Forwarded from UNDERCODE NEWS
The new lunar landing proposal by NASA outlines seven science priorities and intends to establish a lunar base camp.
#international
#international
β β β Uππ»βΊπ«Δπ¬πβ β β β
π How to fix the [warn] could not build optimal proxy_headers_hash error
1) How to solve the problem: βnginx: [warn] could not build optimal proxy_headers_hash, you should increase either p roxy_headers_hash_max_size: 512 or proxy_headers_hash_bucket_size: 64; ignoring proxy_headers_hash_bucket_size error β.
2) If you have an Nginx proxy that proxies multiple sites, you may encounter the error shown above in one way or another.
3) To fix the error, you will need to edit the files that serve the proxy sites.
4) EXAMPLE :
Mine were located in the /etc/nginx/sites.d/ directory.
5) In each of these files, edit your "location" part as shown below:
location ~ /.git {
deny all;
}
proxy_redirect off; proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
6) You can use other values for the numbers as you wish
proxy_headers_hash_max_size 512;
proxy_headers_hash_bucket_size 128;
proxy_redirect off;
proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
7) After you've finished editing this small part, check your Nginx configuration by running the nginx -t command.
sudo nginx -t
You should get the following output:
8) nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
WEll done!
β β β Uππ»βΊπ«Δπ¬πβ β β β
π How to fix the [warn] could not build optimal proxy_headers_hash error
1) How to solve the problem: βnginx: [warn] could not build optimal proxy_headers_hash, you should increase either p roxy_headers_hash_max_size: 512 or proxy_headers_hash_bucket_size: 64; ignoring proxy_headers_hash_bucket_size error β.
2) If you have an Nginx proxy that proxies multiple sites, you may encounter the error shown above in one way or another.
3) To fix the error, you will need to edit the files that serve the proxy sites.
4) EXAMPLE :
Mine were located in the /etc/nginx/sites.d/ directory.
5) In each of these files, edit your "location" part as shown below:
location ~ /.git {
deny all;
}
proxy_redirect off; proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
6) You can use other values for the numbers as you wish
proxy_headers_hash_max_size 512;
proxy_headers_hash_bucket_size 128;
proxy_redirect off;
proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
}
7) After you've finished editing this small part, check your Nginx configuration by running the nginx -t command.
sudo nginx -t
You should get the following output:
8) nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful
WEll done!
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
It's rumored that Russian hackers have infiltrated the U.S. Department of Treasury/Commerce network for email tracking.
#CyberAttacks
#CyberAttacks
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Auto schedules and executes queries :
A service that schedules and executes queries against a relational database and writes the output to files on the local filesystem or S3:
The minimum requirement is a config.yml file. The main sections of the config include:
sqlagent - The connection info to the SQL Agent service.
connections - A map of database connection info by name.
queries - An array of queries defined inline or referencing a file.
schedule - The schedule to run this set of queries.
Additional options are provided to define where files are written and their format.
D e p l o y m e n t :
1) download https://github.com/chop-dbhi/sql-extractor
The dep tool is used for managing dependencies. Install by running:
2) deploy
go get github.com/golang/dep/...
3) Then run the following to install the dependencies:
dep ensure
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦Auto schedules and executes queries :
A service that schedules and executes queries against a relational database and writes the output to files on the local filesystem or S3:
The minimum requirement is a config.yml file. The main sections of the config include:
sqlagent - The connection info to the SQL Agent service.
connections - A map of database connection info by name.
queries - An array of queries defined inline or referencing a file.
schedule - The schedule to run this set of queries.
Additional options are provided to define where files are written and their format.
D e p l o y m e n t :
1) download https://github.com/chop-dbhi/sql-extractor
The dep tool is used for managing dependencies. Install by running:
2) deploy
go get github.com/golang/dep/...
3) Then run the following to install the dependencies:
dep ensure
β β β Uππ»βΊπ«Δπ¬πβ β β β
GitHub
GitHub - chop-dbhi/sql-extractor
Contribute to chop-dbhi/sql-extractor development by creating an account on GitHub.
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to properly protect sysctl on Linux from spoofing and Syn flooding ??
1) This configuration will be as follows:
Disable IP forwarding
Disable packet forwarding
Disable accepting ICMP redirects
Enable protection against incorrect error messages
What you need:
Linux
2) User with sudo privileges
Note: I will be demonstrating an example on Ubuntu Server 18.04, but the process is the same for most Linux distributions.
3) How to edit sysctl config file
Log into your Linux server or desktop and open a terminal window.
4) In the terminal enter the command:
sudo nano /etc/sysctl.conf
5) First required parameter:
# net.ipv4.ip_forward = 1
change to:
net.ipv4.ip_forward = 0
6) Next line:
# net.ipv4.conf.all.send_redirects = 0
change to:
net.ipv4.conf.all.send_redirects = 0
7) Find the line:
# net.ipv4.conf.all.accept_redirects = 0
change to:
net.ipv4.conf.all.accept_redirects = 0
8) Add the following line below this:
net.ipv4.conf.default.accept_redirects = 0
9) Finally, add the following lines to the end of the file:
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 3
net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_recv = 45
The above settings do the following:
10 ) Includes protection against incorrect error messages
Enable SYN cookies to prevent the server from dropping connections when the SYN queue is full
Increase SYS queue size to 2048
W akryvayut state SYN_RECV compound pre
Decrease SYN_RECV timeout value to help mitigate SYN flood attack
Save and close the file.
