Hendrik-Blog

Bocah 10 Tahun Bongkar Celah di iPhone dan Android

2011-08-11T23:54:00.000-07:00

Jakarta - Apa yang dilakukan anak ini memang tergolong luar biasa. Lantaran kesal bermain game yang terlalu lama, ia mengekplotasi sistem pada iOS dan Android untuk mencari 'jalan pintas' memainkan game tersebut.

Bocah dengan inisial CyFi itu tidak menyebutkan secara spesifik game apa yang ia maksud. Hal ini sengaja ia lakukan agar pembesut game berbasis cocok tanam itu segera memperbaiki celah yang telah ditemukan.

Dalam presentasinya di ajang konfrensi hacker bertajuk DefCon, di Las Vegas, Amerika Serikat, CyFi mengklaim teknik ekploitasi yang ia temukan bisa diterapkan untuk semua jenis game serupa di ponsel iPhone atau Android.

"Permainan ini membutuhkan waktu lama, jadi saya pikir mengapa saya tidak mengubah waktu saja," ujar CyFi, seperti dikutip detikINET dari cnet, Selasa (9/8/2011).

Dari ide sederhana itu, CyFi akhirnya menemukan sebuah aplikasi yang ia sebut 'A Traveler of Both Time and Space', yakni sebuah aplikasi yang bisa memanipulasi waktu pada sistem berbasis iOS dan Android.

"Dengan mengendalikan waktu Anda dapat melakukan banyak hal, seperti mengembangkan labu secara instan. Ingin bermain game? Mari kita main di hari tanpa waktu!", tambah bocah yang tidak ingin disebutkan identitas aslinya itu.

Sumber : Folder-solution.com

Ubuntu Game Pack (Kumpulan Game Dalam 5 DVD)

2011-08-11T23:51:00.000-07:00

Setelah lama tidak aktif posting akhirnya saya punya waktu sedikit buat update postingan di blog ini. Maklum lagi ada project jadi admin untuk website folder-solution.com, buat para pembaca yang pengen melihat hasil nya monggo silahkan dikunjingi.
Pada kesempatan ini saya membawa kabar gembira bagi para gamer yang pengen merasakan sensasi bermain game pada sistem operasi open source atau yang biasa kita kenal dengan nama linux.
Tersedia 5 DVD berisi kumpulan game yang bisa anda install offline hanya dengan menggunakan DVD. Di dalamnya sudah berisi kumpulan game lengkap dengan dependenciesnya. Anda hanya memerlukan Ubuntu 11.04 yang sudah terinstall di komputer anda. Berikut rincian setiap game di kelima DVD :

DVD 1 :

Urban Terror – Vavoom – Enemy Territory – Smokin’ Guns – OpenArena – Pingus – Frogatto – Streets of Rage Remake – Sonic Robo Blast 2 – Open Sonic – Neverball – THE SCND GENESIS – xmoto – scorched3d -Legends – wormux – Lugaru HD – irrlamb – Go Ollie! – BZFlag – S.C.O.U.R.G.E – AstroMenace – OpenLieroX – Bombic – Capitan Sevilla – teeworlds – ardentryst – Hedgewars – D2X-XL – TORIBASH! – Yo Frankie! – Paintown – Secret Maryo Chronicles – Hannah’s Horse – Rocks’n’Diamonds – SuperTux – I Have No Tomatoes – Armagetron – Battle Tanks – Extreme Tux Racer – Atomic tanks – Trackballs – LBreakout2 – Blob Wars: Episode II – Bricolo – Nikwi – Neverputt

DVD 2 :

Asylum – goonies – Robombs – ic – Caph – Numpty Physics – OGS Mahjong – America’s Army – v.2.5.0 – Assault Cube – World of Padman – Warsow – Red Eclipse – Alien Arena – Enemy Territory Blood Frontier – True Combat Elite – Tremulous.

DVD 3 :

Steel Storm – Revenge Of The Cats – Nexuiz – Sauerbraten – MMORPG -Savage XR – Daimonin Online – RuneScape – IConquerU – Auteria Online – Tibia Online – Regnum Online – Online Wakfu – Eternal Lands – Project Diaspora – R.P.G – SoulFu – Lips Of Suna – Warlock’s Gauntlet – Freedroid RPG – The Ur-Quan Masters – jag – OpenAlchemist – 5Ball – Vertris – Deadly Cobra – Zaz – Biniax-2 – PipeWalker -Fish Fillets

DVD 4 :

Super TuxKart – StuntRally – VDrift – Speed Dreams – Tile Racer – The Open Racing Car Simulator – NAEV – Funguloids – The Babylon Project – Oolite – OpenRA – Freeciv – Pax Britannica – TripleA – megaglest – FreeCol – Warzone2100 – UFO Alien Invasion – Spring RTS – 0 A.D – Widelands – Bos Wars – 8Kingdoms – MegaMek – The Battle for Wesnoth – Globulation 2 – netPanzer

DVD 5 :

corsix-th – OpenTTD – Zero Ballistics – Snowglobe – Flight Gear Flight Simulator – Unknown Horizons – CRRCsim – Simutrans – Lincity – GL-117 – Danger from the deep – openBVE – The Powder Toy – FreeOrion – Glest – Maxi Mini Golf – Underworld Hockey Club – Free Tennis – DreamChess – Foobillard – BillardGL – Soldier of Fortune – FizzBall (Demo) – World of Goo – DEMO – Sandbox Game Maker – Syntensity – Vegastrike – Angry Drunken Dwarves – Frozen-Bubble – JAMP – Nimuh – Too Hard For You – sm-ssc – Fork di StepMania – Performous – StepMania – Frets on Fire – Warlock’s Gauntlet

Untuk instalasi cukup masukkan DVD atau gunakan mount file iso ke harddisk. Silahkan baca sumbernya di sini dan di sini.
Anda bisa memperoleh kelima DVD ini seharga 70 ribu. Sudah termasuk 5 DVD dan ongkir seIndonesia dan bonus stiker GNU/Linux Powered atau Pastikan Sistem Operasi Anda Linux. Pembayaran bisa dilakukan di Mandiri/BNI/ATM Bersama/Manual transfer/Wesel Pos.
Rekening Mandiri
1310004309870
an I Putu Agus Eka Pratama
Bank Mandiri IT Telkom cab Bandung Martadinata
Rekening BNI 0211877652
an I Putu Agus Eka Pratama
Kantor Cabang Perguruan Tinggi Bandung (ITB)
Setelah proses transfer segera sms ke 085738336989 untuk konfirmasi beserta nama dan alamat lengkap. Jika sudah dicek dan uang sudah masuk maka barang akan segera dikirimkan via pos. resi pengiriman akan disms sehingga anda bisa mengeceknya juga di www.posindonesia.co.id
Jika tidak membeli anda juga bisa mengunduhnya di sini atau di sini.

Ubuntu Game Pack

Gambar stiker seperti berikut (seukuran kartu nama) :

pastikan sistem operasi anda linux

Sumber :
http://www.tahutek.net/2011/08/ubuntu-gamepack-1104-install-156-game.html
http://ualinux.com/en/ubuntu-gamepack
http://linux-software-news-tutorials.blogspot.com/2011/08/ubuntu-game-pack-1104-5-dvd-packed.html
http://www.kaskus.us/showthread.php?t=9947488

Aplikasi Android, Video Player, Rock Player Base

2011-06-03T04:12:00.001-07:00

Keterangan :
movie:
* MKV
* H264 High profile, 720 x 304 @ 24fps @ 405Kbps
* AAC 44.1KHz
* perfect quality
* 14 to 20 FPS
tv show:
* AVI
* DivX 5, 704 × 1.097 @ 384 Kbps @ 24 FPS
* MP3 @ 128Kbps 48KHz
* perfect quality
* 22-24 FPS
anime:
* MKV
* H264 High profile, 848 x 480 @ 24fps @ 302Kbps
* AAC 48KHz
* lots of artifacts
* no subs (ASS, Advanced Sub Station)
* 8 to 15 FPS
handbrake:
* MP4
* H264 Baseline profile, 800 × 3.120 @ 448 Kbps @ 30 FPS
* AAC, 44.1KHz @ 151 Kbps
* perfect quality
* 13 to 16 FPS
720p Artbeats HD Demo:
* MP4
* Main profile H.264, 1280 × 720 @ 30 FPS @ 5.994 Kbps
* AAC @ 66Kbps 44.1KHz
* perfect quality
* 3 to 6 FPS
Artbeats HD 1080p Demo:
* MP4
* H264 Main profile, 1920 x 1080 @ 10Mbps @ 30FPS
* AAC, 44.1KHz @ 192Kbps
* perfect quality
* 1 to 3 FPS

Link Download
SINI

Aplikasi Android, Video Player, Rock Player Base, download Aplikasi Android, Video Player, Rock Player Base, video player android, android video player, free video player untuk android, android player

Tutorial Android, Cara Menggunakan Proxy pada Android 2011

2011-06-03T04:10:00.001-07:00

Salah satu keterbatasan ponsel-ponsel Android adalah tidak adanya opsi/setting proxy server client yang memudahkan kita untuk terkoneksi ke jaringan yang dilindungi proxy. Kalaupun ada, tidak menyertakan credential atau fasilitas Log In ke proxy server tersebut sehingga bila kita terhubung dengan jaringan internet proxy, kita hanya bisa berselancar lewat browser bawaan saja. Sedangkan aplikasi yang memerlukan koneksi internet tidak akan jalan karena terhalang credential proxy tadi. Lalu makhluk apakah proxy server itu? saya tidak akan menjelaskannya di artikel ini karena pasti sudah dijelaskan oleh Tante Wikipedia atau lebih lengkap lagi oleh Om Google.

Ok, sebelum memulai men-setting proxy jaringan di hape android tersayang kita, sebaiknya persiapkan syarat-syarat utamanya, yaitu:

1. Memerlukan hape Android yang sudah di-root , cara root hape Android sangat gampang. Tinggal download aplikasi ini , install di hape android kita, trus jalankan aplikasinya, klik pada tombol “Root”, dan ikutin aja apa yang diperintahkan si aplikasi. (ingat, root ini bisa membuat garansi hilang, jadi jangan lupa un-root sebelum dianter ke service center bila garansi masih ada).

2. Download dan install aplikasi Root Explorer ini ke hape Android kita.

3. Download dan install aplikasi Transparent Proxy ini ke hape Android kita.

4. Anda harus hafal alamat server proxy dan credential (Username dan Password bila diperlukan) agar bisa terhubung ke proxy.

5. Secangkir kopi panas dan camilan kalau perlu….hehehehe

Yup, setelah semua sudah disiapkan mari kita kerjakan. Langkah-langkahnya cukup gampang kok, tinggal klik-klik jadi. Ini dia langkah-langkahnya :

1. Buka aplikasi root explorer di hape Android kita. Lalu klik pada tombol “Allow”. Ini menandakan bahwa aplikasi manager tersebut diperbolehkan untuk meng-akses jeroan ponsel kita.

Shortcut Root Explorer yang dilingkari

2. Masih di aplikasi root explorer, kita akan melihat ada tombol “Mount R/W” di bagian atas. Tekan aja tombol itu, gak akan meledak kok.

Tombol Mount R/W di Sebelah Atas

3. Trus cari dan klik pada folder “data”. Lihat banyak folder lagi khan? nah tekan pada folder “data” lagi. Masih lihat banyak folder lagi? gak apa2… cari dan klik aja folder “com.hasbox.tproxy”. Nah, tinggal sedikit khan folder-nya, tapi kali ini saya tidak menyarankan untuk memilih folder manapun karena kita akan meng-edit file-filenya (bukan foldernya). Kita akan menemukan tiga file di situ. File “proxy.sh”, “redirect.sh”, dan “redsocks”. Edit permission file-file tadi dengan menekan agak lama pada file tersebut hingga muncul pop up “Options”, pilih “Permissions”, lalu bubuhi tanda centang pada semua kotak terus “OK”.

Centang aja semua

4. Setelah meng-edit file-file tadi, tutup aplikasi root explorer dan jalankan aplikasi Transparent Proxy. Pilih “HTTP”, lalu masukkan host name dan port. Centang pada “Enable Authentication” bila jaringan membutuhkan informasi Username dan Password untuk mengaksesnya. Lalu klik pada tombol yang bertuliskan “Off” di bawah dan jangan lupa klik “Allow” lagi.

Shortcut Transparent Proxy yang dilingkari

setting proxy

5. Yup, Anda sudah bisa menjalankan aplikasi Android anda di jaringan internet atau WiFi yang diproteksi oleh proxy server.

NB: Cara ini sudah dicoba di handphone Samsung Galaxy S i9000. Kemungkinan hasil akan bervariasi untuk handphone android yang lain. Kalau tablet saya belum mencobanya..hehehe.

SUmber :

http://www.omongopo.com/2011/01/cara-setting-proxy-pada-gadget-android.html

term,,proxy android,,setting proxy tablet,,proxy for android,,setting proxy tablet android,,aplikasi android setelah root,,cara setting proxy di android,,transparent proxy android,,cara root android,,setting proxy buat android,,cara menggunakan proxy pada android,

Aplikasi Email Android, Yahoo Mail for Android 2011

2011-06-03T04:07:00.001-07:00

Mail (shortened to yahoo mail) is a free webmail service provided by Yahoo
Experience faster, smarter, richer Email for Android mobile phone
The official Mail app for Android
- Multiple Email Accounts
- Preview of the photos in your inbox
- Improved integration with Messenger
- Push your mail Notifications
- Send and receive email attachments
- Writing in rich text and emoticons
- Search Folders intelligent and powerful
Yahoo! Mail adalah sebuah penyedia surat elektronik (webmail) dari Yahoo!

Download Link :
http://www.mediafire.com/?2201ltagrl7qb21

term,,Aplikasi Email Android Yahoo Mail for Android 2011,,aplikasi mail yahoo android,,aplikasi seru untuk android,,download yahoo mail app for android,,kamus apk,,what yahoo mail version is compatible to yahoo messenger 1 4,,yahoo mail android apk,,yahoo mail for android,,yahoomail android mobile,

Source : http://aplikasiandroid.net

Rahasia : Tackling the Problem of Cyber Crime

2011-04-22T08:00:00.000-07:00

A few days ago the Australian House of Representatives' Standing Committee on Communications published its report on cyber crime and security. This document has the ambitious title "Hackers, Fraudsters and Botnets: Tackling the Problem of Cyber Crime", and is an impressive, almost 300 pages reading with statistics, examples, and of course suggestions on how to solve the cyber crime problem

The report even has a long explanatory list of abbreviations and technical terms, which is useful reading for those who are not that familiar with all corners of IT security.

As early as in the report's foreword a significant statement is made:

There has been an exponential growth in the volume of malicious software and the sophistication and adaptability of cyber crime techniques. In the face of these trends, the Committee believes the expectation that end users should or can bear the sole responsibility for their own personal online security is no longer a tenable proposition. We need to apply the same energy and commitment given to national security and the protection of critical infrastructure to the cyber crime threats that impact on society more generally.

A joint effort
Note in particular the sentence "(...) the expectation that end users should or can bear the sole responsibility for their own personal online security is no longer a tenable proposition".

The committee acknowledges the fact that governmental institutions as well as organizations in the private sector (like IT manufacturers, Internet Service Providers and web hosting companies) should all be involved in securing the Internet.

This corresponds to the view that Norman expressed in our security article in November 2008 - Fighting malware on two ends. To be able to fight cyber crime most efficiently, one cannot rely on end-user protection only. Effective protection of the Internet's nodes and infrastructure requires that several stakeholders are involved.

The report includes 34 recommendations. Some examples are:
- a national coordination point to oversee the broader strategy,
- a national cyber crime reporting centre, enabling a one-stop-shop to report cyber crime,
- better coordination and training for law enforcement agencies,
- public-private information sharing on a wider range of cyber crime types.

A controversial recommendation
One of the recommendations (No 14) immediately caused some controversy (Norman's emphasis in bold below):

That the Australian Communications and Media Authority take the lead role and work with the Internet Industry Association to immediately elaborate a detailed e-security code of practice to be registered under the Telecommunications Act 1997 (Cth).

That the code of practice include:

- an obligation that the Internet Service Provider provides basic security advice when an account is set up to assist the end user to protect themselves from hacking and malware infections;
- a mandatory obligation to inform end users when their IP address has been identified as linked to an infected machine(s);
- a clear policy on graduated access restrictions and, if necessary, disconnection until the infected machine is remediated;
- the provision of basic advice and referral for technical assistance for remediation;

Some Pros and Cons
Enforcing security does equal better security (at least in this case)
It is probably correct that if Internet users are forced to install security programs (in this case antivirus and firewall) before they are allowed to access the Internet, this will in general enhance the general security on the average end user's computer.

Most of us are law-abiding citizens and will not go to great length to try to circumvent this requirement by attempting to trick the Internet Service Provider (ISP), and thus avoid this requirement.

Nor is it likely that many who already had such software in place will remove this, and trick the ISP just because they are ideologically against the fact that the requirement has been made mandatory.

Personal freedom
Legislating every-day tasks vs. freedom of the individuals is a never-ending battle between two conflicting points of view. The consensus seems to be that "somewhere" in between the two extremes is most sensible.

The issue discussed here is a typical one where some will argue that it is up to each and every person if - and even more importantly - how he chooses to protect himself.

It may be argued however, that this is not only a question about self-protection. An infected computer represents a threat not only to the owner, but also to others that this computer is able to reach, and indeed the Internet community in general. An analogy is a person who becomes infected with a virus; he might be quarantined not only for his own protection, but to protect members of his community from infection.

Another aspect of the personal freedom issue is that for such a legislation to be effective, the ISP needs to have some kind of technology in place to check whether a computer is protected by security software or not. This may be viewed by some as tampering with personal information that is not the ISP's business.

Some may also fear that if such a requirement is mandatory, only some pre-qualified security software packages will be accepted among the plethora of security software that exists. Presumably well-known vendors' solutions might be those recommended or allowed.

Who pays?
This is not discussed in the report, and may obviously be part of the debate.

Seen from the community's point of view, the most economically sound is probably that governmental institutions enter into agreement(s) with security software vendors, as this has the potential to result in the best deals (per piece of software).

The second best from a purely economical view, is that the ISPs enter into such agreements on behalf of their customers. They are able to negotiate better agreements (one would presume) than each and every individual.

The least optimal seen from a socio-economic point of view is that each person chooses his preferred security software. On the other hand, this will give the individual more personal freedom (which is seen as advantageous by most).

Whatever is chosen as a model, it is obvious that this will be an extra cost for someone. The counter-argument is that this will be less expensive than not protecting, and thus allowing more to be victims of computer crime.

Security software needs frequent updates
These days more than ever, security software needs frequent updating in order to protect the users sufficiently. Several tens of thousands malicious programs are created each and every day, and the antivirus vendors publish new virus signature files frequently to keep their customers updated.

This introduces a special problem, as the security obtained by having an antivirus product installed rapidly declines towards zero unless the program is continuously updated.

How this updating requirement should be taken care of is a challenge with the committee's recommendation.

Several layer defense
As we mentioned in the beginning of this article, it is wise to combat cyber crime from different angles. From this perspective tightening end user security is a means to accomplish one building-stone in a several-layer defense structure.

Final words

Regardless of one's view regarding the issue of mandatory antivirus and firewalls, the Australian report is very interesting reading. It is highly recommended for those who wish to get a broader overview of the Internet's threats as perceived by a nation's point of view, and the mitigating elements that are up for discussion and evaluation.

