Planet Fakap

Where all fakapers unite!

RSS

9M2M CQ WW SSB Contest 2015 On Nasional 5 RTM TV1


List Of Best Audio Processing Software For Ham Radio


ableton live


nuendo


pro tools


ozone advanced


 sonar x3


reason


bitwig


cubase


acid pro


reaper


audition



flstudio



logic pro

80 meter band linear loaded



Antenna And Gain



2 meter ZL Special Antenna



Full Wave Antenna Designs



Simple RDF Using Handytalkie



Simple RDF Using Handytalkie



2 meter band Quad Antenna



2 meter band Quad Antenna



Radio Direction Finding Magnetic Loop



Ham radio and clubs


Automatic TX/RX Antenna Switch



Sometimes it is necessary to use separate antennas for receive and transmit. For example you want to use an efficient vertical on 80m for transmit, but a directional beverage antenna for receive. The MFJ-1707 automatic antenna switch serves exactly this purpose. Just connect your transceiver, receive and transmit antenna as well as power - and off you go! The built-in HF sensor (HF vox) immediately switches from receive to transmit antenna. Instead of the HF vox a cable can be used for PTT keying. After releasig the PTT the switch reverts to the receive antenna after an adjustable delay time (hold time). This delay protects for example a very sensitive receive amplifier. An additional switching contact signals the state of the switch, useful for blocking other devices or. The MFJ-1707 automatic antenna switch can be used with any mode. Max. power is 200W SSB PEP. A 12V DC supply is required, you can use the normal power supply from your transceiver. Size of the switch: 101 × 66 × 38mm.


9M2DW – The Grand Old Man Of Amateur Radio In Malaysia







Malaysia Rugby Union Polo Shirt by Canterbury


Yay, got myself a Malaysia Rugby Union polo shirt! Brand: Canterbury Price: RM199 Bought at: Al-Ikhsan Alamanda Putrajaya Personal comment: To be honest, I feel it’s quiet expensive and doesn’t match what I get with the RM199 price tag. Why? This polo shirt is actually based on Waimak polo shirt template, so it’s not a […]

Exploiting CVE-2015-2509 /MS15-100 : Windows Media Center could allow remote code execution


Trend Micro blog about it few days ago.  This vulnerability is related to Hacking Team leaked email addresses . The issue is so trival that exploitation is a piece of cake.


Source: https://technet.microsoft.com/en-us/library/security/ms15-100



Based on POC  and description we just need to create a simple mcl file contains our executable path and preso it works.


The caveat for this attack is that you cannot passed an argument such as cmd.exe /c ipconfig  in the mcl file. However we can execute our payload externally via UNC PATH provided by a simple SMB Server. The steps required.

1. Generate evil payload exe
2. Setup a SMB Listener
3. Create MCL file that points to evil payload.
4. Profits.

I use Impacket SMB Server to simulate the steps above. If you are a bit creative, we can use DLL Hijacking  Method to cloak our payload .



Better patch it up fast.



My GPG Public Key (mypapit)


Since there are some people out there who asked about my gpg public key, now I decided to published them on my web.

Feel free to send me messages or files using my public-key.

KeyID: 0AFAD5F8 
Mohammad Hafiz bin Ismail (mypapit) 

-FYI – mypapit@gmail.com

You can get my GPG Public key here…


-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1
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=gAgL
-----END PGP PUBLIC KEY BLOCK-----

Text link: Mypapit GPG Public Key

The post My GPG Public Key (mypapit) appeared first on mypapit gnu/linux blog.

Install NGINX with PageSpeed using *.deb for Ubuntu LTS (AMD64)


Hello there, I’ve made an easily installable *.deb NGINX package with PageSpeed. The package is made for Ubuntu LTS on AMD64 machine.

