Secure Shell tunneling from Linux

THEORY

What is "secure shell"?

Secure Shell or SSH is a network protocol that allows data to be exchanged using a secure channel between two networked devices. Used primarily on GNU/Linux and Unix based systems to access shell accounts, SSH was designed as a replacement for Telnet and other insecure remote shells, which send information, notably passwords, in plaintext, rendering them susceptible to packet analysis. The encryption used by SSH provides confidentiality and integrity of data over an insecure network, such as the Internet.

(en.wikipedia.org)

What is "tunneling"?

Transmitting data structured in one protocol within the format of another.

(http://www.yourdictionary.com/computer/tunneling)

Schema of SSH Tunnel

PRACTICE

Open your linux terminal program, and execute this command:

tnto@ubuntu-linux@ssh -D 8080 tnto@172.17.0.141

Assumption:

• I have login account in host 172.17.0.141 with username tnto

Now you must modify your browser preferences:



And now you can enjoy secure browsing :D

Setting HTTPS on Apache Web Server

Hypertext Transfer Protocol Secure (HTTPS) is a combination of the Hypertext Transfer Protocol with the SSL/TLS protocol to provide encryption and secure (website security testing) identification of the server. HTTPS connections are often used for payment transactions on the World Wide Web and for sensitive transactions in corporate information systems. HTTPS should not be confused with Secure HTTP (S-HTTP) specified in RFC 2660. (http://en.wikipedia.org/wiki/HTTP_Secure)

There are some steps to enable https protocol in apache web server.

1. Create your certificate


2. Reconfig your  apache web server


3. Restart your  apache web server

1. Create your certificate

You need openssl to create crtificate

root@ubuntu-linux#pwd
/home/tnto
root@ubuntu-linux#openssl genrsa -des3 -out your-certificate-name.key 1024
Generating RSA private key, 1024 bit long modulus
.............................................................................++++++
.................++++++
e is 65537 (0x10001)
Enter pass phrase for your-certificate-name.key:
Verifying - Enter pass phrase for your-certificate-name.key:

root@ubuntu-linux#ls
your-certificate-name.key
Downloads
Public
Templates

Ensure a new file (your-certificate-name.key) was created from some commands above.

root@ubuntu-linux#openssl req -new -key your-certificate-name.key -x509 -days 1000 -out your-certificate-name.crt
Enter pass phrase for your-certificate-name.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:ID
State or Province Name (full name) [Some-State]:West Java
Locality Name (eg, city) []:Bogor
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Bogor Agricultural University
Organizational Unit Name (eg, section) []:DKSI
Common Name (eg, YOUR name) []:Sutanto
Email Address []:dksi@ipb.ac.id

2. Reconfig your apache web server

Modify your apache web server configuration file, add this to you configuration file

SSLCertificateFile /home/tnto/your-certificate-name.crt
SSLCertificateKeyFile /home/tnto/your-certificate-name.key

3. Restart your apache web server

root@ubuntu-linux#/etc/init.d/apache2 restart

Fixing error “E: Could not get lock /var/lib/apt/lists/lock – open (11: Resource temporarily unavailable)”

Todays morning (March 27th, 2010) I have problem with my lovely ubuntu linux operating system.

root@ubuntu-linux#apt-get update
E: Could not get lock /var/lib/apt/lists/lock - open (11: Resource temporarily unavailable)
E: Unable to lock the list directory

I'm never get problem like this before and then I open my favorite browser (Mozilla Firefox) and open my favorite search engine (http://www.google.com). I try to find solution for my problem with this query "fix /var/lib/apt/lists/lock".

I get this solution:

root@ubuntu-linux#rm /var/lib/apt/lists/lock

Download comic easily using shell script

Cartoon always identic with comic, some of my friends and me usualy read our  favorite comic in http://www.onemanga.com, unfortunately this website only allow us read one by one, there no option to download full one chapter, but URL (Uniform Resource Locater) used by this website to display comic page is stuctured and can understand easily. The  bottom is simple script which I  used to download Detective Conan comic first chapter.

counter=0
while [ $counter -lt 100 ]
do
	location="http://media.onemanga.com/mangas/00000130/00000001/"
	if [ $counter -lt 10 ]; then
		nomor="0"$counter".jpg"
		else
		nomor=$counter".jpg"
	fi

	wget $location$nomor
	counter=$(( $counter + 1))
done

Assumption:

• The number page of this chapter is less than 100


• The extension image used is *.jpg

Add item in nautilus toolbar

Nautilus used as default file manager for operating system which using Gnome as desktop environment, for example Ubuntu. The first release of nautilus in 2001. These some features of nautilus file manager:

1. FTP support


2. Windows SMB shares


3. ObexFTP


4. HTTP


5. WebDAV


6. SFTP


7. Bookmark


8. Window background


9. etc

In this article, I want to share about "how to add item in nautilus toolbar". Some often used features of nautilus should can access quickly and can reach it in short time. The solution of this problem is toolbar and shorcut, but not all nautilus features appear in it's toolbar. We can add item into toolbar manually, this my nautilus screenshot after modified.



To modify nautilus toolbar you must edit this file

/usr/share/nautilus/ui/nautilus-navigation-window-ui.xml

add new tool item(s) between toolbar tag

Sent "Bandwidth Limited Exceeded" message to my friend

On March 1st 2010 I was posted my plurk status message, the status message is

hack web *************.com ah, habisnya aku tau passwordnya ckckckckckck

The image below is screenshot of my plurk status message respons, there are 44 responses but in this image I only took 5 responses. The blue marked plurk id is mine and his (read: victim) plurk id marked in red color.

After finishing our conversation in plurk, i create a shell script in linux and then execute it, the script is like this.

#!/bin/bash
COUNTER=0
while [  $COUNTER -lt 10 ]; do
       wget http://www.***********.com/*********************.mp3
       rm ./*********************.mp3
done

May be less than one minute I have been finished write that script, after execute it I went to sleep. On Tuesday morning, the second day of March 2010 my friend's site is going down, it's means God bless me because owner of  the website was paryed for me to do it.

Install DSpace

When author writing this page, the author still confuse and know nothing about dspace, but you can search description about dspace in it's website or in en.wikipedia.org. Here is some of sentences which explain about dspace:

DSpace is an open source software package that provides the tools for management of digital assets, and is commonly used as the basis for an institutional repository. It supports a wide variety of data, including books, theses, 3D digital scans of objects, photographs, film, video, research data sets and other forms of content. The data is arranged as community collections of items, which bundle bitstreams together.

DSpace is also intended as a platform for digital preservation activities. Since its release in 2002, as a product of the HP-MIT Alliance, it has been installed and is in production at over 240 institutions around the globe [1], from large universities to small higher education colleges, cultural organizations, and research centers. It is shared under a BSD licence, which enables users to customize or extend the software as needed. (en.wikipedia.org)