How To Hack With An IP Address

2011-04-22T07:59:00.000-07:00

Theres plenty of papers out there that go into how to obtain an IP Address from the preferred mark of your choice. So I'm not going to go into that subject. Alright so say we got the targets IP Address finally. What do we do with this IP Address. Well first ping the IP Address to make sure that its alive. In otherwords online. Now at the bottom of this document ill include some links where you can obtain some key tools that may help on your journey through the electronic jungle.

So we need to find places to get inside of the computer so we can start trying to find a way to "hack" the box. Port Scanners are used to identify the open ports on a machine thats running on a network, whether its a router, or a desktop computer, they will all have ports. Protocols use these ports to communicate with other services and resources on the network.

1) Blues Port Scanner - This program will scan the IP address that you chose and identify open ports that are on the target box.

Example 1:
Idlescan using Zombie (192.150.13.111:80); Class: Incremental
Interesting ports on 208.225.90.120:
(The 65522 ports scanned but not shown below are in state: closed)
Port State Service
21/tcp open ftp
25/tcp open smtp
80/tcp open http
111/tcp open sunrpc
135/tcp open loc-srv
443/tcp open https 1027/tcp open IIS
1030/tcp open iad1
2306/tcp open unknown
5631/tcp open pcanywheredata
7937/tcp open unknown
7938/tcp open unknown
36890/tcp open unknown

In example 1 now we see that there are a variety of ports open on this box. Take note of all the ports that you see listed before you. Most of them will be paired up with the type of protocol that uses that port (IE. 80-HTTP 25-SMTP Etc Etc...) Simply take all that information and paste it into notepad or the editor of your choice. This is the beginning of your targets record. So now we know what ports are open. These are all theoretical points of entry where we could wiggle into the computer system. But we all know its not that easy. Alright so we dont even know what type of software or what operating system that this system is running.

2) NMAP - Port Scanner - Has unique OS fingerprinting methods so when the program sees a certain series of ports open it uses its best judgement to guess what operating system its running. Generally correct with my experiences.

So we have to figure out what type of software this box is running if we are gonna start hacking the thing right? Many of you have used TELNET for your MUDS and MOOS and weird multiplayer text dungeons and many of you havent even heard of it before period. TELNET is used to open a remote connection to an IP Address through a Port. So what that means is we are accessing their computer from across the internet, all we need is their IP Address and a port number. With that record you are starting to compile, open a TELNET connection to the IP Address and enter one of the OPEN ports that you found on the target.
So say we typed 'TELNET -o xxx.xxx.xxx.xxx 25' This command will open up a connection through port 25 to the IP xxx.xxx.xxx.xxx. Now you may see some text at the very top of the screen. You may think, well what the hell, how is that little string of text going to help me. Well get that list you are starting to write, and copy the banners into your compilation of the information youve gathered on your target. Banners/Headers are what you get when you TELNET to the open ports. Heres an example of a banner from port 25.

220 jesus.gha.chartermi.net ESMTP Sendmail 8.12.8/8.12.8; Fri, 7 Oct 2005 01:22:29 -0400

Now this is a very important part in the enumeration process. You notice it says 'Sendmail 8.12.8/8.12.8' Well what do ya know, we now have discovered a version number. This is where we can start identifying the programs running on the machine. There are some instances in which companies will try and falsify their headers/banners so hackers are unable to find out what programs are truly installed. Now just copy all the banners from all the open ports *Some Ports May Have No Bannners* and organize them in the little record we have of the target. Now we have all the open ports, and a list of the programs running and their version numbers. This is some of the most sensitive information you can come across in the networking world. Other points of interest may be the DNS server, that contains lots of information and if you are able to manipulate it than you can pretend to hotmail, and steal a bunch of peoples email. Well now back to the task at handu. Apart from actual company secrets and secret configurations of the network hardware, you got some good juicy info. http://www.securityfocus.com is a very good resource for looking up software vulnerabilities. If you cant find any vulnerabilities there, search on google. There are many, many, many other sites that post vulnerabilities that their groups find and their affiliates.

At SecurityFocus you can search through vendor and whatnot to try and find your peice of software, or you can use the search box. When i searched SecurityFocus i found a paper on how Sendmail 8.12.8 had a buffer overflow. There was proof of concept code where they wrote the shellcode and everything, so if you ran the code with the right syntax, a command prompt would just spawn. You should notice a (#) on the line where your code is being typed. That pound symbol means that the command prompt window thats currently open was opened as root. The highest privilage on a UNIX/Linux Box. You have just successfully hacked a box. Now that you have a command shell in front of you, you can start doing whatever you want, delete everything if you want to be a fucking jerk, however I dont recommend that. Maybe leave a text file saying how you did it and that they should patch their system.....whoever they are. And many times the best thing you can do is just lay in the shadows, dont let anyone know what you did. More often than not this is the path you are going to want to take to avoid unwanted visits by the authorities.

There are many types of exploits out there, some are Denial of Service exploits, where you shut down a box, or render an application/process unusable. Called denial of service simply because you are denying a service on someones box to everyone trying to access it. Buffer Overflow exploits are involved when a variable inside some code doesnt have any input validation. Each letter you enter in for the string variable will be 1 byte long. Now where the variables are located at when they are in use by a program is called the buffer. Now what do you think overflowing the buffer means. We overflow the buffer so we can get to a totally different memory address. Then people write whats called shellcode in hex. This shellcode is what returns that command prompt when you run the exploit. That wasnt the best description of a buffer overflow, however all you need to remember is that garbage data fills up the data registers so then the buffer overflows and allows for remote execution of almost every command available. There are many, many other types of attacks that cannot all be described here, like man-in-the-middle attacks where you spoof who you are. Performed correctly, the victim will enterhttp://www.bank.com and his connection will be redirected to your site where you can make a username and password box, make the site look legit. And your poor mark will enter their credentials into your site, when they think its really http://www.bank.com. You need to have a small script set up so it will automatiically display like an error or something once they try and log in with their credentials. This makes it seem like the site is down and the victim doenst give it a second thought and will simply try again later.

So as a summary of how to 0Wn a box when you only have an IP Address
Method Works On BOTH *Nix and Windoze

****You can do the same with domain names (IE google.com) than what you can with IP Addresses. Run a WHOIS Lookup or something along those lines. Or check up on InterNIC you should be able to resolve the domain name to an IP address.****

- Port Scan The Address And Record Open Ports
- Telnet To Open Ports To Identify Software Running On Ports

3) netcat - Network swiss army knife. Like TELNET only better and with a lot more functionality. Both can be used when you are trying to fingerprint software on open ports

- Record Banners And Take Note Of The Application Running and The Version Number
- Take A Gander Online At SecurityFocus.com or Eeye.com. If you cant find any vulnerabilities then search google.
- Make a copy of some Proof-Of-Concept code for the vulnerability.

*Read the documentation if there is any, for the proof-of-concept code you will be using for your exploit*

- Run The Exploit Against The Victim.
- Reap The Cheap-Sh0t Ownage

**This document does not go into covering your tracks. If you dare try any of this stuff on a box you dont have consent to hack on, They will simply look at the logs and see your IP Address and then go straight to your ISP. Once you get more 1337 you get to learn how to get away with the nasty deeds. This is what the majority of kode-kiddies do when they perform attacks. The key is to enumerate all the info you can from the machine, the more info you have on the system the better. User accounts can also be enumerated. Once you have a list of account names, you may then proceed to brute-force or perform a cryptanalysis attack to gain control of the account. Then you must work on privilage escalation. Users are not Admins/Root**

Source : http://www.dedepurnama.com

Rahasia : CONKYWIZARD: GUI TO SET UP CONKY AUTOMATICALLY

2011-03-30T03:12:00.000-07:00

Conky is a free, light-weight system monitor for X, that displays any information on your desktop. You've seen it in many screenshots under various forms; take a look at these screenshots if you don't know what Conky is.

To use Conky, you must manually set it up - and that's not easy as you must manually create the configuration file and customize it yourself. But now you can do this a lot easier using ConkyWizard, a GUI written in Qt and C++ to set up Conky and customize everything visually.

ConkyWizard comes precompiled for now (you need Qt to run it), but a PPA will be available soon. Before using ConkyWizard, you'll of course need to install Conky:

sudo apt-get install conky

To use ConkyWizard, simply DOWNLOAD it, extract the archive and double click the extracted file. A note from our readers: it seems the 64-bit binaries do not work, but the 32-bit version works in Ubuntu 64bit.

ConkyWizard default theme is based on the Ubuntu Lucid Conky theme which was available @ Gnome-Look but it allows you to customize every detail as well as automatically run it on startup and so on. It even sets up the delay required for Conky to be displayed correctly after the computer starts up. Please note that it has only been tested with Ubuntu Lucid so it may not work with other Ubuntu versions.

To get the sensors to work, you'll need lm-sensors which you can install using the following command:

sudo apt-get install lm-sensors

And then to set up the sensors, run this:

sudo sensors-detect

and answer "y" (yes) to everything.

Finally, run the following command to get the sensors to start:

sudo /etc/init.d/module-init-tools start

If you still don't see any temperatures in Conky, restart your computer.

Source : http://www.webupd8.org

Rahasia : Hack The Game | Game Simulasi Menjadi Hacker

2011-03-30T03:09:00.000-07:00

HackThe Game hacking adalah sebuah game simulasi untuk menjadi seorang hacker. Sewaktu anda memainkan game ini anda akan memliki peran sebagai sorang hacker yang mengemban berbagai macam misi. Ketika saya mencoba memainkan game ini, ternyata lumayan sulit juga sob, kita diwajibkan untuk mengetahui sintak-sintak dos, seperi perintah ping, cd, telnet, dll. (lebih bagus kalau sobat blogger hapal) Hehehe

HackThe Game kalau menurut saya merupakan sebuah game yang layak untuk sobat miliki, apalagi buat sobat blogger yang ingin menjadi hacker handal tapi bingung mau latian dimana, nah HackThe Game ini solusinya, karena menggunakan simulasi, jadi kaya beneran banget jadi hacker nya. (ada efek suaranya juga loh,,,) pokoknya keren abis deh sob.

HackThe Game juga mendukung bahasa Indonesia loh sob, jadi makin mudah aja untuk dipelajari dan dipahami. Untuk mengubahnya kedalam format bahsa Indonesia, pertama buka aplikasi HackThe Game nya, kemudian klik menu setting, lalu pilih language bahsa indonesia deh.

Restart HackThe Game nya untuk menjadi bahsa Indonesia.

Untuk mengetahui misi yang diberikan klik menu pesan masuk/inbox.

Untuk cara bermain, silahkan baca FAQS nya terlebih dahulu (biar nggak bingung) Okeiiii

Source : http://www.remo-xp.com

Rahasia : 12 Reasons to Try Ubuntu 10.10 Now

2011-03-12T03:05:00.000-08:00

As Ubuntu 10.10, or "Maverick Meerkat," hits the streets this Sunday, it's a pretty safe bet that legions of existing Ubuntu users will be updating to the new release. After all, it looks to be Canonical's most user-friendly Ubuntu Linux yet, and many of the new features promise to be must-haves.

For those in the business world who haven't yet tried Ubuntu, however, the reasons to download and give it a whirl are even more compelling. Here are just a few of them.
1. Speed
Ubuntu 10.10 is fast -- darn fast. Even the beta version could boot in as little as 7 seconds, according to reports. Who has time to wait around for Windows when there's work to be done?
2. Price
There's no contest on this one, because Ubuntu is free. Pure and simple. No investment whatsoever, unless you want to buy professional support later on.
3. No Commitment
You can try out Ubuntu without changing or affecting anything else on your computer through options like a LiveCD, Live USB, Wubi or virtualization--all of which I've already described elsewhere. In other words, you have nothing to lose.
4. Hardware Compatibility
Ubuntu will play well on just about any machine you might have sitting around, so you could also try it out on a spare one to keep it off your Windows machines altogether--until you decide you can't go back, that is.
5. Ubuntu One
Ubuntu One is the personal cloud service that lets you synchronize your files and notes and then access them from anywhere. You can also consolidate your computer and mobile phone contacts and share documents and pictures with them. On the fun side, you can use Ubuntu One to buy music and get it delivered to the computers of your choice.
6. Windows Compatibility
With Ubuntu 10.10, a beta client for Windows also allows users to integrate their Windows and Ubuntu worlds by accessing files from either platform. You'll never have to worry about being unable to get at your Windows files.
7. Applications
Unlike Windows, Ubuntu comes with key business productivity software for free, including OpenOffice.org. Firefox is included, but there's also support for both Flash and Google Chrome. Anything that's not there already, meanwhile, can be found in Ubuntu's Software Center. Whereas finding new software on Windows is very much a hunt-and-peck process, with lots of time spent on Google--and your credit card--the Software Center gives you a central place to find and download thousands of open source applications--for free--in a matter of seconds.
8. Security
Ubuntu--and pretty much every distribution of Linux--is extremely secure, particularly compared with Mac OS X and Windows. No wonder experts have recommended using Linux for online banking, in particular--the others just aren't secure enough.
9. Multitouch
If you try the Netbook Edition of Ubuntu on a supported netbook, you'll be able to see for yourself the brand-new multitouch features in Maverick's new Unity interface.
10. Beauty
One key emphasis in the new Ubuntu is making it more beautiful and aesthetically pleasing to use. The Unity interface is part of that in the Netbook Edition, and the Ubuntu Font Family is another part. It's all just nice to look at.
11. It's Sociable
Ubuntu's new "Me Menu" lets you access your Facebook and Twitter accounts straight from the desktop. You can connect to all your favorite chat channels and make updates through a single window.
12. It's Linux
There are so many reasons for businesses to use Linux today, it's hard to keep track of them all. Security is one, of course, but there are also many other reasons Ubuntu, in particular, has become such a good business choice--far better than Mac OS X or Windows.
Ubuntu 10.10 will be available for download starting on Sunday from Canonical's Ubuntu site. Of course, if you can't wait until then, there's always the Release Candidate, which is ripe for the picking right now. Either way, my bet is that once you try Ubuntu for your business, you're going to want to keep it.

Rahasia : Work Begins on Ubuntu 11.10 'Oneiric Ocelot'

2011-03-12T03:01:00.000-08:00

The final release of "Natty Narwhal," or version 11.04 of Canonical's Ubuntu Linux distribution, may still be more than a month away, but project founder Mark Shuttleworth on Monday officially inaugurated work on its successor with the announcement that version 11.10 will be called "Oneiric Ocelot."

The "skunkworks" on Ubuntu 11.10 are "in high gear right now," Shuttleworth wrote in a blog post Monday.
In naming the new version of the open source operating system, "what we want is something imaginative, something dreamy," he explained. "Something sleek and neat, too. Something that captures both the competence of ubuntu-devel with the imagination of ayatana."
Explaining the project's choice, "oneiric means 'dreamy,' and the combination with Ocelot reminds me of the way innovation happens: part daydream, part discipline," Shuttleworth wrote.
Given Natty Narwhal's planned release date of April 28, the software's six-month release schedule leads to an October release for Oneiric Ocelot.
'A Stretch Release'
Natty Narwhal is anticipated with considerable excitement, not least for the radical changes it will be the first to reflect. Though the Wayland graphics system won't be ready in time for its debut, 3D-enabled Unity has replaced the GNOME shell as the default desktop interface, for example.
A 2D version of Unity is also available, and Ubuntu 11.04 uses the Compiz window manager rather than Mutter by default. LibreOffice is now included, and a raft of other changes are planned for the software as well. The third and final alpha version of Natty Narwhal was released last week.
"Natty is a stretch release," Shuttleworth explained in his post. "We set out to redefine the look and feel of the free desktop."
The latest stable release of Ubuntu is version 10.10, or "Maverick Meerkat," while the current Long Term Support (LTS) version is Ubuntu 10.04, dubbed "Lucid Lynx." Version 12.04, due in April 2012, will be the next LTS version.
Qt Libraries
What can we expect in Oneiric Ocelot? Well, first off, it may well be the release in which Wayland makes its debut.
Shuttleworth also recently announced that future versions of Ubuntu, post-Natty, will incorporate the Qt user interface libraries and may include applications based on the Qt framework.
"Our desktop has come together beautifully, and in the next release we'll complete the cycle of making it available to all users, with a 2D experience to complement the OpenGL based Unity for those with the hardware to handle it," Shuttleworth wrote.

The introduction of Qt, meanwhile, "means we'll be giving developers even more options for how they can produce interfaces that are both functional and aesthetically delightful," he added.
What effect Nokia's sale of its Qt commercial licensing and services business to Finnish company Digia might have remains to be seen.
No More 'Quit'?
Key decisions must still be made about which cloud platforms will be supported in version 12.04 LTS, Shuttleworth noted. Natty Narwhal is expected to support both the OpenStack and Eucalyptus cloud platforms.
Then, too, there's the announcement on Monday from Canonical designer Matthew Paul Thomas that Ubuntu will phase out the "quit" command, though which version that might appear in isn't yet clear.
What we can be sure of, however, is that exciting new changes are on the way for Ubuntu. Not only that, but we've all now learned another word. Oneiric -- who could have predicted it?

Rahasia : "Sexy" software

2011-03-12T02:55:00.001-08:00

It has always rubbed me the wrong way when software is described as "sexy." There is something about the context that just seems off. Well, I just got around to reading a book I've been intending to read since 2006, "Female Chauvinist Pigs" by Ariel Levy. It's about how pop-culture & the media have managed to convince much of society that it is "empowering" for a woman to um…objectify herself quickly, before a man does (you can probably guess by my phrasing that I do not agree with the women who buy into this, and neither does the author). Anyway, there's a paragraph in there that sums up nicely my discomfort with the use of the word "sexy" to describe, well, things that have nothing to do with, you know, sex:

Sex appeal has become a synecdoche for all appeal: People refer to a new restaurant or job as “sexy” when they mean hip or powerful. A U.S. Army general was quoted in The New Yorker regarding an air raid on the Taliban as saying “it was sexy stuff,” for instance; the New York Times ran a piece on the energy industry subheadlined “After Enron, Deregulation Is Looking Less Sexy.” For something to be noteworthy it must be “sexy.” Sexiness is no longer just about being arousing or alluring, it’s about being worthwhile.

OK, so your software is "worthwhile" then. Got it. Congratulations, I guess? But…why??? Is it faster than the alternative? Does it have a more intuitive UI? Does it colour-coordinate better than the garish purple, green, and red interface full of tags of the alternative? Does it take what is normally a complicated 15-step manual process and distill it into a simple 3-step process wherein the computer intuits many of the steps itself? If so, say that! That'd be an actual useful description!
Feminist aside: the flipside of this is the implication that if a thing or person isn't "sexy," it's worthless.

