Saturday, February 28, 2009

SecurixNSM 1.3

Securix-NSM is the successor of Knoppix-NSM. It's an extension of our NSMnow technology which has been integrated with the universal Debian foundation with a range of other tools to work from. Like it's predecessor Securix-NSM is dedicated to providing a framework for individuals wanting to learn about Network Security Monitoring (NSM) or who want to quickly and reliably deploy a NSM capability in their network.

Securix-NSM is now based on Debian Live, which means that you can test all the tools in a live Debian session running on the CD without the need for a HardDisk Drive (HDD) installation.

You can download ISO here.

Monday, February 16, 2009

Enjoy your Facebook!!!

Alright so here’s how to get into anyone’s tagged photos even if they are private for you.

The only restriction is that they have to actually have tagged photos, either tagged by others or tagged by themselves. You can only see the last 20 tagged photos by others and 20 tagged photos of themselves before an error pops up.

If you want to see the steps, here .

Saturday, February 07, 2009

Howto: Installing Squid Proxy in pfSense

Setup a Squid Transparent Proxy using pfSense

What is Pfsense?
pfSense is a free, open source customized distribution of FreeBSD tailored for use as a firewall and router. In addition to being a powerful, flexible firewalling and routing platform, it includes a long list of related features and a package system allowing further expandability without adding bloat and potential security vulnerabilities to the base distribution.

What is Squid?
Squid is a proxy server and web cache daemon. It has a wide variety of uses, from speeding up a web server by caching repeated requests, to caching web, DNS and other computer network lookups for a group of people sharing network resources, to aiding security by filtering traffic.


This howto describes how to install and configure Squid using pfSense.
1.Firstly, you need to install pfSense. See documentation here.
2.After you have installed pfSense, you need to access pfSense webGUI using your Pfsense IP address, e.g: . Enter username and password for your pfSense webGUI and you should see this window (Status -> System). This is where we start.
3.Now go to the System tab and choose the Packages. Scroll down to the squid package and then you can install by clicking + (Add) button on the right of that package.
4.Now, you are installing Squid package into your pfSense.After installation finished, you can start configuring your Squid proxy server.
5.Now, go to Services -> Proxy server tab. After that, it will show you General Setting tab for Squid. You need to set Proxy interface, Allow users on interface, Transparent Proxy, Log store directory, Proxy port and other settings. Hit the Save button at the end of the page to save your proxy setting.
6.Then, go to Cache Management tab. You need to set Hard disk cache size, Hard disk cache location, Memory cache size, Minimum object size, Maximum object size, and other setting that you want to set. Hit the Save button.
7.Lastly, you need to set Access Control for Proxy server. Hit Save button to save configuration.
8.Now, you have finished installing and configuring Squid transparent proxy using pfSense. Your Squid proxy server is ready to be used.

Setup a VideoCache on pfSense

This howto covers the process of installing videocache on pfSense. Now, you have already installed Squid proxy on pfSense.
1.Firstly, you need to install Python.
•Use Shell terminal or ssh to PFsense and use the following command:
# pkg_add -r python
•Install the additional needed libraries.
# pkg_add -r py25-bsddb
# pkg_add -r py25-gdbm
# pkg_add -r py25-sqlite3
# pkg_add -r py25-tkinter

2.After that, install URLGrabber.
•Download the latest version of urlgrabber from URLGrabber Download Archive.
# fetch http:/
# tar -xzf urlgrabber-x.x.x.tar.gz
# cd urlgrabber-x.x.x
# python bdist_rpm
# python install

3.Then, install Iniparse.
Download the latest version of python-iniparse from Iniparse Project Website.
# fetch http:/
# tar -xzf iniparse-x.x.x.tar.gz
# cd iniparse-x.x.x
# python bdist_rpm
# python install

4.Then, install VideoCache.
# fetch http:/
# tar -xvzf videocache-x.x.tar.gz
# python install

5.Configure VideoCache
•Using VI edit the /etc/videocache.conf file and edit the following options in the
-proxy: Set the IP address and port on which squid is listening on PFsense.
-cache_host: The IP address of PFsense.
6.Configure Squid
Now add the following lines to /usr/local/pkg/ after acl.

# --BEGIN-- videocache config for squid
url_rewrite_program /usr/bin/python /usr/share/videocache/
url_rewrite_children 10
acl videocache_allow_url url_regex -i \.youtube\.com\/get_video
acl videocache_allow_url url_regex -i \.cache[a-z0-9]?[a-z0-9]?[a-z0-9]?
acl videocache_allow_url url_regex -i \.cache[a-z0-9]?[a-z0-9]?[a-z0-9]?
acl videocache_allow_url url_regex -i proxy\-[0-9][0-9]\.dailymotion\.com\/
acl videocache_allow_url url_regex -i [a-z0-9][0-9a-z][0-9a-z]?[0-9a-z]?[0-9a-
acl videocache_allow_url url_regex -i bitcast\.vimeo\.com\/vimeo\/videos\/
acl videocache_allow_url url_regex -i va\.wrzuta\.pl\/wa[0-9][0-9][0-9][0-9]?
acl videocache_allow_url url_regex -i \.files\.youporn\.com\/(.*)\/flv\/
acl videocache_allow_url url_regex -i \.msn\.com\.edgesuite\.net\/(.*)\.flv
acl videocache_allow_dom dstdomain
acl videocache_deny_url url_regex -i http:\/\/[a-z][a-z]\.youtube\.com http:\/
url_rewrite_access deny videocache_deny_url
url_rewrite_access allow videocache_allow_url
url_rewrite_access allow videocache_allow_dom
redirector_bypass on
# --END-- videocache config for squid

• Save and restart squid service and you have videocache running on your PFsense.
P/s: You need to disable the https option in the General Setup Settings.