Here some Bookmarks if you want to try Amazon AWS Cloud Services like S3 (Cloud File Storage), EC2 (VM Instances..) Howtos / Basics : https://github.com/open-guides/og-aws#aws-data-transfer-costs Remark: AWS Services mostly priced by data transfers and online time! Checkout daily “Billing Monitor” ! Amazon AWS: https://aws.amazon.com/ Remark: S3 is the Standard Cloud Storage, cheaper is S3-IA or long term Backups use “Glacier” where you first upload files to S3 and set a “Rule” on a “Bucket” move files to Glacier Long Term Backup! Amazon Admin Console: https://aws.amazon.com/de/console/ Security: Howto Create ENCRYPTED Containers for AWS on Linux? Klick At the End.. don’t forget […]
Category: Howto
WordPress Themes SEO Rating
If you use WordPress for a Blog and you think about a Theme Change for a new Look you should now some points: Check new Themes for available Updates Check new Theme for User Feedback Check new Theme how often its downloaded, if often used Search Engines can handle the code Check the new Theme some Weeks and control active the Ranking on Search Engines (like Webmaster Tools), cause bad readable Code is ranked down or broken internal links and bookmarks can forward robots into nirvana Check the new Theme on various Browsers, Opera, Chrome, Firefox, IE, Mobile Browsers and […]
Goodby Smartphones
Today iam going offline with any of my Smarthones for Testing. Why? all current Smartphones based on nonfree Hard and Software less patched Hackers can remote force install Trojans as Updates (especially Stores by gov order) non rooted devices are black boxes rooted Images or Tools as Workarounds are often not published in which way the System OS is broken down, Hackers don’t work nonprofit ! Linux Laptops usage is often easier and much safer, you have full control and can run security tools to monitor Apps for free do always call home at background can’t control active background jobs […]
Openwrt dmesg human timestamp
To viel on busybox dmesg with human readable time for debug do: $vi /root/dmesg.sh insert: base=$(cut -d '.' -f1 /proc/uptime); seconds=$(date +%s); dmesg | sed 's/\]//;s/\[//;s/\([^.]\)\.\([^ ]*\)\(.*\)/\1\n\3/' | while read first; do read second; first=`date +"%d/%m/%Y %H:%M:%S" –date="@$(($seconds – $base + $first))"`; printf "[%s] %s\n" "$first" "$second"; done exit 0 run it sh dmesg.sh.. System Echo: … [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered disabled state [16/03/2018 14:55:18] device wlan1 entered promiscuous mode [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered forwarding state [16/03/2018 14:55:19] br-lan: port […]
Apache MEMCACHED UDP Protection
Current a lot of sites blogging about memcached attacks on Servers here some details: Memcached Servers need a installed and running Service called “memcached” Websites need a php-plugin like php7.0-memcached to connect via API to the memcached Service The Memcached Service uses a own Config File at debian /etc/memcached.conf By default it MUST listen to localhost or socket Admins MUST setup a FIREWALL like “ufw” (iptables) and MUST check own Server for OPEN PORTS with nmap The Problem is that Attackers can run Scripts against to your Server in a 10^6 Range like a BOTNET !! with ONE PC cause […]
Openmips Enigma2 restart cron Gigablue
If you use a Gigablue SAT Box,after some weeks enigma2 will hang up: edit root crontab: $crontab -e insert: 0 1 * * * killall -9 enigma2 && sleep 5 && init 3 && /etc/init.d/samba restart 5 1 * * * wget -O /dev/null -q "IP-OF-GIGA-Box/web/powerstate?newstate=0&type=0" This will restart enigma2 Service, Samba and Webinterface too! Then Enigma is set to Standby! That kodi can access the TV Bookmarks to view TV over LAN! If Standby is not set Kodi hangs!