Rahasia : Customize the Panel Ubuntu

2011-03-12T02:45:00.001-08:00

Ubuntu includes a top panel and a bottom panel by default. If you prefer to keep only one panel at the bottom just like the Windows Taskbar, then these are the steps to follow:

Delete the bottom panel: right-click over it and click "Delete This Panel".
Move the top panel to bottom: right-click over it, select "Properties" and change Orientation from "Top" to "Bottom".
Add running program buttons: right-click the panel, select "Add to Panel", scroll down and select "Window List", click "Add".
Replace the Menu Bar ("Applications-Places-System") with the "Main Menu" to save space in the panel:
1. Right-click the "Menu Bar" and select "Remove From Panel".
2. Right-click the panel, select "Add to Panel" and choose "Main Menu", click "Add".
3. Right-click the items (Firefox, etc) and untick "Lock to Panel".
4. Right-click the added "Main Menu", select "Move" to relocate it to the far left. (See Note 1 below)

These are basic changes. The panels are much more flexible than the Windows Taskbar in that many items in the panels can be easily added, removed or configured.
Note 1: The Main Menu shows the "Lock Screen", "Log Out" and "Shut Down" items if you remove the "Indicator Applet Session" item (which shows your username and the shutdown button to the right of the panel). These three items are hidden from the Main Menu when the Indicator Applet Session item is on the panel.
Note 2: If you need to restore the panels to the original state, enter the following commands into the Terminal and re-start the system:

sudo gconftool-2 --shutdown
sudo rm -rf .gconf/apps/panel
sudo pkill gnome-panel

Rahasia : Troubleshooting ./configure, make and make install Tutorial

2011-02-14T23:38:00.000-08:00

Sometimes, the typical sequence to compile a program doesn't work. It starts spitting out all kinds of errors and seems to do everything but compiling that annoying program already. What to do then? This tutorial describes how to get rid of many frequently occuring errors during a typical Linux compiling sequence.
Note: You should only compile software when you really need to do it. Compiling can be dangerous to your Linux installation. If you want to install some software, please look for a precompiled package (like a .rpm or a .deb) first. If you really need to compile, do it with care.
Note: This tutorial assumes that you have some linux command line knowledge and that you know how to work with your distro's package manager.
We can divide the errors in three categories:

./configure errors
make errors
make install errors

It should be quite obvious how to recognize them: ./configure errors are outputted by the configure script, make errors by the make command and so on. I'll now list common errors, with solutions, in these three categories.

./configure errors

The following list contains some common errors that ./configure can give, sorted by frequency of appearance. The first one is the most occuring one. Things between ( and ) are optional, they do not always appear. A bold italic OR indicates that multiple errors have the same solution. Text between < and > describes the kind of string that should appear on that place.

(configure:) (error:)
(
(or higher)) not found. (Please check your installation!) OR checking for
... (configure:) (error:) not found. OR (configure:) (error:)
( (or newer)) is required to build
This usually means that the -dev or -devel version of the package with the name is not installed on your computer. Please use your distro's package manager (or any other method to find and install packages) to search for and install, if possible, the -dev or -devel version. If the -dev or -devel version is already installed, or if it doesn't exist, have a look at the version number currently installed. Is it high enough? If it is lower than (if applicable), try upgrading the package. If that is not an option for you, you can also try compiling an older version of the package you're trying to compile. Older releases generally use earlier version of the libraries / programs they depend upon.
If the package that ./configure cannot find is a library (usually indicated by the package name being lib), and you're sure you've got the right version installed, try to find the location where the library's files are located. If this directory is not included in your ld conf file (which is usually located at /etc/ld.conf or /etc/ld.so.conf) you should add it, and run ldconfig (usually located at /sbin/ldconfig). Please note that ldconfig should usually be executed with root permissions. If you don't know how to do that, have a look at the first point of Make install errors.
Note: If you don't have access to the ld conf file, you can also add the directory to the LD_LIBRARY_PATH variable. This is pretty ugly and not quite the best practice, but sometimes you don't have any other options. You can add the directory to LD_LIBRARY_PATH this way:
[rechosen@localhost ~]$ export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:/your/library/directory"
Of course, replace /your/library/directory with the applicable directory in your case. Note that the LD_LIBRARY_PATH will also have to hold /your/library/directory when running the program you compiled.
(configure:) (error:) cannot find header (file)
.h OR (configure:) (error:) (header) (file)
.h missing! OR
- The configure script can't find a .h file required for compilation. This error is similar to the one above, as it requires you to install the -dev or -devel version of a certain package. However, it is usually less clear which package should be installed, as can be a very generic name. Try searching the web for .h to find out which package it belongs to, then try installing that package (including its -dev or -devel version, if available) using your distro's package manager.
(configure:) (error:) no acceptable cc found in
- Your gcc installation is either missing or the CC environment variable is not set. Check if the package gcc is installed, using your distro's package manager. If it isn't, install it. If it is installed, however, try using this command:
  [rechosen@localhost ~]$ export CC="/usr/bin/cc"
  If that worked, you can add the command to your /etc/profile (a file full of commands that are executed whenever any user logs in) so you won't have to set it again.
(configure:) (error:) C++ preprocessor "/lib/cpp" fails sanity check
- Your g++ package is either missing or corrupted. Please use your distro's package manager (or any other method to find and install packages) to search for g++ and install the corresponding package. Note that quite some distro's do not call the package g++. Fedora, for example, uses the packagename gcc-c++ in its yum repositories. If you can't find g++, try searching for c++, cpp and/or gcc.
(configure:) (error:) C++ preprocessor "CC (-E)" fails sanity check
- This is caused by a strange bug in certain versions of libtool that makes the configure script check for all compilers supported by libtool. The quickest solution is to install g++ (see the solution above this one).

Make errors

As make errors usually are too specific to make a nice list of generic ones, I will give you a list of general things to do that might help:

If you're compiling using gcc 4 (use gcc -dumpversion to find out), try using an older compiler version. First, make sure that some older version is installed. This can usually be detected this way:
[rechosen@localhost ~]$ ls /usr/bin/gcc*
If that returns something like this:
/usr/bin/gcc /usr/bin/gcc32
Then you can use, in this case, the gcc32 command to compile with an older gcc version. If not, try using your distro's package manager to search for older versions of gcc (usually called something like compat-gcc or gcc-). After installing, you should be able to detect the alternative gcc version using the ls command above. Tell the ./configure, make and make install sequence to use the older gcc version in a way like this:
[rechosen@localhost ~]$ CC="/usr/bin/gcc32" ./configure
[rechosen@localhost ~]$ CC="/usr/bin/gcc32" make
[rechosen@localhost ~]$ CC="/usr/bin/gcc32" make install
Note: in most cases, you can leave the /usr/bin away and just put the gcc executable name. However, some non-standard Makefiles might handle it in a different way. Therefore, including the full path is the safest option.
Of course, replace the /usr/bin/gcc32 with the location of your alternative gcc command.
Sometimes make errors are just caused by a plain bug. Try obtaining the latest development version of the software (using their cvs, svn or similar repository, or by downloading a nightly snapshot) and try compiling that one to see if they fixed the bug there.
Make errors can also be caused by having wrong versions of certain libraries / programs. Especially very new and very old packages suffer from this problem. Have a look at the dependencies of the package (they are usually listed somewhere on the site of the software) and compare the version numbers there with the version numbers on your own computer (they can usually be found using the search function of your distro's package manager). If the version numbers on your system are way higher than the ones on the package's site, you are probably trying to compile a very old package. If you really need to compile it, try downgrading the dependencies. However, it usually is a better option to search for an other way to install the package or to look for an alternative. If the version numbers on your system are way lower than the ones on the package's site, you are either trying to compile a bleeding-edge package, or your distro is quite old, or both =). You could try updating the required libraries / programs or compiling an older version of the program. Also, have a look if a nice package made for your distro of the program exists. Installing such a package is usually easier than trying to deal with compilation errors.
Another thing to try is searching the web for your specific error. If you don't find anything useful, try stripping away things like line numbers (they can change with versions), version numbers (you can replace them with an asterisk if they are contained in (file) names) and non-alphanumerical characters like quotes, as they influence the search engine's seeking. You can usually find a lot of information on mailing lists. Sometimes, a patch is provided that will fix the source code. Patches can be applied this way:
[rechosen@localhost ~]$ patch -Np1 -i
Note that you will need to be in the source directory to apply a patch.

Make install errors

These errors usually are quite easy to understand, but I'll document them anyway. There are two frequent causes that'll stop you from succesfully using make install:

You do not have root permission. Try running make install using sudo or try becoming root using su. Sudo should be used this way:
[rechosen@localhost ~]$ sudo make install
It will ask for a password; this usually is either your own password or the system root password. You can use su to become root this way:
[rechosen@localhost ~]$ su
This command will also ask for a password, but it always is the system root password. After becoming root, just run make install as you'd do normally. And after that, don't forget to return to your normal user again if you used su. You can do this by pressing Ctrl + D or, if that didn't work, typing 'exit' or 'logout' and then pressing enter. However, this is only recommended if you became root using su. The sudo program only runs a command with root permissions, it doesn't log you in as root.
The package you just compiled doesn't have the install target. In this case you will have to copy the compiled binaries to a bin directory yourself. If you do an ls in the source directory, executable files should appear light-green. These files could be copied to /usr/bin (or /usr/local/bin, if you prefer) in a way like this:
[rechosen@localhost ~]$ cp /usr/bin
However, this will make a mess of your /usr directory if you use it too much. You could also add the directory in which the executable is located to your PATH variable. Go to the directory, get the whole path of it this way:
[rechosen@localhost ~]$ pwd
Then paste the output of pwd into this command:
[rechosen@localhost ~]$ export PATH="$PATH:"
If you can just run the command now, it worked. Add the export command you ran to your /etc/profile, so you won't have to type it again.
I agree that this isn't really a clean and easy way, but sometimes developers don't take the time to create a (proper) install target. We should not be angry with them: think of all the work they do to let us enjoy useful and/or funny programs =).

Final words

This tutorial is not finished yet. I plan to update it every now and then with solutions to requests from users. Therefore, I ask you to comment on it and say what you'd like to see documented in it. Remember that this tutorial is about generic troubleshooting. Don't ask me how to make a certain version of a certain program compile. Anyway, I hope this tutorial has been useful to you. Thanks for reading and good luck with that immersively complicated thing called compiling!

Source : http://www.linuxtutorialblog.com

Rahasia : Disabling unused daemons to speed up your boot sequence

2011-02-14T23:36:00.001-08:00

Many Linux distros usually start a lot of daemons when booting, resulting in a long wait before you can get to work after powering on your machine. Some of those daemons are rarely used (or even not al all) by the majority of users. This tutorial describes how to disable unused or rarely used daemons in a proper way, resulting in faster boot sequences and less CPU load.
Note: Although this tutorial aims to be system-friendly and not dangerous, please do not disable any service if you don't know what you are doing. Especially on server systems, (accidently) disabling an important service can have serious consequences. This tutorial is provided as-is, without any warranty and so on. Just be careful, ok? =)
Another note: This tutorial uses the words "service" and "daemon". These words have an almost identical meaning, although service focuses a bit more on what a process does, or, in other words, which service a process provides. The word daemon refers to the "physical" (how could software ever be physical?) process.

First Part: The how-to (or howto)

Indeed, this tutorial is splitted in two parts to allow easy reading. The first part explains how to disable those services (and which services to disable) in a short and clear way. The second part (the tutorial part) explains what's behind it, and allows deeper insight in Linux booting. If you don't want and/or need that deeper insight, don't read the second part =).

Finding out what's running on your system

Most distros feature some kind of tool which allows you to manage the daemons that are started on your computer when booting. The most common one is chkconfig, which features a commandline interface. You can list all processes that are started when booting to graphical mode with the following command:

[rechosen@localhost ~]$ /sbin/chkconfig --list | grep "5:on"

When running a text-mode system, you will usually boot to runlevel 3. To see the processes that are started at boot time on these systems, use this command:

[rechosen@localhost ~]$ /sbin/chkconfig --list | grep "3:on"

Many distros also feature a GUI for daemon startup configuration. A well-known one is serviceconf. You will usually find such a GUI in areas like "System" or "Configuration", named like "Services" or "Boot configuration" or "Daemons" (note that the second one can also be a configuration GUI for the bootloader, like GRUB or lilo, which is not what we're dealing with right now). Using a GUI configurator is recommended, because they usually are more tuned for your distro than chkconfig.
The following section contains a list of daemons that can be disabled in certain cases. Compare the list of daemons that are started on your system to the list below, read the descriptions and determine whether or not it would be a good idea to disable it. Once you made up your mind on which services you're going to disable, continue to Disabling Daemons.

Common unused / rarely used daemons

The following list contains daemons that may not be used by a 'normal' end-user. You can compare the list of daemons started up on your system to this list, and see if you could safely disable some of those daemons.

Bluetooth
- hcid, sdpd and hidd (These daemons provide Bluetooth services and are unnecessary if you don't have any Bluetooth hardware)
Printing
- cups and cups-config-daemon (These daemons provide printer services and are unnecessary if you don't have any printer hardware attached to your local pc or to a network pc)
- hpiod and hpssd (These daemons provide extensive support for HP printers. They can safely be disabled if you never print using an HP printer)
Console
- gpm (This daemon provides mouse support for text-based applications, like Midnight Commander. It also provides copying/pasting with the middle mouse button in console environments. Can be disabled if you do not use the console much)
Webserver
- httpd (This daemon provides web hosting services, and is unecessary on workstations and servers that do not host any websites or webinterfaces)
- mysqld and postgresqld (These daemons provide database backend services. You can usually disable them if you're not running a webserver, although some applications use these databases for their data storage)
Firewall
- netfilter/iptables (This daemon provides firewall services. Those are not that necessary if you're behind a router or smoothwall with a built-in firewall)
InfraRed
- irda (This daemon enables your computer to communicate with other devices using IR (InfraRed) hardware. If you haven't got such hardware, you can safely disable this service)
- lircd (This daemon provides remote control support using IR (InfraRed) receivers. Can be disabled if you don't have hardware capable of receiving IR signals)
Multiple CPU's
- irqbalance (This daemon balances interrupts over multiple CPU's in the system. Can be disabled if you don't have multiple CPU's or a dual core processor)
Software RAID
- mdmonitor, mdadm and mdmpd (These daemons provide information about and management functionality over software RAID devices. They are unnecessary if you don't use software RAID)
DNS Server
- named (also known as BIND) (This daemon provides DNS server functionality. It is usually not needed on workstations)
Remote kernel logging
- netdump, netcrashdump and netconsole (These services provide functionality for kernel logging and debugging over network connections. Only necessary if you want to view your kernel's log and debugging messages on an other computer)
Fileservers
- NFS server
  - nfs (This daemon provides NFS server functionality, allowing other computers with NFS clients to connect to your computer and access files. You can disable this if you don't need/want others to access your system using NFS)
  - portmap (This daemon manages RPC connections, used by protocols like NFS and NIS. Only needed on computers that need to act as a server)
  - rpcsvcgssd (This daemon manages RPCSEC GSS contexts for the NFSv4 server and is not needed unless you are running an NFS server)
- Samba server
  - smbd and nmbd (These daemons provides other computers (Windows computers, too) with access to your files. This is not needed if you don't want others to be able to access your files over the network)
Network Authentication
- nscd (This daemon handles passwd and group lookups and caches their results. Only needed when using a 'slow' name service, like NIS, NIS+, LDAP, or hesiod)
- portmap (This daemon manages RPC connections, used by protocols like NFS and NIS. Only needed on computers that need to act as a server)
Remote time setting
- ntpd (This daemon sets your system time to a value it retrieves from a so-called ntp server, which usually serves a very accurate time. Although it is a useful feature, it tends to slow your system's startup a lot, especially if the server cannot be found)
Process Accounting
- psacct (also known as acct) (This daemon provides process accounting, which gives a more detailed insight into the execution of commands on your system. This is usually not needed unless you are running a server that is accessed by a lot of people that you cannot trust entirely)
Plaintext Authentication Requests
- saslauthd (This daemon handles SASL Plaintext Authentication Requests, and is only required on a server that needs to communicate using SASL mechanisms)
Mailserver
- sendmail (This daemon sends and forwards email messages, acting as a server. You don't need this daemon to be able to send a normal message. It is only needed if you need your computer to act as a mailserver)
- spamd (also known as Spamassassin) (This daemon checks incoming mail messages for spam. This can usually be disabled, but keep in mind that some mail clients, like KMail, can use spamd's functionality)
SSH Server
- sshd (This daemon allows remote login to your computer using the SSH protocol. It can be disabled if you don't want/need this access)
VNC Server
- vncserver or xvnc (This daemon allows others to get a virtual graphical Desktop that actually runs on your computer)
Task Scheduler
- cron (and variants, like vixie-cron...) (This daemon runs periodic tasks on your system, like updating the search index or the manpage index, but also rotating logfiles. This one is generally required for a server system to run correctly, but workstations may be able to run without it)

Disabling daemons

When using a GUI to manage the daemons started at boot-time, you will usually be able to disable them by simply unchecking a checkbox. When using chkconfig, you can use the following syntax:

[rechosen@localhost ~]$ /sbin/chkconfig name off

Replace "name" with the name of the daemon you want to disable. If you accidently disabled a wrong daemon, you can turn it on again this way:

[rechosen@localhost ~]$ /sbin/chkconfig name reset

You might think this is illogical, that it should be:

[rechosen@localhost ~]$ /sbin/chkconfig name on

Well, it shouldn't. The above command would turn on the starting of the daemon for a fixed set of runlevels, no matter what the previous values were. That's not exactly what we want, as we want it to switch it back to the old state. The word "reset" tells chkconfig to restore the values specified in the init script that contains the instructions on how to start the daemon. These values are (or should be) the defaults. Remember that the default values are not always equal to the old values, but they will mostly be closer to them than the values that "on" implies. You might need to modify a select amount of runlevels to correct it. You can do this by specifying which runlevels should be altered, like this:

[rechosen@localhost ~]$ /sbin/chkconfig --level 35 name on

The above command would turn on the startup of the daemon "name" for the runlevels 3 and 5. The argument for "--level" is just a string of runlevel number, without separation. Another example:

[rechosen@localhost ~]$ /sbin/chkconfig --level 235 name on

Second part: The tutorial

This part will explain what's behind all the commands above. If you want to know how Linux "knows" what to start at boot time, what a "runlevel" is and why there usually are 7 of them (or, arguably, 8), read on.
Note: This part will not be right for every distro. There are a lot of differences between distros at this point, so I tried to expose the most default configuration.

How Linux "knows" what to start at boot time

When you boot up a Linux computer, you'll usually see the bootloader (after the BIOS has done its part of the booting process). The bootloader, usually Lilo or GRUB, is configured to load the kernel of the Linux into the memory of your computer. The kernel then leaves the bootloader behind and continues booting on its own, initializing hardware and making itself ready to start running init. And init is the process we're looking for: it is the first process run, and it spawns all other processes. But where does init look to know which processes to start? The short answer is: in /etc/rc*.d/ (usually). But that's not the full answer. To understand how it uses the files in those directories, we will first need to understand what runlevels are.

