Hakin9.org Security Professional Submissions

[Lisa Kachold]

Anyone interested in submitting content to an online security zine?

There's onging negative critique of Hackin9.org on Twitter from the deep
dark security underground, mostly due to the nature of the costly
commercial online rag, well known for phishing/spamming security
professionals of note with invitations for articles  (for which Hackin9.org
does not provide remuneration ).
 In classic online zine fashion, sec pros and reverse engineers have been
happily submitting excellent content just for the venue for their work and
wide audience.   Check out the content and professionalism of Hackin9.org
(as well as subscription costs) and decide for yourselves?

Here's the contact for submission:

On Wed, Sep 19, 2012 at 12:14 AM, Estera Godlewska  >  wrote:

Hello Lisa,

My name is Estera Godlewska and I am an assistant of Hakin9 Magazine
editor. We are currently working on new issue of Hakin9 magazine devoted to
database and server security. I believe your experience in this matter will
be invaluable to our readers and maybe you could share your knowledge with
us. Please let me know if you had any more questions.

I am looking forward to prompt reply.


 Best Regards,

Estera Godlewska


end email invitation to submit an article

The article should contain/include (consist of):
1.Title
2. Lead (a short beginning encouraging to read the article)
3. Introduction (write what kind of knowledge one will gain and what one
will learn after reading the article)
4. Body (describe the subject step by step)
5. Conclusion
6. Short author's bio + one your photography if you want to attach
7. Other materials if applicable*

*Every kind of images, diagrams, parts of computer code (We are grateful
when the article contains a lot of computer code what gives our readers
possibility to run something in their own computers).
Every image (graphic) should be signed, for example: Figure 1. The nessus
input of sth.
Every listing (chain of the computer codes) should be signed, for example:
Listing 1. The xray function of using betacode.

Moreover, the article should comprise at least 6 pages of text (about 3500+
words).

Feel free to indicate that I was the source for your interest to Estera
Godlewska at Hackin9.org.

-- 
(503) 754-4452 Android
(623) 239-3392 Skype
(623) 688-3392 Google Voice
**
it-clowns.com
Chief Clown

















-- 
(503) 754-4452 Android
(623) 239-3392 Skype
(623) 688-3392 Google Voice
**
it-clowns.com
Chief Clown
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: Chase access w/ linux

[Robert Holtzman]

On Mon, Oct 22, 2012 at 06:24:45PM -0700, Matt Graham wrote:
> From: Robert Holtzman
> > 3 computers, 2 operating systems, 2 versions of Firefox, 1 of iceweasel
> > and 1 of Chrome all give me the same problem after trying to log into
> > my account, a blank white screen with a rotating throbber and the
> > message along the bottom "Read mfasa.chase.com".
> 
> Any extensions that might be doing weird things?  I have to set NoScript to
> allow chase.com to execute JS--no JS, no accounts page and probably no login. 
> I was just able to log in to my Chase account via FF on Gentoo.  I *have* had
> the problem you describe, but it's always gone away after an hour or so, so I
> figured it was a server problem of some sort.

As I said, I tried safe mode. Same problem.

> 
> > this is the only site that I have this problem with.
> 
> Going to https://mfasa.chase.com/ in a browser gives me 1 line of cryptic
> diagnostic/monitoring text.  What does it give you?

"Prod Core LPAR, cigp01b4a002 Auth2 Web "
> 
> -- 
> Matt G / Dances With Crows
> The Crow202 Blog:  http://crow202.org/wordpress/
> There is no Darkness in Eternity/But only Light too dim for us to see
> 
> ---
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

-- 
Bob Holtzman
If you think you're getting free lunch, 
check the price of the beer.
Key ID: 8D549279


signature.asc
Description: Digital signature
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: Chase access w/ linux

[Matt Graham]

From: Robert Holtzman
>> Any extensions that might be doing weird things?  I have to set NoScript
to
>> allow chase.com to execute JS--no JS, no accounts page and probably no
login. 
> As I said, I tried safe mode. Same problem.

