主機自保指南
•
2 likes•490 views
This document provides instructions and configuration details for securing a FreeBSD system using PF packet filtering, fail2ban, and log monitoring. It includes steps for updating software and ports, configuring PF rules to block unwanted traffic and allow internal access, integrating fail2ban with PF to block banned hosts, and monitoring system logs and resource usage with tools like Logwatch and top.
Report
Share
Report
Share
Download to read offline
Recommended
Fun with Raspberry PI (and Perl)
This document discusses using Raspberry Pi's GPIO pins to control LEDs through Perl and C code. It shows how to write to the GPIO pins to turn the LEDs on and off, check their state, and handle interrupts. While Perl code works, C code is much faster for blinking LEDs. The document recommends using Linux, Perl and the GPIO pins on Raspberry Pi for inexpensively controlling multiple LEDs in an easy to use way.
Vm ware fuzzing - defcon russia 20
The document discusses using virtual machine techniques like GuestRPC and Backdoor I/O to conduct virtual denial of service attacks. It describes fuzzing the GuestRPC interface to discover bugs in systems like HGFS that could be exploited to cause memory leaks or crashes on the host machine. While vendors issue fixes, it notes that fully preventing abuse of these virtual machine behaviors is difficult and some techniques remain unfixed. It concludes with questions about using these kinds of attacks to bypass security systems on virtual machines.
Debugging TV Frame 0x09
This episode teaches how to catch data corruption using the combination of software and hardware breakpoints.
Zn task - defcon russia 20
The document describes a simulated hacking game scenario involving a compromised POS terminal infected with malware. It details the components of the botnet architecture including bot nodes, command and control infrastructure, and social media propagation. Diagrams show the network layout and communication channels. The document also examines the bot's components, capabilities, and protection mechanisms such as bytecode encryption and anti-debugging techniques. Hints are provided to help players progress in the game by bypassing defenses and achieving objectives over multiple days.
CAN interfacing on LPC1768 (ARM Cortex M3 based Micro controller)
The document describes code for initializing and transmitting messages over a CAN bus on an LPC1768 microcontroller, including initializing the CAN controller, setting an acceptance filter to define which message IDs will be received, and sending a test message over CAN1 while monitoring reception on CAN2. Functions are defined for CAN initialization, setting the acceptance filter, and transmitting messages with given IDs and data over CAN1.
PWM based motor speed control using LPC 1768
This code configures the LPC1768 microcontroller's PWM peripheral to generate a pulse width modulated signal on pin PWM1.5. It initializes the PWM timer and match registers, enables the PWM output, and then uses a for loop to incrementally change the duty cycle of the PWM signal from 10% to 100% over 10 steps, pausing 1 second between each step. This allows the user to see the PWM output change frequency smoothly over time.
Flowchart - Building next gen malware behavioural analysis environment
The document describes the behavior of a ransomware sample. It unpacks files, checks system requirements like CPU cores and Windows version, decrypts decoy files using XOR, identifies a .NET binary, writes registry keys for persistence, checks for security software and debuggers, downloads and executes updates, and includes keylogging and screenshot capturing functionality before deleting logs and persisting on the system.
Inspector - Node.js : Notes
Written for getting up to date with Node.js:
Inspector
Node.js API
Node.js is an open-source, cross-platform, back-end, JavaScript runtime environment that executes JavaScript code outside a web browser. Node.js lets developers use JavaScript to write command line tools and for server-side scripting—running scripts server-side to produce dynamic web page content before the page is sent to the user's web browser. Consequently, Node.js represents a "JavaScript everywhere" paradigm,[6] unifying web-application development around a single programming language, rather than different languages for server- and client-side scripts.
Recommended
Fun with Raspberry PI (and Perl)
This document discusses using Raspberry Pi's GPIO pins to control LEDs through Perl and C code. It shows how to write to the GPIO pins to turn the LEDs on and off, check their state, and handle interrupts. While Perl code works, C code is much faster for blinking LEDs. The document recommends using Linux, Perl and the GPIO pins on Raspberry Pi for inexpensively controlling multiple LEDs in an easy to use way.
Vm ware fuzzing - defcon russia 20
The document discusses using virtual machine techniques like GuestRPC and Backdoor I/O to conduct virtual denial of service attacks. It describes fuzzing the GuestRPC interface to discover bugs in systems like HGFS that could be exploited to cause memory leaks or crashes on the host machine. While vendors issue fixes, it notes that fully preventing abuse of these virtual machine behaviors is difficult and some techniques remain unfixed. It concludes with questions about using these kinds of attacks to bypass security systems on virtual machines.
Debugging TV Frame 0x09
This episode teaches how to catch data corruption using the combination of software and hardware breakpoints.
Zn task - defcon russia 20
The document describes a simulated hacking game scenario involving a compromised POS terminal infected with malware. It details the components of the botnet architecture including bot nodes, command and control infrastructure, and social media propagation. Diagrams show the network layout and communication channels. The document also examines the bot's components, capabilities, and protection mechanisms such as bytecode encryption and anti-debugging techniques. Hints are provided to help players progress in the game by bypassing defenses and achieving objectives over multiple days.
CAN interfacing on LPC1768 (ARM Cortex M3 based Micro controller)
The document describes code for initializing and transmitting messages over a CAN bus on an LPC1768 microcontroller, including initializing the CAN controller, setting an acceptance filter to define which message IDs will be received, and sending a test message over CAN1 while monitoring reception on CAN2. Functions are defined for CAN initialization, setting the acceptance filter, and transmitting messages with given IDs and data over CAN1.
PWM based motor speed control using LPC 1768
This code configures the LPC1768 microcontroller's PWM peripheral to generate a pulse width modulated signal on pin PWM1.5. It initializes the PWM timer and match registers, enables the PWM output, and then uses a for loop to incrementally change the duty cycle of the PWM signal from 10% to 100% over 10 steps, pausing 1 second between each step. This allows the user to see the PWM output change frequency smoothly over time.
