This issue comes up every so often. No matter what, even if you manually define all the passive ports in Windows firewall, add an exception for inetinfo.exe, the works, certain directory listings still hang on the client end. This issue is apparent only with the Firewall enabled — disabling the firewall allows the listings to […]
Make forensic-quality copies and backups of any type of media using free software.
Automatically create a batch of thumbnail images using PHP.
The issue was that old/stale tmp files are not getting cleaned by tmpwatch. This is because CSF/LFD regularly reads all tmp files scanning for trojans and other exploits, thus changing the ‘last access’ time so tmpwatch wouldn’t delete anything. I wrote a script to manually clean out session that are over 7 days old. Other […]
Auto-playlist generator for converting any PHP enabled website hosting account into an on-demand stream server.
Here are modsecurity2 rules for the latest string of vulnerabilities affecting the E107 CMS system described in the following links: http://www.exploit-db.com/exploits/12818/ http://www.exploit-db.com/exploits/12715/ SecRule ARGS:THEMES_DIRECTORY “^http” “t:htmlEntityDecode,t:urlDecode,t:lowercase,deny,log,auditlog,msg:’Denied e107 vulnerability'” SecRule ARGS:ifile “^http” “t:htmlEntityDecode,t:urlDecode,t:lowercase,deny,log,auditlog,msg:’Denied e107 vulnerability'” SecRule ARGS:plugindir “^http” “t:htmlEntityDecode,t:urlDecode,t:lowercase,deny,log,auditlog,msg:’Denied e107 vulnerability'” SecRule ARGS:author_name “\[php\]” “t:htmlEntityDecode,t:urlDecode,t:lowercase,deny,log,auditlog,msg:’Denied e107 vulnerability'”
FreeBSD is great for certain tasks (such as firewalls and other embedded devices), but has some real shortcomings when it comes to booting from attached or remote storage. This severely complicates the installation process in some cases. In my case, I have a remote server in a rack with no CD-ROM. Pulling the server from […]
If you want to be able to support alternative stream types (such as AACplus) using libshout-2.2.2, you’ll need a patch to add a ‘mime’ method. You can then manually set the mime-type for arbitrary stream types. I also included a minor change which sends ‘content-type’ headers to Shoutcast/ICY stream servers, which is required for Shoutcast […]
In case someone accidentally encrypts a server key (e.g. not following directions) then expects it to be accepted in to Cpanel, you’ll need to decrypt it first. Most web hosting platforms (like Cpanel) need the server key to be in clear text. The private key can be decrypted with: openssl rsa -in encrypted.pem -out plaintext.key […]
Run this nifty Perl script daily or weekly via cron. This will keep your voicemail from overflowing and unknowingly rejecting new voicemail. #!/usr/bin/perl # # Script to expire voicemail after a specified number of days # by Steve Creel # # Directory housing the voicemail spool for asterisk $dir = “/var/spool/asterisk/voicemail”; # Context for which […]