11) How to reload the configuration
You can reload the configuration with the command:
sudo sysctl -p
I found that the sysctl -p command did not load the tcp_max_syn_backlog correctly.
Only after a reboot was the value 2048 added.
So, after running the sudo sysctl -p command, enter the command:
sudo less / proc / sys / net / ipv4 / tcp_max_syn_backlog
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦π§ How to properly protect sysctl on Linux from spoofing and Syn flooding ??
1) This configuration will be as follows:
Disable IP forwarding
Disable packet forwarding
Disable accepting ICMP redirects
Enable protection against incorrect error messages
What you need:
Linux
2) User with sudo privileges
Note: I will be demonstrating an example on Ubuntu Server 18.04, but the process is the same for most Linux distributions.
3) How to edit sysctl config file
Log into your Linux server or desktop and open a terminal window.
4) In the terminal enter the command:
sudo nano /etc/sysctl.conf
5) First required parameter:
# net.ipv4.ip_forward = 1
change to:
net.ipv4.ip_forward = 0
6) Next line:
# net.ipv4.conf.all.send_redirects = 0
change to:
net.ipv4.conf.all.send_redirects = 0
7) Find the line:
# net.ipv4.conf.all.accept_redirects = 0
change to:
net.ipv4.conf.all.accept_redirects = 0
8) Add the following line below this:
net.ipv4.conf.default.accept_redirects = 0
9) Finally, add the following lines to the end of the file:
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.tcp_syncookies = 1
net.ipv4.tcp_max_syn_backlog = 2048
net.ipv4.tcp_synack_retries = 3
net.ipv4.netfilter.ip_conntrack_tcp_timeout_syn_recv = 45
The above settings do the following:
10 ) Includes protection against incorrect error messages
Enable SYN cookies to prevent the server from dropping connections when the SYN queue is full
Increase SYS queue size to 2048
W akryvayut state SYN_RECV compound pre
Decrease SYN_RECV timeout value to help mitigate SYN flood attack
Save and close the file.
11) How to reload the configuration
You can reload the configuration with the command:
sudo sysctl -p
I found that the sysctl -p command did not load the tcp_max_syn_backlog correctly.
Only after a reboot was the value 2048 added.
So, after running the sudo sysctl -p command, enter the command:
sudo less / proc / sys / net / ipv4 / tcp_max_syn_backlog
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Eight departments: In 2025, express e-commerce mail can effectively no longer be repackaged.
#Updates
#Updates
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How do I know which process is listening on a specific port in the Windows operating system?
This article will help you find the name of the process listening on a specific port on a Windows system.
Sometimes, when installing an application, you might encounter a " port in use " problem .
You can choose one of the two methods below.
The first method uses netstat to find the pid of the process listening on a specific port, then uses the task list to find the process name by pid.
2) Using the command line
Use the following command to find out the process id (pid) listening on port 433 .
You can change this value to look for a different port.
netstat -aon | findstr ": 443" | findstr "LISTENING"
Conclusion:
TCP 0.0.0.0:443 0.0.0.0 0 LISTENING 2180
TCP 127.0.0.1:44312 0.0.0.0 0 LISTENING 4620
TCP [::]: 443 [::]: 0 LISTENING 2180
2) The last column of the output displays the process ID.
The output will shows on your screan the pid is 2189 and 4620 for processes listening on port 443.
Use this process ID with the task list command to find the process name.
tasklist / fi "pid eq 2190"
3) Using PowerShell Get-Process
The second method uses a PowerShell command to identify the process running on a specific port on Windows.
Start a PowerShell terminal and run the following command to find the name of the process running on port 443.
You can change the port number to check for other ports.
Get-Process -Id (Get-NetTCPConnection -LocalPort 443) .OwningProcess
β β β Uππ»βΊπ«Δπ¬πβ β β β
π¦How do I know which process is listening on a specific port in the Windows operating system?
This article will help you find the name of the process listening on a specific port on a Windows system.
Sometimes, when installing an application, you might encounter a " port in use " problem .
You can choose one of the two methods below.
The first method uses netstat to find the pid of the process listening on a specific port, then uses the task list to find the process name by pid.
2) Using the command line
Use the following command to find out the process id (pid) listening on port 433 .
You can change this value to look for a different port.
netstat -aon | findstr ": 443" | findstr "LISTENING"
Conclusion:
TCP 0.0.0.0:443 0.0.0.0 0 LISTENING 2180
TCP 127.0.0.1:44312 0.0.0.0 0 LISTENING 4620
TCP [::]: 443 [::]: 0 LISTENING 2180
2) The last column of the output displays the process ID.
The output will shows on your screan the pid is 2189 and 4620 for processes listening on port 443.
Use this process ID with the task list command to find the process name.
tasklist / fi "pid eq 2190"
3) Using PowerShell Get-Process
The second method uses a PowerShell command to identify the process running on a specific port on Windows.
Start a PowerShell terminal and run the following command to find the name of the process running on port 443.
You can change the port number to check for other ports.
Get-Process -Id (Get-NetTCPConnection -LocalPort 443) .OwningProcess
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
Google & youtube
Having maintenance now, for updates, use vpn to Saudy, and it workβs well
Having maintenance now, for updates, use vpn to Saudy, and it workβs well
Forwarded from UNDERCODE NEWS
Forwarded from UNDERCODE NEWS
An attack or technical problem? Google server downtime issue, and all google services such Gmail, YouTube, Google Docs.. down!
#Updates
#Updates
