Thursday, February 22, 2018

hi Nitin

 

 

 

https://goo.gl/PrjxQ3

 

 

 

Nitin

Sunday, October 28, 2007

Introduction to PHP

Hello,

while reading on php came across this link..

http://www.onlamp.com/pub/a/php/2001/02/22/php_foundations.html

and the pointer on this site http://www.onlamp.com/pub/ct/29 is a good collection

May be you will would like to check them.

Thanks
Varun

Monday, December 04, 2006

Singapore and Taipei go WiFi

Singapore and Taipei governments have started to build a complete WiFi coverage for the entire city with Singapore offering a free 512 Kbps to all users.

Man why cant we have this in India.

When would the government wake up to the era of internet.

Am i too aggressive, whats do my reader feel.

Nitin !!!!

Sunday, October 15, 2006

I am blogging again :)

This is to all my readers that have not seen any update on the Blog since a year ...... yes i have been too overloaded with work and i have been promising myself to return to blogging but i keep breaking it.

Now with this first post i am promising to return to blogging with atleast 2 posts a week.

i am goona write more in network and network security which is what i have been doing day in and day out these days.

BTW met an old friend of mine today Bitu who thought i have become fat :p.

Hes a storage and backup dude and we are sure to benefit from his wirtings here.

Till my next post .... be good

Cheers
Nitin !!!!

Friday, March 31, 2006

IQARA going from bad to worse in my area (Navi Mumbai)

Hey guys ..... and all my friends

As usual sorry for not posting since long but my work eats into all my time, but being a network engineer i could help pointing out IQARA in Mumbai (Bombay) has been going from bad to worse these days.

I haven't been able to download mails (>300 KB) from home and my mail server is just 50 ms away from my home connection. trying to do some analysis with traceroute to yahoo.com and a few other sites here is what i got to see ~25% packetloss from the first HOP and this sucks BIG TIME

Any one having similar kinda experiences do let me know, we can try and get this to iqara managements notice.

Nitin :)

Tuesday, November 15, 2005

Geek Falls In Love

A geek in love would write some kind of poetry below :

roses are #FF0000
violets are #0000FF
all my base
are belong to you


ThinkGeek has put it on a tee shown below.



Looks great to me what say ??

Nitin :)

Life and a Can of Beer...

Found a Nice one while reading .... would term is as IMPORTANT things in life

When things in your life seem almost too much to handle, when 24 hours in a
day are not enough, remember the mayonnaise jar........and the beer.

A professor stood before his philosophy class and had some items in front of
him. When the class began, wordlessly, he picked up a very large and empty
mayonnaise jar and proceeded to fill it with golf balls. He then asked the
students if the jar was full. They agreed that it was.

So the professor then picked up a box of pebbles and poured them into the
jar. He shook the jar lightly. The pebbles rolled into the open areas
between the golf balls. He then asked the students again if the jar was
full. They agreed it was.

The professor next picked up a box of sand and poured it into the jar. Of
course, the sand filled up everything else. He asked once more if the jar
was full. The students responded with a unanimous "yes."

The professor then produced two cans of beer from under the table and poured
the entire contents into the jar, effectively filling the empty space
between the sand. The students laughed.

"Now," said the professor, as the laughter subsided, "I want you to
recognize that this jar represents your life. The golf balls are the
important things--your family, your children, your health, your friends,
your passions--things that if everything else was lost and only they
remained, your life would still be full.

"The pebbles are the other things that matter like your job, your house,
your car. The sand is everything else--the small stuff.

"If you put the sand into the jar first," he continued, "there is no room
for the pebbles or the golf balls. The same goes for life. If you spend
all your time and energy on the small stuff, you will never have room for
the things that are important to you. Pay attention to the things that are
critical to your happiness. Play with your children. Take time to get
medical checkups. Take your friends out to dinner. Play another 18. There
will always be time to clean the house, and fix the disposal.

"Take care of the golf balls first, the things that really matter. Set your
priorities. The rest is just sand."

One of the students raised her hand and inquired what the beer represented.
The professor smiled. "I'm glad you asked. It just goes to show you that no
matter how full your life may seem, there's always room for a couple of
beers."


Nitin :)

Wednesday, October 26, 2005

Upgrading to bind 9.3.1

This tutorial specially is for My friend Nikhil and my bro Abhinav.

You just need to follow it step by and i have tried to comment everything which might need an explanation, if anyone feels i have left out anything please comment on it. It works fine on Redhat servers, think shld work on other versions too :)

cd /usr/local

# Downloading Bind ( you can check isc.org incase the ftp link does not work below )

wget -c ftp://ftp.isc.org/isc/bind9/9.3.1/bind-9.3.1.tar.gz
tar zxf bind-9.3.1.tar.gz
cd bind-9.3.1

# specify /usr/local/bind this is the directory to which we chroot bind (you can specify any other directory but keep in mind to use that during ID creation)

./configure --prefix=/usr/local/bind

#compile bind
make

#put the binaries in required dirs
make install

#make directories as per required
mkdir -p /usr/local/bind/{etc,namedb,namedb/master,dev,var/run,var/log}


After this most of the part is done. Now is the time to write the config files and start bind :D

#now downloading the latest root.hints file , i prefer to call it as named.root

cd /usr/local/bind/namedb/master
wget ftp://ftp.internic.com/domain/named.root

#now adding group named, user named and the /dev/null et all for named chroot

groupadd named
useradd named -d /usr/local/bind -s /bin/false -g named -c "DNS Jail User"
mknod /usr/local/bind/dev/null c 1 3
mknod /usr/local/bind/dev/random c 1 8
cp /etc/localtime /usr/local/bind/etc/

Since we have installed this system into a jail environment, we will have some problems while logging
dns records. Linux perform this logging by sending records to /dev/log socket but this location is out of our
jail :( Let's make some tricks.. and change syslog behaviour. Below is an explanation about how you
can change syslogd configuration.