Flowchart - Building next gen malware behavioural analysis environment
The document describes the behavior of a ransomware sample. It unpacks files, checks system requirements like CPU cores and Windows version, decrypts decoy files using XOR, identifies a .NET binary, writes registry keys for persistence, checks for security software and debuggers, downloads and executes updates, and includes keylogging and screenshot capturing functionality before deleting logs and persisting on the system.
Inspector - Node.js : Notes
Written for getting up to date with Node.js:
Inspector
Node.js API
Node.js is an open-source, cross-platform, back-end, JavaScript runtime environment that executes JavaScript code outside a web browser. Node.js lets developers use JavaScript to write command line tools and for server-side scripting—running scripts server-side to produce dynamic web page content before the page is sent to the user's web browser. Consequently, Node.js represents a "JavaScript everywhere" paradigm,[6] unifying web-application development around a single programming language, rather than different languages for server- and client-side scripts.
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...Cyber Security Alliance
This document discusses software obfuscation techniques using C++ metaprogramming. It presents several implementations of string obfuscation using templates to encrypt strings at compile-time. It also discusses obfuscating function calls using finite state machines generated with metaprogramming. Debugger detection is added to fight dynamic analysis. The techniques aim to make reverse engineering and static/dynamic analysis more difficult without changing program semantics.Killing any security product … using a Mimikatz undocumented feature
This document discusses techniques for bypassing security products on Windows systems by manipulating process and registry notification callbacks. It shows how the Mimikatz tool can be used to find and modify these callbacks to prevent security products from receiving important notifications. Specifically, it demonstrates patching a callback routine to do nothing, and notes unlinking callbacks from the notification list is also possible but requires more work. The conclusion is this approach allows killing any security tool while making it appear still active from a monitoring perspective.
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
В какой-то момент 3-й в мире работный сайт начал периодически падать на несколько минут. Сюрпризом стало то, что в этот раз действительно из-за сети.
Для масштабирования сервисов и их взаимодействия между собой hh.ru использует внутренний балансировщик. Обработку 25 тыс. запросов в секунду обеспечивают 5 серверов с nginx. Обращение к этим серверам балансирует коммутатор.
Я расскажу, как мы расследовали серию инцидентов, которая была вызвана нарушением протокола TCP при балансировке. И что мы придумали, чтобы продолжить безнаказанно его нарушать.
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
В какой-то момент 3-й в мире работный сайт начал периодически падать на несколько минут. Сюрпризом стало то, что в этот раз действительно из-за сети.
Для масштабирования сервисов и их взаимодействия между собой hh.ru использует внутренний балансировщик. Обработку 25 тыс. запросов в секунду обеспечивают 5 серверов с nginx. Обращение к этим серверам балансирует коммутатор.
Я расскажу, как мы расследовали серию инцидентов, которая была вызвана нарушением протокола TCP при балансировке. И что мы придумали, чтобы продолжить безнаказанно его нарушать.
Wireshark.ethereal
Ethereal/Wireshark is a network packet analyzer that captures packets and displays packet data. It can capture unicast, multicast, broadcast packets. Wireshark is the new name for Ethereal. It has interfaces for starting/stopping packet capture and filtering packets. The interface includes a packet list, details of selected packets, and exporting captured packets.
Timer Listings
This document contains code for two timer demo programs in C++. The first program (Beeper1) uses a timer to toggle the background color of the window between red and blue every second and play a beep sound. It also handles painting the window. The second program (Beeper2) is similar but moves the timer callback function into its own procedure separate from the window procedure.
DDAA FPGA - Multiplexor De Numeros en Display 7 Segmentos En Tiempo
This document describes the design of a 4-display multiplexing system to sequentially display the values of a 8-bit incrementing counter. The design includes:
1) An 8-bit incrementing counter module
2) A hexadecimal to 7-segment display decoder
3) A 4-input multiplexer to sequentially activate each display
The modules are instantiated and interconnected in a top level module to increment the counter value and sequentially multiplex the output to the four displays on the Nexys 2 board. Simulation waveforms verify the correct functionality of incrementing the counter value and sequentially multiplexing the displays.
Ir remote kit_blink.pde
This sketch uses an IR receiver module to receive signals from an IR remote control and decode the button presses. It blinks an LED connected to pin 13 of the Arduino to indicate the numeric button pressed. The sketch imports libraries for IR reception and decoding, declares constants for the receiver pin and repeat delay, initializes objects for receiving and decoding IR, and defines functions to translate codes to button values and blink the LED accordingly.
Ahmed vic
This document provides instructions for basic commands on Packet Tracer including setting the hostname and passwords, saving configurations, setting up a DHCP server with network, default router, and DNS server settings, and creating static routes between two routers by specifying the subnet, mask, and interface. It notes that interfaces must be turned on initially using the no shutdown command before static routes can be configured.
GNU Parallel și GNU Stow
Sînt descrise programele libele GNU Parallel și GNU Stow (opțiuni, exemple de utilizare, contraexemple etc)
Advanced cfg bypass on adobe flash player 18 defcon russia 23
This document describes an advanced technique to bypass Control Flow Guard (CFG) protections on Adobe Flash Player 18 and Windows 8.1. It details how the researchers were able to generate indirect call instructions in just-in-time (JIT) compiled Flash code to redirect execution to controlled addresses, bypassing CFG. This was done by manipulating parameters passed between functions to influence the JIT compiler's code generation and produce the desired indirect call opcodes. The technique allowed full control-flow hijacking on the protected systems.