Runlevels

A runlevel is the process state in which a system can reside. For example: runlevel 1 usually is the rescue mode, it boots the system starting as few processes as possible, providing the user with a root-access console, without networking functionality and without any GUI. On the other hand, runlevel 5 usually is the full-fledged graphical multi-user mode. There also are special runlevels that you shouldn't boot to, but that you could switch to after booting: for example, switching to runlevel 0 (zero) shuts down your computer (don't try this until you read the full tutorial) and switching to runlevel 6 will make your system reboot itself. Now for the full list of runlevels and their common configuration:

0: Shuts down the system (to be switched to after booting)
1: Boots the system to a rescue mode
2: Boots the system to a multi-user mode without networking functionality (some systems, like Debian, use this as a full-fledged mode)
3: Boots the system to a multi-user mode with networking functionality (some systems, like Debian, use this as a full-fledged mode)
4: Generally not used (sometimes it is the same as runlevel 5 or 3)
5: Boots the system to a full-fledged graphical multi-user mode (with networking, of course)
6: Reboots the system (to be switched to after booting)
(s or S: Usually similar or equal to runlevel 1)

As the last runlevel is not always considered a real runlevel (it is then called an alias), the number of runlevels is usually seven, but arguably eight. You can switch between all runlevels after having booted, although 0 and 6 will (of course) require you to boot again before you can switch again. Switching between runlevels is usually done with the init command, like this:

[rechosen@localhost ~]$ init 3

The above command would (run as root or with root permissions) switch your system to runlevel 3, unless it's already running in runlevel 3 (replace the 3 with an other digit if you want to switch to an other runlevel). When switching between runlevels, init terminates the processes that were running in the old runlevel which should not run in the new one (these are zero processes when booting and all processes when shutting down or rebooting) and starts the processes that were not running in the old runlevel which should run in the new runlevel (these are zero processes when shutting down or rebooting, but when booting, it depends on the runlevel you're booting to). And now we can go on to the way init "knows" what to start and what to stop.

What to start and what to stop?

When the init process is started by the kernel, it first looks in the /etc/inittab file to see what to do in case of a certain runlevel. This file usually tells init to look in the corresponding /etc/rcX.d/ directory, where X is the runlevel. For example, when booting to runlevel 5, init will run the scripts in /etc/rc5.d/ (please note (again) that this does not apply to all distros). These "scripts" usually are symlinks to the corresponding service management scripts in /etc/init.d/ (or /etc/rc.d/init.d/). But how can such a script understand whether init wants it to start or stop the service? Well, when init wants the script to start the process, it will run the script with "start" as the first argument. When wanting the script to stop the service, init will pass "stop" as the first argument. You can also do this yourself if you want to start or stop a service. For example:

[rechosen@localhost ~]$ /etc/init.d/ntpd stop

The above example would stop the ntpd daemon. To start it again use the following command:

[rechosen@localhost ~]$ /etc/init.d/ntpd start

Stopping and starting can usually be combined in the following way.

[rechosen@localhost ~]$ /etc/init.d/ntpd restart

This is useful in case you want a daemon to re-read its config files. Depending on the service the script was written for (and the script itself), other arguments may also be supplied.
Anyway, let's get back to the /etc/rcX.d/ directory. This directory is filled with files named like "K59somedaemon" and "S10anotherdaemon". I'll give a short explanation:

"K" means "kill" and "S" means "start": The symlinks starting with "K" will be executed with a "stop" argument by init, and the symlinks starting with "S" will be executed with a "start" argument.
The two digits after "K" or "S" don't mean anything really special, they are just used for sorting. Symlinks that need to be run before certain other ones should have a lower number than the other ones.
The name of the daemon after it is actually not necessary for init, but it's good practice for sysadmins so they can instantly see what the symlink is for.

Finally, you should know that pretty much any distro has got some check somewhere to ensure that already running processes are not started again (which would result into two interferring processes, unless the daemon itself checks if there isn't an other instance running) and that already terminated processes will not be "reterminated". This is usually done by some special program or script that is called to do the actual starting.

Final words

Well, I hope this tutorial helped you cutting on the CPU load and boot time of your computer and understanding what makes a Linux system come up after you turned your computer on. If you have any suggestions (for example: another daemon that seems to be unnecessary in certain cases or another way to manage the startup of daemons) please leave a comment. Thanks for reading and God bless! =)

Source : http://www.linuxtutorialblog.com

Rahasia : The best tips & tricks for bash, explained

2011-02-14T23:35:00.000-08:00

The bash shell is just amazing. There are so many tasks that can be simplified using its handy features. This tutorial tells about some of those features, explains what exactly they do and learns you how to use them.
Difficulty: Basic - Medium

Running a command from your history

Sometimes you know that you ran a command a while ago and you want to run it again. You know a bit of the command, but you don't exactly know all options, or when you executed the command. Of course, you could just keep pressing the Up Arrow until you encounter the command again, but there is a better way. You can search the bash history in an interactive mode by pressing Ctrl + r. This will put bash in history mode, allowing you to type a part of the command you're looking for. In the meanwhile, it will show the most recent occasion where the string you're typing was used. If it is showing you a too recent command, you can go further back in history by pressing Ctrl + r again and again. Once you found the command you were looking for, press enter to run it. If you can't find what you're looking for and you want to try it again or if you want to get out of history mode for an other reason, just press Ctrl + c. By the way, Ctrl + c can be used in many other cases to cancel the current operation and/or start with a fresh new line.

Repeating an argument

You can repeat the last argument of the previous command in multiple ways. Have a look at this example:

[rechosen@localhost ~]$ mkdir /path/to/exampledir
[rechosen@localhost ~]$ cd !$

The second command might look a little strange, but it will just cd to /path/to/exampledir. The "!$" syntax repeats the last argument of the previous command. You can also insert the last argument of the previous command on the fly, which enables you to edit it before executing the command. The keyboard shortcut for this functionality is Esc + . (a period). You can also repeatedly press these keys to get the last argument of commands before the previous one.

Some keyboard shortcuts for editing

There are some pretty useful keyboard shortcuts for editing in bash. They might appear familiar to Emacs users:

Ctrl + a => Return to the start of the command you're typing
Ctrl + e => Go to the end of the command you're typing
Ctrl + u => Cut everything before the cursor to a special clipboard
Ctrl + k => Cut everything after the cursor to a special clipboard
Ctrl + y => Paste from the special clipboard that Ctrl + u and Ctrl + k save their data to
Ctrl + t => Swap the two characters before the cursor (you can actually use this to transport a character from the left to the right, try it!)
Ctrl + w => Delete the word / argument left of the cursor
Ctrl + l => Clear the screen

Dealing with jobs

If you've just started a huge process (like backupping a lot of files) using an ssh terminal and you suddenly remember that you need to do something else on the same server, you might want to get the huge process to the background. You can do this by pressing Ctrl + z, which will suspend the process, and then executing the bg command:

[rechosen@localhost ~]$ bg
[1]+ hugeprocess &

This will make the huge process continue happily in the background, allowing you to do what you need to do. If you want to background another process with the huge one still running, just use the same steps. And if you want to get a process back to the foreground again, execute fg:

[rechosen@localhost ~]$ fg
hugeprocess

But what if you want to foreground an older process that's still running? In a case like that, use the jobs command to see which processes bash is managing:

[rechosen@localhost ~]$ jobs
[1]- Running hugeprocess &
[2]+ Running anotherprocess &

Note: A "+" after the job id means that that job is the 'current job', the one that will be affected if bg or fg is executed without any arguments. A "-" after the job id means that that job is the 'previous job'. You can refer to the previous job with "%-".
Use the job id (the number on the left), preceded by a "%", to specify which process to foreground / background, like this:

[rechosen@localhost ~]$ fg %3

And:

[rechosen@localhost ~]$ bg %7

The above snippets would foreground job [3] and background job [7].

Using several ways of substitution

There are multiple ways to embed a command in an other one. You could use the following way (which is called command substitution):

[rechosen@localhost ~]$ du -h -a -c $(find . -name *.conf 2>&-)

The above command is quite a mouthful of options and syntax, so I'll explain it.

The du command calculates the actual size of files. The -h option makes du print the sizes in human-readable format, the -a tells du to calculate the size of all files, and the -c option tells du to produce a grand total. So, "du -h -a -c" will show the sizes of all files passed to it in a human-readable form and it will produce a grand total.
As you might have guessed, "$(find . -name *.conf 2>&-)" takes care of giving du some files to calculate the sizes of. This part is wrapped between "$(" and ")" to tell bash that it should run the command and return the command's output (in this case as an argument for du). The find command searches for files named .conf in the current directory and all accessible subdirectories. The "." indicates the current directory, the -name option allows to specify the filename of the file to search for, and "*.conf" is an expression that matches any string ending with the character sequence ".conf".
The only thing left to explain is the "2>&-". This part of the syntax makes bash discard the errors that find produces, so du won't get any non-filename input. There is a huge amount of explanation about this syntax near the end of the tutorial (look for "2>&1" and further).

And there's another way to substitute, called process substitution:

[rechosen@localhost ~]$ diff <(ps axo comm) <(ssh user@host ps axo comm)

The command in the snippet above will compare the running processes on the local system and a remote system with an ssh server. Let's have a closer look at it:

First of all, diff. The diff command can be used to compare two files. I won't tell much about it here, as there is an extensive tutorial about diff and patch on this site.
Next, the "<(" and ")". These strings indicate that bash should substitute the command between them as a process. This will create a named pipe (usually in /dev/fd) that, in our case, will be given to diff as a file to compare.
Now the "ps axo comm". The ps command is used to list processes currently running on the system. The "a" option tells ps to list all processes with a tty, the "x" tells ps to list processes without a tty, too, and "o comm" tells ps to list the commands only ("o" indicates the starting of a user-defined output declaration, and "comm" indicates that ps should print the COMMAND column).
The "ssh user@host ps axo comm" will run "ps axo comm" on a remote system with an ssh server. For more detailed information about ssh, see this site's tutorial about ssh and scp.

Let's have a look at the whole snippet now:

After interpreting the line, bash will run "ps axo comm" and redirect the output to a named pipe,
then it will execute "ssh user@host ps axo comm" and redirect the output to another named pipe,
and then it will execute diff with the filenames of the named pipes as argument.
The diff command will read the output from the pipes and compare them, and return the differences to the terminal so you can quickly see what differences there are in running processes (if you're familiar with diff's output, that is).

This way, you have done in one line what would normally require at least two: comparing the outputs of two processes.
And there even is another way, called xargs. This command can feed arguments, usually imported through a pipe, to a command. See the next chapter for more information about pipes. We'll now focus on xargs itself. Have a look at this example:

[rechosen@localhost ~]$ find . -name *.conf -print0 | xargs -0 grep -l -Z mem_limit | xargs -0 -i cp {} {}.bak

Note: the "-l" after grep is an L, not an i.
The command in the snippet above will make a backup of all .conf files in the current directory and accessible subdirectories that contain the string "mem_limit".

The find command is used to find all files in the current directory (the ".") and accessible subdirectories with a filename (the "-name" option) that ends with ".conf" ("*.conf" means ".conf"). It returns a list of them, with null characters as separators ("-print0" tells find to do so).
The output of find is piped (the "|" operator, see the next chapter for more information) to xargs. The "-0" option tells xargs that the names are separated by null characters, and "grep -l -Z mem_limit" is the command that the list of files will be feeded to as arguments. The grep command will search the files it gets from xargs for the string "mem_limit", returning a list of files (the -l option tells grep not to return the contents of the files, but just the filenames), again separated by null characters (the "-Z" option causes grep to do this).
The output of grep is also piped, to "xargs -0 -i cp {} {}.bak". We know what xargs does, except for the "-i" option. The "-i" option tells xargs to replace every occasion of the specified string with the argument it gets through the pipe. If no string is specified (as in our case), xargs will assume that it should replace the string "{}". Next, the "cp {} {}.bak". The "{}" will be replaced by xargs with the argument, so, if xargs got the file "sample.conf" through the pipe, cp will copy the file "sample.conf" to the file "sample.conf.bak", effectively making a backup of it.

These substitutions can, once mastered, provide short and quick solutions for complicated problems.

Piping data through commands

One of the most powerful features is the ability to pipe data through commands. You could see this as letting bash take the output of a command, then feed it to an other command, take the output of that, feed it to another and so on. This is a simple example of using a pipe:

[rechosen@localhost ~]$ ps aux | grep init

If you don't know the commands yet: "ps aux" lists all processes executed by a valid user that are currently running on your system (the "a" means that processes of other users than the current user should also be listed, the "u" means that only processes executed by a valid user should be shown, and the "x" means that background processes (without a tty) should also be listed). The "grep init" searches the output of "ps aux" for the string "init". It does so because bash pipes the output of "ps aux" to "grep init", and bash does that because of the "|" operator.
The "|" operator makes bash redirect all data that the command left of it returns to the stdout (more about that later) to the stdin of the command right of it. There are a lot of commands that support taking data from the stdin, and almost every program supports returning data using the stdout.
The stdin and stdout are part of the standard streams; they were introduced with UNIX and are channels over which data can be transported. There are three standard streams (the third one is stderr, which should be used to report errors over). The stdin channel can be used by other programs to feed data to a running process, and the stdout channel can be used by a program to export data. Usually, stdout output (and stderr output, too) is received by the terminal environment in which the program is running, in our case bash. By default, bash will show you the output by echoing it onto the terminal screen, but now that we pipe it to an other command, we are not shown the data.
Please note that, as in a pipe only the stdout of the command on the left is passed on to the next one, the stderr output will still go to the terminal. I will explain how to alter this further on in this tutorial.
If you want to see the data that's passed on between programs in a pipe, you can insert the "tee" command between it. This program receives data from the stdin and then writes it to a file, while also passing it on again through the stdout. This way, if something is going wrong in a pipe sequence, you can see what data was passing through the pipes. The "tee" command is used like this:

[rechosen@localhost ~]$ ps aux | tee filename | grep init

The "grep" command will still receive the output of "ps aux", as tee just passes the data on, but you will be able to read the output of "ps aux" in the file after the commands have been executed. Note that "tee" tries to replace the file if you specify the command like this. If you don't want "tee" to replace the file but to append the data to it instead, use the -a option, like this:

[rechosen@localhost ~]$ ps aux | tee -a filename | grep init

As you have been able to see in the above command, you can place a lot of command with pipes after each other. This is not infinite, though. There is a maximum command-line length, which is usually determined by the kernel. However, this value usually is so big that you are very unlikely to hit the limit. If you do, you can always save the stdout output to a file somewhere inbetween and then use that file to continue operation. And that introduces the next subject: saving the stdout output to a file.

Saving the stdout output to a file

You can save the stdout output of a command to a file like this:

[rechosen@localhost ~]$ ps aux > filename

The above syntax will make bash write the stdout output of "ps aux" to the file filename. If filename already exists, bash will try to overwrite it. If you don't want bash to do so, but to append the output of "ps aux" to filename, you could do that this way:

[rechosen@localhost ~]$ ps aux >> filename

You can use this feature of bash to split a long line of pipes into multiple lines:

[rechosen@localhost ~]$ command1 | command2 | ... | commandN > tempfile1
[rechosen@localhost ~]$ cat tempfile1 | command1 | command2 | ... | commandN > tempfile2

And so on. Note that the above use of cat is, in most cases, a useless one. In many cases, you can let command1 in the second snippet read the file, like this:

[rechosen@localhost ~]$ command1 tempfile1 | command2 | ... | commandN > tempfile2

And in other cases, you can use a redirect to feed a file to command1:

[rechosen@localhost ~]$ command1 < tempfile1 | command2 | ... | commandN > tempfile2

To be honest, I mainly included this to avoid getting the Useless Use of Cat Award =).
Anyway, you can also use bash's ability to write streams to file for logging the output of script commands, for example. By the way, did you know that bash can also write the stderr output to a file, or both the stdout and the stderr streams?

Playing with standard streams: redirecting and combining

The bash shell allows us to redirect streams to other streams or to files. This is quite a complicated feature, so I'll try to explain it as clearly as possible. Redirecting a stream is done like this:

[rechosen@localhost ~]$ ps aux 2>&1 | grep init

In the snippet above, "grep init" will not only search the stdout output of "ps aux", but also the stderr output. The stderr and the stdout streams are combined. This is caused by that strange "2>&1" after "ps aux". Let's have a closer look at that.
First, the "2". As said, there are three standard streams (stin, stdout and stderr).These standard streams also have default numbers:

0: stdin
1: stdout
2: sterr

As you can see, "2" is the stream number of stderr. And ">", we already know that from making bash write to a file. The actual meaning of this symbol is "redirect the stream on the left to the stream on the right". If there is no stream on the left, bash will assume you're trying to redirect stdout. If there's a filename on the right, bash will redirect the stream on the left to that file, so that everything passing through the pipe is written to the file.
Note: the ">" symbol is used with and without a space behind it in this tutorial. This is only to keep it clear whether we're redirecting to a file or to a stream: in reality, when dealing with streams, it doesn't matter whether a space is behind it or not. When substituting processes, you shouldn't use any spaces.
Back to our "2>&1". As explained, "2" is the stream number of stderr, ">" redirects the stream somewhere, but what is "&1"? You might have guessed, as the "grep init" command mentioned above searches both the stdout and stderr stream, that "&1" is the stdout stream. The "&" in front of it tells bash that you don't mean a file with filename "1". The streams are sent to the same destination, and to the command receiving them it will seem like they are combined.
If you'd want to write to a file with the name "&1", you'd have to escape the "&", like this:

[rechosen@localhost ~]$ ps aux > \&1

Or you could put "&1" between single quotes, like this:

[rechosen@localhost ~]$ ps aux > '&1'

Wrapping a filename containing problematic characters between single quotes generally is a good way to stop bash from messing with it (unless there are single quotes in the string, then you'd have have escape them by putting a \ in front of them).
Back again to the "2>&1". Now that we know what it means, we can also apply it in other ways, like this:

[rechosen@localhost ~]$ ps aux > filename 2>&1

The stdout output of ps aux will be sent to the file filename, and the stderr output, too. Now, this might seem unlogical. If bash would interpret it from the left to the right (and it does), you might think that it should be like:

[rechosen@localhost ~]$ ps aux 2>&1 > filename

Well, it shouldn't. If you'd execute the above syntax, the stderr output would just be echoed to the terminal. Why? Because bash does not redirect to a stream, but to the current final destination of the stream. Let me explain it:

First, we're telling bash to run the command "ps" with "aux" as an argument.
Then, we're telling to redirect stderr to stdout. At the moment, stdout is still going to the terminal, so the stderr output of "ps aux" is sent to the terminal.
After that, we're telling bash to redirect the stdout output to the file filename. The stdout output of "ps aux" is sent to this file indeed, but the stderr output isn't: it is not affected by stream 1.

If we put the redirections the other way around ("> filename" first), it does work. I'll explain that, too:

First, we're telling bash to run the command "ps" with "aux" as an argument (again).
Then, we're redirecting the stdout to the file filename. This causes the stdout output of "ps aux" to be written to that file.
After that, we're redirecting the stderr stream to the stdout stream. The stdout stream is still pointing to the file filename because of the former statement. Therefore, stderr output is also written to the file.

