How to patch your server against The Heartbleed Bug

<div dir="ltr" style="text-align: left;" trbidi="on"> <h3>  <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhF8F3vAwnst4IayJY5zYLxQJ_-NQBqWbNlmhPEVZiV0HJTJ7pQWu9FwtvAUEJYWLEIgX9_d9Bem64Sv5Fo31Sy3Gcm3fcavtdzOuyp0vG39gFf-122r39HWCB-2l_fR_VVjbFKISUwlYCg/s1600/How+to+patch+your+server+against+The+Heartbleed+Bug.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="How to patch your server against The Heartbleed Bug" border="0" height="400" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhF8F3vAwnst4IayJY5zYLxQJ_-NQBqWbNlmhPEVZiV0HJTJ7pQWu9FwtvAUEJYWLEIgX9_d9Bem64Sv5Fo31Sy3Gcm3fcavtdzOuyp0vG39gFf-122r39HWCB-2l_fR_VVjbFKISUwlYCg/s1600/How+to+patch+your+server+against+The+Heartbleed+Bug.jpg" title="How to patch your server against The Heartbleed Bug" width="318" /></a></div> <div class="separator" style="clear: both; text-align: center;"> </div> </h3> <h3> What is the Heartbleed Bug?</h3> <br /> The Heartbleed Bug is a serious <a href="http://www.hackerschronicle.com/search/label/Vulnerability">vulnerability</a> in the popular <a href="http://www.hackerschronicle.com/search/label/OpenSSL">OpenSSL</a> cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).<br /> The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users. <br /> <br /> <h3> Before you start</h3> Check if your OpenSSL version is vulnerable to the <a href="http://www.hackerschronicle.com/search/label/Exploit">exploit</a>. You can check it by typing in your terminal: <span class="highlight pulse">openssl version</span><br /> The result should look something like this:<br /> <div class="command wobble-horizontal"> # openssl version<br /> OpenSSL 1.0.1g 7 Apr 2014 </div> <br /> <br /> Since we at <a href="http://www.hackerschronicle.com/">Hackers Chronicle</a> already patched our systems at the time of writing this guide, your result will probably be different.<br /> <h3> What versions are vulnerable?</h3> Status of different versions:<br /> <ul> <li>OpenSSL 1.0.1 through 1.0.1f (inclusive) are vulnerable</li> <li>OpenSSL 1.0.1g is NOT vulnerable</li> <li>OpenSSL 1.0.0 branch is NOT vulnerable</li> <li><a href="http://www.hackerschronicle.com/search/label/OpenSSL">OpenSSL</a> 0.9.8 branch is NOT vulnerable</li> </ul> <br /> Bug was introduced to OpenSSL in December 2011 and has been out in the wild since OpenSSL release 1.0.1 on 14th of March 2012. OpenSSL 1.0.1g released on 7th of April 2014 fixes the bug.<br /> <br /> Some operating system distributions that have shipped with potentially vulnerable OpenSSL version:<br /> <ul> <li>Debian Wheezy (stable), OpenSSL 1.0.1e-2+deb7u4</li> <li><a href="http://www.hackerschronicle.com/search/label/Ubuntu">Ubuntu</a> 12.04.4 LTS, OpenSSL 1.0.1-4ubuntu5.11</li> <li><a href="http://www.hackerschronicle.com/search/label/CentOS">CentOS</a> 6.5, OpenSSL 1.0.1e-15</li> <li>Fedora 18, OpenSSL 1.0.1e-4</li> <li>OpenBSD 5.3 (OpenSSL 1.0.1c 10 May 2012) and 5.4 (OpenSSL 1.0.1c 10 May 2012)</li> <li>FreeBSD 8.4 (OpenSSL 1.0.1e) and 9.1 (OpenSSL 1.0.1c)</li> <li>NetBSD 5.0.2 (OpenSSL 1.0.1e)</li> <li>OpenSUSE 12.2 (OpenSSL 1.0.1c)</li> </ul> Operating system distribution with