Uploaded bytomaszmiklas
609 views

BruCON 2010 Lightning Talks - DIY Grid Computing

This document summarizes DIY grid computing using a decentralized network of computers. The grid uses a controller, runners installed on participating machines, and tasks that can be run remotely. The goals are to utilize spare computing resources efficiently for tasks like cracking passwords or testing applications. Requirements include central control, reliability, scalability, and ability to update tasks remotely. Hardware can include unused servers, home computers, or cloud instances. Benefits include distributing workload and avoiding a single point of failure.

Embed presentation

DIY grid computing It’s easier than you think! Tomasz ‘tqm’ Miklas
Who? Non-standard All things solutions wireless Photography Linux Security Tomasz Miklas Perl a.k.a. Guiness HA tqm Gadgets Scalability @tomaszmiklas Technology K.I.S.S.
Why? Originally to test statistical models… Billions of independent passes (code executions) Minimal I/O – just the parameters and hopefully some output Clean recovery from hardware/software faults – bad things happen! Use available resources in the most effective way In other words… I need quite a lot CPU cycles :-) …almost like BOINC!
"Make everything as simple as possible, but not simpler” -- Albert Einstein
Requirements Light-bulb approach Centrally controlled Reliable Easy to scale Ability to deploy custom application logic on demand without changing underlying infrastructure … be able to easily update or replace infrastructure!
Requirements #2 Support SMP if available Run different tasks at the same time Very basic monitoring and reporting Client capabilities checking/recording (TO DO) Task assignment based on capabilities (TO DO) Graceful remote node shutdown (TO DO)
Implementation Controller Brain of the whole grid Perl CGI No database :-)
Implementation Runner Creates unified platform to run the code Debian based livecd built for the purpose… Very easy, well documented! Live USB and other options available Single shell script – downloader for client app
Implementation Grid client Responsible for communications and task execution Latest version downloaded at runner start-up Identify host capabilities – use as much as possible Run task with parameters, collect STDOUT
Actual task Takes command line parameters, results to STDOUT Can be another level of indirection (downloader, etc) Usually it is a harness to make real app work Just make sure LiveCD has all the libraries needed… … or use static linking :-) Perl apps can be treated with perlcc or PAR
Trivia Brute-force md5 hashes Kind of Map-Reduce algorithm - not quite there yet Parameters: 1. Wanted hash 2. Variable part length 3. Plaintext prefix 4. Variable part characters 5. One more to say we want space in character set
Example MD5 ("password") = 5f4dcc3b5aa765d61d8327deb882cf99 # use default characters ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa # use just lowercase alpha ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa abcdefghijklmnopqrstuvwxyz # use just lowercase alpha and space ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa abcdefghijklmnopqrstuvwxyz space
Hardware? #1 – Decommissioned servers 2x Xeon Dual-Core ~3GHz -> 4 CPU cores 2-4GB RAM Whatever HDD + power / cooling / noise issues
Hardware? #2 – Home lab?! Mixed CPUs 1-4 cores per box NAS storage (if needed) Gigabit network Noise level OK but not for really long runs
Desktop virtualization Bad Idea® VirtualBox • Linux host and Linux guest – disaster! • LiveCD on bare metal - 250-300 sec/unit • LiveCD on VirtualBox – 2300-3500 sec/unit VMWare – not tested yet Xen – seems to be very close to bare-metal!
Cooling is a hot topic! 5 kW cooling in a small room… … one node too many and all is out of control!
How about ‘cloud’? Let’s take Amazon EC2 as an example: AMIs available Easy to build your own (runner) Scale at will, pay per use – if there is a need to finish sooner than what can be done in-house the cost of using cloud is well justified Power/cooling/noise issues - outsourced!
EC2 on a budget Standard on-demand vs. spot instances • $0.085/h vs. $0.029/h - standard (1 EC2 CU) • $0.680/h vs. $0.243/h - XL standard (8 EC2 CU) • $0.170/h vs. $0.062/h - M high-cpu (5 EC2 CU) • $0.680/h vs. $0.246/h - XL high-cpu (20 EC2 CU) US - Virginia is cheaper than California or Europe Find your best bang-for-the-buck before you start :)
Project summary Time required: - 3 work days (part time, between normal work) from initial idea to 100% working grid Code not public (still in PoC/test/dev phase) Future plans: - more features - proper admin console (early beta in testing)! - port runner to EC2 or other platform DONE! - make it public (free hosted service coming soon)
Management console
Other usage ideas? Crawling content • Custom wordlists • Information gathering • Computer forensics (NEW!) Testing web/network apps/services • Load testing (for capacity planning) • Fuzzing Images/Audio/Video processing Bring your own ;-)
RTFM http://live.debian.net/ http://www.linuxconfig.org/Howto_CREATE_BUNDLE _UPLOAD_and_ACCESS_custom_Debian_AMI_using_ ubuntu
? … most likely at the bar :-]