ハイパフォーマンスブラウザネットワーキング2
This document discusses TCP (Transmission Control Protocol) and its role and functions. It explains the TCP three-way handshake process used to establish a connection between endpoints. It also describes how TCP manages and controls the flow of data through mechanisms like congestion control, flow control, and slow start. TCP aims to provide reliable, ordered, and error-checked delivery of streams of data between applications running on hosts communicating via an IP network.
A little systemtap
This document discusses the Linux tracing tool systemtap. It provides an overview of systemtap and what it can be used for, including tracing system calls, kernel functions, and application functions. It also discusses how systemtap works, how it uses debugging symbols, and how RPMs handle separate debug information files. Several examples are given of using systemtap probes to trace requests for Nginx, cURL, Redis, MySQL, and TCP retransmissions. The document concludes by mentioning using DTrace for other languages beyond C, such as MySQL, Python, and Java.
Reverse engineering Swisscom's Centro Grande Modem
The document discusses reverse engineering the firmware of Swisscom's Centro Grande modems. It identifies several vulnerabilities found, including a command overflow issue that allows complete control of the device by exceeding the input buffer, and multiple buffer overflow issues that can be exploited to execute code remotely by crafting specially formatted XML files. Details are provided on the exploitation techniques and timeline of coordination with Swisscom to address the vulnerabilities.
C-spirit reborn: why Go was bound to be created
Go was created to address issues with other imperative languages like C and C++ through its approach to memory management, concurrency, and software architecture. Go aims to make common programming tasks like concurrency, collections, and memory management straightforward and easy to use correctly. While it has some quirks to be aware of, overall Go provides a lightweight yet powerful programming language well-suited for building reliable concurrent systems.
Pres
The document describes the Zet x86 open source SoC project, including both physical and logical descriptions. At the physical level, it describes how the SoC is implemented on a Terasic Altera DE1 FPGA board with various devices connected. At the logical level, it provides details on the SoC top level Wishbone architecture and the design of the Zet processor core, including its instruction format, decoder, pipeline, and microcode. It concludes by discussing plans for a new version of Zet with an 8-stage pipeline targeting 100 MHz operation.
Exploit Research and Development Megaprimer: Win32 Egghunter
Exploit Research and Development Megaprimer
http://opensecurity.in/exploit-research-and-development-megaprimer/
http://www.youtube.com/playlist?list=PLX3EwmWe0cS_5oy86fnqFRfHpxJHjtuyf
Os Practical Assignment 1
The document describes the implementation of locks and conditions variables in an operating system project. It includes code for a Lock class that uses a semaphore to synchronize access with its Acquire and Release methods. It also includes code for a Condition class that allows threads to wait on and signal conditions, managing a wait queue of semaphores. The document concludes by briefly explaining the dining philosophers problem in concurrent programming and some potential solutions like using tokens to establish turns.
Rop and it's friends
Buffer overflows have been the most common security vulnerability for the last few years. These are considered as one of the oldest and more reliable methods. Due to the latest linux defences it has become difficult to attack using traditional buffer overflow technique . This led to the development of the return-oriented programming technique.
Return-oriented programming is a type of security attack, in which you can take the control over saved instruction pointer and can induce unpredictable behavior in a program in which exploit is under our control without injecting any malicious code.
In this presentation I will trace the origins of ROP and some related techniques such as Call and Jump Oriented Programming as well as some advanced techniques like JIT-ROP, BROP and SROP.
Specializing the Data Path - Hooking into the Linux Network Stack
Ever needed to add your custom logic into the network stack?
Ever hacked the network stack but wasn't certain you're doing it right?
Shmulik Ladkani talks about various mechanisms for customizing packet processing logic to the network stack's data path.
He covers covering topics such as packet sockets, netfilter hooks, traffic control actions and ebpf. We will discuss their applicable use-cases, advantages and disadvantages.
Shmulik Ladkani is a Tech Lead at Ravello Systems.
Shmulik started his career at Jungo (acquired by NDS/Cisco) implementing residential gateway software, focusing on embedded Linux, Linux kernel, networking and hardware/software integration.
51966 coffees and billions of forwarded packets later, with millions of homes running his software, Shmulik left his position as Jungo’s lead architect and joined Ravello Systems (acquired by Oracle) as tech lead, developing a virtual data center as a cloud service. He's now focused around virtualization systems, network virtualization and SDN.
academic calendar 2016 2017
The academic calendar outlines the schedule for the 2016-2017 school year, including start and end dates for the first and second semesters, breaks between semesters, and important exam and exhibition dates. It also lists short courses offered throughout the year as well as public holidays when classes are suspended.
Development of academic portal
The document proposes developing an academic portal to gather and share information among students, colleges, universities, and government in India's higher education system. It discusses ownership and authentication of student personal information, registration, and examination data. The portal would include sections for students, faculty/staff, universities, and government with information like academic calendars, registration, transcripts, notices, best practices, scholarships and more. The goal is a centralized portal for the higher education community in India with authenticated information from the sources of origin.
More Related Content
What's hot
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...Cyber Security Alliance
This document discusses software obfuscation techniques using C++ metaprogramming. It presents several implementations of string obfuscation using templates to encrypt strings at compile-time. It also discusses obfuscating function calls using finite state machines generated with metaprogramming. Debugger detection is added to fight dynamic analysis. The techniques aim to make reverse engineering and static/dynamic analysis more difficult without changing program semantics.Killing any security product … using a Mimikatz undocumented feature
This document discusses techniques for bypassing security products on Windows systems by manipulating process and registry notification callbacks. It shows how the Mimikatz tool can be used to find and modify these callbacks to prevent security products from receiving important notifications. Specifically, it demonstrates patching a callback routine to do nothing, and notes unlinking callbacks from the notification list is also possible but requires more work. The conclusion is this approach allows killing any security tool while making it appear still active from a monitoring perspective.
