Thunderbird in Malaysia, really feel the thunder in my chest!

Posted on by

Credits to Syarafuddin SulaimanCredits to Din

Yesterday I have told you guys I will be going to RMAF Subang Air Base today for Joint RMAF USAF aerobatic performance there today. Well, we made it!
🙂 Me with Syarafuddin Sulaiman, we were there a a bit late, as it was raining heavily in the
morning in our place. But, we dont want to miss it, and dont want to live in regret and uncertainty, we just went off there in the heavy rain.
Luckily, the air show still being held, but we missed C-17 Globemaster. I dont know whether it in the air or not this morning.

We can see one RMAF Sukhoi jet flying around over in the traffic jam. The traffic jam was horrible. We could not get much good shots for the Sukhoi
jet. We just park the car by the roadside, and walk for a good place to take picturess. We couldn’t get a good shot of the runway, its quite far, and
blocked by a a fence! 🙁 Din just did what he can. He still can get some good shots.

F-16 Falcon Thunderbird was great. We arrive just in time for the Thunderbirds to come out. The sounds, the vibration over the ground, it was
exciting! We can feel the shaking while one of the jet fly right on top of us. They did a good and interesting formation, one of them was where four
of them fly from different angle towards the runway, and pass by each other in the middle of the runway. That was close!

We didn’t plan the trip very well, we couldn’t get close to the runway, and arrived a bit late. We also missed the C-17 Globemaster session. I also
not sure whether its in the air or not this morning. Hope to get my hands on one of the DSLR myself. Will wait for the next chance 🙂

Thanks Din for the pictures 🙂

Thunderbird in Malaysia, really feel the thunder in my chest!

Posted on by

USAF Thunderbirds - Pics from<br /> Zagispirit-http://www.farhanfaisal.com/wp-conten/uploads/usaf_thunderbirds.jpg
Picture grabbed from Zagispirit, taken at Townsville ADF Airshow
2009

Tomorrow (3rd Oct) there will be an aerobatic demonstration by USAF Thunderbirds and Malaysia Royal Air Force (RMAF) in RMAF Subang Air Base. This
joint event will highlights Thunderbird F-16 and C-17 Globemaster by USAF and also RMAF Sukhoi team.

The event will start at 1030 am, with C-17 demonstration, followed by RMAF Sukhoi airshow. USAF thunderbird airshow will start at 11.30am followed by
autograph signing by Thunderbirds Crew. This event will be open for public for free, and will be expecting huge crowds.

I wish I have my own camera to take the shots. Just enjoying the show la 🙂 You guys dont miss it!

Press release
href=”http://malaysia.usembassy.gov/event_thunderbirds_093009announce.html”>http://malaysia.usembassy.gov/event_thunderbirds_093009announce.html
http://www.bernama.com/bernama/v5/newsgeneral.php?id=441102

DashBlog :: Add-ons for Firefox

Posted on by

dashblog

Found this cool firefox addon, for blogging purpose. I always have the same problem from the very beginning, to capture the screenshot, crop it, and upload it to my blog. This add-on seems a good one to speed things up in sharing knowledge through our sites.

This post might serve as my first test, to post using DashBlog.

You can get it here.
https://addons.mozilla.org/en-US/firefox/addon/7215

md5 decode script – PHP

Posted on by

Last few weeks I found a malicious script installed on my hosting server. This is due to unupdated WordPress, that allow remote attacker to upload some malicious code into the server. The server have been clean up, no more problem. 🙂

The malicious file found is a PHP script, with alot of hacking tools embedded. One interesting part is, it have a md5 decoder. I’m not really good in data structure, I cannot construct my own bruteforce code. So, I took those bruteforce code to a single file, just to decode a md5 hash string.

This is just a prove of concept that, a strong password should be long, and have some extra character, other than normal alphabets. This give a higher probability of character to choose in bruteforce attack.

MD5 Decode in action

Download the code here, md5decode.txt. Please rename it to *.php.
You have to put in what character options to test against the hash string, and also the hash string you want to decode.

This code might not applicable in real life nowadays, as there are other ways users password been exploited, for example, using default password, and common password. Thats why most bruteforce attacked were dictionary based. So, make sure your password is strong enough. One other method, is Rainbow Table. I’m still reading it 🙂

Rainbow Table (Wikipedia) – http://en.wikipedia.org/wiki/Rainbow_table
Md5decode.txt – http://www.farhanfaisal.com/?download=md5decode.txt

Network monitoring with cacti – snmpd.conf

Posted on by

Network monitoring plays an important aspect in a system admin life. You will be managing some servers, and you might have problem taking care of their respective ‘health’, making sure its serving fine and performing best of it. There are some monitoring tool, for example, mrtg, nagios, cacti.

For our setup, we are utilizing cacti, a web-based host monitoring tool, that can monitor hosts through snmp. Its a php tool, and customizable. Its powerful enough to give you what you want, just the matter of configuration. The first thing, you have to make sure every host you want to monitor is snmp enabled.

Cacti login page

SNMP stands for “Simple Network Management Protocol”, can be harmful if not configured properly. It can reveal you private information of the host. I will just put a simple snmpd.conf configuration file, that will have enough privilege control on host and community string.

com2sec local localhost YOUR_COMMUNITY_STRING
com2sec mynetwork 202.190.123.144/28 YOUR_COMMUNITY_STRING

group MyRWGroup v1 local
group MyRWGroup v2c local
group MyRWGroup usm local
group MyROGroup v1 mynetwork
group MyROGroup v2c mynetwork
group MyROGroup usm mynetwork

view all included .1 80

access MyROGroup “” any noauth exact all all none
access MyRWGroup “” any noauth exact all all none

syslocation YOUR_LOCATION
syscontact YOUR_EMAIL
sysname SYSNAME

You can verify that your snmpd daemon is responding to snmp request using snmpwalk. For snmp version 1, you can use,
snmpwalk -v 1 -c YOUR_COMMUNITY_STRING 127.0.0.1
For snmp version 2,
snmpwalk -v 2c -c YOUR_COMMUNITY_STRING 127.0.0.1

This configuration is for the end host you want to monitor. In Cacti, you will need to add the community string, and the IP of the host you want to monitor. Then, cacti will start polling information from these hosts through SNMP with the credential given.

Cacti Graph

Cacti – http://www.cacti.net/
Nagios – http://www.nagios.org
MRTG – http://oss.oetiker.ch/mrtg