More Related Content

PDF
Get Lower Latency and Higher Throughput for Java Applications
byScyllaDB
 
PDF
Crimson: Ceph for the Age of NVMe and Persistent Memory
byScyllaDB
 
PDF
Where Did All These Cycles Go?
byScyllaDB
 
PDF
Continuous Performance Regression Testing with JfrUnit
byScyllaDB
 
PDF
Data Structures for High Resolution, Real-time Telemetry at Scale
byScyllaDB
 
PDF
Using eBPF to Measure the k8s Cluster Health
byScyllaDB
 
PDF
Efficient Bytecode Analysis: Linespeed Shellcode Detection
byGeorg Wicherski
 
PDF
Vanquishing Latency Outliers in the Lightbits LightOS Software Defined Storag...
byScyllaDB
 
Get Lower Latency and Higher Throughput for Java Applications
byScyllaDB
 
Crimson: Ceph for the Age of NVMe and Persistent Memory
byScyllaDB
 
Where Did All These Cycles Go?
byScyllaDB
 
Continuous Performance Regression Testing with JfrUnit
byScyllaDB
 
Data Structures for High Resolution, Real-time Telemetry at Scale
byScyllaDB
 
Using eBPF to Measure the k8s Cluster Health
byScyllaDB
 
Efficient Bytecode Analysis: Linespeed Shellcode Detection
byGeorg Wicherski
 
Vanquishing Latency Outliers in the Lightbits LightOS Software Defined Storag...
byScyllaDB
 

What's hot

PDF
OSNoise Tracer: Who Is Stealing My CPU Time?
byScyllaDB
 
PDF
Continuous Go Profiling & Observability
byScyllaDB
 
PDF
Kernel Recipes 2017 - What's new in the world of storage for Linux - Jens Axboe
byAnne Nicolas
 
PDF
Let’s Fix Logging Once and for All
byScyllaDB
 
PDF
IPLOG? A beginner's IDS for the WIN!
byNathan Gibbs
 
PDF
Kernel Recipes 2016 - Speeding up development by setting up a kernel build farm
byAnne Nicolas
 
PDF
Scaling Apache Pulsar to 10 Petabytes/Day
byScyllaDB
 
PDF
A fault-tolerant peer-to-peer replication network
byRadu Potop
 
PPT
A Practical Event Driven Model
byXi Wu
 
PDF
IPSN 2009 Contiki / uIP tutorial
byadamdunkels
 
PDF
Installation of ns2
byPradeep Kumar TS
 
PDF
IPv4aaS tutorial and hands-on
byAPNIC
 
PDF
Using Erlang on the RaspberryPi to interact with the physical world
byBrian Chamberlain
 
PDF
Maxim Kamensky - Applying image matching algorithms to video recognition and ...
byEastern European Computer Vision Conference
 
PPTX
Networking Architecture of Warframe
byMaciej Siniło
 
PDF
Dynamic Instrumentation- OpenEBS Golang Meetup July 2017
byOpenEBS
 
PPS
Bottom halves on Linux
byChinmay V S
 
PDF
D. Fast, Simple User-Space Network Functions with Snabb (RIPE 77)
byIgalia
 
PPT
.NET Debugging Workshop
bySasha Goldshtein
 
PDF
LAS16-101: Efficient kernel backporting
byLinaro
 
OSNoise Tracer: Who Is Stealing My CPU Time?
byScyllaDB
 
Continuous Go Profiling & Observability
byScyllaDB
 
Kernel Recipes 2017 - What's new in the world of storage for Linux - Jens Axboe
byAnne Nicolas
 
Let’s Fix Logging Once and for All
byScyllaDB
 
IPLOG? A beginner's IDS for the WIN!
byNathan Gibbs
 
Kernel Recipes 2016 - Speeding up development by setting up a kernel build farm
byAnne Nicolas
 
Scaling Apache Pulsar to 10 Petabytes/Day
byScyllaDB
 
A fault-tolerant peer-to-peer replication network
byRadu Potop
 
A Practical Event Driven Model
byXi Wu
 
IPSN 2009 Contiki / uIP tutorial
byadamdunkels
 
Installation of ns2
byPradeep Kumar TS
 
IPv4aaS tutorial and hands-on
byAPNIC
 
Using Erlang on the RaspberryPi to interact with the physical world
byBrian Chamberlain
 
Maxim Kamensky - Applying image matching algorithms to video recognition and ...
byEastern European Computer Vision Conference
 