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
В какой-то момент 3-й в мире работный сайт начал периодически падать на несколько минут. Сюрпризом стало то, что в этот раз действительно из-за сети.
Для масштабирования сервисов и их взаимодействия между собой hh.ru использует внутренний балансировщик. Обработку 25 тыс. запросов в секунду обеспечивают 5 серверов с nginx. Обращение к этим серверам балансирует коммутатор.
Я расскажу, как мы расследовали серию инцидентов, которая была вызвана нарушением протокола TCP при балансировке. И что мы придумали, чтобы продолжить безнаказанно его нарушать.
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
В какой-то момент 3-й в мире работный сайт начал периодически падать на несколько минут. Сюрпризом стало то, что в этот раз действительно из-за сети.
Для масштабирования сервисов и их взаимодействия между собой hh.ru использует внутренний балансировщик. Обработку 25 тыс. запросов в секунду обеспечивают 5 серверов с nginx. Обращение к этим серверам балансирует коммутатор.
Я расскажу, как мы расследовали серию инцидентов, которая была вызвана нарушением протокола TCP при балансировке. И что мы придумали, чтобы продолжить безнаказанно его нарушать.
Wireshark.ethereal
Ethereal/Wireshark is a network packet analyzer that captures packets and displays packet data. It can capture unicast, multicast, broadcast packets. Wireshark is the new name for Ethereal. It has interfaces for starting/stopping packet capture and filtering packets. The interface includes a packet list, details of selected packets, and exporting captured packets.
Timer Listings
This document contains code for two timer demo programs in C++. The first program (Beeper1) uses a timer to toggle the background color of the window between red and blue every second and play a beep sound. It also handles painting the window. The second program (Beeper2) is similar but moves the timer callback function into its own procedure separate from the window procedure.
DDAA FPGA - Multiplexor De Numeros en Display 7 Segmentos En Tiempo
This document describes the design of a 4-display multiplexing system to sequentially display the values of a 8-bit incrementing counter. The design includes:
1) An 8-bit incrementing counter module
2) A hexadecimal to 7-segment display decoder
3) A 4-input multiplexer to sequentially activate each display
The modules are instantiated and interconnected in a top level module to increment the counter value and sequentially multiplex the output to the four displays on the Nexys 2 board. Simulation waveforms verify the correct functionality of incrementing the counter value and sequentially multiplexing the displays.
Ir remote kit_blink.pde
This sketch uses an IR receiver module to receive signals from an IR remote control and decode the button presses. It blinks an LED connected to pin 13 of the Arduino to indicate the numeric button pressed. The sketch imports libraries for IR reception and decoding, declares constants for the receiver pin and repeat delay, initializes objects for receiving and decoding IR, and defines functions to translate codes to button values and blink the LED accordingly.
Ahmed vic
This document provides instructions for basic commands on Packet Tracer including setting the hostname and passwords, saving configurations, setting up a DHCP server with network, default router, and DNS server settings, and creating static routes between two routers by specifying the subnet, mask, and interface. It notes that interfaces must be turned on initially using the no shutdown command before static routes can be configured.
GNU Parallel și GNU Stow
Sînt descrise programele libele GNU Parallel și GNU Stow (opțiuni, exemple de utilizare, contraexemple etc)
Advanced cfg bypass on adobe flash player 18 defcon russia 23
This document describes an advanced technique to bypass Control Flow Guard (CFG) protections on Adobe Flash Player 18 and Windows 8.1. It details how the researchers were able to generate indirect call instructions in just-in-time (JIT) compiled Flash code to redirect execution to controlled addresses, bypassing CFG. This was done by manipulating parameters passed between functions to influence the JIT compiler's code generation and produce the desired indirect call opcodes. The technique allowed full control-flow hijacking on the protected systems.
ハイパフォーマンスブラウザネットワーキング2
This document discusses TCP (Transmission Control Protocol) and its role and functions. It explains the TCP three-way handshake process used to establish a connection between endpoints. It also describes how TCP manages and controls the flow of data through mechanisms like congestion control, flow control, and slow start. TCP aims to provide reliable, ordered, and error-checked delivery of streams of data between applications running on hosts communicating via an IP network.
A little systemtap
This document discusses the Linux tracing tool systemtap. It provides an overview of systemtap and what it can be used for, including tracing system calls, kernel functions, and application functions. It also discusses how systemtap works, how it uses debugging symbols, and how RPMs handle separate debug information files. Several examples are given of using systemtap probes to trace requests for Nginx, cURL, Redis, MySQL, and TCP retransmissions. The document concludes by mentioning using DTrace for other languages beyond C, such as MySQL, Python, and Java.
Reverse engineering Swisscom's Centro Grande Modem
The document discusses reverse engineering the firmware of Swisscom's Centro Grande modems. It identifies several vulnerabilities found, including a command overflow issue that allows complete control of the device by exceeding the input buffer, and multiple buffer overflow issues that can be exploited to execute code remotely by crafting specially formatted XML files. Details are provided on the exploitation techniques and timeline of coordination with Swisscom to address the vulnerabilities.
C-spirit reborn: why Go was bound to be created
Go was created to address issues with other imperative languages like C and C++ through its approach to memory management, concurrency, and software architecture. Go aims to make common programming tasks like concurrency, collections, and memory management straightforward and easy to use correctly. While it has some quirks to be aware of, overall Go provides a lightweight yet powerful programming language well-suited for building reliable concurrent systems.
Pres
The document describes the Zet x86 open source SoC project, including both physical and logical descriptions. At the physical level, it describes how the SoC is implemented on a Terasic Altera DE1 FPGA board with various devices connected. At the logical level, it provides details on the SoC top level Wishbone architecture and the design of the Zet processor core, including its instruction format, decoder, pipeline, and microcode. It concludes by discussing plans for a new version of Zet with an 8-stage pipeline targeting 100 MHz operation.