Is "safe mode" something in $BROWSER that turns all the extensions off?  If
that's available in FF 10.0.8 ESR, I'm not sure where it is.  If it turns JS
off too, that would cause stupidity.  https://mfasa.chase.com/auth/login.html
, the action= attr of the login form, contains a few screenfuls of JS and some
sort of Flash thing.  It does not seem to be necessary for the Flash thing to
play; I have Flashblock up and I can still log in.  There are comments in the
JS within that about problems with IE9 and cross-window messages--don't know
if that has anything to do with the problem you're having.

>> Going to https://mfasa.chase.com/ in a browser gives me 1 line of cryptic
>> diagnostic/monitoring text. 
> "Prod Core LPAR, cigp01b4a002 Auth2 Web "

I get something similar.  Different hex string, possibly.

So:  You can retrieve the front page from mfasa.chase.com, but another page
somewhere else on that machine is timing out and/or failing miserably.  You
may have to track that down.  I've also noticed that if I've had an FF session
going for more than a few days, JS-heavy things may stop working or fail
unpredictably.  Restarting FF seems to help.  You've probably already tried
that though

-- 
Matt G / Dances With Crows
The Crow202 Blog:  http://crow202.org/wordpress/
There is no Darkness in Eternity/But only Light too dim for us to see

---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

chase

[betty]

No problem with 3 chase accounts i have, i only use linux or android to 
access them. Although last month there was a whole week that there was 
no access and i had to go into the branch office; apparently not related 
to my computers but theirs.


--
betty i.
www.webcanine.com
information for people
who care for dogs.

---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

linux based network/shared drive

[Josh Coffman]

Hi,

  I need to setup a shared network drive in linux in an otherwise windows
environment. (To get around a windows size limit) I know about Samba, and
that it's often been a pain for me. Are there any other options or easy
ways to set up a network drive using CentOS or something else? I'm guessing
they'll want windows authentication, but I haven't asked the question yet.

Thanks,
-josh
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: linux based network/shared drive

[George Toft]

Hi Josh,

If editing config files not your bag, try freenas, openfiler, ClearOS, etc.

However, I just set up Samba on CentOS 6 last night and it went pretty 
painless (much easier than BIND on CentOS 6).  There are examples on the 
Internet that you can use that will pretty much do anything you need.


If you use CentOS 6 with SELinux in permissive or strict, read your logs 
and Google so you can learn about relabeling your file system and 
changing contexts.  Again, Google is your friend :)


Regards,

George Toft

On 10/23/2012 6:31 PM, Josh Coffman wrote:

Hi,

  I need to setup a shared network drive in linux in an otherwise 
windows environment. (To get around a windows size limit) I know about 
Samba, and that it's often been a pain for me. Are there any other 
options or easy ways to set up a network drive using CentOS or 
something else? I'm guessing they'll want windows authentication, but 
I haven't asked the question yet.


Thanks,
-josh



---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss


---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: Chase access w/ linux

[Michael Butash]

I do get chromium getting cranky when my system depletes of memory, 
usually it'll start hanging, I'll start getting various JS errors and 
"Aww Snap's" with it flat out giving up.  I'm assuming you've rebooted 
at some point to clear memory or you've checked vmstat and htop for 
memory usage?


Otherwise I've used chase's ebanking for someone prior and it worked 
fine for me a few months back.



Going to https://mfasa.chase.com/ in a browser gives me 1 line of cryptic
diagnostic/monitoring text.

"Prod Core LPAR, cigp01b4a002 Auth2 Web"


I get something similar.  Different hex string, possibly.



Your's sounds server-side almost...

cigp01b4a002 sounds like a cryptic server name, "chase internet gateway, 
prod cluster 01, building 4, app002" vm/lpar would be my guess.


If you're constantly trying the base site and being directed there, it 
sounds like a load-balancer is sticking you to the same server based on 
a source-ip, which is common for persistence.  Kind of odd this happens 
indefinitely, but you could be "stuck" to a bad server.  Seems unlikely 
though you're the only one to see that.  Try to grab a different ip and 
try then.


