…..pixie dust pixie dust every where you look
…..pixie dust pixie dust every where you look
So I saw some posts on xkcd universal installer and it drove me crazy that it wasn’t done correctly…..therefore, we now have this
FYI, what if ‘two installers had packages with same name?”
This is a silly script but you would be surprised how many times a day I have to do this and no matter how many times I type the command, I always get it wrong (or more than likely I forget to escape something). Its also interesting to note that the scripts I find silly are usually the ones that are the most popular on this site….so here it is.
Basically, if you copy and paste this script into a file and run it, it will give you the exact date and time in the sed command to run to search all lines in a log file from the previous hour to now and save it to another file.
I love irc. I love tor. I love freenode via tor. But one thing I hate is that sometimes I can’t connect and I would have to open up my torrc file and change the MapAddress cname. So, I created a script today which randomly cycles through the names and changes it for me…..it uses a bash array to accomplish this.
I generally do most everything from a shell. I also generally script things when I can. However, I wanted to see changes made to arachni web interface and it had been a while since I used it. I’m not sure if this is automated via the links included in kali linux or not, I just know that when I went to fire up arachni_web it failed and this is how I fixed it.
I have been using this script for a long time (maybe 13 years) with only very slight changes. It was probably one of the first cool ideas I had for a way to track laptops issued to employees that might possibly be stolen. Granted, today, we use full disk encryption and other cool things that almost makes this script obsolete….but in the event something does get stolen, we can always track it.
The script only requires a crontab entry and a way to send mail (I use ssmtp btw).
This is somewhat related to updating amazon group resource ip’s for dynamic ip addresses except it is a different concept. How many times have you been on the road and needed to access your home computer? Granted, there are many third party services that allow you to do that, like dynamic dns but that is behind my control. I wanted something I could control. Since I use linode, they have an api and a way to script ip updates. So thats what we will do here.
I often review various vulnerability scanners. When I review them, I look at several different things:
Openx has been a pain in my ass for some time now (5 years). Even if you have the latest most up to date software release, you will still get append and prepend infections. I’m not sure if it comes from client browsers when they log in or some other reason. What I can assure you is that the file system in which openx resides is as secure as it can be while leaving openx functional (all files are owned by a different user than the web server process and are only readable by the web server. All directories, except two, are also owned by a different process than the web server and are read only….while two have to be writable by the web server process. The lamp stack is also up to date.). Anyways, even with these restrictions, clean code, clean db, limited plugins, and even checked the meta data of all image files for backdoors (I first learned about this technique in approx 2010 but here is an article from 2011 detailing this – PHP Code into JPEG Metadata: From hide to unhide ) we still get an occasional append/prepend infection.
How to stop it? This is pretty easy, I simply wrote a script that checks for append/prepend problems, logs if clean, logs and alerts if infected, and also disinfects. This only works, if the append and prepend is NOT being used in your ads.
If you get these errors…..
insserv: warning: script 'S85vpnagentd_init' missing LSB tags and overrides insserv: warning: script 'vpnagentd_init' missing LSB tags and overrides insserv: There is a loop between service rmnologin and mountnfs if started insserv: loop involving service mountnfs at depth 7 insserv: loop involving service networking at depth 6 insserv: There is a loop between service rmnologin and mountnfs if started insserv: Starting vpnagentd_init depends on rmnologin and therefore on system facility `$all' which can not be true! insserv: Starting vpnagentd_init depends on rmnologin and therefore on system facility `$all' which can not be true! insserv: Starting vpnagentd_init depends on rmnologin and therefore on system facility `$all' which can not be true! insserv: Max recursions depth 99 reached insserv: loop involving service nfs-common at depth 4 insserv: loop involving service pulseaudio at depth 13 insserv: exiting now without changing boot order!
The fix is….