Exploit Research and Development Megaprimer: Win32 Egghunter
Exploit Research and Development Megaprimer
http://opensecurity.in/exploit-research-and-development-megaprimer/
http://www.youtube.com/playlist?list=PLX3EwmWe0cS_5oy86fnqFRfHpxJHjtuyf
Os Practical Assignment 1
The document describes the implementation of locks and conditions variables in an operating system project. It includes code for a Lock class that uses a semaphore to synchronize access with its Acquire and Release methods. It also includes code for a Condition class that allows threads to wait on and signal conditions, managing a wait queue of semaphores. The document concludes by briefly explaining the dining philosophers problem in concurrent programming and some potential solutions like using tokens to establish turns.
Rop and it's friends
Buffer overflows have been the most common security vulnerability for the last few years. These are considered as one of the oldest and more reliable methods. Due to the latest linux defences it has become difficult to attack using traditional buffer overflow technique . This led to the development of the return-oriented programming technique.
Return-oriented programming is a type of security attack, in which you can take the control over saved instruction pointer and can induce unpredictable behavior in a program in which exploit is under our control without injecting any malicious code.
In this presentation I will trace the origins of ROP and some related techniques such as Call and Jump Oriented Programming as well as some advanced techniques like JIT-ROP, BROP and SROP.
Specializing the Data Path - Hooking into the Linux Network Stack
Ever needed to add your custom logic into the network stack?
Ever hacked the network stack but wasn't certain you're doing it right?
Shmulik Ladkani talks about various mechanisms for customizing packet processing logic to the network stack's data path.
He covers covering topics such as packet sockets, netfilter hooks, traffic control actions and ebpf. We will discuss their applicable use-cases, advantages and disadvantages.
Shmulik Ladkani is a Tech Lead at Ravello Systems.
Shmulik started his career at Jungo (acquired by NDS/Cisco) implementing residential gateway software, focusing on embedded Linux, Linux kernel, networking and hardware/software integration.
51966 coffees and billions of forwarded packets later, with millions of homes running his software, Shmulik left his position as Jungo’s lead architect and joined Ravello Systems (acquired by Oracle) as tech lead, developing a virtual data center as a cloud service. He's now focused around virtualization systems, network virtualization and SDN.
What's hot (20)
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...
App secforum2014 andrivet-cplusplus11-metaprogramming_applied_to_software_obf...
Killing any security product … using a Mimikatz undocumented feature
Killing any security product … using a Mimikatz undocumented feature
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
Как HeadHunter удалось безопасно нарушить RFC 793 (TCP) и обойти сетевые лову...
DDAA FPGA - Multiplexor De Numeros en Display 7 Segmentos En Tiempo
DDAA FPGA - Multiplexor De Numeros en Display 7 Segmentos En Tiempo
Advanced cfg bypass on adobe flash player 18 defcon russia 23
Advanced cfg bypass on adobe flash player 18 defcon russia 23
Reverse engineering Swisscom's Centro Grande Modem
Reverse engineering Swisscom's Centro Grande Modem
Exploit Research and Development Megaprimer: Win32 Egghunter
Exploit Research and Development Megaprimer: Win32 Egghunter
Specializing the Data Path - Hooking into the Linux Network Stack
Specializing the Data Path - Hooking into the Linux Network Stack
Viewers also liked
academic calendar 2016 2017
The academic calendar outlines the schedule for the 2016-2017 school year, including start and end dates for the first and second semesters, breaks between semesters, and important exam and exhibition dates. It also lists short courses offered throughout the year as well as public holidays when classes are suspended.
Development of academic portal
The document proposes developing an academic portal to gather and share information among students, colleges, universities, and government in India's higher education system. It discusses ownership and authentication of student personal information, registration, and examination data. The portal would include sections for students, faculty/staff, universities, and government with information like academic calendars, registration, transcripts, notices, best practices, scholarships and more. The goal is a centralized portal for the higher education community in India with authenticated information from the sources of origin.
Jkbose 10th date sheet 2016
The Jammu and Kashmir State Board of School Education (JKBOSE) will publish the JKBOSE 10th Date Sheet 2016 shortly on the official website.
http://www.resultjain.com/jkbose-10th-date-sheet/
Leeds school calendar 2016 2017
The school calendar outlines the holidays and term dates for the 2016-2017 academic year. It includes:
- Summer holiday from Monday 5 September 2016 to Tuesday 3 January 2017
- Autumn mid-term break from Friday 21 October 2016 to Monday 31 October 2016
- Christmas holiday from Friday 16 December 2016 to Tuesday 3 January 2017
- Spring mid-term break from Friday 10 February 2017 to Monday 20 February 2017
- Easter holiday from Friday 31 March 2017 to Tuesday 18 April 2017
- May Day bank holiday on Friday 28 April 2017
- Summer mid-term break from Friday 26 May 2017 to Monday 5 June 2017
- Total of 195 school days in the academic year
Punjab : a state presentation
Punjab is a state in northwest India known as the "Land of Five Rivers". It has a population of over 24 million people and its capital is Chandigarh. Punjab has experienced a rich and diverse history, with its culture deeply influenced by Sikhism as well as Hindu and Islamic traditions that have contributed to its unique cuisine, music like Bhangra, and wedding traditions. Punjab is an agriculturally fertile region located along several major rivers and is a popular tourist destination, most notably the Golden Temple.
Education systems in pakistan
Pakistan has multiple education systems that create divisions in society. The madrassa system provides Islamic education but lacks proper institutions and oversight. Private English-medium schools are unorganized and do not deliver quality education. The Cambridge system and secondary education system mainly benefit the upper and middle classes, respectively, leaving many unable to access education. To remedy these issues, the document recommends introducing a unified national education system that promotes unity, national languages of English and Arabic, and produces well-rounded graduates.
