A simple console wireless network manager for OpenBSD

Maybe some will enjoy this simple console based wireless network manager i use on my OpenBSD Box to connect to the different wireless networks i come across during the week. 4NU558BUVMKY

[Read more...]

A wireless access point / Hotspot using OpenBSD

OpenBSD wireless Hotspot

This Guide explains how you would setup a wireless hotspot using OpenBSD and PF so you can provide internet access to wireless clients such as laptops or phones.

[Read more...]

A simple Bot trap using robots.txt

Setup a simple Bot Trap for your website or web application that can enhance the security of your server and prevent malicious bots or script kiddies from poking around by luring them into a trap and banning their a**es for x amount of minutes, or else.

[Read more...]

Fail2ban with PF on OpenBSD 5.2

This explains how to quickly setup the amazing fail2ban, which monitors your log files for activity you specify and performs certain actions once a threshold is reached. Simplest case: Monitor authlog for failed ssh login attempts, and ban the originating IP after a few tries.

[Read more...]

Sniffing for plaintexters

I hope you enjoy this little piece i wrote to sniff for people that check their e-mail via insecure POP or IMAP ports. In my case, i ran this via cron each morning on weekdays for two minutes inside a LAN with a couple hundred users. If “plaintexters” where found, it would send the list of people to the IT Team, basically a mail group on Exchange. They would then contact the User and make sure their mail settings where right.

[Read more...]

FreeBSD.org intrusion and how to use SSH Keys and SSH-Agent

Great excuse to write about how to use ssh keys securely by password protecting the keyfile: On Sunday 11th of November 2012 FreeBSD.org has suffered an intrusion on two machines that contained third party software (packages, ports) within the FreeBSD.org cluster. For details about this read this Incident Report. As far as i can guess from the report and the news, it appears the intruder gained access to the affected systems by means of a developers ssh key that was not protected by a passphrase.

[Read more...]

Site redesign and relaunch

Hello all,

i am happy to present the new look of the bsdguides.org website. The focus of this site continues to be the number one source for BSD style operating systems howto guides and and tutorials. In addition to that, the scope will include general sysadmin and coding topics to discuss favorite one liners, snippets, shell scripts etc. Everybody is welcome to contribute.

Besides being a useful place for information to admins and geeks THE main goal of this site is to promote the use of BSD style Operating systems, FreeBSD, OpenBSD and NetBSD.

Which brings me to the next topic: I am looking for interested contributors that can spare some of today’s most valuable resource (time) to help improving the site and attract a wider audience; mainly by the means of contributing content and writing tutorials, but also by suggesting topics, functionality and so on. You will notice our current content is quite dated because its been a while since the last updates – there is TONS to do!

If you are interested please get in touch! Your help is wanted.

–ds

Enabling Root MacOSX

General Information

This tutorial will explain how to enable the root user in OS X. It’s not recommended that you do this but some GNU/ported/custom software requires it. Please remember that enabling the root user can be a security risk if your machine is hooked up to the internet without some sort of protection like a router or a firewall. This has been tested on OS X v10.1.x and 10.2.x. It should work with 10.0.x and any future versions.

[Read more...]

Installing Squid

General Information

A quick guide to get a squid Proxy Server running under OpenBSD.

[Read more...]

Squid Proxy Server

General Information

First posted on Overridersworld.

This document will describe how to get a Squid Proxy Server up and running for your LAN using FreeBSD and Squid. The info on the configuration file is by no means comprehensive. There is a lot that you might need to do differently, but I am running pretty much the same installation for around 100 users and it has served me very well so far in my situation. Also, I am not going into detail configuring the cache manager here. Just plain Squid Proxy Caching for your LAN.

[Read more...]