You are here

Security

Windows: Continuously monitor network connections

Submitted by Druss on Thu, 2021-10-28 20:59

You sometimes want to check if a program that you've installed is doing anything funky. While you could install a full-blown packet analyser like WIreshark, sometimes, that is overkill. A quicker and handier option would be to just rely on good old netstat. Like so:

netstat -bn 10

as well as

netstat -bf 10

-b: displays the program name (executable)

-n: displays the IP address

-f: displays the resolved form of the IP address

Nagios: error: Could not stat() command file /var/lib/nagios3/rw/nagios.cmd

Submitted by Druss on Mon, 2012-07-09 19:39

I've been trying to .. empower .. the Nagios 3 web interface in Ubuntu/Debian to allow me to turn off service checking at will. I do this when I am checking logs etc. to debug some issue and all the spam from Nagios' polling is getting in the way. Nagios comes with an option to "disable active checks of this service" which when click should, well, disable active checks of the service. Clicking it, however, resulted in the following message:

Nagios is currently not checking for external commands.

Hiding Apache version information in Ubuntu

Submitted by Druss on Sat, 2012-06-02 00:03

If you've ever visited a webserver's error page, it will usually state the error followed by information about the server. This will customarily tend to include the webserver software, its version, possibly information about some of the modules compiled in as well as the server's address and port. While this might look generous and helpful, it also allows bad guys as well as other parties to probe the server to find out what it is running as well as other details such as version information. This information can be used for nefarious purposes.

SSH password-less login using PuTTY on Windows

Submitted by Druss on Thu, 2011-06-30 00:27

So, if you, like me, have to resort to PuTTY sometimes to SSH into a Linux box, I'm sure that you have also subjected yourself to much gnashing of teeth at the lack of a Windows solution to password-less logins into your server. For the uninitiated, password-less SSH allows you to log into a server without manually authenticating yourself.

Gmail's account suspension quirk

Submitted by Druss on Fri, 2010-04-16 22:32

Earlier today, I set up a gmail account for an elderly acquaintance of mine. Due to his really forgetful nature, once I created his account, I logged into it and mailed myself the username and password. As soon as I clicked "send" however, I found that I had been logged out of gmail. Trying to log back in proved futile as I was met with a "This account has been suspended" message!

Firefox and SSL pages with self-signed certificates

Submitted by Druss on Tue, 2009-04-07 10:16

If you're a firefox user (and usually, also a programmer), you've very likely come across situations where you are confronted with an error page while accessing an https address, because the certificate is self-signed. Getting around it involves adding an exception, which requires a multitude of steps ...

McColo aftermath = huge drop in my gmail spam

Submitted by Druss on Thu, 2008-11-13 13:03

My gmail account is also the catchall address for a couple of domains and usually clocks about 2000 - 3000 spam every day. In the aftermath of the McColo shutdown, this number is down to about 150 - 200.

Even if this is a temporary respite, it is still quite heartwarming.

SpamCop's statistical graphs are also a great indicator of spam frequency.

Pages

Subscribe to RSS - Security