OSSEC is an open source host-based IDS that performs log analysis, andis able to correlate and analyse logs for a number of Linux (andWindows, but that is outside the scope of this blog post) servers. Thesoftware architecture of OSSEC and the use of agents, lends OSSEC toflexible deployment and management [1].
Set-up the Atomic repository that already has the appropriate OSSECpackages and install them would be the easiest way.
Read More →
CentOS 5.7 uses an older version of libpcap (0.9.4), but Snort’s DataAcquisition Library (daq) needs a newer version of libpcap (>=1.0.0).The latter is not an issue with the CentOS 6.0. Vishesh Kumar [1]provides an excellent instructions to getting Snort 2.9 to run on RHEL 5(http://www.linuxmantra.com/2010/10/install-snort-29-on-rhel-5.html).The purpose of this post is not to duplicate his efforts, but to extendit slightly to include instructions for a complete Snort set-up.
Read More →
Running some experiment on a VM server I rapidly ran out of patiencehaving to wait for commands to run, and/or switching back and forthusing Ctrl+Z, bg, and fg. My thoughts went back to Nick Black who hadintroduced me to Gnu Screen several years back, alas I has forgotten theshort-cuts, Thankfully Google and the man page came to the rescue.
Since the VM server was a CentOS 6.
Read More →
I had to recently rebuild my Mac Book Pro (gasp!), and decided toupgrade to Lion. The whole process was relatively painless. Files werecopied back from backups, and updated from my SVN repositories, howeverI had troubles installing the appropriate Mac port package for theAPACite classes.
sudo port install texlive-bibtex-extra
The latter yielded errors, which were logged in
/opt/local/var/macports/logs/_opt_local_var_macports_sources_rsync.macports.org_release_tarballs_ports_perl_p5-text-bibtex/p5.12-text-bibtex/main.log
Since the dependency p5.12-text-bibtex could not be installed,examination of the log file provided the following clues; error: ‘main’must return ‘int’
Read More →
While compiling a LaTeX document, a blank template of my PhD thesis tobe exact, when I got the following error “! LaTeX Error: File`apacite.sty’ not found.” Again a quick search for Mac ports indicatedthat the texlive-bibtex-extra package was required. It was quicklyinstalled using;
sudo port install texlive-bibtex-extra
Subsequent compile yielded more errors, this time it was “! Undefinedcontrol sequence. \abstract”. This was solved using thetexlive-latex-extra package, installed using;
Read More →
Evernote is a great tool. I absolutely love it. The only con, is thatit’s nto available natively for Linux. So I have to run it under theWindows Emulator or wine. The installation is fairly simple.
wgethttp://evernote.s3.amazonaws.com/win4/public/Evernote_4.5.0.5229.exe wine Evernote_4.5.0.5229.exe Obviously not running natively there is a slight performance lag. Thismay be attributed to my 5 year old laptop. Although it’s still usable,the slow synchronization soon becomes tiresome.
Read More →
It’s pretty easy to set-up Cisco serial console connectivity on Ubuntu10.04. The usual way is to use minicom. The serial ports usuallycalled COM1-4 usually have the following address range;
COM1 - 3E8 COM2 - 2F8 COM3 - 3E8 COM4 - 2E8 To complete the setup first determine the address used for COM1 (orwhichever serial port you wish to use) on your machine query the kernelbuffer ring using the dmesg command, then install and configure theminicom, modem emulation tool.
Read More →
KeePass is a very popular password management software. One of my clientuses this for their systems and I was given a copy of their database.Since I mostly use linux when I am working, I needed a way to get thisworking on Ubuntu 10.04. Instructions are widely available, but againfor my benefit, I have documented them here as step-by-step guide formyself. At the time of this blog post the 2.
Read More →