Firefox and MD5 certificates detection

SSL Blacklist: a cool little Firefox plugin for blacklisted SSL certificates, including MD5 certificates detection.

[via SANS]

Advertisements

Address Book – from Tiger to Leopard

Yesterday I got a HUGE problem with my first Leopard/Nokia synching – yes, I only changed to Leopard this last weekend, definitely not an early adopter. Basically I lost about 40% of my contacts. Then I thought the worst part was that my only backups were from my Tiger install and that might cause some “issues”… After thinking about millions of possibilities, namely booting from external drives, restoring from iBackup, etc, etc, (which none of them worked by the way) I found the solution at Apple Support.
Solution:

  1. Shutdown address book;
  2. Replace the current Leopard
    ~user/Library/Application Support/AddressBook

    directory by the Tiger backuped one;

  3. Launch address book again;
  4. Done! (Leopard migrates the Tiger Address Book automagically).

PacketLife.net and networking cheat sheets

And now for something totally different… a master place for networking cheat sheets at PacketLife.net.

Currently available cheat sheets:

PacketLife.net Cheat Sheets – bgp
PacketLife.net Cheat Sheets – cisco-ios-versions
PacketLife.net Cheat Sheets – common-ports
PacketLife.net Cheat Sheets – eigrp
PacketLife.net Cheat Sheets – first-hop-redundancy
PacketLife.net Cheat Sheets – ieee-8021x
PacketLife.net Cheat Sheets – ip-access-lists
PacketLife.net Cheat Sheets – ipsec
PacketLife.net Cheat Sheets – ipv4-multicast
PacketLife.net Cheat Sheets – ipv6
PacketLife.net Cheat Sheets – is-is
PacketLife.net Cheat Sheets – markdown
PacketLife.net Cheat Sheets – mediawiki
PacketLife.net Cheat Sheets – mpls
PacketLife.net Cheat Sheets – ospf
PacketLife.net Cheat Sheets – physical-terminations
PacketLife.net Cheat Sheets – qos
PacketLife.net Cheat Sheets – spanning-tree
PacketLife.net Cheat Sheets – subnetting
PacketLife.net Cheat Sheets – tcpdump
PacketLife.net Cheat Sheets – vlans
PacketLife.net Cheat Sheets – wireshark-display-filters

Installing Macports for the first time

For the first time since I have a mac I needed to install MacPorts. I needed to install some CPAN modules and therefore some common packages (e.g. ncftp) were required. This was a simple process but nevertheless some problems arose and so I thought it would be a good idea to document them here. So here goes:

  1. Install macports from the dmg (for Tiger in my case), don’t forget about the pre-conditions – X11 and XCode.
    No problem here, just click and shoot;
  2. Trying to update MacPorts returned an error
  3. moebius:~ username$ sudo port selfupdate
    Password:
    Error: /opt/local/bin/port: port selfupdate failed: Couldn't sync the ports tree: Synchronization the local ports tree failed doing rsync

  4. Validate connectivity to macports server (apparently sometimes there are availability problems):
  5. moebius:~ username$ telnet rsync.macports.org 873
    Trying 17.254.17.246...
    Connected to rsync.macosforge.org.
    Escape character is '^]'.
    @RSYNCD: 29
    quit
    Connection closed by foreign host.

  6. Connectivity is now OK, update MacPorts
  7. moebius:~ username$ sudo port selfupdate
    Password:

    MacPorts base version 1.600 installed

    Downloaded MacPorts base version 1.600

    The MacPorts installation is not outdated and so was not updated
    selfupdate done!

