例: lilo 寫到 hda(下lilo時, 目標的位置), 要從 hdc1 開機
disk=/dev/hda bios=0x80
boot=/dev/hda
root=/dev/hdc1
還是 grub 比較實用
July 2003 Archives
linux 下有個好用指令: rename, 可以批次更名, BSD 下沒有
[root@linux conf]# ll
total 40
drwxr-xr-x 2 root root 4096 7月 31 11:37 ./
drwxrwxrwt 18 root root 4096 7月 31 11:50 ../
-rw-rw-rw- 1 root root 61 7月 28 18:50 diskmounting.ini
-rw-rw-rw- 1 root root 2350 7月 31 11:35 keymap.ini
-rw-rw-rw- 1 root root 45 7月 30 16:49 mouse.ini
-rw-r--r-- 1 root root 70 7月 23 18:48 storage.ini
-rw-r--r-- 1 root root 4 7月 17 15:24 version
-rw-r--r-- 1 root root 7913 7月 3 15:19 zoneinfo.ini
[root@linux conf]# rename ini conf *
[root@linux conf]# ll
total 40
drwxr-xr-x 2 root root 4096 7月 31 11:53 ./
drwxrwxrwt 18 root root 4096 7月 31 11:50 ../
-rw-rw-rw- 1 root root 61 7月 28 18:50 diskmounting.conf
-rw-rw-rw- 1 root root 2350 7月 31 11:35 keymap.conf
-rw-rw-rw- 1 root root 45 7月 30 16:49 mouse.conf
-rw-r--r-- 1 root root 70 7月 23 18:48 storage.conf
-rw-r--r-- 1 root root 4 7月 17 15:24 version
-rw-r--r-- 1 root root 7913 7月 3 15:19 zoneinfo.conf
http://www.foundstone.com/index.htm?subnav=resources/navigation.htm&subcontent=/resources/freetools.htm
Assessment Utlities
Includes - Fpipe™ v2.1
Forensic Tools
Includes - Pasco v1.0, Galleta v1.0, Rifiuti v1.0, NTLast™ v3.0, Forensic Toolkit™ v2.0, ShoWin™ v2.0, BinText™ v3.0, PatchIt™ v2.0, and Vision™ v1.0
Intrusion Detection Tools
Includes - Carbonite™ v1.0, FileWatch™ v1.0, Attacker™ v3.0, and Fport™ v2.0
Scanning Tools
Includes -SQLScan v1.00 - BOPing™ v2.0, SuperScan™ v3.0, ScanLine™ v1.01, Trout™ v2.0 DDosPing™ v2.0, SNScan™ v1.05, and CIScan v1.0 For Cisco Vuln Check
Stress Testing Tools
Includes - FSMax™ v2.0, Blast™ v2.0, and UDPFlood™ v2.0
不錯的個人網站, 有些實用小程式
BDE Remove 1.04
The Brilliant Digital Entertainment Kazaa "commercial trojan" remover. More...
BossKey 2.00
A quick and simple virtual desktop switcher. More...
CD 1.01
A simple but fully functional CD player. More...
IP2 1.03
Find your WAN and LAN IPs. More...
K9 Version 1.09
Automatic spam email filtering for POP3 email. More...
MD5File 1.00
Command line utility for showing a file's MD5 digest. More...
Neutron 1.03
A network time synchronization program. More...
ProgFont
Programmers utility for creating Windows fonts in C. More...
ScripTrap 1.03
Intercept scripts and prevent them from causing damage. More...
Shed 1.01
An ultra-fast Windows shared resource scanner. More...
Timer 1.00
A visual stopwatch program. More...
WotWeb 1.06
A custom web server scanner. More...
If you are looking for any of the following programs formerly residing at Keir.net then you may find them at their new home at Foundstone.
Attacker
BinText
BOPing
DDoSPing
FileWatch (formerly ICEWatch 1.x)
Patchit
ShoWin
SuperScan
Trout (formerly SuboTronic)
UDPFlood
rl0(Reltek 8139), LAN IP 192.168.0.6
rdr rl0 0/0 port 4662 -> 192.168.0.6 port 4662 tcp
rdr rl0 0/0 port 4666 -> 192.168.0.6 port 4662 udp
edonkey use tcp port 4662 and udp port 4666 (4662+4)
ref.
http://www.edonkey2000.com/documentation/unreachable.html
. 3600000 NS J.ROOT-SERVERS.NET.
