Wednesday, July 11, 2007

How 2 Change The Thermostst On Agolf Turbo

Ubuntu e partizione /home criptata [2.0]

Recently I came to him to encrypt the partition / Home laptop.
On it, in fact, there are many many many personal information, and the loss (or abduction) of this `friend 'might be suffering even more knowing that everyone can read my data without too much difficulty.

From all the material that I found online, I have developed a simple and efficient for my purpose.

The first thing to do is install Ubuntu in the usual way, leaving plenty of unpartitioned space on the disk.

I, for example, I created a partition `root` / dev/hda1 ext3 from 10 GiB, a swap partition `` / dev/hda3 from 1.2 GiB and I left all the free space is not ` `partitioned. The space will be used by / home encrypted `/ dev/hda2`.

After installing the system, and configured everything very nicely, I installed the package `cryptsetup`.

Later, I modified the file `/ etc / modules' adding: 

 ... aes-i586 dm_mod dm_crypt ...

and I loaded the modules to be able to properly use various tools.

I also created the partition '/ dev/hda2' giving all the free space, and formatted with a filesystem with LUKS encrypted command: $ sudo 

 luksFormat-t ext3 / dev/hda2

After typing the password (nice long) and you format the file system, I modified the file `/ etc / crypttab` so that it contained: 

 ... home / dev/hda2 ninth luks ...

Then I also changed the file `/ etc / fstab` adding the newly created partition: 

 ... UUID = uuid_della_nuova_partizione / home ext3 defaults, errors = remount-ro 0 1 ...

uuid_della_nuova_partizione `where` it is calculated as: 

 vol_id $ sudo-u / dev / mapper / home

In this way, to boot automatically prompted to enter your password to mount the encrypted device.

Now, before you reboot, it is good to temporarily mount the encrypted device on / mnt and copy all the current content of the folder / home.

addition, you can also encrypt the swap partition the same way.

Add to your `/ etc / crypttab is the content: 

 ... swap / dev/hda3 / dev / random swap ...

and add (or edit the entry) to `/ etc / fstab is the value (without UUID): 

 ... / Dev / mapper / swap none swap sw 0 0 ...

Finally, unmount the swap-a swapoff and destroy its contents with: $ sudo 

 dd if = / dev / urandom of = / dev/hda3 count = 100

Now, reboot the machine and you enjoy the home and swap partitions encrypted!

Posted by admin at 1:41 PM 0 comments

Sunday, July 8, 2007

Cervix Position Right Before Period

Infostrada e blocco della connesione

E 'for some' time now that I switched on ADSL2 + network Infostrada.

I must say that overall performance has improved a lot ...

The download speeds and 'almost always about 500KiB / s (ftp, http, etc. ..), while the upload on 40KiB / s. In practice speeds are similar to when I was on the Telecom network. Now, however, also increased the overall speed of p2p that touches the 500KiB / s!

What has changed a lot, more than la velocità dal p2p, e' la latenza che è molto molto molto bassa, grazie alla configurazione ADSL2+ FAST.



Ora, quando gioco sui server di Urban Terror ho ping che variano dai 30ms ai 50ms! (In confronto ai 100ms - 120ms che avevo su rete Telecom)



Da test effettuati nessuna porta viene filtrata, diversamente da quanto accadeva su rete Telecom. Addirittura anche la porta 25 è aperta ed, in teoria, potrei mettere il mio server di posta elettronica personale... (questo però violerebbe il contratto)



Ora, in modo continuativo, dopo diversi secondi, ricevo in ingresso dei pacchetti "strani". Ecco un esempio: 



 
Jul 08 11:25:47.268756 rule 0/(match)  block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:26:17.100807 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:26:23.953824 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.1: igmp query [tos 0xc0] [ttl 1]
Jul 08 11:26:32.045988 rule 22/(match) block in on pppoe0: 172.21.233.27.11097 > X.X.X.X.60481: R 1203762461:1203762461(0) win 0 (DF)
Jul 08 11:26:32.048143 rule 22/(match) block in on pppoe0: 172.21.161.11.11147 > X.X.X.X.61201: R 1175607756:1175607756(0) win 0 (DF)
Jul 08 11:26:32.066924 rule 22/(match) block in on  pppoe0: 172.21.103.14.11191 > X.X.X.X.59672: R 1301080473:1301080473(0) win 0 (DF)
Jul 08 11:26:46.657395 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:27:16.505355 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:27:23.953778 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.1: igmp query [tos 0xc0] [ttl 1]
Jul 08 11:27:38.649488 rule 0/(match) block in on pppoe0: 151.20.91.23.3446 > X.X.X.X.135: S 3793218695:3793218695(0) win 53760    (DF)
Jul 08 11:27:46.097376 rule 0/(match) block in on pppoe0:  151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:28:15.713670 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:28:23.954003 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.1: igmp query [tos 0xc0] [ttl 1]
Jul 08 11:28:44.957907 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:29:14.646055 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.13: ip-proto-103 34 [tos 0xc0] [ttl 1]
Jul 08 11:29:23.954456 rule 0/(match) block in on pppoe0: 151.23.227.142 > 224.0.0.1: igmp query [tos 0xc0] [ttl 1] In practice

receive packets IGMP multicast packets destined to ports 135, 445, and other port-related Microsoft protocol.

Also, when I get to run the PPPoE connection: 

 pppoe0: received unexpected PADO

But not 'always gold that glitters ... I discovered a nasty problem very annoying ...

In practice, if I leave the router connected to the Internet for "some time" without generating traffic, Infostrada me "is blocking the connection."

The "long time" is a variable size. Sometimes me and 'happened after 40 minutes of inactivity, sometimes after 2 hours of inactivity.

"I'm blocking the connection" means that the connection is actually active, the router and 'connected to the network with the IP address acquired before and can successfully ping the default gateway and still receive the "schefezze" in above. Any request

dns working properly (even those that are not in cache), but traffic and everything else '"stuck."

The only way to return to "navigate properly" is to break down the connection and restart it.

I called support several times, but tests on the line told me that the line is not a problem because the values \u200b\u200bresult really good!

They told me that maybe it was the router or modem, but I do not believe it because it has always worked well ... I also did the firmware update but the problem is always the same. And then I keep getting crap in the lobby, and the ping dns works!

If it were the fault of the modem, how do you explain the fact that I keep getting the crap into, and be able to get responses to ping and DNS?

However in the end I managed to find a small solution.

I set the router to BRIDGED mode. I can make the PPPoE connection to my OpenBSD gateway and I wrote a little cron script every 3 minutes ago pinging Google.

This trick seems to work great, and the connection can remain active for several days without ever giving problems ...

I hope that this information can help someone.

Posted by admin at 2:26 AM 0 comments
Subscribe to: Comments (Atom)