versions that are not vulnerable:<br /> <ul> <li>Debian Squeeze (oldstable), OpenSSL 0.9.8o-4squeeze14</li> <li>SUSE Linux Enterprise Server</li> </ul> <h3> Ubuntu</h3> open your terminal and type in the following:<br /> <span class="command wobble-horizontal">#sudo apt-get update<br /> #sudo apt-get install -y libssl1.0.0 openssl<br /> #openssl version -a <br /> //confirm the "built on" date is >= 2014-04-07<br /> sudo lsof -n | grep ssl | grep DEL <br /> //restart all listed services. Repeat this until no results are returned</span><br /> <br /> <h3> <a href="http://www.hackerschronicle.com/search/label/Debian">Debian</a></h3> Open terminal and copy or type the following:<br /> <span class="command wobble-horizontal">#wget http://security.debian.org/pool/updates/main/o/openssl/libssl1.0.0-dbg_1.0.1e-2+deb7u5_amd64.deb<br /> #wget http://security.debian.org/pool/updates/main/o/openssl/openssl_1.0.1e-2+deb7u5_amd64.deb<br /> #wget http://security.debian.org/pool/updates/main/o/openssl/libssl1.0.0_1.0.1e-2+deb7u5_amd64.deb<br /> #wget http://security.debian.org/pool/updates/main/o/openssl/libssl-dev_1.0.1e-2+deb7u5_amd64.deb<br /> <br /> #dpkg -i openssl_1.0.1e-2+deb7u5_amd64.deb<br /> #dpkg -i libssl1.0.0_1.0.1e-2+deb7u5_amd64.deb<br /> #dpkg -i libssl1.0.0-dbg_1.0.1e-2+deb7u5_amd64.deb<br /> #dpkg -i libssl-dev_1.0.1e-2+deb7u5_amd64.deb<br /> <br /> #/etc/init.d/apache2 restart<br /> #/etc/init.d/ssh restart</span><br /> <br /> <h3> CentOS</h3> Open terminal and copy or type the following:<br /> <span class="command wobble-horizontal">#yum clean all && yum update "openssl*"</span><br /> <br /> Take note and ensure that it’s specifically <span class="system push highlight">openssl-1.0.1e-16.el6_5.7 (or later)</span> being installed. As this update has just been released, your yum mirror may not have this package yet. If your yum mirror/repository does not yet have this update, you can download and install the RPMs manually from another CentOS yum repository.<br /> <br /> After updating the packages, run the following command to see what processes still have the old, deleted OpenSSL libraries open:<br /> <span class="command wobble-horizontal">#lsof -n | grep ssl | grep DEL</span><br /> <br /> You must restart each process that still has the old libraries open.<br /> <br /> Examples of processes that may still have the old libraries open:<br /> <ul> <li>mysql</li> <li>postfix</li> <li>webmin</li> <li>openvpn</li> <li>osad</li> <li>nrpe</li> </ul> <h3> <a href="http://www.hackerschronicle.com/search/label/Red%20Hat">Fedora/Red Hat</a></h3> Open terminal and copy or type the following:<br /> <span class="command wobble-horizontal">$ yum update openssl</span><br /> <br /> Restart services that rely on OpenSSL<br /> <span class="command wobble-horizontal">$ lsof | grep libssl | awk '{print $1}' | sort | uniq</span><br /> <br /> <h3> Test your website against Heartbleed Bug</h3> <a href="http://possible.lv/tools/hb">Heartbleed Test - provided by possible.lv</a><br /> <a href="http://filippo.io/Heartbleed/">Heartbleed Test - provided by filippo.io </a><br /> <br /> Source: <a href="http://scanarch.com/" target="_blank">Scan Arch</a> </div>

