looking glass mikrotik

apt install graphviz
apt install php-pear
pear install Image_GraphViz
https://git.dev.hsdn.org/pub/lg
masukkan file nya dan ubah pada file lg_config.php

virtualhost apache pada ip vps

Hai, kali ini saya akan share cara bikin virtual host ke vps kita.
Yang pertama, pastikan buat record IN A dulu ke ip public vps kita, kemudian kita login ke vps dan tambahkan file /etc/apache2/sites-enabled/lg.yam.net.id.conf

<VirtualHost *:80>
    ServerAdmin noc@yam.net.id
    ServerName lg.yam.net.id
    ServerAlias www.lg.yam.net.id
    DocumentRoot /var/www/html/lg
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

kemudian lakukan perintah a2ensite lg.yam.net.id.conf
lalu restart apachenya service apache2 restart

smokeping with sendmail gmail relay

Halo, jumpa lagi,

Kita akan belajar bagaimana caranya bikin smokeping latency grapher, semacem ping monitoring gitu lah, yang tujuannya biar monitor berapa sih ping dari server ke target remote dan disertakan dengan log nya, jam sekian intermittent, dlsb.

Baiklah, pertama tama, install dahulu 

apt install sendmail sendmail-bin mailutils

lalu

mkdir -m 700 /etc/mail/authinfo 

lalu edit file gmail-smtp-auth

 /etc/mail/authinfo/gmail-smtp-auth

 kemudian isikan

AuthInfo: "U:root" "I:USER@gmail.com" "P:GMAIL_USER_PASSWORD"

sesuaikan dengan email gmail anda dan passwordnya

sekarang generate sendmail gmail authentication

makemap hash /etc/mail/authinfo/gmail-smtp-auth < /etc/mail/authinfo/gmail-smtp-auth

jika sudah akan terbentuk file /etc/mail/authinfo/gmail-smtp-auth.db

kemudian edit file /etc/mail/sendmail.mc

di baris paling bawah, ubah setingan seperti berikut ini

dnl #
dnl # Defining Gmail Smarthost for sendmail
define(`SMART_HOST',`[smtp.gmail.com]')dnl
define(`RELAY_MAILER_ARGS', `TCP $h 587')dnl
define(`ESMTP_MAILER_ARGS', `TCP $h 587')dnl
define(`confAUTH_OPTIONS', `A p')dnl
TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
FEATURE(`authinfo',`hash -o /etc/mail/authinfo/gmail-smtp-auth.db')dnl
dnl #
dnl # Default Mailer setup
MAILER_DEFINITIONS
MAILER(`local')dnl
MAILER(`smtp')dnl

kemudian eksekusi

make -C /etc/mail
...
Creating /etc/mail/relay-domains
# Optional file...
Updating Makefile ...
Reading configuration from /etc/mail/sendmail.conf.
Validating configuration.
Creating /etc/mail/Makefile...
Updating sendmail.cf ...
The following file(s) have changed:
  /etc/mail/relay-domains /etc/mail/sendmail.cf
** ** You should issue `/etc/init.d/sendmail reload` ** **
make: Leaving directory '/etc/mail'

DONE!

jangan lupa reload sendmailnya /etc/init.d/sendmail reload
untuk testnya silahkan bisa lakukan seperti berikut :

echo "This is a test for sendmail gmail relay" | sendmail test-user@gmail.com

locate freebsd

begini cara install locate di freebsd

root@sync:/var/named # pkg search locate
p5-File-Locate-0.62            Search the locate(1)-database from Perl
root@sync:/var/named # pkg install p5-File-Locate-0.62
Updating FreeBSD repository catalogue...
FreeBSD repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The most recent versions of packages are already installed
root@sync:/var/named # /usr/libexec/locate.updatedb
>>> WARNING
>>> Executing updatedb as root.  This WILL reveal all filenames
>>> on your machine to all login users, which is a security risk.
root@sync:/var/named # locate bind

filter porn unbound

Kali ini akan saya share script untuk blokir unbound berdasarkan list porn StevenBlack.
Syarat penggunaan script ini adalah jika unbound telah berhasil diinstall dan berjalan dengan baik tanpa error. Jangan lupa install dahulu dos2unix jika belum terinstall, caranya

apt install dos2unix -y

Baiklah, silahkan buat file convert.sh, kemudian chmod 777 convert.sh

# list of ads domain names
array=( https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews-gambling-porn/hosts )
for i in "${array[@]}"
do
wget $i -O w
grep -v " #\|<td>\|<p>\|<meta>\|<link>\|<title>\|href\|title=\|=\|<" w > adsList.txt
rm w
dos2unix adsList.txt
# remove host syntax and clean file
sed -i 's/0.0.0.0//g' adsList.txt
sed -i 's/127.0.0.1//g' adsList.txt
sed -i 's/localhost//g' adsList.txt
sed -i 's/.localdomain//g' adsList.txt
# remove commentary after domain name
sed -i 's/#.*//' adsList.txt
# remove tabulation character and carriage return
sed -i "s/\t//g" adsList.txt
sed -i "s/\r//g" adsList.txt
# remove useless space
sed -i 's/ //g' adsList.txt
# remove empty lines
sed -i '/^\s*$/d' adsList.txt
# add prefix and suffix for unbound
sed -i "s/.*/local-zone: \"&\" static/" adsList.txt
cat adsList.txt >> adsListFinal.txt
done
# order list by name, it didn't cost a lot and could maybe increase unbound performance
sort adsListFinal.txt -o adsListFinal.txt
# remove duplicate ads domain in order to avoid warning with Unbound
uniq adsListFinal.txt > adslist.txt
# remove tempory files
rm adsListFinal.txt adsList.txt

kemudian eksekusi ./convert.sh 
dari hasil script di atas akan muncul file adsList.txt, kemudian pindahkan ke /etc/unbound/unbound.conf.d/
kemudian laukan pengecekan

root@DNS-20-10:/home/rahox # unbound-checkconf
unbound-checkconf: no errors in /etc/unbound/unbound.conf

jika dipastikan tidak error silahkan reload atau restart unbound dengan cara

unbound-control reload 

atau

unbound-control restart

Jika sudah, lakukan pengecekan seperti berikut, pastikan /etc/resolv.conf sudah diarahkan ke 127.0.0.1

root@DNS-20-10:/home/rahox # nslookup xnxx.com
Server:         127.0.0.1
Address:        127.0.0.1#53
** server can't find xnxx.com: NXDOMAIN

source :https://blog.mirabellette.eu/index.php?article17/block-advertise-domain-name-with-unbound