Load-balancing is kind of a cryptic art, sometimes the apps and the 
hardware doing the balancing do strange things the more Layer 7 they get...


-mb
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: linux based network/shared drive

[Kevin Fries]

Samba can be a bit tricky, especially if you are trying to enforce user
access rights.  My favorite combination is:

  - Samba for share management & PDC

  - OpenLDAP for user management

  - Webmin to configure the server

  - GOsa to manage user access configuration

YMMV
Kevin
On Oct 23, 2012 7:31 PM, "Josh Coffman"  wrote:

> Hi,
>
>   I need to setup a shared network drive in linux in an otherwise windows
> environment. (To get around a windows size limit) I know about Samba, and
> that it's often been a pain for me. Are there any other options or easy
> ways to set up a network drive using CentOS or something else? I'm guessing
> they'll want windows authentication, but I haven't asked the question yet.
>
> Thanks,
> -josh
>
>
> ---
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: linux based network/shared drive

[Stephen]

I would rake a look at webmin's samba configuration.
On Oct 23, 2012 6:32 PM, "Josh Coffman"  wrote:

> Hi,
>
>   I need to setup a shared network drive in linux in an otherwise windows
> environment. (To get around a windows size limit) I know about Samba, and
> that it's often been a pain for me. Are there any other options or easy
> ways to set up a network drive using CentOS or something else? I'm guessing
> they'll want windows authentication, but I haven't asked the question yet.
>
> Thanks,
> -josh
>
>
> ---
> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
> To subscribe, unsubscribe, or to change your mail settings:
> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
>
---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: linux based network/shared drive

[Michael Butash]

For a pure file server, I second openfile and freenas, as they're quick 
and almost braindead easy to setup.  Openfiler, if you can figure it 
out, actually can do real enterprise-style clustering with drdb as well 
almost oob for a nice plus.


-mb


On 10/23/2012 07:41 PM, George Toft wrote:

Hi Josh,

If editing config files not your bag, try freenas, openfiler, ClearOS, etc.

However, I just set up Samba on CentOS 6 last night and it went pretty
painless (much easier than BIND on CentOS 6). There are examples on the
Internet that you can use that will pretty much do anything you need.


---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

Re: linux based network/shared drive (fusion directory)

[Michael Butash]

I saw the bit about GOsa and followed to it's fork, fusiondirectory, 
which actually seemed rather cool and undiscovered for me.  How's yours 
or anyone's here experience been with it vs. an Active Directory setup? 
 Do you treat them mutually exclusively for lin/win?


I'm curious as I always tend to end up having to keep AD to deal with 
windoze (and linux, with openlikewise well enough) clients/servers in 
one form or another, but it'd be great to be able to have a free 
pluggable replacement for it.


Openlikewise makes AD almost brainless easy to use for account/system 
(sudoer groups) management with AD, and is free, where generally you'll 
have an AD setup anyways.  The enterprise version of likewise looks way 
cool, but too expensive for me to deploy at my house to play with first 
to recommend to an actual client.


I know samba4 was getting there, but been a while since looking at how 
usable it and/or fusiondirectory might be for managing reasonably 
current systems like a win7/2008 domain.  FD looks quite nice for *nixes 
if nothing else.


-mb


On 10/23/2012 07:53 PM, Kevin Fries wrote:

Samba can be a bit tricky, especially if you are trying to enforce user
access rights.  My favorite combination is:

   - Samba for share management & PDC

   - OpenLDAP for user management

   - Webmin to configure the server

   - GOsa to manage user access configuration

YMMV
Kevin

On Oct 23, 2012 7:31 PM, "Josh Coffman" mailto:joshcoff...@gmail.com>> wrote:

Hi,

   I need to setup a shared network drive in linux in an otherwise
windows environment. (To get around a windows size limit) I know
about Samba, and that it's often been a pain for me. Are there any
other options or easy ways to set up a network drive using CentOS or
something else? I'm guessing they'll want windows authentication,
but I haven't asked the question yet.

Thanks,
-josh


---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us

To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss



---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss

---
PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss