If you use Drupal or WordPress and you have a virtual Server with SSH Login you should set up a daily Backup Script to have a Snapshot of your Blogs if Hackers insert SQL Code Injections or hack PHP Sites. Cause you cant NEVER know every EXPLOIT of every used Plugin (here less plugins is more!) Of course you can daily or hourly RESTORE AUTOMATIC by CRON your Blogs by OVERWRITE bad inserted STUFF! Howto? See later.. here .. sorry have current not enough time.. or read my Wiki for MYSQL and WordPress Help! Daily or hourly restored Stuff […]
From the current News we hear that insurances offers humans to save the complete health status at a Cloud based App. This is by DEFAULT insecure! Smartphones get less OS Security Updates by Manufacter Users do NOT know to handle Updates Users can’t update Firmwares by default Apps most located at App Stores (Google, Apple) App Stores Analyse downloads and usage of Apps, with this getting personal Data to SELL!! No Health Insurance knows to securing Data Pools especially Clouds !! No one will help Humans if Cloud App Keys abused and Data stolen Humans can be forces to offer […]
If you use a Android device google can track you via scanned and known wifi Networks without any connection! Android scans your area, shops, stores for public wifi networks, via LTE / GSM the OS verify the Data online at Google. As Result Google Maps sends you Popups to VOTE the last visited Places at Google Maps. That’s all WITHOUT GPS and WIFI connected only LTE/GSM ! Purge Google Account! (disconnect!) and disable all unwanted Google Apps especially Uploaders (Backups) then go Android Settings -> Wifi -> Advanced Wifi Settings! Disable the „local wifi scan“ option switch at Android! Remark: […]
Today on Net News faces that Social Media Giants like facebook seems out of control, the new GDPR DSGVO won’t stop them printing gold by data abuse. Time to disconnect.. or replace your apps and Internet foot prints..
To viel on busybox dmesg with human readable time for debug do: $vi /root/dmesg.sh insert: base=$(cut -d '.' -f1 /proc/uptime); seconds=$(date +%s); dmesg | sed 's/\]//;s/\[//;s/\([^.]\)\.\([^ ]*\)\(.*\)/\1\n\3/' | while read first; do read second; first=`date +"%d/%m/%Y %H:%M:%S" –date="@$(($seconds – $base + $first))"`; printf "[%s] %s\n" "$first" "$second"; done exit 0 run it sh dmesg.sh.. System Echo: … [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered disabled state [16/03/2018 14:55:18] device wlan1 entered promiscuous mode [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state [16/03/2018 14:55:18] br-lan: port 3(wlan1) entered forwarding state [16/03/2018 14:55:19] br-lan: port […]
Current a lot of sites blogging about memcached attacks on Servers here some details: Memcached Servers need a installed and running Service called „memcached“ Websites need a php-plugin like php7.0-memcached to connect via API to the memcached Service The Memcached Service uses a own Config File at debian /etc/memcached.conf By default it MUST listen to localhost or socket Admins MUST setup a FIREWALL like „ufw“ (iptables) and MUST check own Server for OPEN PORTS with nmap The Problem is that Attackers can run Scripts against to your Server in a 10^6 Range like a BOTNET !! with ONE PC cause […]
If you use a Gigablue SAT Box,after some weeks enigma2 will hang up: edit root crontab: $crontab -e insert: 0 1 * * * killall -9 enigma2 && sleep 5 && init 3 && /etc/init.d/samba restart 5 1 * * * wget -O /dev/null -q "IP-OF-GIGA-Box/web/powerstate?newstate=0&type=0" This will restart enigma2 Service, Samba and Webinterface too! Then Enigma is set to Standby! That kodi can access the TV Bookmarks to view TV over LAN! If Standby is not set Kodi hangs!
FAIL2BAN blocks access to „.ocdata“ file! Apache Error Log: ..AH01630: client denied by server configuration: … cloud/data/.ocdata create with a Custom Rule for FAIL2BAN do: $sudo nano /etc/fail2ban/filter.d/apache-auth.local insert: [apache-auth] ignoreregex = nextcloud/data/.ocdata do: $sudo service fail2ban restart Check Log: tail -f n50 /var/log/apache2/error.log Remark: Sometimes the Login take long time after Enter the Password this indicates a filled up „oc_bruteforce_attempts“ Table!! login into mysql: $mysql -u user -p select database: USE Nextcloud; show all values from the oc_bruteforce_attempts table, use: SELECT * FROM oc_bruteforce_attempts; remove „ALL“ IP’s from the table, do step by step: DELETE FROM oc_bruteforce_attempts WHERE IP="xxx.xxx.xxx.xxx"; […]