login as: yusuf
   yusuf@yusufhadiwinata.com's password:
                _______                     _______  ______  ______ 
               |       |.-----.-----.-----.|       ||    __||      | 
               |   -   ||  _  |  -__|     ||   :--- |__    :|   |  | 
               |_______||   __|_____|__|__||_______|:______:|______| 
               F R E E  |__| F U N C T I O N A L   &   S E C U R E 

          OpenBSD 4.5 (COSTUM_KERNEL) #1021: Tue Sep 17 17:16:55 MDT 2009 
     Welcome to OpenBSD: The proactively secure Unix-like operating system blog.

Archive for the ls /usr/ports/security Category

securelevel openbsd

| May 21st, 2010
  • securelevel -1 : There’s no additional kernel security and many of the normal security features, such as permissions, are functional. Use this level for machines not in production use.
  • securelevel 0 : When OpenBSD first boots up securelevel 0 is used. If this level is set in your rc.securelevel file securelevel 1 will actually be used when the boot process is finished. There are no added features of securelevel 0. more »

Install CVSUP paketnya dl

# pkg_add -v ftp://ftp.openbsd.org/pub/OpenBSD/4.7/packages/i386/cvsup-16.1hp2-no_x11.tgz
  • step 1. Membuat CVSUP Configuration File
  • step 2. Run cvsup with the configuration file
  • step 3. Rebuild and install your kernel
  • step 4. Rebuild and install your system more »

Securing CPanel

| May 12th, 2010

Berikut langkah – langkah yang dapat di gunakan untuk Mengamankan Server Cpanel dari RFI SQLI, Blind SQLI, Brute Froce, SYnc FLood, ICMP Flood, DDOS, XMAS Scanning, dll

more »

autobench : Automating the process of benchmarking a web server
bonnie : Performance Test of Filesystem I/O
bonnie++ : Performance Test of Filesystem I/O
bytebench : The BYTE magazine benchmark suite
dbench : A simulation of the Ziff-Davis netbench benchmark
dbs : A distributed network benchmarking system
forkbomb : System stress testing tool
hpl : High Performance Computing Linpack Benchmark

more »

Bash History sang Hacker dunia

| March 31st, 2010

berikut adalah hasil dump cpanel tempat hosting webnya si kevin mitnick

yang ternyata hanya mengandalkan apf, rkhunter, chkrootkit sebagai firewallnya…hahahha untuk sekelas mitnick gitu lohh…..bwt gw aja udah prosedur standar klo install cpanel di redhat family

passwd
w
w.
w
cd /home
wget http://layer1.cpanel.net/latest
sh latest
/scripts/upcp
more »






BASIC FEATURES COMPARISON pfsense Untangle endian





OS (based on) freebsd linux linux





Networking



Router yes yes yes
Firewall yes yes yes
IDS/IPS yes yes yes
NAT yes yes yes
VPN server yes yes yes
QOS/traffic shaping yes yes yes





application services



Webbased GUI yes yes yes
WebProxy yes yes yes
Antivirus http http,smtp,pop,imap,ftp http,smtp,pop,imap,ftp
Antispam N/A yes yes
DHCP yes yes yes
Mailproxy N/A N/A yes





High Availability (clustering) yes N/A only in commercial version
Multi WAN yes only in commercial version yes
Logging/reporting yes yes yes
Automatic/manual updates yes yes yes
Backup system yes yes yes









Masalah ini terjadi karena default value dari vm.kmem_size bukan kelipatan 8 pada kernel PAE saat compile ulang berikut adalah hasil sysctl untuk vm.kmem_max dan vm.kmem_max_size

sysctl vm.kmem_size vm.kmem_size_max vm.kmem_size: 335544320 vm.kmem_size_max: 335544320

more »

Distribusikan SSH keys dgn mudah

| September 18th, 2009

buka editor km, di contoh ini saya pake vi
#vi dist-ssh-key.sh

copas script bash di bawah ke dalamnya

more »

Penggunaan SSH key

| December 12th, 2008

Saya banyak sekali menemukan berbagai artikel yang ngebahas tentang ssh key, tapi saya jarang sekali menemukan artikel yang cukup mudah dipahami (nyubie abis), karena kita sesama nyubie, ni saya share penggunaan ssh key yang mudah

pertama, di box mesinmum create ssh-keys pake ssh-keygen. Saya menggunakan OpenBSD untuk contoh ini, output akan sedikit berbeda ketika menggunakan sistem operasi lain.

more »