Linux

OpenSSH 2FA Google Auth

Let’s give a try with Alpine Linux, OpenSSH and 2FA with Google Authenticator. add Packages apk add openssh openssh-server-pam google-authenticator openssh-doc google-authenticator-doc libqrencode Configure GoogleAuth touch /etc/pam.d/sshd ln /etc/pam.d/sshd /etc/pam.d/sshd.pam cat << 'EOF' >> /etc/pam.d/sshd.pam account include base-account auth required pam_env.so auth required pam_nologin.so successok auth required /lib/security/pam_google_authenticator.so echo_verification_code grace_period=57600 nullok auth required pam_unix.so md5 sha512 EOF update sshd_config cat << 'EOF' >> /etc/ssh/sshd_config PasswordAuthentication no AuthenticationMethods any UsePAM yes EOF Restart SSHD service sshd restart Setup User su - USERNAME google-authenticator Response

Smokeping on Docker

If you have Docker running somehwere … bring up your Smoke Instance within Seconds ;) Smokeping docker run --name smoke --restart always -d -p 80:80 linuxserver/smokeping Show Containers docker ps docker-test:~# docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 8f8b872ac1c3 linuxserver/smokeping "/init" 6 minutes ago Up 6 minutes 0.0.0.0:80->80/tcp, :::80->80/tcp smoke Shell into Docker docker exec -it smoke /bin/sh Check Netstat root@8f8b872ac1c3:/# netstat -an Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State tcp 0 0 0.

Alpine - OpenVM Tools

Running Alpine on ESX ? Install the Open VM Tools … Install OpenVM Tools apk add open-vm-tools apk add open-vm-tools-guestinfo apk add open-vm-tools-deploypkg Start Service rc-service open-vm-tools start Autostart Service rc-update add open-vm-tools boot All in One apk add open-vm-tools open-vm-tools-guestinfo open-vm-tools-deploypkg rc-update add open-vm-tools boot rc-service open-vm-tools start Busybox Extras add some tools (arch, dnsd, dumpleases, fakeidentd, ftpd, ftpget, ftpput, httpd, inetd, readahead, telnet, telnetd, tftp, tftpd, udhcpd) apk add busybox-extras List Packages apk info -L busybox-extras docker# apk info -L busybox-extras busybox-extras-1.

Ubuntu 20.04 LTS & Netplan

Assume you got a fresh Machine with DHCP … Ubuntu with DHCP Config cat /etc/netplan/01-netcfg.yaml # This is the network config written by 'subiquity' network: ethernets: ens192: dhcp4: true version: 2 and you’d like to switch to Static IP, ask google how todo it an give try: Static IP with Netplan # This is the network config written by 'subiquity' network: version: 2 ethernets: ens192: addresses: - 1.2.3.4/24 gateway4: 1.1.1.1 nameservers: addresses: - 8.

Kubernetes Multi-Juicer

If you ever wanna run a Multiplayer OWASP Juice Shop CTF on your own, here are some Notes and Info for bloody beginners References https://github.com/iteratec/multi-juicer/ https://www.digitalocean.com/ https://kubernetes.io/de/docs/concepts/overview/what-is-kubernetes/ Prerequisite you’ve got a Digital Ocean Account (or some other Cloud Provider) a spare domain and set the NS of DigitalOcean Digital Ocean CMD Line Tools installed and configured helm tools (kubernetes package manager -> brew install helm) some budget (~2 CHF/Day) 30min for Setup btw.

Bigdata

How to Process Large Files … ? Large is a variable Term, 700 GB is large for me, while it could be a small peace for others. Assuming you need to count the lines … this simple Task can take minutes ! Size [user@host /tmp]$ du -sh bigfile 745G bigfile Wordcount -> 10 min if you need to count the lines, use the wordcount command and you get the exact number … but you have to wait for minutes, depending in your disk subsystem and the file size of course

Ubuntu Kickstart

How to Kickstart a Ubuntu Installation … edit dhcpd.conf host ubuntu { hardware ethernet 4E:E5:80:xx:xx:xx; fixed-address x.x.x.x; filename "ubuntu/pxelinux.0"; next-server x.x.x.200; } restart dhcpd prepare env on tftp server (x.x.x.200) mkdir -p /tftpboot/ubuntu/ cd /tftpboot/ubuntu/ ftp http://archive.ubuntu.com/ubuntu/dists/bionic-updates/main/installer-amd64/current/images/netboot/netboot.tar.gz tar xfz netboot.tar.gz kickstart cfg put the following file in a webroot available from the client machine cat <<'EOF' > /var/www/htdocs/ks.cfg #Generated by Kickstart Configurator #platform=AMD64 or Intel EM64T #System language lang en_US #Language modules to install langsupport en_US #System keyboard keyboard ch #System mouse mouse #System timezone timezone Europe/Zurich #Root password (here 123456) rootpw --iscrypted $1$r6te7M.

Mint Vlan

How to configure a Vlan on Linux Mint ? Wiki Install vlan sudo apt-get install vlan Configuration root@mint:~# sudo modprobe 8021q root@mint:~# ifconfig ens19: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 10.10.18.83 netmask 255.255.255.0 broadcast 10.10.18.255 inet6 2001:db8:1:2:9506:5fcd:1c61:1279 prefixlen 64 scopeid 0x0<global> inet6 2001:db8:1:2:a9:c50b:1348:1ec6 prefixlen 64 scopeid 0x0<global> inet6 2001:db8:1:2:e064:b0ec:a08f:7fd8 prefixlen 64 scopeid 0x0<global> inet6 2001:db8:1:2:a015:7ec:eef0:1a75 prefixlen 64 scopeid 0x0<global> inet6 2001:db8:1:2:a028:b890:ffe8:5231 prefixlen 64 scopeid 0x0<global> inet6 2001:db8:1:2:c80:addb:1273:95d5 prefixlen 64 scopeid 0x0<global> inet6 fe80::9cc2:b22d:cc15:2946 prefixlen 64 scopeid 0x20<link> ether 4e:e5:10:00:06:83 txqueuelen 1000 (Ethernet) RX packets 181 bytes 58337 (58.