Networking Architecture of Warframe
byMaciej Siniło
 
Dynamic Instrumentation- OpenEBS Golang Meetup July 2017
byOpenEBS
 
Bottom halves on Linux
byChinmay V S
 
D. Fast, Simple User-Space Network Functions with Snabb (RIPE 77)
byIgalia
 
.NET Debugging Workshop
bySasha Goldshtein
 
LAS16-101: Efficient kernel backporting
byLinaro
 

Similar to BruCON 2010 Lightning Talks - DIY Grid Computing

PDF
What's New in RHEL 6 for Linux on System z?
byIBM India Smarter Computing
 
PPTX
vBACD - Crash Course in Open Source Cloud Computing - 2/28
byCloudStack - Open Source Cloud Computing Project
 
PDF
Intro to cloud computing — MegaCOMM 2013, Jerusalem
byReuven Lerner
 
PPTX
Extreme security in web servers
byDaniel Garcia (a.k.a cr0hn)
 
PDF
How DreamHost builds a public cloud with OpenStack.pdf
byOpenStack Foundation
 
PDF
How DreamHost builds a Public Cloud with OpenStack
byCarl Perry
 
PDF
A Reimplementation of NetBSD Based on a Microkernel by Andrew S. Tanenbaum
byeurobsdcon
 
PPTX
Overview: Building Open Source Cloud Computing Environments
byMark Hinkle
 
PPT
Clusters (Distributed computing)
bySri Prasanna
 
PDF
Linux on System z Update: Current & Future Linux on System z Technology
byIBM India Smarter Computing
 
PDF
Linux para iniciantes
byCampus Party Brasil
 
PDF
Storage Developer Conference - 09/19/2012
byCeph Community
 
PDF
All about linux gaining root remote exploitation
byn0rz
 
PDF
BYOD Revisited: Build Your Own Device (Embedded Linux Conference 2014)
byRon Munitz
 
PDF
Bringing the Unix Philosophy to Big Data
bybcantrill
 
PDF
Plan 9: Not (Only) A Better UNIX
byNational Cheng Kung University
 
PDF
Self-awareness and Adaptive Technologies: the Future of Operating Systems?
byFET AWARE project - Self Awareness in Autonomic Systems
 
PDF
Datacenter Computing with Apache Mesos - BigData DC
byPaco Nathan
 
PPTX
Build a Cloud Day SF - Crash Course on Open Source Cloud Computing
byMark Hinkle
 
PDF
Xldb2011 wed 1415_andrew_lamb-buildingblocks
byliqiang xu
 
What's New in RHEL 6 for Linux on System z?
byIBM India Smarter Computing
 
vBACD - Crash Course in Open Source Cloud Computing - 2/28
byCloudStack - Open Source Cloud Computing Project
 
Intro to cloud computing — MegaCOMM 2013, Jerusalem
byReuven Lerner
 
Extreme security in web servers
byDaniel Garcia (a.k.a cr0hn)
 
How DreamHost builds a public cloud with OpenStack.pdf
byOpenStack Foundation
 
How DreamHost builds a Public Cloud with OpenStack
byCarl Perry
 
A Reimplementation of NetBSD Based on a Microkernel by Andrew S. Tanenbaum
byeurobsdcon
 
Overview: Building Open Source Cloud Computing Environments
byMark Hinkle
 
Clusters (Distributed computing)
bySri Prasanna
 
Linux on System z Update: Current & Future Linux on System z Technology
byIBM India Smarter Computing
 
Linux para iniciantes
byCampus Party Brasil
 
Storage Developer Conference - 09/19/2012
byCeph Community
 
All about linux gaining root remote exploitation
byn0rz
 
BYOD Revisited: Build Your Own Device (Embedded Linux Conference 2014)
byRon Munitz
 
Bringing the Unix Philosophy to Big Data
bybcantrill
 
Plan 9: Not (Only) A Better UNIX
byNational Cheng Kung University
 
Self-awareness and Adaptive Technologies: the Future of Operating Systems?
byFET AWARE project - Self Awareness in Autonomic Systems
 
Datacenter Computing with Apache Mesos - BigData DC
byPaco Nathan
 
Build a Cloud Day SF - Crash Course on Open Source Cloud Computing
byMark Hinkle
 
Xldb2011 wed 1415_andrew_lamb-buildingblocks
byliqiang xu
 

Recently uploaded

PDF
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
PPTX
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PDF
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
PDF
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
PDF
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
PDF
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PDF
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
GDG Cloud Southlake #49: Pradeep R Kumar: Implications of Agentic AI for Iden...
byJames Anderson
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
UiPath Modern Automation Playbook -Session 2
bysuhanisingh58689
 
Microsoft Azure News - February 2026 - BAUG
byDaniel Toomey
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
Constraint Collapse and Fidelity Decay in Scaled Language Models
bySemantic Fidelity Lab | A. Jacobs
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
Agent to agent service discovery using HashiCorp Consul and Vault
byBram Vogelaar
 
