When analyzing a network capture it is common to need to change how a stream is being treated by Wireshark, either because the port assignment is dynamic or is not supported, or both. It is possible to change this, one stream at a time, and each time the whole capture needs to be rescanned. This …
Continue reading “Change “Decode as…” of a port range in Wireshark”
In a scenario where one machine has access to the internet, and a remote machine does not (due to firewall restrictions), but is accessible via a VPN or something. There is a way to provide internet access for this remote machine. One way this can be achieved with dynamic port forwarding in SSH, at least …
In our private network we have services that are served to the internet and should also be used by the users sitting inside the network (physically or via VPN). We have a main DNS servers in a cloud provider and it is serving service.example.com pointing to our firewall internet facing address and an internal DNS …
Continue reading “How to override DNS for private networks with BIND RPZ”
The cProfile is my go-to Python profiler as it is part of the default installation, no extra modules needed. When profilig with cProfile it will generate an output with the call count and spent times for each called fuction. The main way I use it is specifying an output file for later inspection: This will …
I usually just write here so I can remember these things later, but this time is something to be found by others. So, it is normal to have our git repositories accessible in the public internet (access controlled or not), but it is possible that your repositories are only accessible within your corporate network, and …
Continue reading “Accessing corporate GIT repositories without a VPN”
The easiest way is probably to check if the modulus of the public key embedded in the certificate / private key / CSR request. certificate: openssl x509 –noout –modulus –in <filename> private key: openssl rsa –noout –modulus –in <filename> request: openssl req -noout -modulus -in <filename>
For some time I’ve been wanting to change the default behavior of my keyboard (on an Ubuntu 18.04 machine) when using the composition keys (dead-keys). The default behavior for the double quote key (“) to be a compose key, in order to be able to input charaters like ä (“+a)and ö (“+o), so if I …
A few weeks ago I’ve migrated some services to a new server and this new server was running Debian 9. One of the changes from version 8 to 9 was that the default mysql-server package installed MariaDB instead of MySQL. This should be OK as MariaDB is supposed to be compatible with MySQL. This service …
Continue reading “MariaDB replication not auto reconnecting”
After upgrading do the Kernel 4.18, a chroot I used somewhat frequently stopped working. Everytime I tried to start it I just got that simple, but horrifying message: ~# chroot /path/to/jail /bin/bash -i -l Segmentation Fault As the project I was working on did not depended on that chroot I’ve set this aside until now. …
In the last few days I was trying to make some BPF scripts work and for that I tought I needed to upgrade my Debian to a new kernel. The original version is 4.9 with all the debian patches, and I’ve decided to go for the latest one available, which was 4.18. $ apt-cache search …
Continue reading “Upgrading the linux-image in Debian stretch”