Thursday, May 13, 2004

Amazon.com Posts Page for My Book

A visit to Amazon.com reveals a page for my book. Amazon.com reports cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 publication date as 14 July 2004. This is a little earlier than I expected, but everything remains on schedule. Perhaps my publisher built in a little time for problems, and thankfully we haven't had any major difficulties yet. You may notice cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 cover is similar to Secure Architectures with OpenBSD and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 second edition of Know Your Enemy. All three books are part of Addison-Wesley's new lineup of security books.

Wednesday, May 12, 2004

Working with Debian Again

I'm taking anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r look at Debian, as I may need to run some software tied to Linux firewalling software not found on FreeBSD.

I took advantage of a few good articles, including Introduction to Debian Software Package Management, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Apt How-To, Apt-Pinning for Beginners, and Using APT with more than 2 sources. Following cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir advice I created an
/etc/apt/sources.list like this:

#Stable
deb http://ftp.us.debian.org/debian stable main non-free contrib
deb http://non-us.debian.org/debian-non-US stable/non-US main contrib non-free

#Testing
deb http://ftp.us.debian.org/debian testing main non-free contrib
deb http://non-us.debian.org/debian-non-US testing/non-US main contrib non-free

#Unstable
deb http://ftp.us.debian.org/debian unstable main non-free contrib
deb http://non-us.debian.org/debian-non-US unstable/non-US main contrib non-free

#Security
deb http://security.debian.org/ stable/updates main contrib non-free

I created an /etc/apt/apt.conf file to address some memory problems I'd encountered earlier:

APT::Cache-Limit "8388608";

I cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365n ran cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se commands to update my system, a Pentium 90 running Debian 3.0r2:

apt-get update
apt-get upgrade

These updated my system to a certain state, but I cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365n ran anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r command to go farcá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r:

apt-get dist-upgrade

When I was done, I tried installing 'sudo' using apt-get:

oates:~# apt-get install sudo
Reading Package Lists... Done
Building Dependency Tree... Done
The following NEW packages will be installed:
sudo
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.
Need to get 146kB of archives.
After unpacking 365kB of additional disk space will be used.
Get:1 http://ftp.us.debian.org testing/main sudo 1.6.7p5-1 [146kB]
Fetched 146kB in 0s (158kB/s)
Selecting previously deselected package sudo.
(Reading database ... 8768 files and directories currently installed.)
Unpacking sudo (from .../sudo_1.6.7p5-1_i386.deb) ...
^TSetting up sudo (1.6.7p5-1) ...
No /etc/sudoers found... creating one for you.

This installed cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 version of sudo in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Debian testing distribution. You can see cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 appropriate package here.

Testing, also known as 'sarge,' is a middleground between stable (aka 'woody') and unstable (aka 'sid'). There are packages for each of those as well. The stable package offers sudo 1.6.6-1.1, while cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 unstable package, 1.6.7p5-1, matches that installed by testing.

I'll report more as I learn more about Debian.

Alleged Exploit for Sasser FTP Server Released

We've heard of intruders exploiting systems already infected by worms, but this is anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r way to take advantage of poorly deployed systems. A Romanian coder released sasserftpd.c recently. This code attacks cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 FTP server used by Sasser to propogate. The rogue Sasser FTP server listens on port 5554 TCP on versions a through d and port 1023 TCP on version e. The Romanian exploit attacks this FTP server.

Speaking at BSDCan.org Friday

Dan Langille just added me to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 schedule at BSDCan, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 first BSD Canada conference. I'll be presenting Network Security Monitoring with Sguil on Friday at 2 pm. I plan to discuss many short case studies on using Sguil to detect and validate security incidents, followed by a short live demo of Sguil on FreeBSD. Come by and say hello!

Usability Tips for UNIX

I want to note a couple of helpful hints I stumbled across. First, I learned something new about cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 xterm program. I run FreeBSD on many systems and start X manually with 'startx'. One system has Windowmaker for a window manager. When I launch an xterm, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new instance doesn't read .profile. This means cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 prompt stays with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 default, racá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r than changing to suit my needs. For example, my .profile has this entry to change cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 prompt:

PS1='`hostname -s`:$PWD$ '

This creates a prompt like this:

drury:/var/log$

Unfortunately, prior to today I manually sourced cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 .profile to change cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 prompt, using '. .profile' in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 user's home directory.

While perusing this Unix for Advanced Users guide, I came across this article: Is my .login or .profile being used?. It explained that I needed to start xterm with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 '-ls' option to specify it running as a login shell. In that case it will read cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 user's .profile. Here is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 menu command I use to start xterm:

xterm -ls -sb -rv -fg green -fn 9x15bold -geometry 80x24

The -sb creates a scroll bar; -rv specifies reverse video; -fg makes text green; -fn specifies cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 font; and -geometry sets cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 window size.

I also want to make note of a file that I use to set a resolution of 100x100 when X starts. My .xserverrc file looks like this:

exec /usr/X11R6/bin/X -dpi 100 -nolisten tcp

I can confirm this with xdpyinfo:

resolution: 100x100 dots per inch

A final usability issue involves batteries and FreeBSD laptops. This post to freebsd-mobile is part of a thread discussing differences between suspending and hibernating a laptop. I'm able to have my laptop suspend, thanks to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 BIOS I believe. Read cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 posts for more information if interested.

Tuesday, May 11, 2004

Blastwave: Open Source Solaris Package Management System

I was looking to upgrade a few packages installed from Sunfreeware.com when I stumbled upon Blastwave.org. Blastwave.org is a "community software" (CSW) site which emulates cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Debian apt-get system for installing Solaris packages.

Once you install cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 pkg-get package, you can install Solaris software as easily as this:

pkg-get install mutt

Pkg-get installs cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 dependencies and cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 desired package. The executable's home is /opt/csw/bin, unlike /usr/local/bin for packages installed from Sunfreeware.com.

Here is a comparison of how mutt, from Blastwave.org, and OpenSSH, from Sunfreeware, appear to pkginfo:

bash-2.03$ pkginfo | grep mutt
system CSWmutt mutt - Command line email reader with IMAP and SSL support
bash-2.03$ pkginfo | grep ssh
application SMCossh openssh

Perusing cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 mailing list archive, it seems users are enthusiastic. I hope this project continues to improve and update its package selection.

Keep in mind that software installed from Sunfreeware is ignored by Blastwave.org. For example, installing mutt resulted in a second installation of OpenSSL:

bash-2.03$ pkginfo | grep ssh
application SMCossh openssh
bash-2.03$ pkginfo | grep ssl
system CSWossl openssl - OpenSSL Secure Sockets Layer lib and utilities
application SMCossl openssl

Discussion of IPv6 Options on BSD

I'm interested in experimenting with IPv6 at some point. Since most of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 operating systems I use in my lab have IPv6 stacks, I plan to run a native IPv6 VLAN internally. I'm also interested in connectivity to ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r IPv6-enabled sites.

This OpenBSD Journal article offers a few options for people wanting to use IPv6 across cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 IPv4 Internet. I plan to try one of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se solutions and post my results here in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 future.