Ubuntu Help & Need

Virtual Memory Improvements For Linux 2.6.32 Kernel

2009-12-04T21:15:00.000-08:00

The Linux kernel with this week marking the debut of the kernel's fourth major updates.
The year's final update is the 2.6.32 kernel, which was released by Linux founder Linus Torvalds late Wednesday night.

The 2.6.32 is jam-packed full of driver and filesystem updates as well as several new features that are intended to improve both the physical and virtual performance of a Linux-based operating system.

BTRFS is a next-generation filesystem originally spearheaded by Oracle's Chris Mason. BTRFS holds the promise of providing improved error correction, "snapshotting" -- making a copy of file data at a particular point in time for improved data integrity and recovery
-- and other file-integrity enhancements.

BTRFS made its initial Linux kernel debut in the 2.6.29 kernel, the first update of 2009.

A new per-device writeback feature also originated with Oracle (NASDAQ: ORCL) by way of engineer Jens Axboe. The basic idea behind per-device writeback is to optimize the process by which so-called "dirty memory" -- memory that is not optimized and might need to be written to disk -- is flushed to a storage device.

The aim of per-device writeback is overall memory performance improvement, as the dirty memory can be optimized by use of its own dedicated kernel thread.

"As to the 'big feature' changes in 2.6.32 ... there's been a fair amount of changes to BTRFS, and the block-layer writeback itself has been through major updates, and the whole ... writeback thing is a pretty big change," Torvalds wrote in a mailing list post announcing the new kernel.

Forensic Ubuntu Journal

2009-12-03T19:56:00.000-08:00

Ubuntu Forensic is the use of Ubuntu for digital forensic purposes. As it provides a wide range of forensic tools as well as anti-forensic and cracking tools, so it is reliable to investigate a computer crime and analyse digital evidence on it. The significant difference on forensic applications between Ubuntu and Ms Windows is that Ubuntu applications are freeware, while the application running under Ms Windows are commercial. The results obtained between these applications are relatively the same. It means that digital forensic analyst should also be well understood on the use of Ubuntu forensic applications as well as Ms Windows’s applications. If they do it, so they will have many forensic tools which can be applied in the investigation/analysis. When a tool does not give satisfied results, they should be able to use other tools either under Ubuntu or Ms Windows to yield the best results.

This journal is written with aims to broaden forensic view among forensic professionals. It is expected that they can explore packages provided on Ubuntu for forensic purposes. They should know that not only Ms Windows forensic applications which can be used for digital forensic, but also many tools on Ubuntu which can do the same thing with the same results. In some extent, Ubuntu gives stronger results than Ms Windows’s applications. For instance, dcfldd can be used for forensic imaging with different purposes. It can be used to image some certain blocks as desired as well as the whole drive imaging. This feature is not provided by imaging applications running under Ms Windows. Other instance is image metadata analysis through exif. On Ubuntu, there are some tools which can be used to analyse the image exif such as exif, exiftool and metacam. There are also tools which can be used to manipulate the exif values such as exiv2 and libjpeg-progs. All these tools are freeware.

One essential reason why the author frequently uses Ubuntu for digital forensic purposes such as forensic imaging is forensically sound write protect. It is compulsory for every digital forensic analyst to apply it when dealing with the storage drive evidence. It is aimed not to change the contents of drive either incidentally or deliberately. Once the contents is changed, so the next actions of digital forensic become doubt or even refused by the court, unless digital forensic analyst can explain comprehensively why (i.e. the relevance) it is changed and what the implications of that action. It is usually performed on live analysis with strict procedures. On dead analysis (i.e. post mortem) the analyst is still required to keep the contents of hard drive not changed. To reach this purpose, Ubuntu can be modified in order to give forensically sound write protect. It is performed by modifying the file /etc/fstab with the mount option is read-only, so whatever is done on the drive evidence, it does not change the contents. When accessing a text file, so this action does change the MAC (i.e. Modified, Accessed and Created) time at all. It remains unchanged, although the file is accessed. It occurs because the modification of the file /etc/fstab gives forensically sound write protect for any actions committed by the analyst on the drive.

With this feature, the analyst can do many things such as live analysis on the drive in order to speed up the investigation. It is frequently done when dealing with many drives as the evidence. If the regular procedure of digital forensic is performed, so it will take a long time for forensic imaging on each drive. To shortcut the investigation is to apply forensically sound write protect and then to read and analyse the drives directly. The aim of this action is that the analyst can know which drive among the drives has strong relationship with the case. Once it is obtained, so the analyst can carry out further analysis on it.