J.ROOT-SERVERS.NET. 3600000 A 192.58.128.30
CHANGES:1470. [bug] J.ROOT-SERVERS.NET is now 192.58.128.30.
單用 pattern 的檔信方式, 檔不勝檔, 試試貝式分析式的瀘信軟體
spamprobe
bogofilter
bogofilter -s < spam.mbx
bogofilter -n < ham.mbx
bayespam
61.71.81.100:4661 Giga BigPipe
140.123.108.139:7654 TLF Taiwan ED Server
140.116.47.245:99 WhiteFang-eMule
61.64.194.193:4001 西卡魯魯
203.204.101.68:1080 Cyndi-ED
210.58.100.4:4661 TW_OOXX
ref: Server List for eDonkey and eMule
20050821 Update
台灣的 Server 好像都關了
更改顏色數, 修改 DefaultColorDepth
可用參數
DefaultColorDepth 8
DefaultColorDepth 15
DefaultColorDepth 16
DefaultColorDepth 24
更改解析度, 修改所有 Subsection "Display" 中的 Mode
可用參數
Modes "640x480"
Modes "800x600" "640x480"
Modes "1024x768" "800x600" "640x480"
Modes "1280x960" "1024x768" "800x600" "640x480"
Modes "1400x1050" "1280x960" "1024x768" "800x600" "640x480"
<meta http-equiv="refresh" content="0;url=http://77bbs.com">
加在 header block 裡
記下來, 下次就不會忘了怎麼寫
# ReadmeName is the name of the README file the server will look for by
# default, and append to directory listings.
#
# HeaderName is the name of a file which should be prepended to
# directory indexes.
#
# If MultiViews are amongst the Options in effect, the server will
# first look for name.html and include it if found. If name.html
# doesn't exist, the server will then look for name.txt and include
# it as plaintext if found.
#
ReadmeName README
HeaderName HEADER
加個絕對路徑上去, 就可每個路徑都有
用 cfgmaker 可自動找抓資料, 建 config
如用在 ADSL 的 ATU-R
cfgmaker public@192.168.1.1 --output=mrtg.cfg
http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/50458
輸入中文就會跳出
freebsd port 已修正此問題, 取 port 裡的 source 來 make 即可
linux fix version (binary)
http://ftp.pank.org/tgz/ncftp3.1.5linux.tgz
昨天晚上, 不知怎的, 竟然發燒, 今天就請了病假,
順便等中華電信人員來裝中研院的 ADSL
今天就好滿多的了
換個小烏龜, 好笑的是施工人員沒有把舊的小烏龜帶走,
可惜還沒調成 1.5m/384k
只有鎖 port 139 (可能要防止病毒從網芳傳播)
所以可以架站
140.109.231.55/255.255.255.0
GW 140.109.231.1
DNS 140.109.1.10
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandrake Linux Security Update Advisory
________________________________________________________________________
Package name: kernel
Advisory ID: MDKSA-2003:066-1
Date: July 21st, 2003
Original Advisory Date: June 11th, 2003
Affected versions: 9.1
________________________________________________________________________
Problem Description:
Multiple vulnerabilities were discovered and fixed in the Linux kernel.
* CAN-2003-0001: Multiple ethernet network card drivers do not pad
frames with null bytes which allows remote attackers to obtain
information from previous packets or kernel memory by using
special malformed packets.
* CAN-2003-0244: The route cache implementation in the 2.4 kernel and
the Netfilter IP conntrack module allows remote attackers to cause a
Denial of Service (DoS) via CPU consumption due to packets with
forged source addresses that cause a large number of hash table
collisions related to the PREROUTING chain.
* CAN-2003-0246: The ioperm implementation in 2.4.20 and earlier
kernels does not properly restrict privileges, which allows local
users to gain read or write access to certain I/O ports.
* CAN-2003-0247: A vulnerability in the TTY layer of the 2.4 kernel
allows attackers to cause a kernel oops resulting in a DoS.
* CAN-2003-0248: The mxcsr code in the 2.4 kernel allows attackers to
modify CPU state registers via a malformed address.