Educational standard in pakistan
Pakistan has made some achievements in the field of education over the years. Literacy rates have increased from 16.4% in 1951 to 57% in 2009, with urban rates higher than rural. Some universities have also risen in world rankings, with 5-6 Pakistani universities now among the top 600 globally. However, challenges remain like low public investment, lack of funding, and administrative issues. Reforms have included free education up to matriculation, scholarships, making English compulsory, and increasing education budgets, but more improvements are still needed to better the educational system.
The 50 Most Influential Education Brands on LinkedIn
This document outlines the top 50 most influential education brands on LinkedIn based on their Content Marketing Scores. The United States is home to the majority of brands on the list. Most of the top performing education brands on LinkedIn frequently update their LinkedIn Company Page, have employees who post their own content, and invest in LinkedIn Sponsored Updates. The list includes brands such as Harvard Business School, MIT, Stanford Graduate School of Business, and INSEAD.
Engaging Learners with Technology
The document discusses engaging students with technology and rethinking education. It addresses how technology can support literacy, community, and assessment. Some key ideas include using technology to personalize learning, connect students in multiple ways, and make assessment a conversation rather than just scores on a spreadsheet. The role of joy in education is also discussed.
Viewers also liked (9)
The 50 Most Influential Education Brands on LinkedIn
The 50 Most Influential Education Brands on LinkedIn
Similar to 主機自保指南
netfilter and iptables
netfilter is a framework provided by the Linux kernel that allows various networking-related operations to be implemented in the form of customized handlers.
iptables is a user-space application program that allows a system administrator to configure the tables provided by the Linux kernel firewall (implemented as different netfilter modules) and the chains and rules it stores.
Many systems use iptables/netfilter, Linux's native packet filtering/mangling framework since Linux 2.4, be it home routers or sophisticated cloud network stacks.
In this session, we will talk about the netfilter framework and its facilities, explain how basic filtering and mangling use-cases are implemented using iptables, and introduce some less common but powerful extensions of iptables.
Shmulik Ladkani, Chief Architect at Nsof Networks.
Long time network veteran and kernel geek.
Shmulik started his career at Jungo (acquired by NDS/Cisco) implementing residential gateway software, focusing on embedded Linux, Linux kernel, networking and hardware/software integration.
Some billions of forwarded packets later, Shmulik left his position as Jungo's lead architect and joined Ravello Systems (acquired by Oracle) as tech lead, developing a virtual data center as a cloud-based service, focusing around virtualization systems, network virtualization and SDN.
Recently he co-founded Nsof Networks, where he's been busy architecting network infrastructure as a cloud-based service, gazing at internet routes in astonishment, and playing the chkuku.
PL/Perl - New Features in PostgreSQL 9.0
This document summarizes new features in PL/Perl for PostgreSQL 9.0. It introduces new built-in functions for quoting, encoding bytea, and checking if a value looks like a number. It describes improved support for arrays, trusted modules, and executing arbitrary Perl code using DO. The document also covers internal changes like removing the Safe module, new configuration options, and integration with the NYTProf profiler.
OpenVPN
This document discusses setting up an OpenVPN network between two sites. It includes generating certificates using OpenSSL, configuring a bridge and TAP interfaces using bridging-utils, and configuring the OpenVPN server and client. The OpenVPN server is configured to use the TAP interface and bridge, and authentication is set up using the certificates. Instructions are provided on starting the OpenVPN service and ensuring it starts at system boot.
/etc/rc.d配下とかのリーディング勉強会
This document describes the network configuration and management scripts used in Scientific Linux release 6.1. It discusses the main scripts and files used like /etc/rc.d/init.d/network, /etc/sysconfig/network, and /etc/sysconfig/network-scripts. It provides details on how the network script starts and stops network interfaces, and brings interfaces up at boot time using files in /etc/sysconfig/network-scripts. It also summarizes some of the functions available in the network-functions file.
Bare metal performance in Elixir
This document summarizes options for integrating native code with Erlang and Elixir including ports, port drivers, and NIFs. It discusses calling external processes via ports, writing natively compiled plugins as port drivers in C, and implementing native functions (NIFs) in C or C++. NIFs run natively in-process but lack OTP integration, while port drivers follow OTP and can incur serialization overhead. The document also introduces SafeExecEnv for running complex BEAM code externally to protect the main VM.
PL/Perl - New Features in PostgreSQL 9.0 201012
This document summarizes new features for PL/Perl in PostgreSQL 9.0. It introduces new built-in functions for quoting, encoding bytea, and checking if a value looks like a number. It allows arbitrary Perl code to be executed via DO statements. The NYTProf profiler can now profile PL/Perl code. Security and performance improvements include removing the Safe module and validating return encodings.
Using the Power to Prove
This document discusses using the prove command-line tool to run tests and other scripts. Prove is a test runner that uses the Test Anything Protocol (TAP) to aggregate results. It can run tests and scripts written in any language by specifying the interpreter with --exec. Extensions other than .t can be run by setting --ext. Prove searches for tests in the t/ directory by default but can run any kind of scripts or tasks placed in t/, such as service monitoring scripts. The .proverc file can save common prove options for a project.
FreeBSD ports
This document discusses FreeBSD ports and how to install software using the ports system. It covers using portsnap to update the ports tree, searching for ports using make search and whereis, installing software using make, and managing installed packages with portmaster and pkgng. Common commands like pkg_add and pkg_delete are also explained.
ভিবিন্ন DEVISE AND AR PORT NUMBER
The document provides instructions for configuring various networking devices including switches, routers, and VLANs. It discusses:
1. Configuring a switch with settings like the hostname, passwords, IP addresses, VLANs for different ports, and trunk configuration between VLANs.
