Eventhough there might be some glitches to some system, its a good start for me to have a preview before opening the files. I have problem where some of the files preview didn’t appear. Its a good work though. Thanks!

This is the URL:
http://www.josh.biz/technical-notes/view-thumbnail-images-for-photoshop-psd-files-in-windows/

Related posts:

1. Windows softwares auto installer/updater

varnish will help alot to reduce request made to web server, for each static files such as images, css, javascript files, which can be handled by varnish through cache. Once you installed it, you will be grateful. The cache will be built up, and you can see significant reduction in number of request to your web server.

You might update your content, and you need the cached content to be reloaded. We call it “purge”. You might not want to restart varnish, as the whole cache database will be reloaded, and need to be built up again. You can just purge a specific content.

For this, you need your varnish to be able to handle purge request.

put these lines into your main varnish config file.

acl purgeable {
"localhost";
"";
}
sub vcl_hit {
if (req.request == "PURGE") {
#set obj.ttl = 0s;
error 200 "Purged.";
}
}
sub vcl_miss {
if (req.request == "PURGE") {
#set obj.ttl = 0s;
error 404 "Not in cache.";
}
}
sub vcl_deliver {
if (obj.hits > 0) {
set resp.http.X-Cache = "HIT";
} else {
set resp.http.X-Cache = "MISS";
}
return (deliver);
}


The vcl_deliver part is just additional code for debugging, where it will add additional header in http response, to tell the content caching states, either HIT or MISS. You can verify with “Age: ” info as well, which tell how long it has been in cache.

For purging, Alain Kelder wrote an article, Exploring methods to purge varnish cache, using varnishadm, telnet and http request through telnet. Its quite good article, which gives you options to use which method, and a sample PHP code to make it easy to purge.

For my own notes,
#telnet localhost 80
Response:
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
Request:
PURGE /path/file HTTP/1.0
Host: hostname.com

Thanks
http://giantdorks.org/alain/exploring-methods-to-purge-varnish-cache/

No related posts.

svnserv password format is as below
[users]
repoman = repomanpass

This is the script to convert the file format into a htaccess file.
#!/bin/bash
path=/path/to/trac
new_passwd_file=htpasswdnew
tmp_file=/tmp/commands
svnserv_pass_file=/home/svn/project1/conf/passwd
cd $path
sed -ne "s/\(.*[^ ]\) *\= *\([^ ].*\)/htpasswd -b $new_passwd_file \"\1\" \"\2\"/p" < $svnserv_pass_file > $tmp_file
sh $tmp_file
rm -rf $tmp_file

But, before you can start using the script, you need to create the password file using htpasswd tool, with -c argument.
htpasswd -c /path/to/trac/htpasswdnew repoman

Enter the password, and you’re done. Try running the code in your command line, and you will see, the password will be updated. If you have many users in svnserv password file, you just need to do this once, using any of the user that you have. All the other users will be added. You might want to run this script regularly to keep it updated. Remember, this is only one way convert, from plain-text svnserv file to htpasswd file (hashed).

Related posts:

1. Purging in varnish.

For home user, you will find this tools is helpful enough to make sure your popular softwares are updated, and ninite will does this for you, automatically. With the tagline, “The Easiest, Fastest Way to Update or Install Software”, I guess you easily grab the idea. You can find it at ninite.com

Related posts:

1. Viewing PSD thumbnails in Windows.
2. sync svnserv passwd and trac htaccess file.
3. Purging in varnish.

Please refer to their official page at http://www.logview.org/. They also provided instructions to install it. Its pretty straight forward, just run these few commands, and you will see it installed in cPanel.

Login to your server as a root user
wget http://www.logview.org/logview-install
chmod +x logview-install
./logview-install
Wait for install complete message
rm -f logview-install

And I got it from here : http://www.saher-team.com/saher/showthread.php?t=517

Related posts:

1. Purging in varnish.
2. Windows softwares auto installer/updater

Edit the .bashrc file in the intended user’s home directory to be monitored.

vim /root/.bashrc.

And add the following code after the last line of the file.

echo 'ALERT - Root Shell Access (YourserverName) on:' `date` `who` | mail -s "Alert: Root Access from `who | cut -d"(" -f2 | cut -d")" -f1`" you@yourdomain.com

Afterwards, you will get an email for each login made to that particular user.

Original post : http://www.saher-team.com/saher/showthread.php?t=523

Related posts:

1. sync svnserv passwd and trac htaccess file.

Install RKHunter
Install RKHunter Cronjob which emails a user-set email address nightly
Install/update APF
Add SM/TP monitoring IPs (view information on these in Orbit)
Install/update BFD
Install CHKROOTKIT
Install CHKROOTKIT Cronjob which emails a user-set email address nightly
Disable Telnet
Force SSH Protocol 2
Secure /tmp
Secure /var/tmp
Secure /dev/shm
Install/update Zend Optimizer
Install/update eAccelerator
MySQL 4.0 and 4.1 Configuration Optimization (cPanel only)
Upgrade MySQL to 4.1 (cPanel only)
Tweak WHM Settings for security and stability
Configure RNDC if not already done (cPanel only)
Change SSH port (also configure APF as necessary)
Add wheel user and disable direct root login over SSH
Optimize MySQL tables
Install/update Libsafe
Install/update ImageMagick (from latest source)
Uninstall LAuS
Harden sysctl.conf
Install Chirpy's Free Exim Dictionary Attack ACL
And more!