NEXTCLOUD OWNCLOUD BUG FAIL2BAN
FAIL2BAN blocks access to “.ocdata” file! Apache Error Log: ..AH01630: client denied by server configuration: … cloud/data/.ocdata create with a Custom Rule for FAIL2BAN do: $sudo nano /etc/fail2ban/filter.d/apache-auth.local insert: [apache-auth] ignoreregex = nextcloud/data/.ocdata do: $sudo service fail2ban restart Check Log: tail -f n50 /var/log/apache2/error.log Remark: Sometimes the Login take long time after Enter the Password this indicates a filled up “oc_bruteforce_attempts” Table!! login into mysql: $mysql -u user -p select database: USE Nextcloud; show all values from the oc_bruteforce_attempts table, use: SELECT * FROM oc_bruteforce_attempts; remove “ALL” IP’s from the table, do step by step: DELETE FROM oc_bruteforce_attempts WHERE IP="xxx.xxx.xxx.xxx"; […]
LEDE OPENWRT WIFI USB SETUP
Test Setup Futro S500 with USB Wifi Dongle Realtek RTL8192CU PCI Riser Card with Realtek Gigabit LEDE 17.XX Trunk Kernel 4.14 Download latest Version from openwrt.org select x86/64 extract the compressed image (*ext4*img.gz) and dump it with “dd” to CF-Card 1GB Sample for Clean Setup like TP-Link Router Firmware: You need to install this packages by “opkg update && opkg install package name && reboot”: base-files – 184-r6198-ba5f700 busybox – 1.27.2-3 dnsmasq – 2.79rc1-1 dropbear – 2017.75-5 e2fsprogs – 1.43.7-1 firewall – 2017-11-07-c4309372-2 fstools – 2018-02-11-3d239815-1 fwtool – 1 hostapd – 2017-08-24-c2d4f2eb-6 hostapd-common – 2017-08-24-c2d4f2eb-6 hostapd-utils – 2017-08-24-c2d4f2eb-6 iftop – […]
Android Browser Traffic Waste
If you use a Smartphone or Tablet be sure that the Browser like Firefox, Icecat Opera are not active at “minimize” mode, if the Website code uses a “auto” refresh code the Browser will endless load the sites on Background! This burns your Data Limit to zero.. Howto: Swipe unused apps to Top of Screen! Control by tapping onto the Square Button! Use Data Traffic Control Apps default addon tool of Huawei
ENFORCE Google to DuckDuckgo SEARCH
If you want to enforce the use of DuckDuckgo.com instead of google.com do: Edit at the PC the “hosts” File on: Linux /etc/hosts Windows C:\Windows\System32\drivers\etc insert at last: 54.229.105.92 google.com #ip of duckduckgo or 176.34.131.233 54.229.105.203 google.com #ip of duckduckgo 176.34.131.233 bing.com #ip of duckduckgo or 176.34.131.233 176.34.131.233 yahoo.com #ip of duckduckgo or 176.34.131.233 ..reboot and test on a Browser Session after google.com you see duckduckgo.com Remark: Most DSL Routers do offer the edit of the hosts File too, do same there and ALL devices redirected! Don’t forget to reboot! This Solution works only on IPv4 Networks, to enforce the […]
WordPress App Bug Role
If you use the wordpress app to publish posts you must set the User Role from Author to Editor, if not you got errors to upload post updates!
Ubuntu 16.04 Compiz Hang Kernel
After Ubuntu published the latest Kernel Patches for Meltdown and Spectre the Kernel 4.4.0-104/109-generic let Intel Graphics freeze or hang on Compiz with Unity. Howto fix: Install the latest Kernel 4.4.0-112-generic do: sudo apt-get install linux-image-4.4.0-112-generic sudo apt-get install linux-image-extra-4.4.0-112-generic reboot then: sudo apt-get autoremove –purge -y This removes older kernels and save Space! Do test the PC for hanging again!!!
Android Google Account remove fails
Howto: disable play services disable play store deinstall play store and services cause latest Version set account locks that users cant delete Google accounts
Google Webmaster Tools Twitter
Last Time i tried to integrate a Twitter Timeline into my blog but i found out that this ranked down my blog on Google Webmaster Tools cause Twitter sub connected Servers blocking Google Webmaster Bot from reading the timeline by own robots.txt so i stopped using Twitter Integration to fix. No Webmaster want show non indexed Informations and went back to the time of stones.. Twitter fails..
Surf Browser Slim Twitter Timeline on Desktop
If you search for a slim twitter client on desktops try the small “surf” browser install with: sudo apt-get install surf and use surf https://mobile.twitter.com/yourprofilename Now you have a slim and clean Twitter Timeline like on Tablets, it can be resized to Banner or Fullscreen.
Debian: without sytemd
If you run Debian Servers, you read last weeks about security problems of systemd service manager. On several tests i have seen much systems having problems on service starts on boot like on debian, raspian .. This is a result of not clean redesigned scripts of the services by the Maintainers like the Proxy Server “privoxy” Package… For Tests i decided to try the new Debian Fork Replacement DEVUAN for Desktop and a standard Debian Server Setup without systemd! Howto purge Systemd on a Debian System read this external Wiki: http://without-systemd.org/wiki/index.php/How_to_remove_systemd_from_a_Debian_jessie/sid_installation or try Devuan for Server and Desktop: https://devuan.org/ Remark: […]