2. Configuring routers with RIP, EIGRP, OSPF routing protocols as well as NAT, DHCP, and ACL configurations.
3. Cable types for straight through and crossover cabling and guidelines for inter-VLAN routing.
ভিবিন্ন Devise and ar port number
The document provides instructions for configuring various networking devices including switches, routers, and VLANs. It discusses:
1. Configuring a switch with settings like the hostname, passwords, IP addresses, VLANs for different ports, and trunk configuration between VLANs.
2. Configuring static and dynamic routing on routers using RIP, EIGRP, OSPF protocols and NAT/PAT translation between networks.
3. Setting up DHCP, access control lists (ACLs) to restrict traffic, and cabling standards for straight-through and crossover cables.
4. Configuring inter-VLAN routing on a router by adding subinterfaces for each VLAN and assigning IP addresses.
Unit 6
The document discusses signals and daemon processes in Unix/Linux systems. It covers key concepts like process structure, environment variables, resource limits, wait/fork functions, exec functions, and the system() function. It provides code examples to demonstrate using these functions and concepts for interprocess communication and launching new processes.
True stories on the analysis of network activity using Python
The document discusses network packet analysis using Python. It provides an overview of network analysis tools like Wireshark and tcpdump, and how to use them to analyze network traffic captured in a pcap file. It also discusses how to create and send network packets using Scapy for tasks like port scanning, and how to filter network traffic using IPv4/IPv6 packet filters like iptables. The document provides examples of summarizing pcap data and crafting network packets for various protocols.
Linux Serial Driver
it's just a part of...
See more http://www.ittraining.com.tw/ittraining/index.php/course/embedded/embeddedlinux
Overloading Perl OPs using XS
This talk will show how it's possible to mock PerlOps using XS and provide a convenient Pure Perl hook for each of the file check -X.
Overload::FileCheck provides a way to mock one or more file checks. It is also possible to mock stat/lstat functions using "mock_all_from_stat" and let Overload::FileCheck mock for you for any other -X checks.
Containers for sysadmins
Slides from a talk at HPC Admintech 2019 about containers, a brief review on containers, how to create a container using common linux tools and how to integrate Docker with Slurm.
Packet Tracer da Cisco (Configuração Básica) Professor Fernando Maviuco - 202...
Packet Tracer da Cisco (Configuração Básica) Professor Fernando Maviuco - 2024
Error Control in Multimedia Communications using Wireless Sensor Networks report
Error Control in Multimedia Communications using Wireless Sensor Networks reportMuragesh Kabbinakantimath
This document summarizes a seminar report that evaluates the performance of different error control techniques for multimedia communications over wireless sensor networks. It describes using the ns-2 simulator along with a video quality analysis tool to implement and test an Enhanced Adaptive FEC algorithm that dynamically adds redundant packets based on network traffic load and wireless channel state in order to improve video delivery quality over wireless networks. The simulation setting involves video, FTP, and exponential traffic flows transmitted over wired and wireless links between nodes including a video server, access point, and wireless receivers.Opendaylight app development
SDN is an emerging network architecture that decouples the network control plane from the forwarding plane. The control plane programmatically configures the forwarding plane using protocols like OpenFlow. This allows for centralized control and programmability of the network. OpenDaylight is an open source SDN controller that programs OpenFlow switches using its northbound REST APIs. It is implemented using OSGi for modularity.
Pasteur deep seq_analysis_theory_2016
This document provides an overview of deep sequencing data analysis. It discusses sequencing technologies like Ion Torrent and Illumina, library preparation, alignment, and common file formats. It also demonstrates commands for quality control like FastQC, alignment with Bowtie, and working with the output files including SAM, BAM, pileup formats. Next steps discussed are accessing the Galaxy analysis framework and server to perform an NGS analysis project.
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
20-Feb-2015
SAKURA Internet Research Center.
Senior Researcher / Naoto MATSUMOTO
Similar to 主機自保指南 (20)
True stories on the analysis of network activity using Python
True stories on the analysis of network activity using Python
Packet Tracer da Cisco (Configuração Básica) Professor Fernando Maviuco - 202...
Packet Tracer da Cisco (Configuração Básica) Professor Fernando Maviuco - 202...
Error Control in Multimedia Communications using Wireless Sensor Networks report
Error Control in Multimedia Communications using Wireless Sensor Networks report
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
High Availability Server Clustering without ILB(Internal Load Balancer) (MEMO)
More from 維泰 蔡
Linux 系統管理與安全:系統防駭與資訊安全
This document provides instructions on configuring Linux security features such as SSH key-based authentication, firewall rules using iptables, SELinux concepts, and the Fail2ban utility. It discusses generating SSH keys, editing SSH configuration files, setting default firewall policies and rules for input, output, and forwarding, as well as network address translation rules. It also covers SELinux file and process context types and restoring default contexts. Lastly, it explains how to install, configure, and check the status of Fail2ban to automatically ban IPs with too many failed login attempts.
Linux 系統管理與安全:進階系統管理系統防駭與資訊安全
- The document discusses various Linux system log files such as /var/log/messages, /var/log/secure, and /var/log/cron and provides examples of log entries.
- It also covers log rotation tools like logrotate and logwatch that are used to manage log files.
- Networking topics like IP addressing, subnet masking, routing, ARP, and tcpdump for packet sniffing are explained along with examples.
Linux 系統管理與安全:基本 Linux 系統知識
The document provides information on systemd service management commands. It shows examples of using systemctl to start, stop, restart, and check the status of the httpd service. It also displays the output of systemctl status httpd which shows details about the loaded unit, active state, process IDs, and log entries for the Apache HTTP Server service.