Below are the tools which can be used for the purposes of digital forensic analyses, anti-forensic and cracking. The number of tools for forensic purposes is twenty-five, while fifteen tools for anti-forensic and ten tools for cracking. Actually there are some tools having description related on these purposes, but it is not mentioned on this journal. One of powerful tools which is often used by the author is Autopsy. It is GUI version of The Sleuthkit created by Brian Carrier. What commercial applications running under Ms Windows such as Encase and FTK discover when analysing digital evidence is the same as what Autopsy finds.

The description of each tool below is directly quoted from Synaptic Package Manager created by Connectiva S/A and Michael Vogt on April 2009. This application provides an ease for Ubuntu users to install or uninstall Ubuntu packages. If they are still doubt on the use of certain package, they should read the description given on each package.

The full version of this journal can be downloaded at http://www.scribd.com/doc/23406648/Forensic-Cop-Journal-2-1-2009-Ubuntu-Forensic. I hope this journal could be useful in positive meaning for anybody who would like to explore Ubuntu for digital forensic purposes.

Make Your Own Free SSL on Ubuntu

2009-12-03T06:46:00.000-08:00

SSL is self signed cetificates that used to standard browser sucirty. If you like to generate your own ssl following this guide that i hope will help you.

Before following this guide you need to know self signed certificates will cause error like messages to be shown to your website visitors because the browser cannot identify the certificate issuer (you). Also, while I did this on my Ubuntu server
most of the commands will work as long as you have OpenSSL installed.

For this example I will generate a wild card certificate for my site: 24 Hour Apps; therefore all certificate related file names will be 24ha.

The first step to create a home for your certificate files; I did this in my root home directory. Then generate your RSA private key. The commands achieve this are:

mkdir ssl
cd ssl
openssl genrsa -des3 -out 24ha.key 1024
You will be asked a few questions. Fill them out as accurately as you can. You will also need to set a password for your private key. Please remember this as you will need to later on.

The next step is to generate your own certificate signing request. You can do this with:

openssl req -new -key 24ha.key -out 24ha.csr
You will be prompted to enter the password you typed before for your private key. Enter it and create your CSR.

The following step is optional and removes the password from your private key so that when you launch Apache with mod_ssl you do not get requested to type in a password. For servers with monitoring software that automatically restarts processes this is quite handy. The code for removing the password is:

cp 24ha.key 24ha.key.original
openssl rsa -in 24ha.key.original -out 24ha.key
Please note that your original key still exists and is now called 24ha.key.original.

We can now generate our SSL certificate with the command:

openssl x509 -req -days 365 -in 24ha.csr -signkey 24ha.key -out 24ha.crt
You will be promoted to answer more questions. The most important answer you give will be to the question "Common Name (e.g., YOUR name)", you need to enter your website address ie. www.example.com or for wild card entries *.example.com

Now that we have our certificate we need to make it available to Apache. This part of the guide becomes more Ubuntu specific as other Linux distributions will have their Apache files located elsewhere. However, to give Apache access the first step is to copy the SSL files over and enable mode SSL. To do so type:

cd /etc/apache2/
mkdir ssl
cd ssl
cp ~/ssl/24ha.key .
cp ~/ssl/24ha.crt .
a2enmod ssl

Now we need to enter a virtual host entry for our SSL enabled domain. The following is an entry I have in the file /etc/apache2/sites-available/passbook.24hourapps.com

SSLEngine On
SSLCertificateFile /etc/apache2/ssl/24ha.crt
SSLCertificateKeyFile /etc/apache2/ssl/24ha.key
ServerName passbook.24hourapps.com
DocumentRoot /home/passbook/www/

Options Indexes FollowSymLinks MultiViews
AllowOverride All
Order allow,deny
allow from all

Once you have created your virtual host entry restart Apache (using /etc/init.d/apache2 restart) and test your new secure site. For my example this is https://passbook.24hourapps.com

If all went well you should see the Firefox's, or whatever browser you are using, message saying the secure connection has failed due to an unknown issuer. You will need to add an exception for the certificate before viewing the secure page. Adding the except is a 3 or 4 click process that is not very intuitive. However once it is done you can have cheap secure connections between your server and your web browser.