Bug Centos CVE-2014-0160 Debian Heartbleed Bug Linux Tutorials OS Patch Red Hat Ubuntu Vulnerability How to patch your server against The Heartbleed Bug

  What is the Heartbleed Bug? The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software librar...

Read more »

Enable HAProxy stats in Cent OS

<div dir="ltr" style="text-align: left;" trbidi="on"> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEipybvTyxMYGeHrvEwrVBcT-kUT58xnUwFzVVC3e0NsVS6_nizojFEnAcCpx9taJFEKFTlWxwdhkBAtm7J_Ew69rq4XOyKayQLdg0hli6nDuGc3zA-oJBTDuHL8Ty2gZKpkKMHtPGpqmBE/s1600/haproxy-stats-hackerschronicle-com.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Enable HAProxy stats in Cent OS" border="0" height="260" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEipybvTyxMYGeHrvEwrVBcT-kUT58xnUwFzVVC3e0NsVS6_nizojFEnAcCpx9taJFEKFTlWxwdhkBAtm7J_Ew69rq4XOyKayQLdg0hli6nDuGc3zA-oJBTDuHL8Ty2gZKpkKMHtPGpqmBE/s1600/haproxy-stats-hackerschronicle-com.png" title="Enable HAProxy stats in Cent OS" width="400" /></a></div> <br /> HAProxy Stats provides a lot of information about data transfer, total connection, server state etc. After installing HAProxy if you want to view HAProxy stats in your web browser, You can easily configure it by making few changes in your <a href="http://www.hackerschronicle.com/search/label/HAProxy" target="_blank">HAProxy</a> configuration using following steps.<br /> <br /> <h3> 1: Enable Stats in HAProxy</h3> To enable stats edit your haproxy configuration file(<span class="highlight">/etc/haproxy/haproxy.cfg</span>) and add below entry after defaults section.<br /> <div class="content shadow-radial"> listen stats 192.168.10.10:1936<br /> mode http<br /> log global<br /> <br /> maxconn 10<br /> <br /> clitimeout 100s<br /> srvtimeout 100s<br /> contimeout 100s<br /> timeout queue 100s<br /> <br /> stats enable<br /> stats hide-version<br /> stats refresh 30s<br /> stats show-node<br /> stats auth admin:password<br /> stats uri /haproxy?stats</div> <br /> <br /> <h3> 2: Access HAProxy Stats</h3> <br /> Your can access HAProxy stats using following url. Change ip with your haproxy server ip address.<br /> <div class="command wobble-horizontal"> URL: http://192.168.10.10:1936/haproxy?stats<br /> Login user: admin<br /> Login password: password</div> <br /> <br /> <br /> <h3> 3: Change Login Details</h3> <br /> If you want to changed login details of HAProxy stats, edit your configuration and update “stats auth” value like below<br /> <br /> <div class="command wobble-horizontal"> stats auth username:password</div> <br /> <br /> Save configuration file and restart HAProxy to update service.<br /> <br /> <h3> 4: Change HAProxy Stats URL</h3> <br /> To change url of haproxy stats edit configuration file and update following value.<br /> <div class="command wobble-horizontal"> stats uri /ha-stats<br /> or<br /> stats uri /stats</div> <br /> <br /> Save configuration file and restart HAProxy to update service.<br /> <div class="command wobble-horizontal"> service haproxy restart </div> <br /> Now you can access url like <span class="system pop">http://192.168.10.10:1936/ha-stats</span> or <span class="system pop">http://192.168.10.10:1936/stats</span>.<br /> <br /> <b>Congratulation’s!</b> HAProxy stats configuration has been completed successfully. Read next article to <a href="http://www.hackerschronicle.com/search/label/HAProxy">setup ACL in HAProxy</a>.</div>

Centos HAProxy Linux Tutorials Load Balancing Enable HAProxy stats in Cent OS

HAProxy Stats provides a lot of information about data transfer, total connection, server state etc. After installing HAProxy if you wan...