  8. Testing MacPorts by installing lynx;
  9. moebius:~ username$ sudo port search lynx
    lynx www/lynx 2.8.6rel.5 Text-based web browser
    moebius:~ username$ sudo port install lynx
    ---> Fetching ncursesw
    ---> Attempting to fetch ncurses-5.6.tar.gz from http://ftp.gnu.org/gnu/ncurses
    ---> Verifying checksum(s) for ncursesw
    ---> Extracting ncursesw
    ---> Applying patches to ncursesw
    ---> Configuring ncursesw
    ---> Building ncursesw with target all
    ---> Staging ncursesw into destroot
    ---> Installing ncursesw 5.6_1
    ---> Activating ncursesw 5.6_1
    ---> Cleaning ncursesw
    ---> Fetching ncurses
    ---> Verifying checksum(s) for ncurses
    ---> Extracting ncurses
    ---> Applying patches to ncurses
    ---> Configuring ncurses
    ---> Building ncurses with target all
    ---> Staging ncurses into destroot
    ---> Installing ncurses 5.6_0
    ---> Activating ncurses 5.6_0
    ---> Cleaning ncurses
    ---> Fetching zlib
    ---> Attempting to fetch zlib-1.2.3.tar.bz2 from http://www.zlib.net/
    ---> Verifying checksum(s) for zlib
    ---> Extracting zlib
    ---> Applying patches to zlib
    ---> Configuring zlib
    ---> Building zlib with target all
    ---> Staging zlib into destroot
    ---> Installing zlib 1.2.3_1
    ---> Activating zlib 1.2.3_1
    ---> Cleaning zlib
    ---> Fetching openssl
    ---> Attempting to fetch openssl-0.9.8g.tar.gz from http://www.openssl.org/source/
    ---> Verifying checksum(s) for openssl
    ---> Extracting openssl
    ---> Applying patches to openssl
    ---> Configuring openssl
    ---> Building openssl with target all
    ---> Staging openssl into destroot
    ---> Installing openssl 0.9.8g_0
    ---> Activating openssl 0.9.8g_0
    ---> Cleaning openssl
    ---> Fetching lynx
    ---> Attempting to fetch lynx2.8.6rel.5.tar.bz2 from http://lynx.isc.org/current/
    ---> Verifying checksum(s) for lynx
    ---> Extracting lynx
    ---> Applying patches to lynx
    ---> Configuring lynx
    ---> Building lynx with target all
    ---> Staging lynx into destroot
    ---> Installing lynx 2.8.6rel.5_1+ssl
    ---> Activating lynx 2.8.6rel.5_1+ssl
    ---> Cleaning lynx
    moebius:~ username$ which lynx
    /opt/local/bin/lynx

Done!

Thunderbird 3 Alpha 1 is out

A good review at Lifehacker from which a couple of features are nice enough for me to give it a try:

  • “(…) OS X version of Thunderbird 3 uses Macs’ native Cocoa styling for a more integrated look (…)”
  • “(…) Mac users get another long-awaited feature with Thunderbird 3’s ability to integrate with the native OS X Address Book (…) “

don’t forget the other tip “(…) Thunderbird 3 Alpha 1 is very rough indeed—the developers have all but promised you’ll get crashes, bugs, and feature conflict (…)”.

Good luck.

Get Cisco 3500 into factory defaults

Ever needed to get an old Cisco 3500 EOL switch into factory defaults? Well I did. Since no ROMmon is available for this model a different approach is needed. That said I made a little recipe to get the system going:

  1. “Power-up” the switch while pressing the mode button at the front;
  2. Release the mode button when Port1x LED goes out;
  3. You now have the switch: prompt;
  4. Type flash_init
    • switch: flash_init;
  5. Type load_helper
    • switch: load_helper;
  6. Check the flash contents
    • switch: dir flash:
    Directory of flash:/
    2    -rwx  1645807   <date>  c3500XL-c3h2s-mz-120.5.2-XU.bi
    3    -rwx  94680     <date>  c3500XL-diag-mz-120.5.2-XU
    4    drwx  6784      <date>  html
    111  -rwx  272       <date>  env_vars
    112  -rwx  600       <date>  vlan.dat
    113  -rwx  2363      <date>  config.text
    843264 bytes available (2769408 bytes used)
  7. Rename the config file
    • switch: rename flash:config.text flash:config.old.text
  8. Reboot the switch
    • switch: boot
    Loading "flash:c3500XL-c3h2s-mz-120.5.2-XU.bin"...
    ###########################################################################
    ###########################################################################
  9. Erase vlan database
    • Switch#delete flash:/vlan.dat
    Switch#delete flash:/vlan.dat
    Delete filename [vlan.dat]?
    Delete flash:/vlan.dat? [confirm]
  10. Copy current config to flash (creates new config.text)
    • Switch#copy running-config startup-config
  11. Delete old config file
    • Switch#delete flash:/config.old.text
    Delete filename [config.old.text]?
    Delete flash:/config.old.text? [confirm]
    Switch#

Done!

Detailed information may be found at Cisco’s website.