Networking

I am almost ready to publish the final tutorial on using ssh tunnels from a truecrypt partition on a Windows machine. Of course I choose to go way overboard in my research and the tutorial is full of some pretty awesome windows tricks.. I will come back to this post soon and post all the other advanced tools I use for debugging windows, for now though you MUST know how to debug the kernel and use these basic debugging tools.

Tags: Advanced, ASP, Boot, console, debugging, HowTo, Logs, Networking, Performance, Port, Windows XP
Posted in Hacking, Security, Windows | No Comments »

Vetted – Top 3 WordPress Speed Plugins

Sunday, November 29th, 2009

There are so many WordPress plugins out there now that I wanted to post my favorite 3 plugins for speeding up a WP-Powered blog. These are the 3 plugins that I install for pretty much all of my WP-Powered sites, which I run about 300 now. They work together to provide a very optimized blog for speed.

DB-Cache Reloaded does something entirely different, it saves the mysql queries that are made to the WP-database, as well as the mysql results to static files, and then through php serves those cached-files instead of re-querying the mysql database. Most mysql databases are stored on separate servers, and although many are on the same local network there is a limit to how many queries, and how many connections can take place.

So DB-Cache Reloaded basically makes WP-Super Cache work alot faster when generating the cache files, and DB-Cache Reloaded helps in a number of areas un-related to WP-Super Cache, like in the admin panel. And DB-Cache without WP-Super-Cache is a joke because it still uses the application-level and php for everything. Gotta use both (or just WPSC).

Tags: admin, Apache, askapache, AskApache Crazy Cache, Bandwidth, Bottleneck, Cache, caching, compression, Dig, filesystem, GET, httpd, mysql, Networking, password, PHP, post, Private Server, ram, Scripts, server, servers, SPEED, SSI, stat, Web Hosting, WordPress, WordPress Optimizing, WordPress Plugins, WordPress Speed, WP-Super Cache
Posted in Apache, Cache, Featured, Mod_Rewrite, Review, Server Administration, Web Hosting, Webmaster, WordPress, WordPress Plugins | 14 Comments »

Custom bash_profile for Advanced Shell Users

Monday, November 23rd, 2009

Looking for some advanced uses for the shell? Here is ~~some of~~ my best. The shell is where 70% of my work takes place, and I have at least one terminal open almost 100% of the time, for viewing tailing color-coded logs, and of course for the SSH Tunnels that I use to route various networking through, like my email. So I decided that to standardize and create a bash_profile containing the most time-saving and helpful functions that I could use on all the various hosting environments would really be some sweet sugar, so here is my constant Work-in-progress.

It works for all shells I encounter, including BackTrack, Debian, Knoppix, Arch Linux, etc. Also works for many hosting environments I use including DreamHost, HostGator, WiredTree, and pretty much any linux VPS.

I also rely on this heavily from within shell scripts I write to access all the functions and stuff in this .bash_profile, and to do that I just do like:

#!/bin/bash
 
source ~/.bash_profile &>/dev/nulll
 
pm "PM is a function to output nice messages with color"
yn "Are you enjoying the shell" && pm "Thats great!" || pm "Perhaps you're better suited for DOS"
yn "Show Calendar" && aa_calendar
yn "Show Fortune" && aa_fortune

Tags: .bashrc, 500, admin, Advanced, Apache, askapache, Backups, bash, bash alias, bash_profile, CCZE, chmod, CNAME, Cookies, curl, Dig, DreamHost, Firefox, Forms, GET, Google, GPG, grep, HostGator, Htaccess, Htpasswd, HTTP Headers, HTTPS SSL, ionice, iostat, Linux, Networking, Nice, PHP, Port, Prompt, PS1, Python, Redirect, Redirection, Renice, Scripts, server, servers, Shell, shell script, Shell Scripting, Socket, SOCKS, SPEED, SSH, SSI, stat, SymLinks, Ulimit, Web Hosting, Wget, WiredTree, WordPress, wp-config.php, xargs
Posted in Featured, Hacking, Linux Unix BSD, Security, Shell Scripting, Web Hosting | 6 Comments »

Firefox Add-ons for Web Developers

Sunday, October 18th, 2009

Advanced Web Development by AskApache is a Firefox Collection I created since I’m always trying new Addons out and using multiple computers and I wanted a quick and easy way to install my favorite’s and keep a running list. Firebug, YSlow, LastPass, and Web Developer are the only ones I always use regularly.