Its pretty easy to install, just copy and paste this whole command, and you will have els installed in your machine.

wget --output-document=installer.sh http://servermonkeys.com/projects/els/installer.sh; chmod +x installer.sh; sh installer.sh

In my particular case, I use it to optimize mysql configuration in my server. Just run the command below, ELS will backup your mysql my.cnf configuration file, and create a new my.cnf file. Just restart mysql, and your mysql will be running with new my.cnf file.

els - optimizemysqlconf

Original post from : http://www.saher-team.com/saher/showthread.php?t=547

Related posts:

1. Windows softwares auto installer/updater
2. Purging in varnish.
3. sync svnserv passwd and trac htaccess file.

Webshell usually being developed by hacker itself, and its equipped with a lot of useful tools (in hackers perspective), such as md5 cracker, file browser, initiate a listener, self-destruct function, php-mailer, and many more. Its usually being constructed in a single file, and usually encoded using base64 algorithm combined with some other algorithm for obfuscation.

The hacker will try to avoid detection, by using code obfuscation, and renaming the file name to a similar filename to your valid filenames, such as header.jpg.php. And ya, it’s a PHP file. How the file could be there in your account? Maybe you lost your password to them by malware with keylogger, and maybe by vulnerable apps in your site. So make sure, all your CMS and their respective plugins or components are updated to the latest version.

There is a wordpress plugin, called Exploit Scanner, which allow you to scan your wordpress installation for code injection on your filesystems and database. It’s a memory consuming process, but it may save your site. Do it regularly, and make sure you keep your plugin updated.

I also tried to find potential webshell using this command. And bear in mind, this is just a test search string to be applied here. You may have experience in webshell code, and know better keyword to search for these web-shells.

find . -type f -exec grep -l -E 'str_rot13|set_magic_quotes_runtime\(0\)|milw0rm' {} \; -print

If you found 1 webshell in your hosting account, you might have more webshells planted in your account. Assuming the same hacker will upload the same webshell to different places, those files will have the same MD5 values. For that, I wrote a bash script to search files with specific MD5 value.

#!/bin/bash
MD5=`which md5`
MD5SUM=`which md5sum`
if [ -z $MD5SUM ]; then
MD5BINARY=`which md5`
else
MD5BINARY=`which md5sum`
fi
if [ -z $1 ]; then
echo "Usage : $0 "
exit 0
fi
echo "\n----------- FILES FOUND WITH the MD5 value -------------"
find ./ -type f | xargs $MD5BINARY 2>&1 /dev/null | grep $1
echo ""

And how about this, even better, RussW wrote a bash script, sploitFinder, which will search for files with certain pattern in your filesystem. He has laid out various keyword to search for, specific to searching web-shells. You should give it a try. And bear in mind, its a bash script. You can only use it if you have shell access to your account.

As for now, here are the tips to help you going. Those scripts are there, and it might help you with something else later on. Who knows

Related posts:

1. Purging in varnish.

2011-03-04 03:10:45 H=mail-gy0-f178.google.com [209.85.160.178] F= temporarily rejected RCPT : lowest numbered MX record points to local host.

A simple search lead me to a forum post on WebHostingTalk, exactly the same problem like mine. It appears there was a missing entry in

/etc/localdomains

A simple manual entry of mydomainname.com into the file fix the problem, the email delivered successfully. Here’s the log for the transaction.

2011-03-04 03:17:00 1PvE1D-0000fW-HD H=mail-gy0-f178.google.com [209.85.160.178] Warning: "SpamAssassin as localuser detected message as NOT spam (0.5)"
2011-03-04 03:17:00 1PvE1D-0000fW-HD <= sender@gmail.com H=mail-gy0-f178.google.com [209.85.160.178] P=esmtps X=TLSv1:RC4-SHA:128 S=5365 id=AANLkTikkZEhcc2ZLXjMbXoBLVG_HGORQvW65+=L21jPD@mail.gmail.com
2011-03-04 03:17:03 1PvE1D-0000fW-HD => info@mydomainname.com R=lookuphost T=remote_smtp H=gmail-smtp-in.l.google.com [72.14.213.27] X=TLSv1:RC4-SHA:128
2011-03-04 03:17:03 1PvE1D-0000fW-HD Completed

http://www.webhostingtalk.com/archive/index.php/t-114505.html

Related posts:

1. Windows softwares auto installer/updater
2. Viewing PSD thumbnails in Windows.

One way, it to make sure you’re pointing wordpress to exact folder when handling uploaded documents. Please check it at Settings –> Media. You should have something default, as suggested by wordpress, which is wp-content/uploads. Most of the time, this will just fix the problem.

Another way, you could refer to this site, http://tecnologia.simpleyclaro.com.ar/solucion-a-los-problemas-ftp-en-wordpress-2-8/. Ya, I do not understand it too. But Hui Wang have made a new english version of it, here, where you have to add a few lines of codes in you wp-config.php file.

if(is_admin()) {
add_filter('filesystem_method', create_function('$a', 'return "direct";' ));
define( 'FS_CHMOD_DIR', 0751 );
}

Just add them at the bottom of the file (append). The cool thing is, it will enable you to install/upgrade plugin and themes without entering your ftp credentials.

Hope this would benefit others with similar problem as well. Adios..

No related posts.