Read more »

Installing Aircrack on CentOS 6.4 and Ubuntu 13.10

<div dir="ltr" style="text-align: left;" trbidi="on"> I've got so many queries about installing <a href="http://www.hackerschronicle.com/search/label/Aircrack" target="_blank">Aircrack</a> suite on <a href="http://www.hackerschronicle.com/search/label/Centos">CentOS</a> or Ubuntu. Today I will show you how to install Wi-Fi cracking suite on both CentOS 6.3 and <a href="http://www.hackerschronicle.com/search/labels/Ubuntu" target="_blank">Ubuntu</a> 13.10<br /> <h3> Introduction</h3> <div class="define border-fade"> Aircrack-ng is an 802.11 <a href="http://www.hackerschronicle.com/search/label/WEP" target="_blank">WEP</a> and <a href="http://www.hackerschronicle.com/search/label/WPA" target="_blank">WPA-PSK</a> keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the all-new PTW attack, thus making the attack much faster compared to other WEP cracking tools. In fact, Aircrack-ng is a set of tools for auditing wireless networks.</div> <div class="highlight pop"> Note:</div> Click on the pics to view screenshots in higher resolution.<br /> <h3> Ubuntu 13.10</h3> I've installed Ubuntu 13.10 on my system, Step required to install Aircrack are as follows.<br /> <ol> <li>Check your system architecture.<br /> <br /><div class="command wobble-horizontal"> # #uname -ni</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi2mWxZ3-23U_ObCR3IfbBRzDASuEV0yNgXbM60Jc-YsNjDMwjHyd-K8d4c3RJy1kKydvxD4WY0fZR5EOznYF3S2e3RJlBGDlQupOguKzeA2HgX8TtW-dbjyn62ztx7bVzq3iOOIjXqI-3h/s1600/1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Installing Aircrack" border="0" height="209" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi2mWxZ3-23U_ObCR3IfbBRzDASuEV0yNgXbM60Jc-YsNjDMwjHyd-K8d4c3RJy1kKydvxD4WY0fZR5EOznYF3S2e3RJlBGDlQupOguKzeA2HgX8TtW-dbjyn62ztx7bVzq3iOOIjXqI-3h/s1600/1.png" title="Installing Aircrack" width="320" /></a></div> <li>Switch to root account <br /><div class="command wobble-horizontal"> # sudo su</div> </li> <br /> <li>Install gcc, Kernel headers and make <br /><div class="command wobble-horizontal"> # apt-get install build-essential</div> </li> <br />2<div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhkylUlwOUZJiMuAgUvnhxuYI7v-xvfmUaxZfAxjtV9UzmSUoT1Wsi37OPIKxiRLojtNJl6ypZdnrsiQy9I6TgRx_XFOUiwNJCVzILg7t_syVJMDDb5HQYP7FHqmqYtFlAhhPC6Ga0wXlXC/s1600/2.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="66" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhkylUlwOUZJiMuAgUvnhxuYI7v-xvfmUaxZfAxjtV9UzmSUoT1Wsi37OPIKxiRLojtNJl6ypZdnrsiQy9I6TgRx_XFOUiwNJCVzILg7t_syVJMDDb5HQYP7FHqmqYtFlAhhPC6Ga0wXlXC/s1600/2.png" width="320" /></a></div> <li>Install OpenSSl development <br /><div class="command wobble-horizontal"> # apt-get install libssl-dev</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8kBgbhA28zdZhkQJszjVO34K-9snGWLrJ76sRBoYxCtU9h5zMzAdpTZBPOXsgmC3muMOa_E1pCbgrNz9h6f4Qss6UNTgoCMrred_qWA0oskacN6PO31ew_yF562LYmAceE3eA3mWzNgd4/s1600/3.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="132" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8kBgbhA28zdZhkQJszjVO34K-9snGWLrJ76sRBoYxCtU9h5zMzAdpTZBPOXsgmC3muMOa_E1pCbgrNz9h6f4Qss6UNTgoCMrred_qWA0oskacN6PO31ew_yF562LYmAceE3eA3mWzNgd4/s1600/3.png" width="320" /></a></div> <li>Download the source of Aircrack-ng <br /><div class="command wobble-horizontal"> # wget http://download.aircrack-ng.org/aircrack-ng-1.2-beta2.tar.gz</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiiVNBT3lp6YxIi6o4BoMN0ZAhTxQKfLixIHqhIFPisF2oWP3oVsbPn4zkoVGqYPqfRQ8zOW6SI4TAEnKWqLzlmKR5Gchq96gvW_8-SWRal8nmjP-uS2Y40KbeMBXYOJjW6ZlPtLybmvtfO/s1600/4.