Get it? The redirects cause a stream to go to the same final destination as the specified one. It does not actually merge the streams, however.
Now that we know how to redirect, we can use it in many ways. For example, we could pipe the stderr output instead of the stdout output:

[rechosen@localhost ~]$ ps aux 2>&1 > /dev/null | grep init

The syntax in this snippet will send the stderr output of "ps aux" to "grep init", while the stdout output is sent to /dev/null and therefore discarded. Note that "grep init" will probably not find anything in this case as "ps aux" is unlikely to report any errors.
When looking more closely to the snippet above, a problem arises. As bash reads the command statements from the left to the right, nothing should go through the pipe, you might say. At the moment that "2>&1" is specified, stdout should still point to the terminal, shouldn't it? Well, here's a thing you should remember: bash reads command statements from the left to the right, but, before that, determines if there are multiple command statements and in which way they are separated. Therefore, bash already read and applied the "|" pipe symbol and stdout is already pointing to the pipe. Note that this also means that stream redirections must be specified before the pipe operator. If you, for example, would move "2>&1" to the end of the command, after "grep init", it would not affect ps aux anymore.
We can also swap the stdout and the stderr stream. This allows to let the stderr stream pass through a pipe while the stdout is printed to the terminal. This will require a 3rd stream. Let's have a look at this example:

[rechosen@localhost ~]$ ps aux 3>&1 1>&2 2>&3 | grep init

That stuff seems to be quite complicated, right? Let's analyze what we're doing here:

"3>&1" => We're redirecting stream 3 to the same final destination as stream 1 (stdout). Stream 3 is a non-standard stream, but it is pretty much always available in bash. This way, we're effectively making a backup of the destination of stdout, which is, in this case, the pipe.
"1>&2" => We're redirecting stream 1 (stdout) to the same final destination as stream 2 (stderr). This destination is the terminal.
"2>&3" => We're redirecting stream 2 (stderr) to the final destination of stream 3. In the first step of these three ones, we set stream 3 to the same final destination as stream 1 (stdout), which was the pipe at that moment, and after that, we redirected stream 1 (stdout) to the final destination of stream 2 at that moment, the terminal. If we wouldn't have made a backup of stream 1's final destination in the beginning, we would not be able to refer to it now.

So, by using a backup stream, we can swap the stdout and stderr stream. This backup stream does not belong to the standard streams, but it is pretty much always available in bash. If you're using it in a script, make sure you aren't breaking an earlier command by playing with the 3rd stream. You can also use stream 4, 5, 6 7 and so on if you need more streams. The highest stream number usually is 1023 (there are 1024 streams, but the first stream is stream 0, stdin). This may be different on other linux systems. Your mileage may vary. If you try to use a non-existing stream, you will get an error like this:

bash: 1: Bad file descriptor

If you want to return a non-standard stream to it's default state, redirect it to "&-", like this:

[rechosen@localhost ~]$ ps aux 3>&1 1>&2 2>&3 3>&- | grep init

Note that the stream redirections are always reset to their initial state if you're using them in a command. You'll only need to do this manually if you made a redirect using, for example, exec, as redirects made this way will last until changed manually.

Final words

Well, I hope you learned a lot from this tutorial. If the things you read here were new for you, don't worry if you can't apply them immediately. It already is useful if you just know what a statement means if you stumble upon it sometime. If you liked this, please help spreading the word about this blog by posting a link to it here and there. Thank you for reading, and good luck working with bash!

Rahasia : Manage GMail on Ubuntu

2011-02-14T23:31:00.000-08:00

Now, go ahead to the next window. Here, most of the settings are your preferences. But here are the typical settings for anyone.If you’re a Linux fan, you’re probably using it. Ubuntu is the most widely supported Linux distribution. Almost every Linux user is familiar with it. Here’s a little tip. You can use Ubuntu’s Evolution Mail (also comes with many other Linux distributions) to manage your Gmail account. And it’s pretty easy.

First of all, you need to enable IMAP in your account. For that, go to Settings, and then click the ‘Forwarding and POP/IMAP’ tab there.

Then, enable IMAP forwarding in here.

Now, just open up Evolution Mail from Applications -> Office -> Evolution Mail and Calendar and follow the following steps:

* Now, you’ll get the first time setup wizard. Click Forward in the first window.
* Then it’ll ask you if you want to setup Evolution from a backup. You don’t want to do that. So, skip this.
* Next window, type in your name and your email (yes, the Gmail one), like I have done here.

* Next, make sure you have the following settings (click the image to see a bigger version):

* Now, go ahead to the next window. Here, most of the settings are your preferences. But here are the typical settings for anyone.

* Once, more on the next step, make sure your settings are the same as mine here:

* After this, you’re done. The next step will ask you what you want to name this mailbox. I named mine ‘Gmail’. You can choose your own name too.
* Congratulations. The next window will tell you that you’re done. You can now click ‘Apply’ there and start using Evolution.
* It will ask you your password to download your messages. Type it in, and you may check the box below it so that it will remember it for you.

Enjoy your new mail client.

Sourcce : ubuntuGeek

Rahasia : Make Up Over Your Windows Look Like Ubuntu

2011-02-08T03:23:00.000-08:00

If you are using a dual boot system with Ubuntu and Windows, you can clearly notice the limitations Linux has. And for many (myself included), Linux is extremely difficult. After awhile I came to the conclusion that I didn’t need ubuntu at all, but I still loved to look and feeling, after searching for ways to make my windows computer have that gnome feeling this is what I found:

Start with the visual style, if you haven’t already install Uxtheme Multipatcher, this will remove the limitations on your system, in order to install new themes. Then download the Human Visual Style Ubuntu Linux.

Go to C:\Windows\Resources\Themes and safe your download theme in there.

Now right click on your Desktop and click on Properties. Go to Appearance and select Human as the theme.

Now change the icons, first install Icontweaker,after that install Ubuntu Icontweaker theme.

Next, change the wallpaper on your desktop, get the Ubuntu wallpaper Here or Here.

To replace the icons for Windows Explorer, first install Styler toolbar(free), get the Ubuntu Human Theme for Styler.

Now get the famous Ubuntu Cursor

Now, what everybody wants. The alternative to Beryl on Linux. Get it Here, and get that “3D CUBE” effect.

To change the boot screen download BootSkin (it’s free): Get it Here.
And download the Ubuntu Bootskin:

To get Ubuntu Logon screen go here.

For Mozilla Firefox Web Browser, you can install the Ubuntu Theme, for Thunderbird or Dapper Retouched for Opera.

Rahasia : Fix Touchpad Issues on Asus UL30

2011-02-08T03:20:00.002-08:00

Ubuntu 10.04 was good and bad for the UL30. While the touchpad worked flawlessly, there were some issues where the processor seemed to "lag," or catch, and you had to hit a keyboard button to make it get out of its rut. All that has seemed to be fixed in the 10.10 update, but I lost some functionality of the touchpad.
I like using a two-finger tap as mouse button 2. That way I can close tabs in chrome, open menus, etc, and use the three-finger tap as button 3, which I rarely use. I found a neat tip here on how to fix the mouse buttons. The yurivkhan patch worked great for 10.04, but in 10.10, every time I restart or awaken my computer from suspend, my mouse buttons have reverted to their default:

ben@ben-UL30A:~$ synclient -l
ben@ben-UL30A:~$ ...
TapButton2=3
TapButton3=2

This was a big head-scratcher, and all the advise out there on the interweb was pretty useless. Changing the settings, of course, is very simple:

ben@ben-UL30A:~$ synclient TapButton2=2 TapButton3=3
ben@ben-UL30A:~$

However, the settings would revert after a suspend or reboot. Even with yurivkhan patch. Even with adjustments to mouse buttons in the patched gconf. And it's annoying to switch the settings back every time you open your computer. I want it streamlined, and automated. This is a machine, after all. Do it for me!

The fix is head-slappingly simple. Make a bash script, I named it touchpad.sh, with the following contents:

#!bin/bash
#make the script sleep for a few seconds so that the touchpad driver will have time to load
sleep 10
synclient TapButton2=2 TapButton3=3
exit

Now your button settings should do as that script told them to do, and be in the appropriate way after reboot AND wake from suspend.
Note: You can add whatever synclient settings you want to that script, of which there are many.

Note: Make sure you set the script to be executable, and add it to your startup applications. You could even be so bold as to add it to your /usr/bin:

ben@ben-UL30A:~$ sudo cp touchpad.sh /usr/bin/
ben@ben-UL30A:~$

Now, you can just add touchpad.sh to your startup applications. I like doing it this way better. It just keeps things cleaner. I don't know, call me crazy.

Rahasia : Easily View Saved Passwords in Google Chrome

2011-02-08T03:20:00.000-08:00

Google Chrome web browser is great: it opens quick, responds rapidly, and consistently trounces the competition in speed tests. Of course, it gets all that speed because it uses an inordinate amount of memory. Google Chrome is not in the default ubuntu repositories, but it is available from google, and will add its own repository on installation.
There is a major flaw in chrome. You know how sometimes when you log in to a website, and the browser asks, "would you like to save your password?" and you say, "ya know what, I do want you to save my password, because typing 123qwe is just too much for me." Well, you can view any of those saved password in plain text in google chrome by taking the following 3 steps.

Click on the little wrench in the upper right hand corner.
Click preferences
Click "personal Stuff" tab
Click "show saved passwords"

The fact that "show saved passwords" is even an option is dumbfounding. Why not have it asterisk out the passwords, or require a password to view passwords (or a password to view the password to view the passwords! whoa.) I recognize the other side of this argument: the only way you could access these passwords is by already having access to your computer. Yes, I know that, and security starts at home, but still, why make it so easy?

Rahasia : Fix youtube-dl...and rip them vids!

2011-02-08T03:18:00.001-08:00

Youtube-dl is a great lil' script for download and saving youtube videos to your ubuntu computer (in fact, this script will probably work in any linux-based system that can run bash).
Youtube-dl is available in the repositories, to install it simply enter the following into a terminal:

sudo apt-get install youtube-dl

The basic usage is very easy. For instance, to download a youtube video, just enter the following:

Code:

youtube-dl [url]

Shazam! It's yours! I like to then convert the video to an mp3. There are many ways to do that, but I personally like to use ffmpeg (sudo apt-get install ffmpeg). It's versatile, CLI, and easily coupled with a youtube-dl command. Here is a command I commonly use:

Code:

youtube-dl [url] && ffmpeg -i xyz.flv xyz.mp3 && rm xyz.flv

This will download the video, convert it to a .mp3 and remove the original .flv file.

Recently, however, unfortunately, youtube/google seems to have changed their API settings, making the standard repo-version of youtube-dl non-functional. I typically get the following error, for example, when trying to download a crappy Enrique Iglesias song:

Code:

ben@ben-UL30A:~$ youtube-dl http://www.youtube.com/watch?v=Jx2yQejrrUE
[youtube] Setting language
[youtube] Jx2yQejrrUE: Downloading video webpage
[youtube] Jx2yQejrrUE: Downloading video info webpage
[youtube] Jx2yQejrrUE: Extracting video information
ERROR: unable to download video (format may not be available)

Here is the cure to what ails you. Point your browser here and right-click save-as.

Once the file is saved, enter the following code into a terminal:

chmod uo+x youtube-dl.txt
sudo mv youtube-dl.txt /usr/bin/youtube-dl

Now you can use youtube-dl and not have to worry about new API settings....for now.....

Rahasia : Install Lexmark i386 Drivers on 64-bit Ubuntu Systems

2011-02-08T03:17:00.001-08:00

I run Ubuntu 10.10 on a 64-bit Asus UL30A. I have this ancient printer, the Lexmark X2500, that my wife got for our engagement, and it sucks. Yet it bears sentimental value, so it remains our faithful family printer. On my previous laptop--a Dell Vostro 1000 that could only handle Ubuntu 9.04--I used a Lexmark X2600 print driver and modified the config files so that they would point towards the X2500, using this recipe. It worked like a champ. There are several issues with using this method for any ubuntu distro beyond 9.04 and on 64-bit systems:

The GUI installer will ask for a root password for the installation. No matter what pw you enter, you will be denied (italics for emphasis). This is true on my 64-bit Maverick and on the eeePC UNR 9.10.
Running the installer as sudo from the terminal will resolve problem 1, but the installation still fails on my UL30 64-bit system.
Scanning is a whole 'nother issue

Here is how to install the driver on 64-bit debian-based systems, like Ubuntu. First, download the driver here.

Once you have downloaded it, open it and extract it somewhere, preferably home folder or a subfolder therein. Then grab a terminal and cd into the directory where you extracted the driver and enter the following:

Code:

./lexmark-inkjet-08-driver-1.0-1.i386.deb.sh --noexec --target lexmark
cd lexmark/
tar xvf instarchive_all --lzma
lexmark-inkjet-08-driver-1.0-1.i386.deb
sudo dpkg -i --force-all lexmark-inkjet-08-driver-1.0-1.i386.deb

Your driver will now be installed. You may follow the instructions listed above, namely replacing all 0x011d/011d with 0x010b/010b in /usr/lexinkjet/lxk08/. One notable change from the ubuntuforums directions above is that there is also an instance of 011D in the lx2600.ppd file.
You can double-check that you found all the instances by using a simple grep:

Code:

grep -r -i -H 011d /usr/lexinkjet/lxk08/

At this point, I am stuck not being able to print or scan. All print requests halt at "Printer is busy." Neither xsane or simplescan recognize that a scanner is present. So, to be continued...

Rahasia : Make URLs Tiny with TinyURL Gnome-Do Plugin

2011-02-08T03:15:00.001-08:00

URLs are an unwieldy bunch, and much like my wife's vociferous tirades, they are only getting longer. However, there exist many great resources (here, here, and here; the list goes on) to shorten that distastefully lengthy URL for a quick paste into gchat, a facebook comment, or the like. To do this, you must undertake the arduous and lengthy task of opening a new broswer tab, pasting, clicking, copying, then pasting.
Ubuntu, for many, is about speed and productivity. And looks. And ease of use. One of the best ways to increase your productivity in the Gnome environment is Gnome-Do (reviewed previously). Do has a ton of great plugins, with descriptors on usage and modification on the wiki. A great plugin for Do is TinyURL, which is in the community plugins section. To turn it on, go to Gnome-Do preferences, search for TinyURL in the plugins tab, and make sure it is checked. Here is a great usage, making a link to a favorite cooking blog, for gluten free molasses cookies.\

1. Open the gnome-do window
2. paste your url in the first box,
3. hit tab
4. type in t,i,n. this should bring up the tinyurl option. hit enter
5. you now have your TinyURL generated. You may visit the site by hitting enter, or...
6. hit tab. type in copy, and hit enter. it is now copied to your clipboard!

This whole process takes about 1-2 seconds. And you never have to remove your hands from the keyboard. It is a super-quick way of producing shortened urls and have them in your clipboard. See pictures below for visual depictions of the above-mentioned instructions.

Rahasia : Hack into Wireless Routers With WepCrack-GUI

2011-02-08T03:14:00.001-08:00

Aircrack-ng is suite of CLI applications centered around penetrating wireless routers. It is available in the repositories. To install in Ubuntu 10.10, simply type into a terminal:

sudo apt-get install aircrack-ng

There is lots of great information available on the aircrack website, and in the aircrack forums. I am sure you will dutifully read every word written in their wiki, but perhaps you still have questions and don't enjoy being mocked and derided by the german hackers who frequent their site (they tend to answer every question with, "please read before posting [dumbass]"). Maybe you are not at the level where you can thoroughly appreciate the intricacies of wireless security and WEP key decryption. I recommend at least reading the getting started guide, so that you know a little about what is going on. I won't attempt to write a how-to guide on individual commands, because that is way above my paygrade. However, let's say you want to gain access to a router, yet you have not been afforded the password or key. Let's also say that you checked with the law and bylaws of your area and are assured that it is not illegal in your area, as it is illegal in many areas to access a router to which you have not been given proper authorization by its owner. Again, let's say that you are sure you are not violating the laws in your area by using this software.

So here you are, you to want crack a router's security, but you are a total n00b. Well, fear not my friends, WepCrack-GUI is here! This is a nifty lil' GUI app written in mono, that will essentially perform the aircrack-ng CLI commands for you, and output it in its cute GUI interface.

To install WepCrack-GUI, direct your browser to their sourceforge page, or enter the following commands into a terminal:

Code:

wget http://sourceforge.net/projects/wepcrackgui/files/Rel_08_4/WepCrack0.8.4.tar.gz

tar xvfz WepCrack0.8.4.tar.gz
cd WepCrack/
sudo ./wepcrack

This will final command will run the GUI interface and *should* turn off your network-manager (so don't be alarmed if/when it does). Don't worry, it will switch your wireless back on once you close the applications. If it crashes, your network-manager will still be off. To restore your wireless, go ahead and reopen the program and then close in properly, or enter into a terminal

sudo start network-manager

Should you want to use crunch to crack WPA or mdk3 to discover hidden ESSID (hint: you want this), then you will need to grab and install those files as well.

Crunch:

Download latest crunch from here or open a terminal and enter:

Code:

wget http://sourceforge.net/projects/crunch-wordlist/files/crunch-wordlist/crunch-2.7.tgz

tar xvf crunch-2.7.tgz
cd crunch2.7/
make
make install

MDK3

Download latest MDK3 files from here. Then extract and open a terminal:

Code:

cd 
tar xvjf 
make
make install

Once you have downloaded and installed these two files, open WepCrackGUI and click on Options-->Preferences and make sure the crunch and mdk3 locations point to the respective install folders. I went ahead and moved the crunch and mdk3 folders to the wepcrack folder once they were installed.

Now you are ready to roll, sort of. You have to make sure your wireless card supports aircrack-ng in general, and packet injection in specific. You will have to do some careful reading on the aircrack-ng compatibility page to make this determination. It works perfectly on my Asus UL30A running Ubuntu 10.10, which has an Atheros AR9285 wireless chipset . To make it work, you MUST use patched compat-wireless drivers. To do this, follow the instructions here, under the subheading for kernel 2.6.24 or higher. You will need to go to the site and download the driver yourself, because they are not updated daily so the date -I flag will not work.

I used driver-select, because I am running ath9k drivers (check your lsmod output to see if you are). If you are also using ath9k drivers, then you can simply follow the driver select options on the compat-wireless page linked above, word for word. Make sure you reload your wireless driver with:

sudo modprobe ath9k

You can check your lsmod output to see if the driver is in fact patched. After that, you should have no problems switching channels or injecting packets with either the CLI or the GUI app.

Happy Cracking!

Rahasia : Packet Sniffer

2011-01-29T21:26:00.001-08:00

Packet sniffing is listening (with software) to the raw network device for packets that interest you. When your software sees a packet that fits certain criteria, it logs it to a file. The most common criteria for an interesting packet is one that contains words like "login" or "password."
To do packet sniffing, you will have to obtain or code a packet sniffer that is capable of working with the type of network interface supported by your operating system:

Network interfaces include:

LLI
NIT (Network Interface Tap)
Ultrix Packet Filter
DLPI (Data Link Provider Interface)
BPF (Berkeley Packet Filter)

LLI was a network interface used by SCO, which has been augmented with DLPI support as of SCO OpenServer Release V.
NIT was a network interface used by Sun, but has been replaced in later releases of SunOS/Solaris with DLPI.
Ultrix supported the Ultrix Packet Filter before Digital implemented support for BPF.
DLPI is supported under current releases of System V Release 4, SunOS/Solaris, AIX, HP/UX, UnixWare, Irix, and MacOS. DLPI is partially supported under Digital Unix. Sun DLPI version 2 supports Ethernet, X.25 LAPB, SDLC, ISDN LAPD, CSMA/CD, FDDI, Token Ring, Token Bus, and Bisync as data-link protocols. The DLPI network interface provided with HP/UX supports Ethernet/IEEE 802.3, IEEE 802.5, FDDI, and Fibre Channel.

BPF is supported under current releases of BSD and Digital Unix, and has been ported to SunOS and Solaris. AIX supports BPF reads, but not writes. A BPF library is available for Linux.

