Archive for the 'Security' Category

mod_auth_openid: The Apache OpenID Module

Posted by resmo on February 15, 2010 under GNU/Linux, Networking, OSS, Security, Web

mod_auth_openid [1] is an authentication module for the Apache 2 webserver. It handles the functions of an OpenID consumer as specified in the OpenID 2.0 specification.

[1] http://trac.butterfat.net/public/mod_auth_openid

Tags: ,

Varnish: HTTP accelerator and caching proxy

Posted by resmo on August 26, 2009 under GNU/Linux, Networking, OSS, Security

Varnish [1] is a state-of-the-art, high-performance HTTP accelerator. It uses the advanced features in Linux 2.6, FreeBSD 6/7 and Solaris 10 to achieve its high performance.

Some of the features include

  • A modern design
  • VCL – a very flexible configuration language
  • Load balancing with health checking of backends
  • Partial support for ESI
  • URL rewriting
  • Graceful handling of “dead” backends

Varnish is free software and is licenced under a modified BSD licence. Please read the introduction to get started with Varnish.

[1] http://varnish.projects.linpro.no/

Tags:

Chaosradio Express: Der Hacker-Podcast der anderen Art

Posted by resmo on August 16, 2009 under Innovationen, OSS, Security, Uncategorized

Ausgehend von der Aktion “CRE Kettenblogging für den Weltfrieden” alias blog4CRE ist dieser Post entstanden als Follow-up von Post 91 und der Follow-up von mir Post 93:

Auch auf die Gefahr hin, dass ich hier Kommentare erhalte, was “Kaffee” und “Wahlrecht und Wahlsysteme” denn mit Hacker zu tun haben.

Chaosradio Express kurz CRE geht den Dingen auf den Grund, sei es in technischen Dingen, Geschichte und Entstehnung wie auch im Bereich Kultur und Gesellschaft.

Dabei behandelt Tim Pritlove mit seinen kompetenten Gästen im Besonderen kritische Themen:
Stellt Fragen, welche die Medienwelt und die Gesellschaft schon lange nicht mehr stellen, und hinterfragt Antworten, welche die Gesellschaft schon längst akzeptiert hat.

Kampf gegen die Zensur oder die Untergrabung der Demokratie mittels Wahlcomputer und das dazugehörige Hands-on Erfahrungen mit Wahlcomputern ist nur ein Beispiel.

Auch die technischen Podcasts wie GSM Hacking, Wireles Mesh Networking und das Update dazu sind äusserst hörenswert. Ich vergeblich versucht, eine persönliche Favoritenliste aufzustellen: Es gibt einfache zu viele einzigartige Sendungen, welche ich gerne gehört und auch immer wieder gerne höre. Viele Sendungen sind Zeitlos und schon fast ein Stück Netzkultur geworden. Hört einfach mal rein!

Tags: , , ,

Flex-FW: Flexible front-end for iptables

Posted by resmo on July 6, 2009 under GNU/Linux, Networking, OSS, Security

flex-fw [1] is a small and fast front-end for Linux iptables utility with an easy command syntax like ipfw from FreeBSD or pf from OpenBSD system.

Licensed under GNU General Public License v3.

[1] http://code.google.com/p/flex-fw/

Tags:

JSendNSCA: Nagios Passive Checks in Java

Posted by resmo on June 4, 2009 under Java, Networking, OSS, Security

JSend NSCA [1] is a Java API and command line tool for sending Nagios [2] Passive Checks to the Nagios NSCA add on.

By using the JSend NSCA core API, you can easily integrate your Java applications into a Nagios monitored environment thereby notifying Nagios of problems and issues during the running of your application.

The Jsend NSCA CLI command line tool wraps the API and allows you to send passive checks from the command line.

Please consider: Nagios has been forked, so it is also known as Icinga.

[1] http://code.google.com/p/jsendnsca/
[2] http://www.nagios.org/

Tags: ,

JOS: Java OpenID Server

Posted by resmo on May 29, 2009 under Java, Networking, OSS, Security

JOS [1] (Java OpenID Server) is a multi-domain, multi-user OpenID Provider based on OpenID4Java [2], Spring Framework, Hibernate, Velocity.

[1] http://code.google.com/p/openid-server/
[2] http://code.google.com/p/openid4java/

Tags: ,

OpenNMS: enterprise-grade network monitoring platform

Posted by resmo on March 17, 2009 under Java, Networking, OSS, Security

OpenNMS [1] is an enterprise-grade network monitoring platform developed under the open source software model. It consists of a community-supported, open-source project as well as an organization offering commercial services, training and support.

The full featured monitoring solution is written in Java and is released under GNU Public License. I used to use Nagios, but OpenNMS seems to be a Nagios killer. At least it is worth taking a deep breath. Get an impression on your own and try out the demo (username:demo password:demo).

In the current stable release technology preview series 1.7.0,  OpenNMS uses the Spring Framework (WP: Spring Framework) 2.5 and a RESTful Interface was added.

[1] http://www.opennms.org/

Tags: , , ,

OpenSSL, Public Key and PKI Crash Course

Posted by resmo on February 9, 2009 under Security

Check out the excellent OpenSSL, PKI Crash Course of Marc Liyanage . 2 of the 4 episodes are already released:

Part 1/4
Part 2/4

Tags: ,

OpenSSH: Change passphrase

Posted by resmo on January 28, 2009 under OSS, Security

Ever wondered how to change your passphrase for your OpenSSH RSA private key?

cd ~/.ssh/ && ssh-keygen -f id_rsa -p

Tags: ,

GPGMail: GnuPG on Mac OS Mail

Posted by resmo on January 21, 2009 under Networking, OSS, Security

Via Mike:

I usually use Mozilla’s Thinderbird and the GnuPG Plugin Enigmail.

Mail on Mac OS is quite good but never had a GnuPG integration. If you need to use Mail and GnuPG, there is GPGMail, but keep in mind:

GPGMail is a complete hack, relying on Mail’s private internal API. Use it at your own risks!

Mac OS X 10.5 is required and it is released under BSD license (recently changed).

Tags: , ,

Next Page »