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="107" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiiVNBT3lp6YxIi6o4BoMN0ZAhTxQKfLixIHqhIFPisF2oWP3oVsbPn4zkoVGqYPqfRQ8zOW6SI4TAEnKWqLzlmKR5Gchq96gvW_8-SWRal8nmjP-uS2Y40KbeMBXYOJjW6ZlPtLybmvtfO/s1600/4.png" width="320" /></a></div> <li>Untar the tar file <br /><div class="command wobble-horizontal"> # tar -zxvf aircrack-ng-1.2-beta2.tar.gz</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiAe_K4HuXn5zjVOmA2-eRvYa7iiS9GwBINKB1C3vfuXAfBLLKDk0PEz8zQFm9F69Vj4UbFvl1Ja8Ckt23aM_e3FKh61AD9B4_Ouc8gO6e65p35G7xjyS4p_o8GHRum4hlrS-XeuMfs1oKR/s1600/5.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="42" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiAe_K4HuXn5zjVOmA2-eRvYa7iiS9GwBINKB1C3vfuXAfBLLKDk0PEz8zQFm9F69Vj4UbFvl1Ja8Ckt23aM_e3FKh61AD9B4_Ouc8gO6e65p35G7xjyS4p_o8GHRum4hlrS-XeuMfs1oKR/s1600/5.png" width="320" /></a></div> <li>Move to aircrack directory and edit common.mak file. <br /><div class="command wobble-horizontal"> # cd aircrack-ng-1.2-beta2<br /> nano common.mak</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhtqOkah3b8ro6HDKcsPnRHnoLYxPq4TbNVal4yhyphenhyphen7-U06pjHl-mQTicf1S25Obrc5wOt63lemMMW8Nt4dN_nXOBRyKd_q2uZCXF8WPgzZY-Th8fZCVezymbl0faKlreT5oF2M8fRL91hFE/s1600/6.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="45" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhtqOkah3b8ro6HDKcsPnRHnoLYxPq4TbNVal4yhyphenhyphen7-U06pjHl-mQTicf1S25Obrc5wOt63lemMMW8Nt4dN_nXOBRyKd_q2uZCXF8WPgzZY-Th8fZCVezymbl0faKlreT5oF2M8fRL91hFE/s1600/6.png" width="320" /></a></div> <li>Find CFLAGS line, it should look like CFLAGS ?= -g -W -Wall -O3</li> <br /> <li>Save and exit</li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNs6YZwb8iiLLnLHe7R9oiq27fSlBsqBIT6swgZIHalVgaITbiCTiCPiQRbc3lwhhR5-IEQLJC9X36FPlUtyL0rE39xxZK18fzIPmAd9WenKJxc6HxQQ4C7-rhLuC7hAoNez2sNcIc1v8g/s1600/7.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="179" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNs6YZwb8iiLLnLHe7R9oiq27fSlBsqBIT6swgZIHalVgaITbiCTiCPiQRbc3lwhhR5-IEQLJC9X36FPlUtyL0rE39xxZK18fzIPmAd9WenKJxc6HxQQ4C7-rhLuC7hAoNez2sNcIc1v8g/s1600/7.png" width="320" /></a></div> <li>Compile and install the source <br /><div class="command wobble-horizontal"> # make install</div> </li> <br /> <li>Update Aircrack Suite <br /><div class="command wobble-horizontal"> # airodump-ng-oui-update</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgrPgHvIz59d-nQoFN_ISjVr1O5h6Cu40mRj50kE0A7HgI31vDYgNlZni96xQplYpLj03z1zKiYz4J4uCORnu21qblK98Dl-z7B7amlq3wG3rwVFYsuTw80KnkpqfIMN2Pzz-aaxORPr6J4/s1600/8.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="49" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgrPgHvIz59d-nQoFN_ISjVr1O5h6Cu40mRj50kE0A7HgI31vDYgNlZni96xQplYpLj03z1zKiYz4J4uCORnu21qblK98Dl-z7B7amlq3wG3rwVFYsuTw80KnkpqfIMN2Pzz-aaxORPr6J4/s1600/8.png" width="320" /></a></div> </ol> Congrats, Aircrack suite is now installed.