I like the idea of the last.fm but it’s not as powerful as the site, which is awesome. Lately listening to Kings of Leon Radio…

Tags: 401, 403 Forbidden, 500, Accessibility, Advanced, Ajax, Apache, askapache, Backups, Cache, caching, CommandLine, console, Cookies, CSS, debugging, Dig, DNS, Email, encryption, feed, Firebug, Firefox, Flash, Forms, GET, Gmail, Google, HTTP Headers, HTTPS SSL, Javascript, Login, Networking, Nice, Pagerank, password, Performance, PHP, Port, post, ram, Scripts, Security, SEO, server, servers, SOCKS, Source Code, SPEED, SSH, SSH Tunnels, SSI, stat, tmpfs, trick, Username, Web Development, Wireshark, WordPress, YSlow
Posted in Cache, Firefox, Google, Hacking, Javascript, Making Money, Music, Review, SEO, Security, Web Design, Web Tools, Webmaster, Windows | 4 Comments »

An AskApache Plugin Upgrade to Rule them All

Wednesday, July 29th, 2009

So my blog as been rather quiet for almost a year now, and very few updates if any have been released for my Password Protection PLugin, my Google 404 Plugin, and definately not for my AskApache CrazyCache plugin, which I will be releasing last… So for all of you who’ve helped me out by sending me suggestions and notifying me of errors and sticking with it… Just wanted to say sorry about that, and thanks for all the great ideas.. Well, I’ve been sticking with it as well believe it our not. I manage to get free days once in a while, and then its time to jam.

Tags: 401, 404 Not Found, admin, Advanced, Apache, askapache, AskApache Google 404, AskApache Password Protection, ASP, authorization, bash, Cache, Cache-Control, chmod, compression, Cookies, debugging, Dig, Email, errordocument, Etags, Examples, FilesMatch, Fsockopen, GET, Google, Htaccess, htaccess files, htaccess tricks, HTTP Headers, httpd, HTTPS SSL, Javascript, Last-Modified, Logs, mod_include, Mod_Rewrite, Mod_Setenvif, Networking, Nice, password, password protection, Perl, PHP, Port, post, Python, ram, Redirect, Rewrite Tricks, rewritecond, rewriterule, Robot, robots, Scripts, Security, SEO, server, server config, servers, SetEnvIf, Shell, Socket, Source Code, SSH, SSI, stat, trick, Username, Web Hosting, Wireshark, WordPress, WordPress Plugins, WordPress Security
Posted in Apache, Apache Modules, Cache, Featured, Hacking, Htaccess, Linux Unix BSD, Mod_Rewrite, PHP, Security, Web Hosting, Web Tools, Webmaster, Windows, WordPress, WordPress Plugins | 1 Comment »

DNS Round Robin Configuration using Rsync over SSH

Tuesday, April 14th, 2009

The goal is to add the HostGator server to be an exact mirror of the static.askapache.com domain, then to add that server as a 2nd A record to my DNS zone. That way half the visitors to the size will be taking up resources and bandwidth on the HostGator server instead of mine.

Round Robin A records in DNS are intended to evenly distribute queries between each host of the same name. Using some tricks straight out of a hackers toolbox we can verify if the distribution is taking place. (It is.)

Tags: 500, 503, admin, Apache, askapache, ASP, Bandwidth, Cache, caching, CNAME, CSS, Dig, DNS, DreamHost, experiments, GET, HostGator, HowTo, Htaccess, HTTPS SSL, Javascript, Linux, Logs, Networking, Nice, PHP, Port, Powweb, Prompt, PS1, Round Robin, rsync, Security, server, servers, Shell, SPEED, SSH, SSI, stat, trick, Web Hosting
Posted in Ajax, Apache, Apache Modules, Cache, Featured, Linux Unix BSD, Web Hosting | 5 Comments »

Password Protection Plugin Status

Sunday, March 1st, 2009

Enumerating Permissions can be Annoying

Don’t ask me how because I won’t tell you, but on one of the hosts I was testing on that did not allow direct access I was able to get the Apache server running as dhapache to erroneously write a file into my users blog directory. This is a big security no-no and I now have my .htaccess file written into the blog directory where it should go, but instead of my php script’s user having write access to the file so I can modify it, its owned by dhapache! Because the file is owned by dhapache I shouldn’t even be allowed to know it exists, but there it is. So the next step was to try and take ownership of the .htaccess file so that I could modify it. I tried and tried but was unsuccessful, I couldn’t modify it so that was another dead end. Actually it took me awhile to figure out how to remove the file from my directory. Being that it was owned by dhapache I couldn’t delete or modify it using my php process or even through ftp/ssh! Sysadmins regularly run find commands that search the servers for any files owned by dhapache that should not be there as this is a big red flag that someone has found a way to manipulate dhapache which could potentially lead to modifying dhapache-owned server config files, which sometimes is all it takes to hack your website and server.. Luckily I was able to delete it by basically running the hack again to overwrite the file.

