Technology Insights

Install html5lib And markdown2 Python Packages On CentOS Linux

I needed to install some python related packages for a project I was testing out. The particular project required html5lib and markdown2 to be installed using the easy_install command. First make sure that you have the python-setuptools packages installed so you can use the easy_install command. If you do not have this package installed you can follow the directions here to get easy_install working. Once the easy_install command is working properly run the commands below to install html5lib and markdown2.

Details
Technology Insights

Failed to emerge dev-python/beautifulsoup-3.1.0.1-r1

This morning I decided to make the big switch to Python 3.0 on my Gentoo Laptop. I have been avoiding it since there are some changes to 3.0 that are not backwards compatible with scripts and tool written in 2.6. The emerge of Python 3.0 went fine but I had some issues with beauitfulsoup which is a python dependency in many tools including fast-track which is a great tool written by my friend Dave Kennedy (ReL1k). As always if you have any questions regarding this or any other issues please make a post in the Question section of the site.

Details
Technology Insights

Using an Adobe Exploit in a Email Attack

This attack takes advantage of a vulnerability in Adobe Reader and Acrobat. The official release is here. Adobe has been informed of this vulnerability for well over a month now and has issued a statement that it will release a fix on January 14th. It is a scary thought that this exploit will be live and in the wild for almost 2 months before Adobe decides to fix it.  I am making this post in order to make people aware of how such a attack can take place and how easy it is to implement.

Details
Technology Insights

Getting Started with Meterpreter

I have recently had a lot of questions on how to effectively use the Meterpreter agent contained in the Metasploit framework. I am by no means a expert at it however I have a pretty good working knowledge of it use. I will try to give a little insight into its use. If you have a more advanced or specific question concerning Meterpreter please feel free to post in the question section and I or someone else will be more than happy to try to answer your question.

Details
Technology Insights

Configure Logrotate To Rotate And Flush MySQL Logs Without A Password

If you have the resources (CPU + RAM) available on your server then its can be a great troubleshooting tool if you enable MySQL logging which includes server messages, SQL query logs, and slow query logs. If you do not have the resources I would suggest only enable minimal logging such as only server messages and the slow query log since enabling all queries to be written to a file can become expensive rather quickly. Below I discuss enabling three different types of MySQL logging, adding a MySQL configuration file to logrotate, and configuring root to run mysqladmin commands without having to type the password out each time.

Details