<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmfvH85Uz1QkcZK-wC-o5amh9mnm6STjpyo_pAg2bypbNALbgvFQEldqf2TjFUvlPIBXF1i2NKbx3GIj8B2O79zMAnasW8hDLcgTeBD_56Z-CNzuhnghdIXxiv2PuOZrdQSij5A6wAl0vq/s1600/9.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="74" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgmfvH85Uz1QkcZK-wC-o5amh9mnm6STjpyo_pAg2bypbNALbgvFQEldqf2TjFUvlPIBXF1i2NKbx3GIj8B2O79zMAnasW8hDLcgTeBD_56Z-CNzuhnghdIXxiv2PuOZrdQSij5A6wAl0vq/s1600/9.png" width="320" /></a></div> <br /> <h3> CentOS 6.4</h3> <ol> <li>Check your system architecture <br /><div class="command wobble-horizontal"> # uname -ni</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjXj1gfbpV87Li960jkTZR3tnakWDWSgXBq5nrpC0VC7G9b1M_kJalTxt9IEKYqHNw7oTOF5GVVzuZ2UqSykGFs0S8slQHUYYHLQnHlqjLLza-KWD1NROozepxZAWKT4j0Kg5u6wsTO5H6G/s1600/1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="179" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjXj1gfbpV87Li960jkTZR3tnakWDWSgXBq5nrpC0VC7G9b1M_kJalTxt9IEKYqHNw7oTOF5GVVzuZ2UqSykGFs0S8slQHUYYHLQnHlqjLLza-KWD1NROozepxZAWKT4j0Kg5u6wsTO5H6G/s1600/1.png" width="320" /></a></div> <li>Open Browser and check for appropriate RPM package from<div class="system pop"> http://pkgs.repoforge.org/aircrack-ng/</div> </li> <br /> <li>Copy the link for RPM package and download that package <br /><div class="command wobble-horizontal"> # wget http://pkgs.repoforge.org/aircrack-ng/aircrack-ng-0.9.3-1.el5.rf.i386.rpm</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiA8Q_hGimI4oLuT36T1Z0vhKtLa2NfUBBhQRNftYYnFvuHicCMcOCIabzO7z4pbWROMwWiWkpNHYuwOjbe5ZfpoSSUuvHQQS-ojgRFHQ3GsFavaffPXgmlfRwcZ5VizM1YMCcErgPtkqJg/s1600/2.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="237" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiA8Q_hGimI4oLuT36T1Z0vhKtLa2NfUBBhQRNftYYnFvuHicCMcOCIabzO7z4pbWROMwWiWkpNHYuwOjbe5ZfpoSSUuvHQQS-ojgRFHQ3GsFavaffPXgmlfRwcZ5VizM1YMCcErgPtkqJg/s1600/2.png" width="320" /></a></div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1t1ScgXAHosovv87fhkUM5MxsVfR2YwloaOFdeCOIiXjxerBTc3hkeixQFmLqS47W5Y1MB__segnGz4Mo8wGop4pbDne6HZ8GcGEPv3OI-lbkRkCy5rXnxRqfGZ4ziLw4ZdIjoL70Hx-F/s1600/3.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="185" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh1t1ScgXAHosovv87fhkUM5MxsVfR2YwloaOFdeCOIiXjxerBTc3hkeixQFmLqS47W5Y1MB__segnGz4Mo8wGop4pbDne6HZ8GcGEPv3OI-lbkRkCy5rXnxRqfGZ4ziLw4ZdIjoL70Hx-F/s1600/3.png" width="320" /></a></div> <div class="separator" style="clear: both; text-align: center;"> <br /></div> <li>Install the package <br /><div class="command wobble-horizontal"> # rpm -ivh aircrack-ng-0.9.3-1.el5.rf.i386.rpm</div> </li> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_jLNg3lQIhiJJdo0hGu8LPO1ZqLxaKsyojiNSlUEFbWaCALD8Hzl0cQ2nh7KWUUk67l4MhmaRz23-x-I0_8f3HnnlVcnJ8niJurH1FHACHgM4dmDfpvKlnYmgW4jIrh9FK5p2leqwLWGS/s1600/4.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="184" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_jLNg3lQIhiJJdo0hGu8LPO1ZqLxaKsyojiNSlUEFbWaCALD8Hzl0cQ2nh7KWUUk67l4MhmaRz23-x-I0_8f3HnnlVcnJ8niJurH1FHACHgM4dmDfpvKlnYmgW4jIrh9FK5p2leqwLWGS/s1600/4.png" width="320" /></a></div> <div class="separator" style="clear: both; text-align: center;"> </div> </ol> <div class="highlight"> <strong>Congrats</strong></div> Aircrack Suite has been installed on your Machine.<br /> We will soon post about cracking Wi-Fi with CentOS/Ubuntu</div>