Ubuntu 14.04 LTS – nginx 1.8.0 with PageSpeed

  1. nginx-full_1.8.0-1+trusty1-mypapitubuntu4_amd64.deb Full package
  2. nginx-extras_1.8.0-1+trusty1-mypapitubuntu4_amd64.deb Extra package

Ubuntu 14.04 LTS – nginx 1.8.0 with PageSpeed: Other Package

  1. nginx-common_1.8.0-1+trusty1-mypapitubuntu4_all.deb
  2. nginx_1.8.0-1+trusty1-mypapitubuntu4_all.deb
  3. nginx-doc_1.8.0-1+trusty1-mypapitubuntu4_all.deb

Installing nginx-extras or nginx-full is as easy as running this command

sudo dpkg -i nginx-common_1.8.0-1+trusty1-mypapitubuntu4_all.deb
sudo dpkg -i nginx-full_1.8.0-1+trusty1-mypapitubuntu4_amd64.deb
sudo dpkg -i nginx_1.8.0-1+trusty1-mypapitubuntu4_all.deb

Attention : Once installed, the PageSpeed configuration file can be found in “/etc/nginx/conf.d/pagespeed.conf”

Verify Installation
To verify whether nginx with pagespeed has been installed, type

nginx -V

Verify Installation with a preinstalled nginx
If you’ve another version of nginx installed on your system, take note that the nginx-pagespeed from *.deb is installed in “/usr/local/bin”

/usr/local/bin/nginx -V

It will output something like this:

nginx version: nginx/1.8.0
built with OpenSSL 1.0.1f 6 Jan 2014
TLS SNI support enabled
configure arguments: --with-cc-opt='-g -O2 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-Bsymbolic-functions -fPIE -pie -Wl,-z,relro -Wl,-z,now' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-debug --with-pcre-jit --with-ipv6 --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_addition_module --with-http_dav_module --with-http_geoip_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module --with-http_spdy_module --with-http_sub_module --with-http_xslt_module --with-mail --with-mail_ssl_module --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/nginx-auth-pam --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/nginx-dav-ext-module --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/nginx-echo --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/nginx-upstream-fair --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/ngx_http_substitutions_filter_module --add-module=/home/mypapit/source/nginx-1.8.0-1+trusty1/debian/modules/ngx_pagespeed-release-1.9.32.4-beta

Take note at the bolded text to verify whether pagespeed module has been installed.

The post Install NGINX with PageSpeed using *.deb for Ubuntu LTS (AMD64) appeared first on mypapit gnu/linux blog.

Download Wordlist for dictionary attack


Crackstation wordlist is one of the most (if not the most) comprehensive wordlist which can be used for the purpose of dictionary -attack on passwords.

The wordlist comes in two flavors:

  1. Full wordlist (GZIP-compressed (level 9). 4.2 GiB compressed. 15 GiB uncompressed)
  2. Human-password only wordlist (GZIP-compressed. 247 MiB compressed. 684 MiB uncompressed)

Personally, I’ve already downloaded the full wordlist via torrent, and tested it against few PDF files (using pdfcrack) and UNIX password cracking (using John), all my test cases were successful. In my opinion, the wordlist is comprehensive for my need.

Since it looked like it took a significant effort to compile this wordlist, I rather advocate those who are interested to donate/buy the wordlist from: https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm

The post Download Wordlist for dictionary attack appeared first on mypapit gnu/linux blog.

How to install NGINX with PageSpeed module in Ubuntu LTS / Debian


UPDATE: You can now install NGINX with PageSpeed in Ubuntu LTS with deb package: https://blog.mypapit.net/2015/08/install-nginx-with-pagespeed-using-deb-for-ubuntu-lts-amd64.html

INSTALLING NGINX USING UBUNTU APT-GET SOURCE
PageSpeed modules are open source modules developed by Google Inc that can perform website optimization to ensure faster site delivery, automatically.

PageSpeed module is not included in NGINX installation in Ubuntu or Debian. So you need to recompile NGINX together with PageSpeed module, to enable its functionality.

You can install NGINX 1.8.0 with PageSpeed for Ubuntu 14.04 LTS here, using dpkg:
or you can compile it from source code using apt-get.

There are several steps to this method, first you need to get the latest nginx stable (or mainline) from PPA (optional)

#this step is optional, only if you want to get the latest Ubuntu version of nginx

sudo apt-get -y install software-properties-common

sudo -s

nginx=stable # use nginx=development for latest development version
add-apt-repository ppa:nginx/$nginx

apt-get update 

apt-get -y upgrade

Then, you’ve to install dpkg-dev, unzip utility and nginx source from apt repository

apt-get -y install dpkg-dev unzip

apt-get install nginx

apt-get source nginx

After that, you need to download PageSpeed module, this instruction is adapted from

https://developers.google.com/speed/pagespeed/module/build_ngx_pagespeed_from_source

