Apache dDoS “killapache” Sends Malformed GET Requests

There is a bug in certain versions of Apache that is susceptible to a dDoS using malformed GET requests. You can find more information about “killapache” at the following site. http://www.pentestit.com/2011/08/25/killapache-ddos-tool-freezes-apache-web-server/   There is no patch, however their is a work around for this bug which is provided below. In Ubuntu or Debian create a new file … Read more

JungleDisk – Server Daemon Not Responding, No Backups, Not cool?

So I noticed that one of my servers wasn’t being backed up via email alerts recently. Usually I’m on top of it, but I noticed recently one less email from JungleDisk (I get completion notices on all JungleDisk Backups). So I opened up the Jungle Disk Server Edition Management and found that I couldn’t connect … Read more

Simple Apache Expires Setup via .htaccess

If you’ve used Google Page Speed then you’ve probably seen “Leverage browser caching” as one of the items on the Medium Priority list. And it’s a real simple fix if you’re running Apache. Just create or edit your .htaccess file for the site you want to enable it on and input the following. <IfModule mod_expires.c> ExpiresActive … Read more

WordPress Permalink Sub-Directory 404 Error Weirdness

I didn’t really know what to put for the title of this post, but hopefully the content makes more sense and gets indexed properly and found by people looking for this specific information. The problem is when you install WordPress and setup Permalinks which uses a .htaccess file for Apache. The .htaccess make cause problems … Read more

Eletronics Purge – For Sale

Big Ticket Items Apple Mac Book Pro (A1278) – Intel Core 2 Duo – 8GB Memory – 500GB Drive (Seagate Monmentus) – MB990LL/A – MacBookPro5,5 – A1278 – 2326*   http://www.everymac.com/ultimate-mac-lookup/?search_keywords=A1278 Bought in December 2009 – No Apple Care. Couple of scratches from wear and tear. Otherwise is good condition, and original box + cd’s and power adapter. $1000 OBO. The … Read more

Cracking Secured (WEP/WPA) Wireless Networks with Backtrack!

I’ve always been asked, “is my Wireless Network secure?” and usually reply with “As long as you’re using WPA with a strong password”. However I wanted to test that out and do some penetration testing. I looked on the supported devices section of a popular distribution called “BackTrack” that seems to have everything you require … Read more

Testing Exchange 2007 IMAPS using OpenSSL

I was trying to find out why Thunderbird wasn’t working with Exchange 2007 IMAPS (SSL). So I started testing this using OpenSSL using the following command. openssl s_client -connect imap.host.ca:993 However, I was able to use the LOGIN command, no command would return an error or any information. I did some searching and found that … Read more

Installing CentOS 5.6 on Debian Xen Host

So I was trying to setup a SolusVM install on my Debian Lenny Xen machine. SolusVM requires CentOS 5.6 so I decided to do what most people have been doing online. xen-create-image –hostname=bob.bob.ca–ip=192.168.22.4 –gateway=192.168.22.254 –netmask=255.255.255.0 –dist=centos-5 –install-method=rinse –arch=i386 –pass –force At which point more errors popped up. Specifically… rinse /usr/bin/python: error while loading shared libraries: … Read more