blessings be with you all. May Allah let you have a happy Eid al Adha. May he allow you to live many Eids with your family, friends and other loved ones in health and happiness. May He give you Eids in this world and in the hereafter.
Finally Linux day in Libya !!!, Linux day in Libya-Tripoli in 24 Jan 2009 will be held at the ALiemad tower, Ubuntu will send CD’s and sitcker for this day ” Thanks Ubuntu- Jono Bacon ” for his help .
for more info about the day visit F/OSsiL website http://fossil.ly
Two days ago F/OSsiL website goes online, I want to thank all colleagues in Libyan Spider Network for their generous help, FOSsiL will be the official board for this group and all activity will realease on it, FOSsiL preparing for Linux Day in Libya. for more info go to FOSSIL.LY
| 1 Comment »There are times when you want to connect to the Internet through unknown and/or insecure networks such as WiFi hotspot. If you aren’t careful, you might make it all too easy for someone to sniff your connection using Ettercap.
One of the best ways to secure your connection is to use a VPN, but that isn’t always practical. So here’s a way to securely connect to the net using only an SSH client and a remote box that you control/trust.
Requirements:
Just follow these steps…
1. Create a new PuTTY session
Run PuTTY and create a new session in PuTTY to connect to the remote host that is running OpenSSH. Fill in the hostname, the port (usually 22), make sure SSH is checked, give it a session name and hit Save:
2. Configure a secure tunnel
Click on “Tunnels” on the left and set up dynamic fowarding for a local port (e.g. 7070). Under “Add new forwarded port” type in 7070 for the source port, leave the destination blank, and check Auto and Dynamic. Then it the Add button. If you did it correctly, you’ll see D7070 listed in the Forwarded Ports box:
That’s it for tunnels, as there is no need to create more than one. Remember to save your session profile in PuTTY so you don’t have to set up the tunnel next time.
3. Connect to the remote SSH box
Double click on the connection profile and type in your username and password when prompted.
4. Configure Firefox
Go to Tools, Options, General, and then click on Connection Settings…
Check Manual Proxy Configuration, leave most of the fields blank, but fill in 127.0.0.1 for the SOCKS v5 host with a port of 7070 (or whatever you used in Step 2):
5. Configure Gaim
Fire up Gaim and hit the Preferences button:
Then select Network on the left and set up the Proxy Server. The Proxy Type should be SOCKS 5. The host is 127.0.0.1 and the port is 7070 (or whatever you chose in Step 2).
There’s no need for a user or password. Then hit close.
6. Enjoy
That’s it. From now on, as long as you first log into the remote ssh host with PuTTY, your Firefox and IM traffic will be routed over a secure tunnel to the remote host and then out to the Net. Good stuff.
* Yes, PuTTY is available for Linux. It’s even in Portage!
Update (Email): Actually, the setup for Thunderbird to securely proxy your email traffic is pretty much the same as it is for Firefox.
And then type in 127.0.0.1 and your port number:
That’s it.
Malware (for “malicious software”) is any program or file that is harmful to a computer user. Thus, malware includes computer viruses, worms, Trojan horses, and also spyware, programming that gathers information about a computer user without permission.
Ignoring the threat of malware is one of the most reckless things you can do in today’s increasingly hostile computing environment. Malware is malicious code planted on your computer, and it can give the attacker a truly alarming degree of control over your system, network, and data - without your knowledge
Now, you can get complete protection from such malware by using/configuring the Malware Block List with squid so that you, your network and your users are protected.
Visit : http://www.malware.com.br for more information of the Malware Block List
To use the Malware Block List on a Squid proxy to block user access to URLs that contain Malware you need to perform the following simple steps:
* Download the block list:
wget -O - http://malware.hiperlinks.com.br/cgi/submit?action=list_squid > malware_block_list.txt
* Create an ACL in the main configuration file (squid.conf) pointing to a file which will have the list URLs:
acl malware_block_list url_regex -i "/etc/squid/malware_block_list.txt"
* Enable the ACL created previously:
http_access deny malware_block_list
deny_info http://malware.hiperlinks.com.br/denied.shtml malware_block_list
* Force Squid reconfiguration:
squid -k reconfigure
To have an up-to-date block list, create a cron job to run every 4 hours, pointing to a script like this:
#!/bin/sh
wget -O - http://malware.hiperlinks.com.br/cgi/submit?action=list_squid > /etc/squid /malware_block_list.txt
squid -k reconfigure
* Testing time: After reloading the squid, try to visit the following site (”www.uploadhut.com”), you should see something like ..
Sometimes, if an Ubuntu installation goes wrong, or a Windows bootloader overwrites MBR and doesn’t recognise the Linux installation, we have to restore our GRUB bootloader
we boot the Live CD, we choose the first option and in a few minutes we have arrived at the Live CD Desktop.
So, we go : Applications –> Accessories –> Terminal
Then, we have to remember which is our Ubuntu installation partition.
In our example, it is the second one (/dev/sda2), formatted as ext3, in the first HDD of a SATA controller. We suppose that it is the second one, since, in case we have Windows that demand to be in the first partition (/dev/sda1), this one is occupied.
Now, you have to be really careful. You have to enter the right partition, instead of sda2 (unless it is the same) In the terminal :
cd /sudo -s -Hmount -t ext3 /dev/sda2 /mntmount -t proc proc /mnt/procmount -t sysfs sys /mnt/sysmount -o bind /dev /mnt/devchroot /mnt /bin/bash
And now, you are actually “running” Ubuntu within the Hard Drive but through Live CD’s terminal.
Now we restore GRUB like that:
1) Restoration to MBR
grub-install /dev/sda
2) Restoration to partition (example: /dev/sda2)
grub-install /dev/sda2
In the first case (that is the most usual) you have certainly installed GRUB on MBR after you receive, in the terminal, the message that there are no errors.
After you reboot, you have your favorite bootloader restored.
Hello
Some time you to enforce user to logout from your system or killing idle session, first find who is in by running
libya@linux# who -u
root tty1 oct 7 05:54 00:03 9353
nobodyMe :0 Oct 7 05:54 ? 9391
nobodyMe pts/1 Oct 7 05:55 . 9538
then kill the x-server process by issuing
libya@linux# kill 9391
Loading ...
WP Cumulus Flash tag cloud by Roy Tanck requires Flash Player 9 or better.