Aircrack Centos Hacking Tools Linux Tutorials Ubuntu Installing Aircrack on CentOS 6.4 and Ubuntu 13.10

I've got so many queries about installing Aircrack suite on CentOS or Ubuntu. Today I will show you how to install Wi-Fi cracking sui...

Read more »

Install & Configure HAProxy on CentOS for Load Balancing

<div dir="ltr" style="text-align: left;" trbidi="on"> <div dir="ltr" style="text-align: left;" trbidi="on"> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj-FGNaqO7JgyS87FGY56QxtTA8qdmKBwQSWxPMrPCdX6vxOB-BXyHJAzspbQa4_ib24af1BxbdJY7NKrJ43WK6p5TDFPRTcG8XzmcwQofSSs95dokh9FtpbUKIukxzlt_Dxi0ae3cnGrA/s1600/installing-haproxy-on-centos.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img alt="Installing HAProxy on CentOS for Load Balancing" border="0" height="256" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj-FGNaqO7JgyS87FGY56QxtTA8qdmKBwQSWxPMrPCdX6vxOB-BXyHJAzspbQa4_ib24af1BxbdJY7NKrJ43WK6p5TDFPRTcG8XzmcwQofSSs95dokh9FtpbUKIukxzlt_Dxi0ae3cnGrA/s1600/installing-haproxy-on-centos.png" title="Installing HAProxy on CentOS for Load Balancing" width="320" /></a></div> <br /> HAproxy is open source proxy that can be used to enable <a href="http://en.wikipedia.org/wiki/High_availability">high availability</a> and <a href="http://en.wikipedia.org/wiki/Load_balancing_(computing)">load balancing</a> for web applications. It was designed especially for high load projects so it is very fast and predictable, HAProxy is based on single-process model.<br /> <br /> <div style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjA5j4GnrTrI8gUBenIJIvo5wtPO1FwxsLGHQo-XFNyKTk41I7c3BuMI3Sq7_begyT0pIfOTO9rqsVU77YMOZDepziJvEN34rvTERZJhas11TTLWzXlFCwsGOok5EnvjbJpMoIBohezUmM/s1600/HAProxy-logo.png" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img alt="Installing HAProxy on CentOS for Load Balancing" border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjA5j4GnrTrI8gUBenIJIvo5wtPO1FwxsLGHQo-XFNyKTk41I7c3BuMI3Sq7_begyT0pIfOTO9rqsVU77YMOZDepziJvEN34rvTERZJhas11TTLWzXlFCwsGOok5EnvjbJpMoIBohezUmM/s1600/HAProxy-logo.png" title="Installing HAProxy on CentOS for Load Balancing" /></a></div> In this post I’ll describe sample setup of HAProxy: users’ requests are load balanced between two web servers <strong>Web1</strong> and <strong>Web2</strong>, if one of them goes down then all the request are processed by alive server, once dead servers recovers load balancing enables again. See topology to the right.<br /> <h3> Installation</h3> <br /> HAProxy is included into repositories for major Linux distributions, so if you’re using <a href="http://www.hackerschronicle.com/search/label/Centos">Centos</a>, <a href="http://www.hackerschronicle.com/search/label/Redhat">Redhat</a> or <a href="http://www.hackerschronicle.com/search/label/Fedora">Fedora</a> type the following command:<br /> <br /> <div class="command wobble-horizontal"> #yum install haproxy</div> <br /> <br /> If you’re Ubuntu, Debian or Linux Mint user use this one instead:<br /> <br /> <div class="command wobble-horizontal"> #apt-get install haproxy</div> <h3> Configuration</h3> <br /> As soon as HAProxy is installed it’s time to edit its configuration file, usually it’s placed in <span class="highlight system pop">/etc/haproxy/haproxy.cfg</span>.