As well, a number of bug fixes were made in the 9.1 kernel including:
* Support for more machines that did not work with APIC
* Audigy2 support
* New/updated modules: prims25, adiusbadsl, thinkpad, ieee1394,
orinoco, via-rhine,
* Fixed SiS IOAPIC
* IRQ balancing has been fixed for SMP
* Updates to ext3
* The previous ptrace fix has been redone to work better
MandrakeSoft encourages all users to upgrade to these new kernels.
Updated kernels will be available shortly for other supported platforms
and architectures.
For full instructions on how to properly upgrade your kernel, please
review http://www.mandrakesecure.net/en/docs/magic.php.
Update:
These new packages fix some bugs with compiling kernels using xconfig
and also fix problems with XFS ACLs not being present in the kernel.
Problems with ipsec have also been corrected. A problem with gdb not
working on systems where XFS was used for the root filesystem has also
been corrected. They also address CAN-2003-0476: A file read race
existed in the execve() system call.
9.1/PPC kernels are now also available.
________________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0244
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0246
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0247
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0476
http://marc.theaimsgroup.com/?l=bugtraq&m=105664924024009&w=2
________________________________________________________________________
Updated Packages:
Mandrake Linux 9.1:
de26b46560fd8c94f198201bb8d9d64a 9.1/RPMS/kernel-2.4.21.0.24mdk-1-1mdk.i586.rpm
26aa70b3cda0ec6a01e4beba8b2dcf52 9.1/RPMS/kernel-BOOT-2.4.21.0.24mdk-1-1mdk.i586.rpm
7bb22382a913e4c68a8ecbc3bd5ab68b 9.1/RPMS/kernel-doc-2.4.21-0.24mdk.i586.rpm
0fa207b6d896878a88fb13b2dad0c47e 9.1/RPMS/kernel-enterprise-2.4.21.0.24mdk-1-1mdk.i586.rpm
d5ea0fa59457a2751c48f2442e14e463 9.1/RPMS/kernel-secure-2.4.21.0.24mdk-1-1mdk.i586.rpm
eef8908074ce54a62c267f313e4cb166 9.1/RPMS/kernel-smp-2.4.21.0.24mdk-1-1mdk.i586.rpm
bf8b9b0db8b2d7c835730bfe083739dc 9.1/RPMS/kernel-source-2.4.21-0.24mdk.i586.rpm
7da367a51f5a0f11c642be2a6f6249d6 9.1/SRPMS/kernel-2.4.21.0.24mdk-1-1mdk.src.rpm
Mandrake Linux 9.1/PPC:
ee35a54f64dc5f5d4d3f3f98e77837a7 ppc/9.1/RPMS/kernel-2.4.21.0.24mdk-1-1mdk.ppc.rpm
d47813ca471e45164452af47402e92eb ppc/9.1/RPMS/kernel-doc-2.4.21-0.24mdk.ppc.rpm
753c0854e112ef6d8db829279915a9bd ppc/9.1/RPMS/kernel-enterprise-2.4.21.0.24mdk-1-1mdk.ppc.rpm
5b59c4607068150a82a353e4fee4a329 ppc/9.1/RPMS/kernel-smp-2.4.21.0.24mdk-1-1mdk.ppc.rpm
22956b70bba1abe85dc859b850a966da ppc/9.1/RPMS/kernel-source-2.4.21-0.24mdk.ppc.rpm
7da367a51f5a0f11c642be2a6f6249d6 ppc/9.1/SRPMS/kernel-2.4.21.0.24mdk-1-1mdk.src.rpm
________________________________________________________________________
Bug IDs fixed (see https://qa.mandrakesoft.com for more information):
3615 - no acls in XFS
4059 - xconfig aborts with an error
4060 - xconfig unable to disable certain options
________________________________________________________________________
To upgrade automatically, use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
A list of FTP mirrors can be obtained from:
http://www.mandrakesecure.net/en/ftp.php
All packages are signed by MandrakeSoft for security. You can obtain
the GPG public key of the Mandrake Linux Security Team by executing:
gpg --recv-keys --keyserver www.mandrakesecure.net 0x22458A98
Please be aware that sometimes it takes the mirrors a few hours to
update.
