XNUXER ..::.. Security and Open Source Website

Integration Postfix with Clamav & Spam Assassin

webmaster — Fri, 19 Nov 2010 16:59:53 +0700

This is how I would enable spamassassin, along with amavis and clamav. Unlike the amavis configuration with maia or the one that partially comes with ispcp, this method uses amavis as pre-queue filter. That makes it possible to reject spam mails instead of only tagging them...

How to compile a kernel for Ubuntu Karmic

webmaster — Sun, 20 Dec 2009 18:10:37 +0700

Ubuntu Karmic has been released to the public a few days ago and it’s time to write up a How To Compile a Kernel article. Only a few small changes have been made to the way we have compile a kernel for Ubuntu Karmic compared to Ubuntu Jaunty but they are significant enough for it’s own how-to.

WebDAV Detection, Vulnerability Checking

webmaster — Sun, 31 May 2009 06:27:12 +0700

The WebDAV implementation in Microsoft Internet Information Services (IIS) 6.0 allows remote attackers to bypass URI-based protection mechanisms, and list folders or read, create, or modify files, via a %c0%af (Unicode / character) at an arbitrary position in the URI, as demonstrated by inserting %c0%af into a "/protected/" initial pathname component to bypass the password protection on the protected\ folder.

Howto install nginx webserver in Debian

webmaster — Sun, 26 Apr 2009 10:16:53 +0700

Nginx (pronounced “engine x”) is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Written by Igor Sysoev in 2005, Nginx now hosts between 1% and 4% of all domains worldwide .Nginx is known for its stability, rich feature set, simple configuration, and low resource consumption.

Chrooting Apache2 howto

webmaster — Tue, 10 Mar 2009 15:58:30 +0700

This article was inspired by Artur Maj's article Securing Apache: Step-by-Step shows in a step-by-step fashion, how to install and configure the Apache 2.0.x series web server in much the same way as the 1.3.X covered in Artur's article, i.e. "in order to mitigate or avoid successful break-in when new vulnerabilities in this software are found".

enyelkm-1.3-no-objs.tar.gz

webmaster — Fri, 06 Mar 2009 03:58:52 +0700

LKM rootkit for Linux x86 with the 2.6 kernel. It inserts salts inside system_call and sysenter_entry handlers, so it does not modify sys_call_table, or IDT content. It hide files, directories, and processes. Hides chunks inside of files, gives remote reverse_shell access, local root, etc. This version of the rootkit is specifically ported to work on Ubuntu 8.04 with the 2.6.24 kernel. No backwards compatibility is provided. The modified rootkit was simply meant as a proof of concept for a book. The documentation was not updated to reflect the changes and this was submitted to the site anonymously. Use are your own risk.

pt-check-09-001.zip

webmaster — Fri, 06 Mar 2009 03:58:52 +0700

Standalone MS vulnerabilities network scanner to help identify systems vulnerable to the MS08-067, MS08-065 and MS09-001 (Microsoft Bulletins) flaws. The utility operates in PenTest mode. This requires no special rights to detect network nodes without updates. System administrators and security professionals can use this utility for fast and easy discovery of vulnerable systems and install appropriate patches according to the scanning results.

Address Pools And Load Balancing using OpenBSD

webmaster — Thu, 05 Mar 2009 13:16:48 +0700

An address pool is a supply of two or more addresses whose use is shared among a group of users. An address pool can be specified as the redirection address in rdr rules, as the translation address in nat rules, and as the target address in route-to, reply-to, and dup-to filter options.

HowTo Remaster a LiveCD or LiveDVD using SLAX

webmaster — Tue, 17 Feb 2009 11:34:26 +0700

The other day I had to come up with a way to transfer a Solaris Express nv97 DVD 3G image to remote locations while not using the network. The reason for this is, I needed to perform a LiveUpgrade on over 700 boxes and each being at a different locations. So I said to myself I guess I can put this image on a custom LiveDVD... But then I said to myself, which Linux LiveCD/DVD distro will I use???? It has to be small enough so that I can fit the Solaris Express nv97 image as well as the LiveCD Image .

Backtrack 4 Beta - Shmoo Release

webmaster — Thu, 12 Feb 2009 06:58:09 +0700

After many months of effort from the Remote Exploit Dev team, BackTrack 4 Beta is ready and available at Shmoo booth. Based on Debian core packages and utilizing the Ubuntu software repositories, BackTrack 4 can be used both as a Live CD, or installed on hard disk as a full distribution. By syncing with "BackTrack repositories", you will regularly get security tool updates soon after they are released.