2020/06/15

Смотрим качество связи активных каналов каналов:

watch -n 5 --differences "rasterisk -x 'sip show channelstats'"

2020/05/22

Ограничения использования MAC-адресов в VMware ESXi

Запрещено устанавливать MAC-адреса в виртуальных машинах VMware ESXi в диапазоне 00:50:56:40:YY:ZZ – 00:50:56:7F:YY:ZZ. Для этих целей разрешено использовать 00:50:56:00:00:00 – 00:50:56:3F:FF:FF. Примечание: запрещающие правила не работают, когда интерфейс находится в promiscuous mode.

Links:
Re: Strange behavior when I try to use lladdr
Attempt to Power On a Virtual Machine Fails Due to a MAC Address Conflict

2019/12/13

SPF redirect

Пример ошибочного правила (как делать не надо!):

"v=spf1 mx ip4:194.87.190.47 redirect=_spf.mail.ru -all"

https://stackoverflow.com/questions/50637826/spf-record-with-redirect-and-include
https://help.mail.ru/biz/domain/verification_settings/other/spf

P.S. чего только не встретишь в maillog, когда начинаешь разбираться почему не ходят письма :)

2019/12/08

python3: CERTIFICATE_VERIFY_FAILED

urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:847)

Solution:

pip3 install certifi
/Applications/Python\ 3.6/Install\ Certificates.command

2019/12/04

The latest Oracle's Java you can use with no cost is 8u202

Links:

Oracle Java SE Licensing FAQ
Oracle JDK Releases for Java 11 and Later
Java Is Still Free

P.S. Also you have to choose another distribution such as:

https://openjdk.java.net/
https://adoptopenjdk.net/
and more... (see Java Is Still Free link above).

Must have on WSL

Create the /etc/wsl.conf file on any WSL distribution with the following contents:

# Enable extra metadata options by default
[automount]
enabled = true
root = /mnt/
options = "metadata,umask=22,fmask=111"
mountFsTab = false

# Enable DNS – even though these are turned on by default, we’ll specify here just to be explicit.
[network]
generateHosts = true
generateResolvConf = true

And restart WSL in Windows Powershell under admin's right:

Get-Service LxssManager | Restart-Service

Don't give thanks. :)

2019/09/24

How to enable ESNI and DOH in Firefox

Checkout Firefox Nightly.

Now go to about:config and do changes:

network.security.esni.enabled=true
network.trr.uri=https://mozilla.cloudflare-dns.com/dns-query
network.trr.mode=2

DOH Servers

  • Mozilla: https://mozilla.cloudflare-dns.com/dns-query
  • Google DNS: https://dns.google.com/experimental
  • Quad9: https://dns.quad9.net/dns-query

Trusted Recursive Resolver mode values

0: Off by default
1: Firefox will choose based on which is faster
2: TRR preferred, fall back to DNS on failure
3: TRR only, no DNS fallback
5: TRR completely disabled

Checkout https://www.cloudflare.com/ssl/encrypted-sni and check DNS you're using

To check if domain support ESNI do

dig @8.8.8.8 IN TXT _esni.domain.tld

IETF changes RRType for that feature - IN ESNI instead of IN TXT. Keep this in mind in the future.

Ярлыки

perl (30) infosec (26) links (21) freebsd (16) url (16) zabbix (14) ipv6 (13) linux (11) asterisk (10) mojo (10) monitoring (10) snmp (10) fun (8) security (7) bgbilling (6) cisco (6) mysql (6) ubuntu (6) blogs (5) dlink (5) crypto (4) exploits (4) ipv4 (4) java (4) js (4) kannel (4) law (4) microsoft (4) mikrotik (4) mojolicious (4) openssl (4) oracle (4) postfix (4) radio (4) tools (4) utf-8 (4) vmware (4) windows (4) android (3) apache (3) books (3) debug (3) dns (3) google (3) hp (3) json (3) latex (3) openbsd (3) performance (3) rhel (3) ripe ncc (3) syslog (3) ubnt (3) vim (3) vm (3) agi (2) atlassian (2) backup (2) bgp (2) centos (2) console (2) cpan (2) cpanmin (2) css (2) ctf (2) docker (2) edge-core (2) editors (2) elasticsearch (2) git (2) gns3 (2) graphite (2) hack (2) hdd (2) hyper-v (2) isp (2) mac (2) management (2) mibs (2) movie (2) msa (2) ntp (2) pentest (2) puppet (2) python (2) qa tests (2) quotes (2) reverse engeenering (2) shell (2) smpp (2) social engineering (2) spf (2) ssl (2) statistic (2) storage (2) switches (2) tcp/ip (2) tex (2) usb (2) websec (2) wsl (2) xsrf (2) yandex (2) ПДн (2) электронное правительство (2) #snmp #cisco (1) ESNI (1) Xorg (1) amavis (1) amazon s3 (1) analyze (1) anonymous (1) ansible (1) applications (1) as (1) ascii (1) autofs (1) balancer (1) bandwidth (1) bem (1) bind (1) bl (1) certificate (1) chef (1) chief (1) cluster (1) cnupm (1) cnupmsave (1) confluence (1) cpu (1) cvs (1) dbi (1) ddos (1) deploy (1) devices (1) dhcp (1) dht (1) diet (1) diskarray (1) dummynet (1) dwpd (1) dynax60 (1) endurance (1) epub (1) equipment (1) esx (1) esxi (1) fax (1) firefox (1) firmware (1) fitness (1) form (1) fs (1) fsb (1) ftp (1) go (1) golf (1) gprs (1) graphics (1) gsm (1) honeypot (1) hpe (1) hpe ilo manager (1) html (1) iops (1) ios (1) ipn (1) ipsec (1) iptv (1) iso (1) itil (1) itsm (1) jabber (1) jira (1) joke (1) jsonp (1) kafka (1) kubernetes (1) logstash (1) mem (1) metasploit (1) microscope (1) mindmap (1) mobile (1) modem (1) mp3 (1) music (1) nano (1) nas (1) netbox (1) netdev (1) netmiko (1) noc (1) ocfs2 (1) ocs2 (1) openfire (1) openvpn (1) oscm (1) ospf (1) packet filter (1) packet tracer (1) parsing (1) pass-the-hash (1) pf (1) pgu.mos.ru (1) phd (1) php (1) poe (1) ports (1) postfixadmin (1) ppp (1) presentation (1) profiler (1) protobuf (1) quickspecs (1) rabbitmq (1) radmin (1) raid (1) repo (1) rest (1) riemann (1) rrd (1) rs-232 (1) rss (1) rtp (1) ruby (1) scanners (1) serialization (1) sip (1) skype (1) sms (1) snmptranslate (1) soap (1) spam (1) spamcop (1) specs (1) sql (1) ssd (1) ssrf (1) standarts (1) strategy (1) sudoers (1) svn (1) syslog-ng (1) tbw (1) tde200 (1) tftp (1) tomcat (1) tuning (1) uce (1) underground (1) ups (1) video (1) voip (1) vpn (1) wds (1) web (1) websockets (1) wifi (1) wireless (1) x-plane (1) xml (1) xss (1) верстка (1) гибдд (1) гипервизоры (1) здоровье (1) панчеры (1)

Subscribe in a reader

Web Analytics