Packet Sniffers

Commercial, bundled, and free packet sniffers are available for most operating systems:

Free Packet Sniffers

Ethereal

Platform(s): Most
License: Open Source GPL
Ethereal is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product. Its open source license allows talented experts in the networking community to add enhancements. It runs on all popular computing platforms, including Unix, Linux, and Windows.

tcpdump

Platform(s): Most
License: BSD License
Tcpdump prints out the headers of packets on a network interface that match the boolean expression. It can also be run with the -w flag, which causes it to save the packet data to a file for later analysis, and/or with the -b flag, which causes it to read from a saved packet file rather than to read packets from a network interface. In all cases, only packets that match expression will be processed by tcpdump.

nfswatch/

Platform(s): Unix
License: Open Source
nfswatch is a packet sniffer which is dedicated to sniffing NFS (Network File System) traffic. nfswatch lets you monitor NFS requests to any given machine, or the entire local network. It mostly monitors NFS client traffic (NFS requests); it also monitors the NFS reply traffic from a server in order to measure the response time for each RPC.

Web Packet Sniffer

Platform(s): nix
License: Open Source
Web Packet Sniffer is a pair of Perl scripts that together will:

Listen to all TCP/IP traffic on a subnet.
Intercept all outgoing requests for web documents and display them.
Intercept all incoming requests for web documents and display them.
Decode the Basic authentication passwords, if any.

Sniffit

Platform(s): Linux, SunOS, Solaris, FreeBSD and Irix
License: Open Source
sniffit is a packet sniffer for TCP/UDP/ICMP packets. sniffit is able to give you very detailed technical info on these packets (SEQ, ACK, TTL, Window, …) but also packet contents in different formats (hex or plain text, …).

Bundled Packet Sniffers

Microsoft Network Monitor

Platform(s): Windows
License: Bundled with Microsoft Windows
Microsoft Network Monitor is the packet sniffer which is bundled with Microsoft Windows.
Network Monitor is a component of Microsoft Systems Management Server (SMS) that enables you to detect and troubleshoot problems on LANs, WANs, and serial links running the Microsoft Remote Access Server (RAS). Network Monitor provides real-time and post-capture modes of network data analysis.
In real-time analysis, network traffic is examined by real-time monitors. These monitors test network traffic for a specific set of conditions, and when those conditions are detected, display events, which may prompt end-user action. For example, a monitor can detect conditions that indicate a SYN attack and aid a network administer to respond to the potential attack.
In post-capture analysis, network traffic is saved in a proprietary capture file so that the captured data can be analyzed later. In this case, analysis can be in the form of protocol parsers picking out specific network frame types and displaying the frame data in the Network Monitor UI; or analysis can be in the form of experts examining the network data and displaying a report (experts may also manipulate the network data).
Network Monitor provides the following types of functionality:

Captures network data in real-time or delayed mode.
Provides filtering capabilities when capturing data.
Uses monitors for real-time analysis and security.
Uses experts and parsers for detailed post-capture analysis.

snoop

Platform(s): Solaris
License: Bundled with Solaris
snoop is the packet sniffer which is bundled with the Solaris Operating System.
snoop captures packets from the network and displays their contents. snoop uses both the network packet filter and streams buffer modules to provide efficient capture of packets from the network. Captured packets can be displayed as they are received, or saved to a file for later inspection.
snoop can display packets in a single-line summary form or in verbose multi-line forms. In summary form, only the data pertaining to the highest level protocol is displayed. For example, an NFS packet will have only NFS information displayed. The underlying RPC, UDP, IP, and ethernet frame information is suppressed but can be displayed if either of the verbose options are chosen.

nettl / netfmt

Platform(s): HP-UX
License: Bundled with HP-UX
The nettl and netfmt packet sniffing utilities are bundled with the HP-UX operating system.

Commercial Packet Sniffers

LanWatch

Platform(s): DOS/Windows
License: Commercial
LANWatch is a software-based network packet analyzer. Easy to install and use, LANWatch monitors traffic in real time and displays a wide range of statistics. With LANWatch, network administrators can quickly identify problems and keep networks running at peak performance. Support and QA Personnel can determine the origin of network problems. Network Application and Protocol Developers can easily monitor, examine and verify network protocols in both hexadecimal and formatted views.

Etherpeek

Platform(s): Windows, Macintosh
License: Commercial
EtherPeek is an Ethernet network traffic and protocol analyzer designed to make the complex tasks of troubleshooting and debugging mixed-platform, multi-protocol networks easy. EtherPeek sets the industry standard for ease-of-use while delivering all the superior diagnostic and analysis capabilities expected of a full-featured analyzer at an affordable price.

Sniff'em

Platform(s): Windows
License: Commercial
Sniff'em captures, monitors and analyzes network traffic, detecting bottlenecks and other network related problems. Using this information, a network manager can keep traffic flowing efficiently. The Sniff'em packet sniffer can also be used legitimately or illegitimately to capture data being transmitted over a network.
Sniff'em is a competitively priced, performance minded Windows based Packet sniffer, Network analyzer and Network sniffer, a revolutionary new network management tool designed from the ground up with ease and functionality in mind.

EffeTech HTTP Sniffer

Platform(s): Windows
License: Commercial
EffeTech HTTP Sniffer is a HTTP packet sniffer, protocol analyzer and file reassembly software based on windows platform. Unlike most other sniffers, it is dedicated to capture IP packets containing HTTP protocol, rebuild the HTTP sessions, and reassemble files sent through HTTP protocol. Its smart real-time analyzer enables on-the-fly content viewing while capture, analyze, parse and decode HTTP protocol.

Iris

Platform(s): Windows
License: Commercial
Iris is a powerful yet intuitive network traffic analyzer which allows system administrators to examine the inner workings of their network, simplifying the detective work of pinpointing a security breach or resolving a performance problem.
Iris takes network traffic and returns it to its original format, dramatically reducing the time previously spent examining individual packets. Utilizing Iris, security professionals are able to; read the actual text of an email, as well as any attachments, exactly as it was sent, reconstruct the actual HTML pages that your users have visited and even simulate cookies for entry into password-protected websites.
Iris provides automated filters that can be set up to flag and record specific network traffic that contains a particular MC or IP address, unacceptable words or websites, and more, to ensure whether company security is being compromised or corporate policies are abused. Iris also provides a variety of statistical measurements allowing you to proactively identify, and take the steps to eliminate, performance issues before they can result in downtime.

Rahasia : HTTP sniffer on Linux - urlsnarf

2011-01-29T21:20:00.000-08:00

We have experienced high load on one of our web servers lately (Apache 2.0.59 on Linux). So, I started thinking about how to analyze this in a bit more detail. We are running multiple virtual hosts (around 60) so when using tcpdump it is not easy to see which URLs are requested, therefore I looked around for some HTTP-oriented sniffer. My search ended with “urlsnarf” from the “dsniff” package.

Last change in dsniff was in 2000 and it has libnet and libnids dependencies. It took me a couple of tries (and a minor patch) to get it to compile but when done I was happy with the result. urlsnarf simply sniffs HTTP traffic on one or more parts and generates output in the common log format making it easy to see which URLs are reqeusted.
I could then see what URL were the most frequently requested and continue on to the awstats logs which we have for each virtual host. Then it was quite easy to find a couple of pages with very large images that were very frequently requested and from there we could take relevant actions to reduce the HTTP load.

Rahasia : Top 11 Packet Sniffers

2011-01-29T21:09:00.000-08:00

After the tremendously successful 2000 and 2003 security tools surveys, Insecure.Org is delighted to release this 2006 survey. I (Fyodor) asked users from the nmap-hackers mailing list to share their favorite tools, and 3,243 people responded. This allowed me to expand the list to 100 tools, and even subdivide them into categories. This is the category page for packet sniffers -- the full network security list is available here. Anyone in the security field would be well advised to go over the list and investigate tools they are unfamiliar with. I discovered several powerful new tools this way. I also point newbies to this site whenever they write me saying “I don't know where to start”.
Respondents were allowed to list open source or commercial tools on any platform. Commercial tools are noted as such in the list below. No votes for the Nmap Security Scanner were counted because the survey was taken on a Nmap mailing list. This audience also biases the list slightly toward “attack” hacking tools rather than defensive ones.
Each tool is described by one ore more attributes:

	Did not appear on the 2003 list
	Generally costs money. A free limited/demo/trial version may be available.
	Works natively on Linux
	Works natively on OpenBSD, FreeBSD, Solaris, and/or other UNIX variants
	Works natively on Apple Mac OS X
	Works natively on Microsoft Windows
	Features a command-line interface
	Offers a GUI (point and click) interface
	Source code available for inspection.

Please send updates and suggestions (or better tool logos) to Fyodor. If your tool is featured or you think your site visitors might enjoy this list, you are welcome to use our link banners. Here is the list, starting with the most popular:

Wireshark : Sniffing the glue that holds the Internet together
Wireshark (known as Ethereal until a trademark dispute in Summer 2006) is a fantastic open source network protocol analyzer for Unix and Windows. It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, delving down into just the level of packet detail you need. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. A tcpdump-like console version named tethereal is included. One word of caution is that Ethereal has suffered from dozens of remotely exploitable security holes, so stay up-to-date and be wary of running it on untrusted or hostile networks (such as security conferences).

Kismet : A powerful wireless sniffer
Kismet is an console (ncurses) based 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. It identifies networks by passively sniffing (as opposed to more active tools such as NetStumbler), and can even decloak hidden (non-beaconing) networks if they are in use. It can automatically detect network IP blocks by sniffing TCP, UDP, ARP, and DHCP packets, log traffic in Wireshark/TCPDump compatible format, and even plot detected networks and estimated ranges on downloaded maps. As you might expect, this tool is commonly used for wardriving. Oh, and also warwalking, warflying, and warskating, ... Also categorized as: wireless tools

Tcpdump : The classic sniffer for network monitoring and data acquisition
Tcpdump is the IP sniffer we all used before Ethereal (Wireshark) came on the scene, and many of us continue to use it frequently. It may not have the bells and whistles (such as a pretty GUI or parsing logic for hundreds of application protocols) that Wireshark has, but it does the job well and with fewer security holes. It also requires fewer system resources. While it doesn't receive new features often, it is actively maintained to fix bugs and portability problems. It is great for tracking down network problems or monitoring activity. There is a separate Windows port named WinDump. TCPDump is the source of the Libpcap/WinPcap packet capture library, which is used by Nmap among many other tools.

Cain and Abel : The top password recovery tool for Windows
UNIX users often smugly assert that the best free security tools support their platform first, and Windows ports are often an afterthought. They are usually right, but Cain & Abel is a glaring exception. This Windows-only password recovery tool handles an enormous variety of tasks. It can recover passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. It is also well documented. Also categorized as: password crackers

Ettercap : In case you still thought switched LANs provide much extra security
Ettercap is a terminal-based network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like ssh and https). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized. Many sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN.

Dsniff : A suite of powerful network auditing and penetration-testing tools
This popular and well-engineered suite by Dug Song includes many tools. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.). arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected ssh and https sessions by exploiting weak bindings in ad-hoc PKI. A separately maintained partial Windows port is available here. Overall, this is a great toolset. It handles pretty much all of your password sniffing needs.

NetStumbler : Free Windows 802.11 Sniffer
Netstumbler is the best known Windows tool for finding open wireless access points ("wardriving"). They also distribute a WinCE version for PDAs and such named Ministumbler. The tool is currently free but Windows-only and no source code is provided. It uses a more active approach to finding WAPs than passive sniffers such as Kismet or KisMAC. Also categorized as: wireless tools

Ntop : A network traffic usage monitor
Ntop shows network usage in a way similar to what top does for processes. In interactive mode, it displays the network status on the user's terminal. In Web mode, it acts as a Web server, creating an HTML dump of the network status. It sports a NetFlow/sFlow emitter/collector, an HTTP-based client interface for creating ntop-centric monitoring applications, and RRD for persistently storing traffic statistics. Also categorized as: traffic monitoring tools

Ngrep : Convenient packet matching & display
ngrep strives to provide most of GNU grep's common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets. It currently recognizes TCP, UDP and ICMP across Ethernet, PPP, SLIP, FDDI, Token Ring and null interfaces, and understands bpf filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop. Also categorized as: traffic monitoring tools

#10

EtherApe : EtherApe is a graphical network monitor for Unix modeled after etherman
Featuring link layer, IP and TCP modes, EtherApe displays network activity graphically with a color coded protocols display. Hosts and links change in size with traffic. It supports Ethernet, FDDI, Token Ring, ISDN, PPP and SLIP devices. It can filter traffic to be shown, and can read traffic from a file as well as live from the network. Also categorized as: traffic monitoring tools

#11

KisMAC : A A GUI passive wireless stumbler for Mac OS X
This popular stumbler for Mac OS X offers many of the features of its namesake Kismet, though the codebase is entirely different. Unlike console-based Kismet, KisMAC offers a pretty GUI and was around before Kismet was ported to OS X. It also offers mapping, Pcap-format import and logging, and even some decryption and deauthentication attacks. Also categorized as: wireless tools

Source : http://sectools.org/

Rahasia : Top 10 Ubuntu apps and tweaks

2011-01-29T20:57:00.001-08:00

When I made the switch to Ubuntu Linux on my desktop computer (that is, if you can call triple-booting Windows XP, Vista, and Ubuntu a "switch"), I was a little worried about finding the applications and tools that would make me as productive working in Ubuntu as I am working on Windows.
After a little searching around the interweb, however, I've been more than impressed with the number of great, full-featured applications available for Linux, many of which outshine their Windows counterparts. And what's best - they're all totally free. Here are my top 10 favorite applications and tweaks that made replacing Windows with Ubuntu a breeze.
Taking a page from Mark Pilgrim's essential software list, I've included the necessary command line code to install most of the applications below; if you don't like Terminal, you can use Ubuntu's very friendly Add/Remove software application interface (Applications -> Add/Remove...). Where I haven't included the apt-get line, follow the instructions in the link.

1. Automatix

As I said last week, Automatix will get your system ready to play nice with proprietary codecs and the like, but it can also install a lot of really useful apps, from Picasa and Google Earth to several of the apps on this list. Automatix is a great way to get a lot of applications installed in a hurry.

2. Beagle

Beagle is the Spotlight/Google Desktop search app for Linux. However, think more Spotlight than Google Desktop (which is a good thing, because Google Desktop can suck at times). Beagle indexes your files and lets you construct quick, powerful file searches.

apt-get install beagle

3. Gnome Deskbar Applet

The Gnome Deskbar Applet is sort of a cross between Spotlight and Quicksilver. Basically it's a great app launcher and then some, with plugins designed to integrate more search options than you can shake a stick at, from live Google searches to integration with Beagle.
To use the Deskbar Applet, right-click the top panel and select Add to Panel... and find Deskbar Applet (incidentally, there are a lot of other great tools in the Add to Panel... dialog worth checking out). It's no Quicksilver, but it's better than any app launcher/search tool available on Windows.

apt-get install deskbar-applet

4. VLC

It's no secret that we love us some VLC, so there's no reason not to keep loving it on your new Linux distribution. VLC can play virtually any file format you throw at it.

apt-get install vlc

As a bonus, you can also setup VLC as a plug-in for Firefox.

5. Firefox

It should go without saying at this point, but no operating system would be complete without Firefox. Ubuntu ships with Firefox out of the box, but it never hurts to emphasize something you love so much. Of course, you will want to add any number of Firefox extensions.

apt-get install firefox

6. amaroK

I didn't know that love between a man and a music player was possible, but amaroK's seamless integration with Wikipedia, lyrics and album cover look-ups, and MusicBrainz have me questioning the laws of nature and propriety. Oh, and don't worry - it'll sync to your iPod with its eyes closed.

apt-get install amarok

7. CheckGmail

Even though Google doesn't, for some strange reason, provide a version of the Gmail Notifier for Linux, that doesn't mean you're out of luck - the resourcefulness of the open source community comes to the rescue!

apt-get install checkgmail

8. Add NTFS Read/Write support

If you're switching from Windows, chances are you've got lots of data stored on an NTFS (New Technology File System) formatted drive that you're not ready to get rid of. This used to be a major problem, since Linux isn't able to write files to NTFS drives. Or at least that used to be the case. Luckily the Linux-NTFS project has built a driver to overcome those limitations.

9. Turn off the system beep

You know that annoying, shrill beep that comes not from your speakers, but rather inside the depths of your computer called a system beep? I hate it, but Ubuntu likes to use it when, for example, I'm searching for text in Firefox and I get to the point where the text doesn't match anything. In Windows, this invokes a fairly annoying noise. In Ubuntu, it's the system beep, which is even worse. Here's how to disable it:

rmmod pcspkr

If you decide you miss it, this will re-load it:

modprobe pcspkr

10. XGL/Compiz = Purdiest graphics you've seen in a while

The XGL/Compiz one-two punch offers an incredible window management environment for your Ubuntu installation. My video card isn't quite up to snuff for handling these kind of accelerated graphics (it's really kind of a weenie), and the architecture hasn't got all the kinks worked out, but this is definitely the most exciting GUI I've seen in a while. If you haven't already seen it, check out the irritating yet wonderful video below:
Your mileage may vary with XGL/Compiz, but here are the instructions that worked for me (note: over-the-top thrash metal not included):
UPDATE: Jason from Tectonic says that this article on using Compix/XGL on Ubuntu is the new and improved version of the article linked below, so you might want to check it out instead.

11. (BONUS!) Frozen Bubble

All right, I'll admit - Frozen Bubble isn't the most important app on the list, but I love this game, which is why it gets the coveted number 11 slot. Play it.

apt-get install frozen-bubble

Missing must-have applications?

While this list is a collection of my favorite programs and tweaks for Ubuntu, it is by no means a comprehensive list of the Linux programs that can give you your Windows fix. If you're considering making the switch to Ubuntu but you are worried you won't be able to find a program to satisfy your needs, let us know about it in the comments or at tips at lifehacker. Also, if you're a Linux user with your own favorites, I'd love to hear them.
As for me: While I am really happy with all of the programs I've found for Linux that replace their Windows counterparts (switching to Linux has never been easier), I have to admit that I'm in desperate need of a text replacement tool along the lines of AutoHotkey or Textpander. I would kill for some quick text replacement right about now.

Rahasia : How to Install GNOME 3 (GNOME-Shell) in ubuntu 9.10Karmic Koala

2011-01-19T05:25:00.001-08:00

GNOME (GNU Network Object Model Environment) is a desktop environment created for the operating system GNU / Linux Desktop Environment is recognized as the official GNU project. With the announcement of version 3.0 was introduced GNOME-Shell, which integrates various functions into a 'single window. The desktop area is divided into several parts depending on the activities and workspaces is dynamic: you can add or remove workspaces and you can move any applications in different areas of work, as already happens with Compiz.

Rahasia : How to install Cairo Dock in Ubuntu 10.04 (Lucid Lynx)

2011-01-12T05:44:00.001-08:00

Cairo Dock is a docking application for Linux. It’s quite awesome and makes a wonderful addition to your Linux’s look and feel. Let’s see how to install this lovely utility in Ubuntu 10.04 (Lucid Lynx).

But before we get into the details of installing it. Let’s see how it looks like on Ubuntu 10.04.

Let’s get on with the installation. Open a terminal window and add the following line and copy paste the following line.

sudo add-apt-repository ppa:cairo-dock-team/ppa

Next up copy paste the following line in your terminal

sudo apt-get update

Next copy paste the following to install Cairo Dock in your Ubuntu 10.04.

sudo apt-get install cairo-dock

That’s it Cairo dock is installed. You can start it by going to Applications > System Tools > Cairo Dock (If your system doesn’t support OpenGPL).

If you have OpenGPL support you can run cairo dock with OpenGPL

Applications > System Tools > GLX-Dock.