<br /> Official documentation for HAProxy 1.4 (stable) is <a href="http://haproxy.1wt.eu/download/1.4/doc/configuration.txt">here</a>.<br /> <br /> Here is configuration file to implement setup shown at the diagram and described above:<br /> <div class="content shadow-radial"> global<br /> user daemon<br /> group daemon<br /> daemon<br /> log 127.0.0.1 daemon<br /> <br /> listen http<br /> bind 1.2.3.4:80<br /> mode http<br /> option tcplog<br /> <br /> log global<br /> option dontlognull<br /> <br /> balance roundrobin<br /> clitimeout 60000<br /> srvtimeout 60000<br /> contimeout 5000<br /> retries 3<br /> server web1 web1.hackerschronicle.com:80 check<br /> server web2 web2.hackerschronicle.com:80 check<br /> cookie web1 insert nocache<br /> cookie web2 insert nocache</div> <br /> <br /> Let’s stop on most important parts of this configuration file. Section <strong>global</strong> specifies user and group which will be used to run haproxy process (<strong>daemon</strong> in our example). Line <strong>daemon</strong> tells HAProxy to run in background, <strong>log 127.0.0.1 daemon</strong> specifies syslog facility for sending logs from HAProxy.<br /> <br /> Section <strong>listen http</strong> contains line <strong>bind 1.2.3.4:80</strong> that specifies IP address and port that will be used to accept users’ requests (they will be load balanced between Web1 and Web2). Line <strong>mode http</strong> means that HAProxy will filter all requests different from HTTP and will do load balancing over HTTP protocol.<br /> <br /> Line <strong>balance roundrobin</strong> specifies load balancing algorithm according to which each web server (Web1 and Web2) will be used in turns according to their weights. In our example weights for both servers are the same so load balancing is fair.<br /> <br /> Lines <strong>server web1</strong> … and <strong>server web2</strong> … specify web servers for load balancing and failover, in our case they are load balanced according to round robin algorithm and have the same priority/weight.<br /> <br /> The last two lines in configuration files are optional, they makes it possible to preserve cookies, it means for example that if you logged in to web application hosted at Web1 and then HAProxy forwarded your next request to Web2 you will still have logged in session opened as cookies with session id from Web1 will be sent to you from Web2 as well.</div> <h3> Start HAProxy Service</h3> <div class="command wobble-horizontal"> # service haproxy start<br /> # chkconfig haproxy on</div> <br /> <br /> <strong>Congratulation’s!</strong> you have successfully configured HAProxy load balancer. Read next article to <a href="http://www.hackerschronicle.com/search/label/HAProxy">enable haproxy stats</a> and <a href="http://www.hackerschronicle.com/search/label/HAProxy">setup ACL in HAProxy</a>.</div>

Centos HAProxy Linux Tutorials Load Balancing Tutorials Install & Configure HAProxy on CentOS for Load Balancing

HAproxy is open source proxy that can be used to enable high availability and load balancing for web applications. It was designed es...

Read more »