You can view other update advisories for Mandrake Linux at:
http://www.mandrakesecure.net/en/advisories/
MandrakeSoft has several security-related mailing list services that
anyone can subscribe to. Information on these lists can be obtained by
visiting:
http://www.mandrakesecure.net/en/mlist.php
If you want to report vulnerabilities, please contact
security_linux-mandrake.com
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE/HHRlmqjQ0CJFipgRArpsAKDljwBrJyyCj51H4PEtrL/2bDdcCACgnXsq
i/PPEbCfdX19SsIiuBPC5n0=
=XjK3
-----END PGP SIGNATURE-----
準備
apache_1.3.28.tar.gz
from http://httpd.apache.org/dist/httpd/apache_1.3.28.tar.gz
mod_ssl-2.8.15-1.3.28.tar.gz
from http://www.modssl.org/source/mod_ssl-2.8.15-1.3.28.tar.gz
openssl-0.9.7b.tar.gz
from http://www.openssl.org/source/openssl-0.9.7b.tar.gz
php-4.3.3RC1.tar.gz
from http://www.php.net
解壓全部
cd openssl-0.9.7b
./config -fPIC
make
make install
cd ../mod_ssl-2.8.15-1.3.28
./configure --with-apache=../apache_1.3.28 --with-ssl=../openssl-0.9.7b --prefix=/usr/local/apache
cd ../apache_1.3.28
./configure --prefix=/usr/local/apache --sysconfdir=/usr/local/apache/conf --enable-module=so \
--enable-shared=ssl --enable-module=ssl --enable-module=rewrite --enable-shared=rewrite
make
make certificate
選 DSA
Country Name 選 TW
Certificate Validity 填一個夠長的時間, 如 1000 (天)
Certificate Version 選 3
其他選項就不是很重要
Encrypt the private key now? [Y/n] 選 n 啟動時才不用輸入密碼
make install
cd ../php-4.3.3RC1
./configure --with-mysql --with-apxs=/usr/local/apache/bin/apxs --enable-module=so \
--with-config-file-path=/usr/local/etc --libexecdir=/usr/local/apache/libexec
make install
cp .libs/libphp4.so /usr/local/apache/libexec
複製編好的 php so 檔到 apache libexec 目錄下
修改 httpd.conf
新增
LoadModule php4_module libexec/libphp4.so
LoadModule ssl_module libexec/libssl.so
AddModule mod_php4.c
AddModule mod_ssl.c
AddType application/x-httpd-php .php
AddType application/x-httpd-php-source .phps
加入 register_globals = On 到 php.ini
echo "register_globals = On" >> /usr/local/lib/php.ini
啟動 /usr/local/apache/bin/apachectl startssl
2003-07-19 ~ 20
剛到小烏來沒多久, 就下大雨, 真倒楣, 本來有要到慈湖看一看, 到大溪靈寢才知過頭, 指標不清楚. 小人國比想像中好玩, 台灣、大陸、世界的縮小版, 滿有意思的
這家住桃園的中信飯店豪華客房, 還有 ADSL 寬頻上網呢
照片
在開始,執行
輸入
RunDll32 advpack.dll,LaunchINFSection %windir%\INF\msmsgs.inf,BLC.Remove
CONFIG_IDE=y
CONFIG_BLK_DEV_IDE=y
CONFIG_BLK_DEV_IDECD=y
CONFIG_SCSI=y
CONFIG_BLK_DEV_SR=y
CONFIG_DEVFS_FS
CONFIG_DEVFS_MOUNT
在 kernel 2.4.20 2.4.21 實測 ok
測試檔, 173mb iso 檔
[root@pank tmp]# rsync -avz -e ssh 192.168.24.5:/tmp/mini.iso /tmp
receiving file list ... done
mini.iso
wrote 32 bytes read 181694087 bytes 2861324.71 bytes/sec
[root@pank tmp]# rsync -avz -e ssh 192.168.24.5:/tmp/mini.iso /tmp
receiving file list ... done
mini.iso
wrote 32 bytes read 181694087 bytes 2907105.90 bytes/sec
total size is 181633024 speedup is 1.00
[root@pank tmp]# rsync -avz -e ssh 192.168.24.5:/tmp/mini.iso /tmp
receiving file list ... done
mini.iso
wrote 32 bytes read 181694087 bytes 2861324.71 bytes/sec
total size is 181633024 speedup is 1.00
結果 rsync -e ssh 的效能比 scp 差(2.8mb/s vs 4mb/s)
OFFSET D236D
Find 74 13 6A 04
Edit EB -- -- --
OFFSET D23AA
Find 74 0A 8B 4E 4C
Edit EB -- -- -- --