By default Cairo is not installed to run at startup. You can do so, by going to System > Preferences > Startup Applications. And adding the following.

That’s all. We are done here!

Ubuntu Offline Upgrade 10.04 to 10.10 (Maverick Meerkat)

2011-01-05T00:27:00.000-08:00

Basically, an offline upgrade means doing an Ubuntu CD upgrade, rather than direct from within Ubuntu itself using the Update Manager. You can also use this offline upgrade method to upgrade your WUBI (Ubuntu in Windows) installation, and Ubuntu Alpha, Beta, or Release Candidate (RC) versions.
This article shows you how to do an offline cdrom update of your Ubuntu from version 10.04 ("Lucid Lynx") to 10.10 (aka "Maverick Meerkat") and is meant for people whose PC to-be-upgraded has a SLOW internet connection. Ubuntu ver 10.10 was released on the 10th of October, 2010. For those of you who are not aware of this, the 10 in 10.04 refers to year 2010 and the 04 - month 04. Hence, 10.10 equals Year 2010 Month 10.
Preparation:

Make sure that your current Ubuntu distribution is up-to-date prior to doing the upgrading (-you must have all the latest available updates for your version) as you will get messages prompting you to connect to the internet for updating if it is not up-to-date.

Note: This means that if the PC to be upgraded has NO internet connection, this is not the solution for you. Either start afresh with a new Ubuntu or Ubuntu WUBI (Ubuntu Windows install) or search Google for "Ubuntu no internet upgrade".

Have at least 800MB space available in your Ubuntu file system

Don't be lazy! Do some reading on the latest release notes or at least skim through them. ;)

Please note that you CANNOT jump versions when doing an upgrade. As long as your version is 8.04 and above, you should be able to follow this guide to upgrade to the latest and greatest version of Ubuntu. Just make sure that you upgrade incrementally this way: 8.04 to 8.10, 8.10 to 9.04, 9.04 to 9.10, 9.10 to 10.04, 10.04 to 10.10, 10.10 to 11.04 Natty Narwhal (when available). Or put in another way: Upgrade Ubuntu Hardy Heron (8.04) to Intrepid Ibex to Jaunty Jackalope to Karmic Koala to Lucid Lynx to Maverick Meerkat to Natty Narwhal . No jumps! If you're too far behind, it's better to just get the latest CD and install from scratch. Why is that? As you can see from the simple upgrade path above, assuming that 1 CD is 700 MB, you will have to download at least 2800 MB of files to upgrade this way!

Using a previous incarnation of Ubuntu some time back, my laptop was still running 8.10, what I did was to upgrade to 9.04 from within 8.10 in anticipation of upgrading to 9.10.
But, having upgraded to 9.04, I found the downloading time for the live upgrade was too long - that's when I chose to do an offline upgrade for 9.10 - and hence writing this hub to document my experience.
(Continued below after the installation pictures ...)

Ubuntu 10.10 Updating: Visual Guide

Just In: (New) Ubuntu 10.10 Upgrade. Note: Pics below showing tried and tested upgrade method on 10.04 version of Ubuntu, works the same way with 10.10.

Keying in the sudo mount command and path to the ISO file in the terminal

Do you want to start the upgrade?

Getting new packages - "Upgrading Ubuntu to version 10.04 LTS"

Installing the upgrades: just starting

Installing the upgrades: 2 mins remaining (Is this going to work?)

Whoa! Progress! The new desktop background is a NEW shade of brown. :D (This was from Beta 1, no longer brown since beta 2)

I really don't mind brown if it comes with nice foreground art as in this picture

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

2011-01-05T00:25:00.005-08:00

Bbagaimana melakukan update cdrom offline Anda Ubuntu dari versi 10.04 ("Lucid Lynx") ke Ubuntu dari versi 10.10 (alias "Maverick Meerkat"), dan dimaksudkan untuk orang-orang yang untuk upgrade memiliki koneksi internet yang lambat. Ubuntu ver 10.10 dirilis pada 10 Oktober 2010. Bagi anda yang tidak menyadari hal ini, 10 di 10 .04 mengacu pada tahun 20 10dan 04-04 bulan. Oleh karena itu, 10.10 sama Tahun 2010 Bulan 10.
Persiapan:
- Pastikan bahwa Anda Ubuntu up-to-date sebelum melakukan upgrade karena Anda tidak ingin mendapatkan kesalahan selama upgrade.

Catatan: Ini berarti bahwa jika PC yang akan diupgrade telah NO koneksi internet, mungkin lebih baik untuk hanya mulai dari awal.

- Memiliki sekurangnya 800MB ruang yang tersedia dalam sistem file Anda Ubuntu.

- Harap dicatat: bahwa Anda TIDAK BISA versi melompat ketika melakukan upgrade. Selama versi Anda adalah 8.04 dan di atas, Anda harus dapat mengikuti panduan ini untuk meng-upgrade ke versi terbaru dan terbaik dari Ubuntu. Pastikan Anda meng-upgrade bertahap cara ini: 8,04-8,10, 8,10-9,04, 9,04-9,10, 9,10-10,04, 10,04-10,10, 10,10-11,04 Natty Narwhal (jika tersedia).Tidak melompat! Jika Anda terlalu jauh di belakang, lebih baik untuk hanya mendapatkan CD terbaru dan menginstal dari awal. Kenapa begitu? Seperti yang dapat Anda lihat dari jalur upgrade sederhana di atas, dengan asumsi bahwa 1 CD adalah 700 MB, anda harus men-download minimal 2800 MB file untuk meng-upgrade cara ini.

Ubuntu 10.10 Updating: Visual Guide

Upgrade Ubuntu 10.10.
Catatan: Foto menunjukkan dicoba dan diuji metode upgrade pada versi 10,04 Ubuntu, bekerja dengan cara yang sama dengan 10.10

Keying in the sudo mount command and path to the ISO file in the terminal.

Apakah anda ingin memulai pemutakhiran (
upgrade)
?

Getting new packages - "Upgrading Ubuntu to version 10.04 LTS

Installing the upgrades: just starting

Instalasi upgrade: 2 menit yang tersisa (Apakah berhasil ?)

Latar belakang desktop baru adalah warna coklat

datang dengan latar depan seni bagus seperti pada gambar ini

1. CD instalasi Alternatif di sini:

Ubuntu 10.10 dapat diunduh

http://www.ubuntu.com/desktop/get-ubuntu/download

alternative download

http://www.ubuntu.com/desktop/get-ubuntu/alternative-download

atau link lokal untuk Ubuntu 10.10 di Indonesia. Tinggal pilih mau desktop edition, netbook edition, atau Ubuntu studio bahkan yang edisi Server.

2. Membakar CD ATAU tidak menggunakan CD.

Hanya me-mount file iso.
Masuk ke terminal (command prompt ) dan ketik:
sudo mount -o loop ~/Desktop/ubuntu-10.10-alternate-i386.iso /cdrom
Perintah yang digunakan adalah ini:
sudo mount -o loop /media/disk/Ubuntu/ubuntu-10.10-alternate-i386.iso /cdrom

If you run into low space error, bring up a terminal and run the following commands to clean junk files fr prev upgrade or updates:
sudo apt-get clean
sudo apt-get autoclean
sudo apt-get remove
Jika tidak dapat menemukan dialog upgrade, cobalah memegang ALT dan tekan F2, lalu ketik ini pada jendela Run.:
gksu "sh /cdrom/cdromupgrade"

atau

kdesudo "sh /cdrom/cdromupgrade"( Kubuntu )
Selesai! dan nikmati ubuntu baru.
JIKA Anda mengalami kesalahan saat upgrade, JANGAN panik TIDAK! Cukup ikuti instruksi apapun yang mungkin muncul pada layar Anda.

sumber:

http://hubpages.com/hub/Ubuntu-Offline-Upgrade

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

2011-01-05T00:25:00.003-08:00

Catatan: Ini berarti bahwa jika PC yang akan diupgrade telah NO koneksi internet, mungkin lebih baik untuk hanya mulai dari awal.

- Memiliki sekurangnya 800MB ruang yang tersedia dalam sistem file Anda Ubuntu.

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

2011-01-05T00:25:00.001-08:00

Catatan: Ini berarti bahwa jika PC yang akan diupgrade telah NO koneksi internet, mungkin lebih baik untuk hanya mulai dari awal.

- Memiliki sekurangnya 800MB ruang yang tersedia dalam sistem file Anda Ubuntu.

Rahasia : How to Remote Access a Linksys Router

2010-12-23T05:36:00.001-08:00

A Linksys router is located between your DSL or cable modem and your internal network. You can access the router's configuration console anywhere from the internal network. However, to access the console from a remote location, you need to change the settings in the administration section. By default, the Linksys router blocks all attempts at remotely accessing the console for security reasons. However, for administrators who manage networks remotely, you can enable this option.

Difficulty: Moderate

Open a Web browser on a machine located within the internal network. Enter the router's IP address into the navigation text box. Enter your user name and password for the router when prompted.
Click the "Administration" tab. Scroll down to the section labeled "Remote Management." Select "Enable" and enter a port number. For convenience, you can leave the default at 8080. Check the box labeled "HTTPS." This setting encrypts the information between your remote machine and the router.
Enter a user name and password for administration. The Linksys router will not allow you to leave the default password when enabling remote administration.
Click the "Save" button to save the settings. Click the "Status" tab. Notice the external IP address for the router. This is the address you need to access the Linksys remotely.
Open a Web browser again and enter the IP address from Step 4. You are now able to manage the Linksys router from the Internet or any remote location.

Network: Remote Vpn Juniper.net/Remote+Vpn

Clientless Remote Network Access for Enterprises; View Free Demo!

Bandwidth Management www.proceranetworks.com

Procera DPI for optimal bandwidth and congestion management.

Used CISCO Euipment www.californiasystem.com/

Buy-sell-lease-rent used Euipment, Router, Switch, Access Server, Etc.

Temperature Monitoring www.temptrack.com.au

Wireless Humidity pH Pressure Temp Quality solutions - All industries

Rahasia : Top 10 Linux Hacking Tools

2010-12-15T01:12:00.000-08:00

This is a Cool Collection of Top Ten Linux Hacking Tools.

1. nmap – Nmap (“Network Mapper”) is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works fine against single hosts. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available.

2. Nikto – Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3200 potentially dangerous files/CGIs, versions on over 625 servers, and version specific problems on over 230 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).

3. THC-Amap – Amap is a next-generation tool for assistingnetwork penetration testing. It performs fast and reliable application protocol detection, independant on the TCP/UDP port they are being bound to.

4. Ethereal – Ethereal is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product.

5. THC-Hydra – Number one of the biggest security holes are passwords, as every password security study shows. Hydra is a parallized login cracker which supports numerous protocols to attack. New modules are easy to add, beside that, it is flexible and very fast.

6. Metasploit Framework – The Metasploit Framework is an advanced open-source platform for developing, testing, and using exploit code. This project initially started off as a portable network game and has evolved into a powerful tool for penetration testing, exploit development, and vulnerability research.

7. John the Ripper – John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), DOS, Win32, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches.

8. Nessus – Nessus is the world’s most popular vulnerability scanner used in over 75,000 organisations world-wide. Many of the world’s largest organisations are realising significant cost savings by using Nessus to audit business-critical enterprise devices and applications.

9. IRPAS – Internetwork Routing Protocol Attack Suite – Routing protocols are by definition protocols, which are used by routers to communicate with each other about ways to deliver routed protocols, such as IP. While many improvements have been done to the host security since the early days of the Internet, the core of this network still uses unauthenticated services for critical communication.

10. Rainbowcrack – RainbowCrack is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique. In short, the RainbowCrack tool is a hash cracker. A traditional brute force cracker try all possible plaintexts one by one in cracking time. It is time consuming to break complex password in this way. The idea of time-memory trade-off is to do all cracking time computation in advance and store the result in files so called “rainbow table”.

Rahasia : Top 10 Linux Hacking Tools

2010-12-15T01:08:00.001-08:00

Rahasia : Cron Explained

2010-12-15T00:59:00.000-08:00

Cron is a Unix based program for automating tasks based on a user-set schedule. Its development has continued since running on the first Unix systems, and is now available on virtually all operating systems. It is a robust algorithm that allows the user to automate anything from shutting down systems, to cleaning directories. It has gained popularity as a highly customizable client for mail hosting, where it can clean out email storage, or download emails or attachments to a specific drive.
How Cron Works
Cronjobs is a service that utilizes the cron algorithm to schedule and automate tasks associated with web server hosting maintenance. Repetitive commands that would otherwise take up a lot of user time can be automated with notifications being stored or additional requests being triggered automatically.

Manual access to cron is through the /etc directory or in /var/spool/cron/ for each user. In order to edit or create new cron files each user must be allowed access to the cron function. Each user can edit a cron entry by logging on to their system and entering crontab –e. The default editor is vi, but this can be modified by entering export VISUAL=’editor’ and a different text editor in the ‘editor’ field. The cron environment is specified by four lines at the top of the crontab file and includes:

SHELL=/bin/bash  
PATH=/sbin:/bin:/usr/sbin:/usr/bin  
MAILTO=root  HOME=/   Specifically, notice the MAILTO line.

This defines the email where the output of the crontab should be sent. This proves to be extremely useful for users to setup cron, and continue monitoring the systems while not physically present. The second part of the crontab file defines the schedule and tasks that cron must complete:   

01 * * * * root run-parts /etc/cron.hourly  
02 4 * * * root run-parts /etc/cron.daily
22 4 * * 0 root run-parts /etc/cron.weekly  
42 4 1 * * root run-parts /etc/cron.monthly   

The schedule operates like this:   

minute hour day month dayofweek command   

The schedule operates within the parameters of 4 values  * is a wildcard which causes the command to be execute for every iteration of that value, i.e., for the first schedule will run every hour.  (-) is a range of values. A hyphen will result in the schedule being run for every integer in between the two values specified  (,) specifies specific values that the task will be run during.  (/) is a step value. For instance */2 in the day field will cause the task to be implemented every other day.

Crontab also recognizes specified shorthand notations of these schedule commands:  
1. @hourly
2. @daily  
3. @midnight
4. @weekly
5. @monthly  
6. @yearly or @annually
7. @reboot: which runs at system startup.   There are two files that can control access to cron: /etc/cron.allow or /etc/cron.deny. If the /etc/cron.allow file is present the user name must be named in the list in order for the user to have access to cron. If the cron.deny file is present all users have access to cron, except for those that are listed in the file.   

The History of Cron
Cron was first developed for Version 7 Unix by Brian Kernighan in the 1970s. It was invoked from /etc/inittab as a system service when entering the multi-user mode using a straightforward and simple algorithm:
1. read /etc/inittab/cron
2. determine if there were any tasks to be run at that time, run them if there were
3. upon completion, sleep for one minute  
4. repeat the process.  

When Purdue University attempted to extend cron’s use to its virtual address extension (VAX) with 100 users, the algorithm used too many resources and slowed use down too much to be viable.   

Robert Brown, a graduate student at Purdue developed the next version of cron, paralleling principles from discrete even simulators. He created an implementation of the Franta-Maly event list that operated in real-time, instead of virtual-time as discrete event-driven simulation systems did that decreased the amount of time cron spent looking for tasks and increased the amount of time it spent sleeping.

Development to the more modern version of cron resulted when Keith Williamson rewrote cron to incorporate all users in the VAX system, rather than just the root. The algorithm looked for a .crontab file in the home directory of each account holder on the system, determined the next time each command was to be run and put this information on the Franta-Maly event list. It would then determine the time the next event was to be run, sleep until that time, wake up, verify the time and execute the command. It would then determine the next time to run the command and place it back on the event list. It also included special wake up events to account for modifications to the schedule created by the users.   

Williamson continued development of this version of cron at AT&T Bell Labs in Murray Hill, New Jersey, incorporating the Unix at command, crontab and a common host-specific spool directory. This version later appeared, mostly unchanged in other Unix versions from Sun Microsystems, Silicon Graphics, IBM and Hewlett-Packard.   Cron On Other Operating Systems

Cron development has continued with applications in numerous other operating systems besides Unix, including Linux and GNU. In 1987 Paul Vixie encoded the popular Vixie cron. Version 3 of Vixie Cron, released in 1993, is used in most Linux and Berkley Software Distributions (BSDs). Version 4.1, released in 2004, was formed by RedHat in 2007, and also included anacron 2.3 in 2009.   

Anacron is a cron-complement which operates on systems that do not run constantly. Like cron it executes tasks according to a schedule, however if a system running cron is powered down during the time when a task is scheduled to be completed, it is not run for that iteration. Anacron will run this operation as closely as machine uptime permits. Thus, once the machine is powered up it will, after a user specified time delay, execute each command synchronously, or if specified, in parallel. It is also limited to running tasks once a day (as opposed to by the minute or hour) and requires a version of cron to operate on top of.

Alternatively, fcron aims to do both what Vixie-cron and Anacron can do by integrating the two into a single software. It was developed on Linux but can also operate on POSIX systems.   

Cron, ported to BSD, remained unchanged for the life of UNIX System V and its derivatives: Solaris, IRIX, HP-UX, and IBM AIX. Vixie cron (now called ISC Cron) and Redhat Linux has cronie and anacron, all of which have contributed to the growth in Linux hosting.   

Hosted cron is free to use unless the site utilizes a lot of resources for which an overage fee is charged, but more often than not cheap Linux hosting has this feature disabled for security and server load limits.

