COSCUP 2008 Day1
Published by Yuan-Chung Hsiao on Aug 24th, 2008 in tags Computer, Google, Network, OpenSource, security
大概兩年沒參加OpenSource社群的活動了。今年因為某些情況只能去COSCUP 2008第一天,第二天沒去就不能拜大神啊啊啊。(只拜到肥睡睡Orz)
Continue Reading »
Tag Archive 'security'
昨天昇級完骨幹後忘記把VPN接回去。沒有意外早上就收到某人的信件說VPN不能用。
實在很想吐槽啊,以前宿網晚上或六日斷線,還不是隔天才會處理。不知道你在急什麼,還是在幫我記錄服務中斷長度,或是服務態度不好呢?…
我實在很想說我是故意測試的。不過當然不能這樣說啦XDDD(校長沒講不能用之前,應該都算好的吧:P)
記錄一下,早上還要上台北。
1.切記要幹掉匪區(*.cn)來的Search spider,最好不用一個小時來個兩三千次啦。
2.做法有.htaccess跟ipfw,星期一有空來加到Router上面直接幹掉好了。
保護你的Wordpress
Published by Yuan-Chung Hsiao on Jul 13th, 2007 in tags blog, Network, security
在這邊提到了這篇Almost Perfect htaccess File for WordPress Blogs的文章,主要利用.htaccess來做一些保護:p
1. Protects itself (security)
2. Turns the digital signature off (security)
3. Limits upload size (security)
4. Protects wp-config.php (security)
5. Gives access permission to all visitors with exceptions (security, usability)
6. Specifies custom error documents (usability)
7. Disables directory browsing (security)
8. Redirect old pages to new (optional)
9. Disables image hotlinking (bandwidth)
10. Enables PHP compression (bandwidth)
11. Sets the canonical or “standard” url for your site (seo, usability)
我自已的設定是這樣的,請參考:
# protect the htaccess file
<files .htaccess>
order allow,deny
deny from all
</files>
# protect wpconfig.php
<files wp-config.php>
order allow,deny
deny from all
</files>
# disable directory browsing
Options All -Indexes
FreeBSD-SA-07:05.libarchive
Published by Yuan-Chung Hsiao on Jul 13th, 2007 in tags Computer, FreeBSD, Network, OpenSource, security
才剛把FreeBSD 7-CURRENT搞定,又來一發SA。
記得要更新啊:)
FreeBSD-SA-07:05.libarchive
IE users at risk for 284 days in 2006
Published by Yuan-Chung Hsiao on Jan 7th, 2007 in tags Computer, security
原文在此
看完後我是笑翻了,寫365天也不錯啦XD
Cacti 0.8.6i (copy_cacti_user.php) SQL Injection Create Admin Exploit
Published by Yuan-Chung Hsiao on Jan 2nd, 2007 in tags Network, security, STU
Cacti 0.8.6i (copy_cacti_user.php) SQL Injection Create Admin Exploit
測試一下還發現真的可以用
可是拿到後你能幹麼,我家的snmp都是ro啊-_-
安全這檔事
Published by Yuan-Chung Hsiao on Dec 20th, 2006 in tags Computer, Linux, Network, security, STU
安全這檔事永遠不能輕忽。
早上某個神奇的系統告警有機器在try ssh。第一件事就是先幹掉再說,看了一下通知某系學妹處理。晚上得知原來是我以前同寢室的學弟管的機器,而且他一直強調他密碼設的很複雜,花了一點時間進去找log。又是Linux被破台XD,不過主要是某個user密碼設很簡單忘記改被黑進去,據了解某個user還強調”我等下會改”,過沒幾天機器就被破台了。
這件事告訴我們:
1.沒事還是不要開放ssh給user使用XD。
2.不要相信使用者講的屁話XD。
FreeBSD Security Event Auditing
Published by Yuan-Chung Hsiao on Nov 12th, 2006 in tags Computer, FreeBSD, Network, News, OpenSource, security, unix
從OS News看來的,FreeBSD 6.2裡面將有Security Event Auditing system,同時也把SCTP加入,好歡樂啊:p
The new Security Event Auditing system, that “permits the selective and fine-grained logging of security-relevant system events for the purposes of post-mortem analysis, intrusion detection, and run-time monitoring analysis.”
P2P設備對於NAT設備的影響
Published by Yuan-Chung Hsiao on Mar 11th, 2006 in tags Computer, Network, School, security, STU
這個主旨還真怪,在還沒找到適當的描述前,先用這個好了:P
最近測了市面上號稱可以做到頻寬控管、IPS等等功能的設備,一個是TippingPoint IPS,另一台是Cisco p-cube。測試下來會覺得p-cube比較適合我們使用,當然這不是重點,因為沒錢買。要誵討論的是另一個問題,當這些設備啟動P2P filter/bandwidth control的時候,NAT設備就會有一些異常情況。
測試架構環境大概是長這樣的。
backbone(Private IP+Real IP)->p-cube->NAT device->WAN router
從上圖可以看到大約三點先測TippingPoint IPS,四點後開始測p-cube,當打開P2P filter/bandwidth control,NAT sessions會爆增。當然晚上回來後關掉P2P filter/bandwidth control後,又正常了。實在有點不解啊。雖然說NAT device沒炸掉,但是這個數據讓我覺得怪怪的。………
補上一張後來測試的圖
update:目前又打開來測測看了…
update:暫時bypass