Tags: .htaccess plugin, 500, admin, Apache, apache security, askapache, AskApache Password Protection, ASP, authorization, chmod, curl, debugging, Dig, DNS, feed, File Permissions, File System, filesystem, Fsockopen, GET, Hacking, Htaccess, HTTP Headers, httpd, HTTPS SSL, Login, Networking, nsa, password, password protection, PHP, php interpreter, Port, post, ram, Redirect, Robot, robots, Scripts, Security, security reasons, security tips, server, server config, servers, Socket, SSH, SSI, stat, Username, Web Hosting, WordPress
Posted in Apache, Featured, Hacking, Htaccess, Mod_Rewrite, PHP, Security, Web Hosting, WordPress, WordPress Plugins | 2 Comments »

COMPUTER SECURITY TOOLBOX

Friday, September 26th, 2008

List of mainly obscure security software geared more for the master pentester. These are mostly for unix, bsd, and mac and many are difficult to install and setup (require custom servers, inside access points, obscure libraries). Only programs that output data are included, so no actual exploits or anything. Most of these output extremely useful albeit extremely technical information.

Tags: admin, Advanced, Apache, askapache, ASP, Bandwidth, Boot, Cache, CommandLine, console, Cookies, debugging, Dig, DNS, Email, encryption, Ethernet, feed, File Permissions, filesystem, Forms, GET, Google, Hacking, HTTPS SSL, Linux, Login, Logs, Networking, Nice, nsa, password, PDF, Performance, Perl, PHP, Port, post, Prompt, Putty, ram, Redirect, Scanners, Scripts, Security, server, servers, Sessions, Shell, shell script, Sniffing, Socket, SOCKS, Source Code, SPEED, SSH, SSH Tunnels, SSI, stat, Vulnerability, Vulnerability Scanners, Windows XP, Wireshark
Posted in Security | 3 Comments »

Notes from Apache HTTPD Source Code

Tuesday, August 12th, 2008

thought I’d take a break from coding and post about how open-source is such a great tool for finding the best answers to the toughest questions,

/** is the status code informational */
#define ap_is_HTTP_INFO(x)         (((x) >= 100)&&((x) < 200))
/** is the status code OK ?*/
 
#define ap_is_HTTP_SUCCESS(x)      (((x) >= 200)&&((x) < 300))
/** is the status code a redirect */
#define ap_is_HTTP_REDIRECT(x)     (((x) >= 300)&&((x) < 400))
 
/** is the status code a error (client or server) */
#define ap_is_HTTP_ERROR(x)        (((x) >= 400)&&((x) < 600))
/** is the status code a client error  */
 
#define ap_is_HTTP_CLIENT_ERROR(x) (((x) >= 400)&&((x) < 500))
/** is the status code a server error  */
#define ap_is_HTTP_SERVER_ERROR(x) (((x) >= 500)&&((x) < 600))
 
/** is the status code a (potentially) valid response code?  */
#define ap_is_HTTP_VALID_RESPONSE(x) (((x) >= 100)&&((x) < 600))

Tags: 301 Redirect, 302 Redirect, 401, 403 Forbidden, 404 Not Found, 500, 503, admin, Apache, askapache, authorization, Cache, Cache-Control, Cookies, Dig, error log, errordocument, Etags, Examples, filesystem, GET, Htaccess, HTTP Headers, HTTP Status Codes, httpd, httpd.conf, HTTPS SSL, Last-Modified, mod_include, Networking, nsa, password, Port, post, ram, Redirect, Redirection, Request Method, Rewrite Tricks, rewritecond, rewriterule, Scripts, Security, server, server config, servers, Source Code, SSI, stat, SymLinks, Web Development, Web Hosting
Posted in Apache, Htaccess | No Comments »

Fsockopen Power Plays

Wednesday, July 2nd, 2008

PHP’s fsockopen function lets you open an Internet or Unix domain socket connection for connecting to a resource, and is one of the most powerful functions available in the php language.

Tags: 500, Advanced, Apache, askapache, AskApache Crazy Cache, ASP, Bandwidth, Blocking, Cache, Cookies, CSS, curl, debugging, DNS, Examples, feed, File System, Forms, Fsockopen, GET, Google, Hacking, Htaccess, HTTP Headers, httpd, HTTPS SSL, Linux, Login, Networking, PDF, Performance, PHP, Pipelining, Port, post, ram, server, servers, Snoopy, Socket, SPEED, SSI, stat, trick, WordPress
Posted in Cache, Featured, Hacking, Linux Unix BSD, PHP, Security, Webmaster | 4 Comments »

Hacking VLAN switched networks

Monday, March 31st, 2008

There isn’t much vlan info on the net in terms of specifics and I had to learn all about it because I needed to log in to a switch that was on a different vlan. With the help of the Ettercap developers NaGA and ALoR I figured it out.