#Original
SYSLOGD_OPTIONS="-m 0"
#Required
SYSLOGD_OPTIONS="-m 0 -a /usr/local/bind/dev/log"

Making directories more secure :)
chown named:named /usr/local/bind
chown -R named:named /usr/local/bind/var
chmod 700 /usr/local/bind


Now is the time to remove the bind which came in with the redhat install
rpm -e caching-nameserver-7.2-7
rpm -e bind-devel-9.2.1-16
rpm -e redhat-config-bind-1.9.0-13

If you are not sure on which packages to uninstall please stop original bind which came in with the Redhat install from running by running the below command:
# Assuming you generally boot to init 3 or 5
chkconfig --level 3 named off
chkconfig --level 5 named off

Also kill the current named process :
[root@gateway bind-9.3.1]# ps -ef grep named
named 4166 1 0 Oct22 ? 00:00:08 [named]
root 16983 14978 0 14:21 pts/1 00:00:00 grep named
[root@gateway bind-9.3.1]# kill -9 4166


time to put the named.conf
// ACLs Set
acl "xfer" { none; };
acl "trusted" { 192.168.0.0/16; 203.200.229.112/28; 203.200.229.224/28; localhost; };
acl "bogon" { 0.0.0.0/8; 1.0.0.0/8; 2.0.0.0/8; 5.0.0.0/8; 7.0.0.0/8; 10.0.0.0/8; 23.0.0.0/8; 27.0.0.0/8; 31.0.0.0/8; 36.0.0.0/8; 37.0.0.0/8; 39.0.0.0/8; 42.0.0.0/8; 49.0.0.0/8; 50.0.0.0/8; 77.0.0.0/8; 78.0.0.0/8; 79.0.0.0/8; 92.0.0.0/8; 93.0.0.0/8; 94.0.0.0/8; 95.0.0.0/8; 96.0.0.0/8; 97.0.0.0/8; 98.0.0.0/8; 99.0.0.0/8; 100.0.0.0/8; 101.0.0.0/8; 102.0.0.0/8; 103.0.0.0/8; 104.0.0.0/8; 105.0.0.0/8; 106.0.0.0/8;107.0.0.0/8; 108.0.0.0/8; 109.0.0.0/8; 110.0.0.0/8; 111.0.0.0/8; 112.0.0.0/8; 113.0.0.0/8; 114.0.0.0/8; 115.0.0.0/8; 116.0.0.0/8; 117.0.0.0/8; 118.0.0.0/8; 119.0.0.0/8; 120.0.0.0/8; 121.0.0.0/8; 122.0.0.0/8; 123.0.0.0/8; 169.254.0.0/16; 172.16.0.0/12; 173.0.0.0/8; 174.0.0.0/8; 175.0.0.0/8; 176.0.0.0/8; 177.0.0.0/8; 178.0.0.0/8; 179.0.0.0/8; 180.0.0.0/8; 181.0.0.0/8; 182.0.0.0/8; 183.0.0.0/8; 184.0.0.0/8; 185.0.0.0/8; 186.0.0.0/8; 187.0.0.0/8; 192.0.2.0/24; 197.0.0.0/8; 223.0.0.0/8; 224.0.0.0/3; };
//logging
logging {
channel "default_syslog" { syslog local2; severity debug; };
channel audit_log { file "/var/log/named.log"; severity debug; print-time yes; };
category default { default_syslog; };
category general { default_syslog; };
category security { audit_log; default_syslog; };
category config { default_syslog; };
category resolver { audit_log; };
category xfer-in { audit_log; };
category xfer-out { audit_log; };
category notify { audit_log; };
category client { audit_log; };
category network { audit_log; };
category update { audit_log; };
category queries { audit_log; };
category lame-servers { audit_log; };
};
// Set options for security
options {
directory "/namedb";
version "I do not give any version info";
pid-file "/var/run/named.pid";
statistics-file "/var/named/named.stats";
dump-file "/var/log/named.dump";
zone-statistics yes;
transfer-format many-answers;
max-transfer-time-in 60;
interface-interval 0;
allow-transfer { xfer; };
allow-query { trusted; };
blackhole { bogon; };
};

view "internal-in" in {
// Our internal (trusted) view.
match-clients { trusted; };
recursion yes;
# additional-from-auth yes;
# additional-from-cache yes;

zone "." IN { type hint; file "/namedb/master/named.root"; };
#zone "0.0.127.in-addr.arpa" IN { type master; file "/namedb/master/db.127.0.0"; allow-query { any; }; allow-transfer { none; }; };
};

view "external-chaos" chaos {
match-clients { any; };
recursion no;

zone "." { type hint; file "/dev/null"; };
# zone "bind" { type master; file "/namedb/master/db.bind"; allow-query { trusted; }; allow-transfer { none; }; };
};


Put it in /usr/local/bind/etc/named.conf

Starting BIND:

service syslog restart
/usr/local/bind/sbin/named -u named -t /usr/local/bind -c /etc/named.conf
ps -ef grep -v grep grep named


Put the line below in /etc/rc.local so that it starts everytime the server reboots.
/usr/local/bind/sbin/named -u named -t /usr/local/bind -c /etc/named.conf


That should get the server running. Incase you find errors then check the log files at /usr/local/bind/var/log/named.log

Time to test the new server :

#host www.redhat.com 127.0.0.1

If this gives output you are good to go.

Nitin :)