Can’t ping localhost in Linux | $ ping localhost ping: unknown host localhost If you ever find yourself in a situation where you cannot ping localhost, I’ll show you a few things to check! /etc/hosts Verify that the /etc/hosts file has entires for localhost which looks like the following: 127.0.0.1 localhost ::1 localhost ip6-localhost ip6-loopback /etc/nsswitch.conf The file /etc/nsswitch.conf requires specific
Linux – How to find what version of a package is installed
Linux – How to find what version of a package is installed | Below are commands to verify the exact version of a package installed in Linux. Root prompt or sudo is not required! Red Hat or CentOS: $ rpm -qa | grep package Example: $ rpm -qa | grep openssl openssl-1.0.0-20.el6_2.5.x86_64 If a package is not installed, the output will return nothing: $ rpm -qa | grep
How to Grab | Disable BIND Version Banner
How to Grab | Disable BIND Version Banner | The BIND DNS server by default will broadcast its version publicly. Security-minded admins may want to disable broadcasting of the BIND banner. I’ll show you how! Grab BIND banner It is possible to use dig, host, nslookup or whatever your favorite DNS tool may be to query the BIND banner. I like the host command
Debian Sources List Generator
Debian Sources List Generator | Here is a cool site that helps generate a sources.list file for Debian. Check it out: http://debgen.simplylinux.ch Cool!
Export Event Viewer Logs | Windows Server 2008 R2
Export Event Viewer Logs | Windows Server 2008 R2 | It is possible to export Windows logs as plain text. 2008 R2 gives options for txt, csv as well as xml. I’ll show you how to export your logs! 1. Crack open the Event Viewer, and select the log you wish to view from the left. In this example I am checking out the Security
Linux Security Weekly | 002
Linux Security Weekly | 002 | Hello and welcome to Linux Security Weekly for June 03, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Ruby on Rails SQL Injection vuln – CVE-2012-2661 http://seclists.org/oss-sec/2012/q2/448 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2661 http://blog.pentesterlab.com/2012/06/cve-2012-2661-exploitation-write-up.html Debian stable – not affected. Sid
MySQL my.cnf Performance Tuning
MySQL my.cnf Performance Tuning | Debian and Ubuntu include a package called mysqltuner which can analyze your MySQL database and provide some performance metrics as well as tuning advice for my.cnf. Here is how it works! Install mysqltuner: $ sudo apt-get install mysqltuner Run the app, it will prompt for your MySQL admin credentials. Looks like I need to bump
Linux Security Weekly | 001
Linux Security Weekly | 001 | Hello and welcome to Linux Security Weekly for May 27, 2012. Linux Security Weekly is the audio podcast which covers current and important security vulnerabilities in Linux and open source software for the past week. Show Notes: Skype http://blogs.skype.com/garage/2012/05/skype_22_for_linux_hotfix.html http://www.skype.com/intl/en-us/get-skype/on-your-computer/linux Wireshark http://www.wireshark.org/news/20120522.html Google Chrome http://googlechromereleases.blogspot.co.uk/2012/05/stable-channel-update_23.html Debian http://www.debian.org/News/2012/20120512 sudo CVE-2012-2337 http://www.sudo.ws/sudo/alerts/netmask.html http://www.debian.org/security/2012/dsa-2478 http://www.ubuntu.com/usn/usn-1442-1/ https://bugzilla.redhat.com/show_bug.cgi?id=820677 openssl
Transmission Blocklist URL
Transmission Blocklist URL | The bittorrent client Transmission has the ability to subscribe to a P2P blocklist. There are many blocklist URLs out there. I’ll show you one that works well. The following blocklist URL is an excellent choice: Site: http://www.iblocklist.com/list.php?list=bt_level1 Example Update URL: http://list.iblocklist.com/?list=bt_level1&fileformat=p2p&archiveformat=gz In Transmission, paste this Update URL into the Preferences under Privacy. Click Update and
Firewall Security Testing
Firewall Security Testing | Check out this article on Firewall Security Testing: If this topic is relevant to your interests, you may want to check out related training options: Assessing & Securing the Perimeter “Mastery of multiple security techniques are required to defend your network from remote attacks. InfoSec Institute’s Assessing and Securing the Perimeter takes you there.” Complete