CDMA Modem Not Support in Ubuntu 9.10

2009-11-27T20:26:00.001-08:00

Ubuntu still does not recognize all the hardware modem CDMA / GSM. Yesterday I have a friend who asks for help to check whether the modem CDMA / GSM it has can be used in Ubuntu, but after setting here and there but CDMA is still not recognized by Ubuntu, the modem is only recognized as USB falsh disk. Ubuntu which I use is ubuntu 9:10, the last version of ubuntu.
But for other types of modems are supported by many ubuntu, so be careful in buying CDMA modem which will be used in a computer that has a Linux OS. So you will not regret it in later.

Install HP Laserjet P1006 in Ubuntu 9.10

2009-11-24T18:16:00.000-08:00

The reluctance of many people using linux is because its hard to find and obtain the support hardware drivers and is compatible with linux version used.
One of the favorite linux distro like ubuntu is still difficult supports a variety of hardware drivers that are used as printers.
It is also understandable because the software developers of computer hardware manufacturers haven't 100% support the open source community.
Thus the difficulty of open source developers like linux is to create applications for the approach of the latest hardware drivers.
Below will be explained briefly how to install the HP LaserJet P1006 drivers in Ubuntu 9.10. The eight easy steps is as follows:

First open a terminal (Applications ==> Accessories ==> Terminal).

1. Copy the following code right into the terminal:

wget-O foo2zjs.tar.gz http://foo2zjs.rkkda.com/foo2zjs.tar.gz then press Enter.

2. When finished copy following code:

tar xzvf foo2zjs.tar.gz press Enter

3. Then again copy following code:

cd foo2zjs press Enter again

4. Next copy the following code:

make press Enter again

5. When finished copykan following code:

./ getweb P1006 press Enter again.

6. Next install the drivers by copying the following code:

sudo make install and press Enter again and enter your password ubuntu.

7. Install additional printer, copy following code:

sudo make install-hotplug and press Enter again.

8. When finished, type exit at the terminal.

9. If the printer is not enabled then please turn on HP Laserjet P1006 printer was, when they are living, then turn off and turn it back to power so that the Ubuntu 9:10 detect new hardware.

10. Will display the image below:

then click install plugin

Next follow the instructions that appear.

After all finished, restart your computer.

Good luck ..

Just Explain

2009-11-22T01:18:00.000-08:00

Ubuntu has included firmware, and used proprietary drivers since its inception. That’s always been a slightly uncomfortable proposition, as Mako observed, but it’s been true since the Warty Warthog. Even Debian goes some way along that road with its inclusion of firmware and other non-free bits, suspending belief in the DFSG in this particular
case.

It’s worth pointing out that all of the applications that will be enabled by the AcceleratedX decision are free software applications – Compiz/Beryl and related work are all about showing what is possible at the cutting edge of free software. The hardware to run this is part of the very basic standard PC offering today, but the drivers to enable that functionality are tied deeply to hardware that is not publicly documented. The vendors concerned each have their own strategy – some open, such as Intel, and some closed, such as ATI and Nvidia.

So, it’s silly to say that this is “unimportant hardware functionality”.

Source : Here

Get Wine for Ubuntu

2009-11-22T01:02:00.000-08:00

What is Wine? Wine is windows emulator software that running on linux. So, you can running windows program on linux with wine.

How to install wine on Ubuntu?

It's not hard to install wine on ubuntu.
1. Open the Software Sources menu by going to System->Administration->Software Sources, and then select the Third Party Software tab and click Add.

copy and paste one of the lines below depending on Ubuntu version you are running.

For Ubuntu Karmic (9.10):
ppa:ubuntu-wine/ppa

For Ubuntu Jaunty (9.04):
deb http://wine.budgetdedicated.com/apt jaunty main #WineHQ - Ubuntu 9.04 "Jaunty Jackalope"

For Ubuntu Intrepid (8.10):
deb http://wine.budgetdedicated.com/apt intrepid main #WineHQ - Ubuntu 8.10 "Intrepid Ibex"

For Ubuntu Hardy (8.04):
deb http://wine.budgetdedicated.com/apt hardy main #WineHQ - Ubuntu 8.04 "Hardy Heron"

After that, click close and reload.

2. Open your terminal, Applications->Accessories->Terminal.

Then update APT's package information by typing sudo apt-get update into terminal.