Google drive on linux
This document provides instructions for mounting a Google Drive folder on a Linux system using google-drive-ocamlfuse and accessing Google Drive from the command line using the skicka tool. It explains how to install and configure both tools, including setting authentication, selecting the mount point for google-drive-ocamlfuse, and configuring encryption for file transfers with skicka.
DevStack
This document discusses using Vagrant and DevStack to build an OpenStack development environment. It provides an overview of Vagrant, describing its basic commands and functions. It then explains how to install and configure DevStack using Vagrant to provision and manage virtual machines. Finally, it briefly outlines how to launch and access instances after the OpenStack environment has been built.
More from 維泰 蔡 (6)
Recently uploaded
Artificial Intelligence for XMLDevelopment
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
ここ3000字までしか入らないけどタイトルの方がたくさん文字入ると思います。
Video Streaming: Then, Now, and in the Future
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Communications Mining Series - Zero to Hero - Session 1
This session provides introduction to UiPath Communication Mining, importance and platform overview. You will acquire a good understand of the phases in Communication Mining as we go over the platform with you. Topics covered:
• Communication Mining Overview
• Why is it important?
• How can it help today’s business and the benefits
• Phases in Communication Mining
• Demo on Platform overview
• Q/A
Presentation of the OECD Artificial Intelligence Review of Germany
Consult the full report at https://www.oecd.org/digital/oecd-artificial-intelligence-review-of-germany-609808d6-en.htm
UiPath Test Automation using UiPath Test Suite series, part 6
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
20240609 QFM020 Irresponsible AI Reading List May 2024
Everything I found interesting about the irresponsible use of machine intelligence in May 2024
20 Comprehensive Checklist of Designing and Developing a Website
Dive into the world of Website Designing and Developing with Pixlogix! Looking to create a stunning online presence? Look no further! Our comprehensive checklist covers everything you need to know to craft a website that stands out. From user-friendly design to seamless functionality, we've got you covered. Don't miss out on this invaluable resource! Check out our checklist now at Pixlogix and start your journey towards a captivating online presence today.
20240605 QFM017 Machine Intelligence Reading List May 2024
Everything I found interesting about machines behaving intelligently during May 2024
Large Language Model (LLM) and it’s Geospatial Applications
Large Language Model (LLM) and it’s Geospatial Applications.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Full-RAG: A modern architecture for hyper-personalization
Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
Recently uploaded (20)
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Generative AI Deep Dive: Advancing from Proof of Concept to Production
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
Communications Mining Series - Zero to Hero - Session 1
Communications Mining Series - Zero to Hero - Session 1
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
UiPath Test Automation using UiPath Test Suite series, part 6
UiPath Test Automation using UiPath Test Suite series, part 6
20240609 QFM020 Irresponsible AI Reading List May 2024
20240609 QFM020 Irresponsible AI Reading List May 2024
20 Comprehensive Checklist of Designing and Developing a Website
20 Comprehensive Checklist of Designing and Developing a Website
20240605 QFM017 Machine Intelligence Reading List May 2024
20240605 QFM017 Machine Intelligence Reading List May 2024
Large Language Model (LLM) and it’s Geospatial Applications
Large Language Model (LLM) and it’s Geospatial Applications
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdf
Full-RAG: A modern architecture for hyper-personalization
Full-RAG: A modern architecture for hyper-personalization
Monitoring Java Application Security with JDK Tools and JFR Events
Monitoring Java Application Security with JDK Tools and JFR Events
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024
主機自保指南
- 2.
- 4.
- 6.
- 7. # freebsd-update # pkg upgrade # portsnap fetch update # portmaster -a
- 8. # pkg audit -F
- 9.
- 10. /etc/rc.conf pf_enable="YES" # PF ( ) pf_rules="/etc/pf.conf" # PF pf_flags="" # pfctl pflog_enable="YES" # pflogd(8) pflog_logfile="/var/log/pflog" # pflogd pflog_flags="" # pflogd
- 11. /etc/pf.conf ext_if="em0" table <ncu_addr> {140.115.0.0/16} block in on $ext_if proto tcp from any to any port 1 >< 1023 block in quick on $ext_if proto tcp from any to any port = 139 block in quick on $ext_if proto tcp from any to any port = 445 block in quick on $ext_if proto udp from any to any port 137 >< 138 block in all pass in on $ext_if proto tcp from <ncu_addr> to $ext_if port 22 keep state pass in on $ext_if proto tcp from any to $ext_if port 22 keep state pass in on $ext_if proto tcp from any to any port = 80 pass in on $ext_if proto tcp from any to any port = 443
- 12. /usr/share/examples/pf/pf.conf # pfctl -vnf /etc/pf.conf References: http://www.openbsd.org/faq/pf/filter.html http://daemonforums.org/showthread.php?t=8145 http://undeadly.org/cgi?action=article&sid=20060927091645
- 13.
- 14. # touch /etc/hosts.deniedssh /etc/hosts.allow sshd : /etc/hosts.deniedssh : deny ALL : ALL : allow /usr/local/etc/fail2ban/jail.conf /etc/pf.conf table <fail2ban> persist block quick proto tcp from <fail2ban> to $ext_if port ssh
- 16.
- 17.
- 18.
- 19. http://dns.gov.ph/process/connection.php~ http://dns.gov.ph/ajaxResponse/modReqs.php~ http://<my_personal_blog>/wordpress.tar.gz http://example.com/.git/ Reference: http://kawsing.blogspot.tw/2013/05/dnsweb-httpblog.html http://denny0223.github.io/MOPCON-2014-LT-Slide/#1
- 20. /var/log messages auth.log mail.log httpd-error.log httpd-access.log /etc/syslog.conf
- 21. Logwatch /w crontab
- 22. # ps -aux # top # netstat -a # sockstat # fstat /path/to/some/file (lsof)
- 23. crontab
- 24.