Tags: 403 Forbidden, 500, admin, Apache, askapache, ASP, Boot, console, Ethernet, GET, Google, Hacking, Linux, Login, Networking, password, PDF, PHP, Port, post, Prompt, ram, Security, server, Shell, shell script, SSI, stat, trick, VLAN, Vulnerability, Wireshark
Posted in Featured, Hacking, Security | 1 Comment »

Custom Boot Menu in Windows XP

Thursday, January 10th, 2008

One of the first things that I do upon receiving a new Windows computer is immediately create a poweruser-style customized boot menu. Then every time I boot I can choose Safe Mode, Recovery Console, Debug, whatever I want! It’s quick and easy to set-up and everyone should have one, soo sweet!

Tags: admin, Advanced, Apache, askapache, ASP, Backups, Boot, boot.ini, Cache, console, debugging, Examples, Flash, GET, Networking, ntldr, pagefile, password, Performance, Perl, Port, post, Prompt, ram, Redirect, Redirection, Security, server, servers, Sessions, Shell, SSI, stat, Username, Windows, Windows XP
Posted in Featured, Hacking, Windows | 21 Comments »

Random Bits, the podcast that gives you an insiders view

Tuesday, October 9th, 2007

I was over at Alex King’s blog today checking out his mobile web plugin for wordpress and I noticed some fresh podcasts from some of the industry’s finest. The feeds are .mp3 and are easy to find and browse on the search-this.com site. They have some pretty nice articles over there as well..

Tags: 500, CSS, Elite, Examples, feed, GET, Logs, Networking, Nice, Optimization, Port, SEO, SSI, Web Development, Web Hosting, WordPress
Posted in Review, Web Design | 1 Comment »

Story by Author of PING for UNIX

Thursday, October 4th, 2007

Yes, it’s true! I’m the author of ping for UNIX. Ping is a little thousand-line hack that I wrote in an evening which practically everyone seems to know about. :-)

Tags: admin, Apache, askapache, Boot, Dig, Ethernet, GET, Linux, Networking, nsa, Performance, Port, ram, Socket, Source Code, SSI, stat
Posted in Linux Unix BSD, Security, Shell Scripting | No Comments »

Want to know how to really hack?

Sunday, July 22nd, 2007

An interesting post by a computer hacker explaining how to really hack.

Tags: Bandwidth, Boot, CommandLine, console, Dig, DNS, encryption, GET, Hacking, Linux, Networking, Port, Security, server, SSH Tunnels, SSI, Undetectable, VLAN
Posted in Linux Unix BSD, Security | 5 Comments »

Changing Any Password On XP

Saturday, June 16th, 2007

This quick tutorial will show you the steps to change and reset any user password on a windows computer, and also show you how to protect your computer from people doing this to you!

Tags: admin, Apache, askapache, Boot, boot.ini, GET, Linux, Login, Networking, password, Port, Prompt, SSI, tutorial, Username, Windows XP
Posted in Security, Windows | 17 Comments »

Arp Packet Hacking

Thursday, December 28th, 2006

Part deux of Want to know how to really hack? Question: can i arp poison a MAC which is not in my LAN or Network? What about double-encapsulation? Like embedding the arp within something else.. I’d study the wire capture for awhile and use tools like isic and hping3 to see what types of rules are in place… Then you can always try random weird protocols like a different vlan header on the packet or something… ettercapNG would allow this to work with some mods. Maybe you should try accessing the switch/router that is inbetween the lans… that is what…

Tags: Advanced, Apache, askapache, ASP, Boot, DNS, GET, Hacking, HTTPS SSL, Linux, Networking, password, Port, post, ram, Security, server, servers, Sniffing, Source Code, SSI, trick, tutorial, VLAN
Posted in Security | No Comments »

Networking

Posts Tagged ‘Networking’

Debugging Tools for Windows

Vetted – Top 3 WordPress Speed Plugins

Custom bash_profile for Advanced Shell Users

An AskApache Plugin Upgrade to Rule them All

DNS Round Robin Configuration using Rsync over SSH

Notes from Apache HTTPD Source Code

Custom Boot Menu in Windows XP

Random Bits, the podcast that gives you an insiders view

Story by Author of PING for UNIX

Want to know how to really hack?

Arp Packet Hacking

My Picks

Support Freedom or Die

Newest Posts

I'm Reading

htaccess Guide

Website Speed Tips Series