3. Now install Wine normally or by typing sudo apt-get install wine into the terminal.

Alternative command Line Instructions for Installing Wine :

1. Open your terminal, Applications->Accessories->Terminal.
add the repository's key to your system's list of trusted APT keys by copy and pasting the following into your terminal:

For Ubuntu Jaunty (9.04):
sudo wget http://wine.budgetdedicated.com/apt/sources.list.d/jaunty.list -O /etc/apt/sources.list.d/winehq.list

For Ubuntu Intrepid (8.10):
sudo wget http://wine.budgetdedicated.com/apt/sources.list.d/intrepid.list -O /etc/apt/sources.list.d/winehq.list

For Ubuntu Hardy (8.04):
sudo wget http://wine.budgetdedicated.com/apt/sources.list.d/hardy.list -O /etc/apt/sources.list.d/winehq.list

2. Then update APT's package information by typing sudo apt-get update into terminal.

3. Now install Wine normally or by typing sudo apt-get install wine into the terminal.

For more information visit wine site developer : http://www.winehq.org

Clear Cache Squid Proxy in Ubuntu

2009-11-20T22:34:00.000-08:00

Over time, the cache is stored in a Squid proxy server is too much and it needs to be cleaned or might be the cache is faulty, because if it allowed the browsing speed will be disturbed and could be said to slow down. So how to clear squid proxy cache?

I have installed squid using Ubuntu Linux distributions, so the command that is used in accordance with what is in ubuntu. For other Linux distributions can be
adjusted command.

1. Stop SQUID running process.

sudo /etc/init.d/squid stop

Or
sudo squid -k shutdown

2. Clear all swap directory proxy. Usually tailored to the setting on each squidnya, eg for setting, My squid all placed in the swap directory: / var / spool / squid

sudo rm -fdR /var/spool/squid/*

Wait a few minutes and leave until the clearing process is complete.

3. Rebuilding a new swap directory

chown proxy.proxy /var/spool/squid

sudo squid -z

4. Finish, and running back our Proxy

sudo /etc/init.d/squid start

5. Hopefully helpful.

Ubuntu TuxCut

2009-11-19T22:35:00.000-08:00

Tuxcut is a software like Netcut that running on Windows. TuxCut running on Linux Machine.
Any different tuxcut and netcut is tuxcut have a feature protect me that we can change MAC address, this feature haven't by NetCut.

What is NetCut?

NetCut is a Software that helps network admin by purely on ARP protocol .
List IP-MAC Table in secs, turn off & On network on any computer on your LAN including any device like router , switcher. Also, can protected user from ARP SPOOF attack

High intimate :Pure ARP protocol kernel.enhenced cut off funcation, that no one can escape from your cut off unless he have netcut installed and with protected funcation enabled.

Easy to use: One click to Protect user Computer Function!!! No one in the network can cut you off with ARP spoof technology anymore .

Effective: one Click to Cut down any computer s network connection to the gateway.
IYFT:Get all IP addresses of the computers in your LAN(Local Area Network) in Secs
High applicability:Work in office LAN,school LAN,or even ISP LAN
Have Fun with play the online computer make them online or off line remotely
Safe: TRACE Free, No one will TRACE out what happen
and last More Stable,swich-hub or hub or cable lan any Lan use Ethernet

Get TuxCut 3.2 deb package Here
Get TuxCut 3.2 rpm package Here
Get TuxCut 3.2 tgz Here

Ubuntu Antivirus

2009-11-19T17:26:00.000-08:00

There are many source for linux antivirus, use it's depend on your self. If you like to using a antivirus with your linux os, you can download an antivirus like AVG, Claimav, Bitdefender, etc.
But if not using an anti virus it's nope. I trying bitdefender antivirus with free 184 day license on my ubuntu.
How to install bitdefender antivirus on ubuntu?
1. Add the repository by going to System - Administration - Software Sources, click on the 'Third Party Software' tab.
Now click on 'Add', input this :

deb http://download.bitdefender.com/repos/deb/ bitdefender non-free

and then ENTER. lick on 'Close' and press 'Reload' when prompted. Ignore the 'No repository key' error (if displayed).

2. Now in Applications - Accessories - Terminal add the repository key, Write this on terminal:

wget http://download.bitdefender.com/repos/deb/bd.key.asc
sudo apt-key add bd.key.asc

Now update the apt cache. Write this on terminal:

sudo apt-get update

3. And then install the graphical interface and command line program, with write this on terminal :

sudo apt-get install bitdefender-scanner-gui

4. Once complete you now need to log out or restart and log back in again. a menu shortcut will be generated (Applications - System Tools - BitDefender Scanner).

5. Get free license for 148 days. Go to HERE FOR 148 DAYS FREE LISENCE. You need an email for this, because the license will sent to your email.