Rahasia : Chating ala MATRIX

2010-12-14T23:14:00.000-08:00

Aplikasi untuk chating yang paling terkenal di linux mungkin pidgin. Tapi pernah ngebayangin gak, klu pidginnya berbentuk terminal (console), biar kelihatan lebih wah…. dan chatinganya biar kelihatan sperti di film-film hacker.hehehe
Di linux ada satu aplikasi yang namanya FINCH, finch adalah aplikasi chating di linux yang tidak mempunyai tampilan GUI, tapi finch bisa dijalankan dalam terminal(console).nih tampilan dari finch.

untuk install bisa langsung melalui SOFTWARE MANAGER.
emang pertama kali pake agak membingungkan, tapi klu dah tau perintah2 untuk ini dan itu. ternyata finch lebih menyenangkan dari PIDGIN (bagi yang suka ketak-ketuk di keyboard ).
berikut-berikut perintah-perintah yang ada di dalam finch (hasil oprekan tengah malam )
Alt + a = untuk menampilkan menu finch, anda dapat membuka jendela account, preference, dll
Alt + n = untuk ke jendela selanjutnya (next windows)
Alt + p = untuk ke jendela sebelumnya (previous windows)
Alt + w = untuk menampilkan list dari tampilan jendela yang telah dibuka
Alt + q = untuk keluar dari Finch
Alt + c = untuk keluar dari jendela yang dinginkan
Alt + m = untuk memindahkan tampilan di terminal
Alt + r = untuk meresize tampilan
Alt + . = untuk memindahkan posisi dari jendela yang telah dibuka
Alt + , = untuk memindahkan posisi dari jendela yang telah dibuka
Alt + l = untuk me refresh tampilan setelah meresize
Alt + 1 2…0 = untuk melakukan lompatan cepat dari jendela 1 ke jendela 8
Ctrl + o = untuk melihat seluruh isi dari buddy (sama kayak ctrl+h di YM).
Ok cuma ini yang baru aq tahu. make finch emang keren oi…hehehe

Source : Oprekan.com

Rahasia : BlackSheep – Detect Users Of FireSheep On The Network

2010-12-02T04:00:00.000-08:00

As you surely know, things blew up recently at Toorcon 12 with the release of the much talked about Firefox plugin called Firesheep.
There were various discussions about how to mitigate against it like using Firefox plug-ins to force SSL connections (where available). Microsoft also tried to secure Hotmail with SSL but kinda b0rked that too.
For the 1 person in the World left that doesn’t know, Firesheep allowed any user to seamlessly hijack the web session of another user on the same local network. Although such attacks are not new, the ease of use presented by Firesheep brought session hijacking to the masses.
BlackSheep, also a Firefox plugin is designed to combat Firesheep. BlackSheep does this by dropping ‘fake’ session ID information on the wire and then monitors traffic to see if it has been hijacked. While Firesheep is largely passive, once it identifies session information for a targeted domain, it then makes a subsequent request to that same domain, using the hijacked session information in order to obtain the name of the hijacked user along with an image of the person, if available. It is this request that BlackSheep identifies in order to detect the presence of Firesheep on the network. When identified, the user will be receive the following warning message:

It should be noted that Firesheep and BlackSheep cannot be installed on the same Firefox instance as they share much of the same code base. If you want to run both Firesheep and BlackSheep on the same machine, they should be installed in separate Firefox profiles.
Requirements
In order to install BlackSheep, you need:

Mac OS X: 10.5 or newer on an Intel processor.
Windows: XP or newer. Install Winpcap first!
Firefox: 3.5 or newer. 32-bit only.
Linux : details here

You can download BlackSheep here:
blacksheep-latest.xpi

Rahasia : Windows Vista & Windows 7 Kernel Bug Can Bypass UAC

2010-12-02T03:58:00.000-08:00

Now this is not the first time Windows UAC has hit the news for being flawed, back in February 2009 it was discovered that Windows 7 UAC Vulnerable – User Mode Program Can Disable User Access Control and after that in November 2009 it was demonstrated that Windows 7 UAC (User Access Control) Ineffective Against Malware.
A zero-day for Windows 7 back in July of this year also bypassed Windows UAC.
Once again a serious zero-day has hit Windows, this time an unpatched vulnerability in the Kernel. So far it only seems to be a local exploit, for full devastating effect hackers will need to combine this with a remote zero-day to get access to the machine and then elevate their permissions and bypass UAC with this.

Microsoft is investigating reports of an unpatched vulnerability in the Windows kernel that could be used by attackers to sidestep an important operating system security measure.
One security firm dubbed the bug a potential “nightmare,” but Microsoft downplayed the threat by reminding users that hackers would need a second exploit to launch remote attacks.
The exploit was disclosed Wednesday — the same day proof-of-concept code went public — and lets attackers bypass the User Account Control (UAC) feature in Windows Vista and Windows 7. UAC, which was frequently panned when Vista debuted in 2007, displays prompts that users must read and react to. It was designed to make silent malware installation impossible, or at least more difficult.
“Microsoft is aware of the public posting of details of an elevation of privilege vulnerability that may reside in the Windows kernel,” said Jerry Bryant, a group manager with the Microsoft Security Response Center, in an e-mail. “We will continue to investigate the issue and, when done, we will take appropriate action.”
The bug is in the “win32k.sys” file, a part of the kernel, and exists in all versions of Windows, including XP, Vista, Server 2003, Windows 7 and Server 2008, said Sophos researcher Chet Wisniewski in a Thursday blog post.

Microsoft is aware of the flaw but has not yet issued a statement as to when they will be patching this, I’d imagine given their past that will wait for the next Patch Tuesday before pushing the patch out. And plus the fact it’s a kernel bug it, it may take a little more time to fix.
The security companies seem to be taking this one quite seriously as the publicly-released code is confirmed working across multiple versions of Windows.
There is a very slight chance that Microsoft might push an Out-of-band-patch for this, but I find it unlikely as it’s not a remote vulnerability.

Several security companies, including Sophos and Vupen, have confirmed the vulnerability and reported that the publicly-released attack code works on systems running Vista, Windows 7 and Server 2008.
Hackers cannot use the exploit to remotely compromise a PC, however, as it requires local access, a fact that Microsoft stressed. “Because this is a local elevation-of-privilege issue, it requires attackers to be already able to execute code on a targeted machine,” said Bryant.
“On its own, this bug does not allow remote code execution, but does enable non-administrator accounts to execute code as if they were an administrator,” added Wisniewski.
Although many Windows XP users, especially consumers and those in very small businesses, run the OS via administrator accounts, Microsoft added UAC to Vista and later operating systems as one way to limit user privileges, and thus malware’s access to the PC.
Attackers would have to combine the exploit with other malicious code that takes advantage of another vulnerability on the machine — not necessarily one in Windows, but in any commonly-installed application, such as Adobe Reader, for example — to hijack a PC and bypass UAC.
“This exploit allows malware that has already been dropped on the system to bypass [UAC] and get the full control of the system,” said Prevx researcher Marco Giuliani in an entry on that security company’s blog Thursday.
Prevx reported the vulnerability to Microsoft earlier in the week.

Microsoft has changed the way UAC functions before when it was demonstrated that it could be easily bypassed. The next patch cycle is due on Tuesday, Dec. 14 – which thankfully isn’t too long. I’d be expecting a kernel patch for this issue by then.
There is more info about the issue here:
Sophos – New Windows zero-day flaw bypasses UAC
Prevx – Windows 0-day exploit: Q&A session

Source: Network World

Rahasia : Armitage – Cyber Attack Management & GUI For Metasploit

2010-12-02T03:55:00.000-08:00

Armitage is a graphical cyber attack management tool for Metasploit that visualizes your targets, recommends exploits, and exposes the advanced capabilities of the framework. Armitage aims to make Metasploit usable for security practitioners who understand hacking but don’t use Metasploit every day. If you want to learn Metasploit and grow into the advanced features, Armitage can help you.
Armitage organizes Metasploit’s capabilities around the hacking process. There are features for discovery, access, post-exploitation, and maneuver.
For discovery, Armitage exposes several of Metasploit’s host management features. You can import hosts and launch scans to populate a database of targets. Armitage also visualizes the database of targets–you’ll always know which hosts you’re working with and where you have sessions.
Armitage assists with remote exploitation–providing features to automatically recommend exploits and even run active checks so you know which exploits will work. If these options fail, you can use the Hail Mary approach and unleash db_autopwn against your target database.
For those of you who are hacking post-2003, Armitage exposes the client-side features of Metasploit. You can launch browser exploits, generate malicious files, and create Meterpreter executables.
Once you’re in, Armitage provides several post-exploitation tools built on the capabilities of the Meterpreter agent. With the click of a menu you will escalate your privileges, dump password hashes to a local credentials database, browse the file system like your local, and launch command shells.
Finally, Armitage aids the process of setting up pivots, a capability that lets you use compromised hosts as a platform for attacking other hosts and further investigating the target network. Armitage also exposes Metasploit’s SOCKS proxy module which allows external tools to take advantage of these pivots. With these tools, you can further explore and maneuver through the network.
If you want to learn more about Metasploit there are also some great resources here:
Learn to use Metasploit – Tutorials, Docs & Videos
Requirements
To use Armitage, you need the following:

Linux or Windows
Java 1.6+
Metasploit Framework 3.5+
A configured database. Make sure you know the username, password, and host.

Armitage Changelog
You can download Armitage here:
Windows – armitage112510.zip
Linux – armitage112510.tgz

Rahasia : Cloud Computing Use By Criminals Increasing

2010-12-02T03:53:00.000-08:00

Over the last couple of years Cloud Computing has started gaining some real leverage, it’s being deployed on a wide scale, it’s becoming more affordable and the platforms supplying such services are becoming more stable.
Of course the natural progression of this wider adoption is the focus of the security community and naturally the bad guys too.
There are already tools/services that will rate your Cloud Security and there have been demonstrations of Password Cracking using Cloud Platforms.

Legitimate businesses may well be turning to the Cloud in increasing numbers, but so too are illegitimate business, according to the Minister for Home Affairs and Justice, Brendan O’Connor.
In a speech, given at the International Association of Privacy Professionals Annual Conference in Sydney, O’Connor said cyber criminals were increasingly exploiting the Cloud to achieve their own aims.
“Cyber criminals can not only steal data from Clouds, they can also hide data in Clouds,” he said. “Rogue Cloud service providers based in countries with lax cybercrime laws can provide confidential hosting and data storage services, which facilitates the storage and distribution of criminal data, avoiding detection by law enforcement agencies. By way of example, O’Connor said cyber criminals could use the Cloud to secretly store and distribute child abuse material for commercial purposes.
“Cyber criminals can control servers in Clouds, denying legitimate users access to websites and targeting websites with repeated messages or images,” he said. “There have also been suggestions that Clouds can be used as launching pads for new attacks, such as trying all possible password combinations to break into encrypted data.”
According to O’Connor, the late 2009 attack on Google and several other companies was a reminder of how vulnerable systems and data were.

The whole Cloud model is a boon for cyber-criminals as they can effectively rent as much computing power and storage space as they need with stolen credit card details. They can keep it private if they want, and it’s distributed virtually ‘bullet-proof’ hosting.
I’m sure it’s something which will become more prevalent and I’m pretty sure it’s something which the authorities will start looking into soon. The one thing that will get everyone hot and bothered is if it’s discovered that a Cloud Platform is being used for any form of terrorism.

In order to mitigate the risks posed by cyber security, increased transparency and confidence building between Cloud service providers, businesses and government agencies was required, O’Connor said.
For its part, the government was seeking to achieve this through Australian Federal Police’s (AFP) High Tech Crime Unit, a child exploitation tracking system developed by CrimTrac, and thought leadership from the Australian Government Information Management Office (AGIMO).
“AGIMO has consulted widely across government, and is currently investigating a number of issues, including: the vulnerability of offshore data storage; the extra-territorial legal issues around compliance and privacy; and, the contractual arrangements necessary to achieve appropriate levels of security,” O’Connor said.
“Because Cloud service providers aren’t interchangeable, the difficulties inherent in swapping providers will also need to be considered, along with the ability to retrieve information in the event of a disaster or vendor failure.”
In addition, there may also be increased security or privacy risks for governments if a Cloud had unrelated customers sharing hardware and software resources, with the concentration of resources and data in one place providing an attractive target for cyber-criminals.

As with any new platform it needs to mature and it needs some kind of legislation to crack down on illegal activities plus laws to deal with privacy, data segregation and so on.
It’s certainly an area which has sparked some interest and I’m sure we’ll all be watching it closely. I do deal with some large scale web deployments that need high-availability/clustered/cloud platform components so I’m pretty sure some of you do to.
Source: Network World

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

2010-12-01T03:12:00.001-08:00

Here is a guide to install Space-Sunrise Plymouth Splash. This theme is made by Andre "Osku" Schmidt and very difficult to find on the internet. Thanks to inameiname you can now download it from the gnome-look website.

Note: The download files have been replaced by a .deb file so all you have to do is download the 129678-space_sunrise_1.0_all.deb file here, double click it and all the files will be installed. You can skip the following lines:

cd Desktop

sudo cp -R splash /etc/initramfs-tools/conf.d

sudo cp -R space-sunrise/ /lib/plymouth/themes/

Good luck and have fun :)

To install the Space-Sunrise Plymouth Splash:

First download the Plymouth theme here. When downloaded open the 129678-Space-Sunrise-Splash-Theme.tar.gz fille and extract the content to your Desktop. On your Desktop open the Space-Sunrise-Splash-Theme folder and double click the space-sunrise.tar.gz and splash.tar.gz files and extract the contents on your Desktop. To install the Space-Sunrise Plymouth theme open a Terminal window (Applications -> Accessories -> Terminal) and copy+paste the following lines:

cd Desktop

sudo cp -R splash /etc/initramfs-tools/conf.d

sudo cp -R space-sunrise/ /lib/plymouth/themes/

sudo update-alternatives --install /lib/plymouth/themes/default.plymouth default.plymouth /lib/plymouth/themes/space-sunrise/space-sunrise.plymouth 100

sudo update-alternatives --config default.plymouth

A menu will apear. Type the number that corresponds to the Space Sunrise Plymouth in the list and press Return. In your Terminal window Copy+paste the following line:

sudo update-initramfs -u

To see a preview of the theme copy+paste the following lines in your Terminal window:

sudo plymouthd

sudo plymouth --show-splash

To quit the preview copy+paste the following line:

sudo plymouth quit

Note: The preview window doesn't show the plymouth theme full size so it's a bit out of proportions.

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

2010-12-01T03:11:00.003-08:00

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

2010-12-01T03:11:00.001-08:00

Rahasia : Install Web Server Pertama Kali di Ubuntu 10.04

2010-11-29T21:19:00.000-08:00

Pertama buat buat blog dengan engine wordpress, awalnya ada sedikit kesulitan di seputar file permission, coba ngoprek2 dibagian itu, akhirnya ketemu juga masalahnya. Bagimana instalasi dan konfigurasi LAMP server di Ubuntu 10.04 (code name :LTS) berikut Aa share :

Iinstal LAMP (Linux-Apache-MySQL-PHP) di Ubuntu 10.04 (LTS) versi Desktop

Instalasi LAMP:

Aa gunain Synaptic Package Manager dan command apt-get (lebih sering menggunakan apt-get karena lebih cepat). Repository paket langsung dari internet yang dihubungkan melalui Proxy Server di tempat kerja saya.

Dari desktop Gnome, pilih System -> Administration -> Synaptic Package Manager.
Setelah berada pada window Synaptic Package Manager, pilih Edit -> Mark Packages by Task.
Kemudian pilih LAMP server dan jalankan instalasinya.
Untuk instal phpMyAdmin, silahkan Search dan ketikkan phpmyadmin.

Jika teman2 ingin menggunakan command apt-get atau aptitude ini tutorialnya:

Instal Apache: sudo apt-get install apache2 apache2-doc apache2-mpm-prefork apache2-utils apache2-suexec libexpat1 ssl-cert
Instal PHP: sudo apt-get install libapache2-mod-php5 libapache2-mod-ruby libapache2-mod-python php5 php5-common php5-curl php5-dev php5-gd php5-idn php-pear php5-imagick php5-imap php5-mcrypt php5-memcache php5-mhash php5-ming php5-mysql php5-pspell php5-recode php5-snmp php5-sqlite php5-tidy php5-xmlrpc php5-xsl
Instal MySQL: sudo apt-get install mysql-server mysql-client libmysqlclient15-dev
Instal phpMyAdmin: sudo apt-get install phpmyadmin

Konfigurasi Web Server Apache:

Edit file /etc/apache2/sites-enabled/000-default, rubah pada bagian:

Options Indexes FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all

menjadi:

Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all

Aktifkan module rewrite (untuk mengaktifkan URL ramah Drupal), gunakan command: $ sudo a2enmod rewrite, sehingga akan muncul:Module rewrite installed; run /etc/init.d/apache2 force-reload to enable.
Jalankan/restart web server apache untuk mengaktifkan perubahan yang sudah dilakukan dengan command: $ sudo /etc/init.d/apache2 restart, jika berhasil maka akan muncul:

Restarting web server apache2
…waiting [ok]

Rubah root direktory web server dengan command:$ sudo chown -R [nama-user] /var/www

Maksudnya agar [nama-user] memiliki akses full terhadap root direktori web server, sehingga memudahkan pengelolaan web saat kita login menggunakan user [nama-user] nantinya.

Konfigurasi MySQL:

Untuk mengelola database MySQL saya menggunakan phpMyAdmin. Saya hanya perlu menambahkan user baru selain root untuk akses database nantinya.
1.Dari browser arahkan URL ke: http://localhost/phpmyadmin. Kemudian masukkan username root dan password.
2.Setelah login dihalaman phpMyAdmin, pilih tab Hak Akses. Kemudian tambahkan pengguna baru, beri hak atas akses database untuk host localhost.

Hendrik-Blog

Bocah 10 Tahun Bongkar Celah di iPhone dan Android

Ubuntu Game Pack (Kumpulan Game Dalam 5 DVD)

Aplikasi Android, Video Player, Rock Player Base

Tutorial Android, Cara Menggunakan Proxy pada Android 2011

Aplikasi Email Android, Yahoo Mail for Android 2011

Rahasia : Tackling the Problem of Cyber Crime

How To Hack With An IP Address

Rahasia : CONKYWIZARD: GUI TO SET UP CONKY AUTOMATICALLY

Rahasia : Hack The Game | Game Simulasi Menjadi Hacker

Rahasia : 12 Reasons to Try Ubuntu 10.10 Now

Rahasia : Work Begins on Ubuntu 11.10 'Oneiric Ocelot'

Rahasia : "Sexy" software

Rahasia : Customize the Panel Ubuntu

Rahasia : Troubleshooting ./configure, make and make install Tutorial

Rahasia : Disabling unused daemons to speed up your boot sequence

Rahasia : The best tips & tricks for bash, explained

Rahasia : Manage GMail on Ubuntu

Rahasia : Make Up Over Your Windows Look Like Ubuntu

Rahasia : Fix Touchpad Issues on Asus UL30

Rahasia : Easily View Saved Passwords in Google Chrome

Rahasia : Fix youtube-dl...and rip them vids!

Rahasia : Install Lexmark i386 Drivers on 64-bit Ubuntu Systems

Rahasia : Make URLs Tiny with TinyURL Gnome-Do Plugin

Rahasia : Hack into Wireless Routers With WepCrack-GUI

Rahasia : Packet Sniffer

Packet Sniffers

Free Packet Sniffers

Bundled Packet Sniffers

Commercial Packet Sniffers

Rahasia : HTTP sniffer on Linux - urlsnarf

Rahasia : Top 11 Packet Sniffers

Rahasia : Top 10 Ubuntu apps and tweaks

1. Automatix

2. Beagle

3. Gnome Deskbar Applet

4. VLC

5. Firefox

6. amaroK

7. CheckGmail

8. Add NTFS Read/Write support

9. Turn off the system beep

10. XGL/Compiz = Purdiest graphics you've seen in a while

11. (BONUS!) Frozen Bubble

Missing must-have applications?

Rahasia : How to Install GNOME 3 (GNOME-Shell) in ubuntu 9.10Karmic Koala

Rahasia : How to install Cairo Dock in Ubuntu 10.04 (Lucid Lynx)

Ubuntu Offline Upgrade 10.04 to 10.10 (Maverick Meerkat)

Ubuntu 10.10 Updating: Visual Guide

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

Ubuntu 10.10 Updating: Visual Guide

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

Ubuntu 10.10 Updating: Visual Guide

Upgrade Ubuntu Offline 10.10 (Meerkat Maverick)

Ubuntu 10.10 Updating: Visual Guide

Rahasia : How to Remote Access a Linksys Router

Instructions

Rahasia : Top 10 Linux Hacking Tools

Rahasia : Top 10 Linux Hacking Tools

Rahasia : Cron Explained

Rahasia : Chating ala MATRIX

Rahasia : BlackSheep – Detect Users Of FireSheep On The Network

Rahasia : Windows Vista & Windows 7 Kernel Bug Can Bypass UAC

Rahasia : Armitage – Cyber Attack Management & GUI For Metasploit

Rahasia : Cloud Computing Use By Criminals Increasing

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

Rahasia : Install Space-Sunrise Plymouth Splash Ubuntu 10.04 LTS "Lucid Lynx"

Rahasia : Install Web Server Pertama Kali di Ubuntu 10.04