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
February 2026 Patch Tuesday hosted by Chris Goettl and Todd Schell
byIvanti
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 

BruCON 2010 Lightning Talks - DIY Grid Computing

  • 1.
    DIY grid computing It’s easier than you think! Tomasz ‘tqm’ Miklas
  • 2.
    Who? Non-standard All things solutions wireless Photography Linux Security Tomasz Miklas Perl a.k.a. Guiness HA tqm Gadgets Scalability @tomaszmiklas Technology K.I.S.S.
  • 3.
    Why? Originally to teststatistical models… Billions of independent passes (code executions) Minimal I/O – just the parameters and hopefully some output Clean recovery from hardware/software faults – bad things happen! Use available resources in the most effective way In other words… I need quite a lot CPU cycles :-) …almost like BOINC!
  • 4.
    "Make everything assimple as possible, but not simpler” -- Albert Einstein
  • 5.
    Requirements Light-bulb approach Centrally controlled Reliable Easyto scale Ability to deploy custom application logic on demand without changing underlying infrastructure … be able to easily update or replace infrastructure!
  • 6.
    Requirements #2 Support SMPif available Run different tasks at the same time Very basic monitoring and reporting Client capabilities checking/recording (TO DO) Task assignment based on capabilities (TO DO) Graceful remote node shutdown (TO DO)
  • 7.
    Implementation Controller Brain of the whole grid Perl CGI No database :-)
  • 8.
    Implementation Runner Creates unified platform to run the code Debian based livecd built for the purpose… Very easy, well documented! Live USB and other options available Single shell script – downloader for client app
  • 9.
    Implementation Grid client Responsible for communications and task execution Latest version downloaded at runner start-up Identify host capabilities – use as much as possible Run task with parameters, collect STDOUT
  • 10.
    Actual task Takes commandline parameters, results to STDOUT Can be another level of indirection (downloader, etc) Usually it is a harness to make real app work Just make sure LiveCD has all the libraries needed… … or use static linking :-) Perl apps can be treated with perlcc or PAR
  • 11.
    Trivia Brute-force md5 hashes Kindof Map-Reduce algorithm - not quite there yet Parameters: 1. Wanted hash 2. Variable part length 3. Plaintext prefix 4. Variable part characters 5. One more to say we want space in character set
  • 12.
    Example MD5 ("password") = 5f4dcc3b5aa765d61d8327deb882cf99 # use default characters ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa # use just lowercase alpha ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa abcdefghijklmnopqrstuvwxyz # use just lowercase alpha and space ./md5brute.pl 5f4dcc3b5aa765d61d8327deb882cf99 6 pa abcdefghijklmnopqrstuvwxyz space
  • 13.
    Hardware? #1 – Decommissionedservers 2x Xeon Dual-Core ~3GHz -> 4 CPU cores 2-4GB RAM Whatever HDD + power / cooling / noise issues
  • 14.
    Hardware? #2 – Homelab?! Mixed CPUs 1-4 cores per box NAS storage (if needed) Gigabit network Noise level OK but not for really long runs
  • 15.
    Desktop virtualization Bad Idea® VirtualBox • Linux host and Linux guest – disaster! • LiveCD on bare metal - 250-300 sec/unit • LiveCD on VirtualBox – 2300-3500 sec/unit VMWare – not tested yet Xen – seems to be very close to bare-metal!
  • 16.
    Cooling is ahot topic! 5 kW cooling in a small room… … one node too many and all is out of control!
  • 17.
    How about ‘cloud’? Let’stake Amazon EC2 as an example: AMIs available Easy to build your own (runner) Scale at will, pay per use – if there is a need to finish sooner than what can be done in-house the cost of using cloud is well justified Power/cooling/noise issues - outsourced!
  • 18.
    EC2 on abudget Standard on-demand vs. spot instances • $0.085/h vs. $0.029/h - standard (1 EC2 CU) • $0.680/h vs. $0.243/h - XL standard (8 EC2 CU) • $0.170/h vs. $0.062/h - M high-cpu (5 EC2 CU) • $0.680/h vs. $0.246/h - XL high-cpu (20 EC2 CU) US - Virginia is cheaper than California or Europe Find your best bang-for-the-buck before you start :)
  • 19.
    Project summary Time required: -3 work days (part time, between normal work) from initial idea to 100% working grid Code not public (still in PoC/test/dev phase) Future plans: - more features - proper admin console (early beta in testing)! - port runner to EC2 or other platform DONE! - make it public (free hosted service coming soon)
  • 20.
  • 21.
    Other usage ideas? Crawlingcontent • Custom wordlists • Information gathering • Computer forensics (NEW!) Testing web/network apps/services • Load testing (for capacity planning) • Fuzzing Images/Audio/Video processing Bring your own ;-)
  • 22.
  • 23.
    ? … most likely at the bar :-]