**note replace ${NGINX_VERSION} with the version of NGINX available from apt-get, in my case – its “1.8.0”

cd
export NPS_VERSION=1.9.32.4
export NGINX_VERSION=1.8.0

wget -c https://github.com/pagespeed/ngx_pagespeed/archive/release-${NPS_VERSION}-beta.zip

unzip release-${NPS_VERSION}-beta.zip

cd ngx_pagespeed-release-${NPS_VERSION}-beta/

wget -c https://dl.google.com/dl/page-speed/psol/${NPS_VERSION}.tar.gz

tar -xzvf ${NPS_VERSION}.tar.gz

cd nginx-${NGINX_VERSION}

Install all build dependencies (your configuration may varies, but i keep it within default Ubuntu configuration.

apt-get -y install libpcre3-dev libssl-dev libxslt1-dev libgd-dev libgeoip-dev geoip-bin geoip-database libpam0g-dev zlib1g-dev memcached

Then configure nginx, remember to replace ${NGINX_VERSION} with your current version of NGINX. In my case, its “1.8.0”

cd nginx-${NGINX_VERSION}

./configure  --with-cc-opt='-g -O2 -fPIE -fstack-protector --param=ssp-buffer-size=4 -Wformat -Werror=format-security -D_FORTIFY_SOURCE=2' --with-ld-opt='-Wl,-Bsymbolic-functions -fPIE -pie -Wl,-z,relro -Wl,-z,now' --prefix=/usr/share/nginx --conf-path=/etc/nginx/nginx.conf --http-log-path=/var/log/nginx/access.log --error-log-path=/var/log/nginx/error.log --lock-path=/var/lock/nginx.lock --pid-path=/run/nginx.pid --http-client-body-temp-path=/var/lib/nginx/body --http-fastcgi-temp-path=/var/lib/nginx/fastcgi --http-proxy-temp-path=/var/lib/nginx/proxy --http-scgi-temp-path=/var/lib/nginx/scgi --http-uwsgi-temp-path=/var/lib/nginx/uwsgi --with-debug --with-pcre-jit --with-ipv6 --with-http_ssl_module --with-http_stub_status_module --with-http_realip_module --with-http_auth_request_module --with-http_addition_module --with-http_dav_module --with-http_geoip_module --with-http_gunzip_module --with-http_gzip_static_module --with-http_image_filter_module --with-http_spdy_module --with-http_sub_module --with-http_xslt_module --with-mail --with-mail_ssl_module --add-module=debian/modules/nginx-auth-pam --add-module=debian/modules/nginx-dav-ext-module --add-module=debian/modules/nginx-echo --add-module=debian/modules/nginx-upstream-fair --add-module=debian/modules/ngx_http_substitutions_filter_module --sbin-path=/usr/local/sbin --add-module=$HOME/ngx_pagespeed-release-${NPS_VERSION}-beta

After that, run make and make install

make

make install

The newly compiled nginx will be installed in “/usr/local/bin” without overwriting the original binary file.

Create nginx-pagespeed /etc/init.d file

Optionally you may duplicate nginx in init.d, and rename it to nginx-pagespeed, and stop the original nginx server

cp /etc/init.d/nginx /etc/init.d/nginx-pagespeed

sed -i 's|/usr/sbin/nginx|/usr/local/sbin/nginx|g' /etc/init.d/nginx-pagespeed

service nginx stop

You may also enable basic PageSpeed config in /etc/nginx/conf.d/

nano /etc/nginx/conf.d/pagespeed.conf

And add these basic PageSpeed config

#file /etc/nginx/conf.d/pagespeed.conf
        pagespeed on;
        pagespeed FetchWithGzip on;

        pagespeed FileCachePath /run/shm/pagespeed_cache;
        pagespeed RewriteLevel CoreFilters;

Save the file, and test nginx config, after that, start nginx-pagespeed service.

/usr/local/sbin/nginx -t

service nginx-pagespeed start

**Note: This instruction has been tested under Ubuntu 14.04 LTS with nginx 1.8.0 from ppa:nginx/stable respository. The LTS is chosen because it has much longer support for server, and nginx 1.8.0 supports both spdy 3.1 and latest PageSpeed.

***Please share any thoughts or opinion or suggested correction if this guide didn’t work for you. Thanks!!

Recommended Reading

The post How to install NGINX with PageSpeed module in Ubuntu LTS / Debian appeared first on mypapit gnu/linux blog.