A. Abad Cerdeira

Systems Engineer

Archive for category General

Speedtest

Apr 9

Posted by abad in General | No Comments

Installed speedtest.net Mini in my server:

speedtest.net mini

Check your speed against my server which has a 100mbps synchronous line.

The server is in France by the way.

WikiLeaks mirror

Dec 9

Posted by abad in General | No Comments

This server is now a proud WikiLeaks mirror: http://wikileaks.abadcer.com/

In the Mass Mirror Project page they kindly explain how to do this step by step, and there is a form if you want to submit your details: http://wikileaks.ch/Mass-mirroring-Wikileaks.html

In my case it was very easy to follow because those instructions are ideal for Debian/Ubuntu and I have Debian Squeeze

What I did was simply this:

1. Created the user “wikileaks” and assigned it a good password. Any online password generator is a quick way of getting one, 14 characters or more is ideal. Allowing punctuation characters makes your password stronger and because it is random it is immune to dictionary attacks (although hard to remember). The number of combinations are very simply to calculate, total number of possible values in each character multiplied by itself as many times are characters the password has. Example:

  • If you use only numbers and 4 characters you have: 10 * 10 * 10 * 10 = 10.000 combinations.
  • If you use a 14 characters password with numbers (10), characters (26 uper case + 26 lower case), punctuation characters (34) you have: 96 * 96 (14 times) = 96^14 = 5.646.733.123.551.136.024.526.585.856 combinations (That is a big number ).

2. Set up the DNS name and the VirtualHost in Apache. Nothing special here, did a very similar thing to what they recommend in their site. Only addition was to disable PHP. They don’t need it so it should not be enabled. First rule of security is to allow always as little permissions as possible. To do that in Apache simply add anywhere in the VirtualHost:

php_value engine off

3. Set up an FTP account. Just to steps:

Install:

apt-get install proftpd

Setup in /etc/proftpd/proftpd.conf:

DefaultRoot /var/www/wikileaks.abadcer.com wikileaks

Again the key thing in security here is the password, IP filtering and IP ban (blocking someone after several failures) is not a good practice as it would make your FTP server easier for DoS attacks.

First post

Sep 18

Posted by admin in General | No Comments

Hello! Not much to see here yet. I’ll post interesting things soon.