rolfs.no: Experiencing weblogging

I got this error after a upgrade of perl on my ubuntu desktop station:

rolf@untuome:~/.xmltv$ tv_grab_no_gfeed --output /home/rolf/.xmltv/tv_grab_no_gfeed.xml
/usr/bin/perl: symbol lookup error: /home/rolf/.perl/lib/perl5/i486-linux-gnu-thread-multi/auto/List/Util/Util.so: undefined symbol: Perl_Tstack_sp_ptr
rolf@untuome:~/.xmltv$ mv /home/rolf/.perl/lib/perl5/i486-linux-gnu-thread-multi /tmp
rolf@untuome:~/.xmltv$ tv_grab_no_gfeed --output /home/rolf/.xmltv/tv_grab_no_gfeed.xml
downloading listings

If you’re new here, you may want to subscribe to my RSS feed.
Thanks for visiting!

A ssh tunnel will slow down the mouse pointer which can result in a slow response on the client machine. But it will encrypt and secure the input information like your passwords typed on the keyboard. Synergy sends these unencrypted over the network.

Here is how to do it:

On the machine you are using(typing on), run synergy bound to the lo (localhost) interface. Synergys will act as a keyboard and mouse server for the machines you want to control. Do it like this:

synergys -a localhost

Remember that you need to have a /etc/synergy.conf for synergys: On the machine you using(typing on). There you need to specify that SynclientName has access to connect to you.

Then, start the ssh port-tunnel by forwarding port 24800 on localhost yourmachine connecting to it’s own localhost on port 24800:

ssh -R localhost:24800:localhost:24800 yourmachine

Start the synergy client on the machine you want to remotely control and connecting it to localhost (which is ssh-tunneled to yourmachine)

DISPLAY=:0 sudo synergyc -n SynclientName localhost

This was only a small howto on connecting two linux machines with synergy.

Got source files from
https://launchpad.net/ubuntu/+source/f-spot

Add the lines above to ubuntu sources..

echo "deb http://ppa.launchpad.net/ruben/ubuntu hardy main" | sudo tee -a /etc/apt/sources.list
echo "deb-src http://ppa.launchpad.net/ruben/ubuntu hardy main" | sudo tee -a /etc/apt/sources.list

Install missing libs:

apt-get install cli-common-dev mono-gmcs libmono-dev libmono-system-runtime2.0-cil 
apt-get install libgnome-keyring1.0-cil libusb-dev libgphoto2-2-dev 
apt-get install libglitz1-dev libglitz-glx1-dev gtk-sharp2-gapi mono-mcs
apt-get install gtk-sharp2-gapi
apt-get install libglib2.0-cil

Clean up the mess and rebuild it..

rm -rf f-spot-0.5.0.3
dpkg-source -x f-spot_0.5.0.3-0ubuntu4.dsc
cd f-spot-0.5.0.3
dpkg-buildpackage -rfakeroot -b

I’m using Firefox 3.0b5.. and suddenly it crashed on me.. Guess that’s in it self is no surprise.. But this time, it would not start up again when i clicked on the icon again.. I guess a reboot of my Ubuntu would have fixed the problem…

But here is how I temp-fixed it
Continue reading ‘Firefox 3.0 crashed and would not start up again’

A predictability of the random number is not good. It makes the randomness predictable, which makes it just predictable. This means that it is a lot easier to guess the key a user has created to gain access to a remote system trough services using openssl keys.

http://lists.debian.org/debian-security-announce/2008/msg00152.html

openssl is affected with vulnerability: “predictable random number generator”.
It is a Debian-specific remote vulnerability. It got CVE Id: CVE-2008-0166.

Here is a perl script that holds all the fingerprints of predictable random number (so called compromised. Around 262 thousand keys).
http://security.debian.org/project/extra/dowkd/dowkd.pl.gz

SSH (OpenSSH)

I removed the fingerprints for obvious security reasons: (You should run as root and without piping to the sed command)

root@untuome:/# ssh-vulnkey -a | sed  s/..:..:..:../xx:xx:xx:xx/gi
Not blacklisted: 2048 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx /etc/ssh/ssh_host_rsa_key.pub
Not blacklisted: 1024 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx /etc/ssh/ssh_host_dsa_key.pub
COMPROMISED: 2048 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx /home/user/.ssh/id_rsa.pub
Unknown (no blacklist information): 1024 xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx /home/user/.ssh/authorized_keys

List all users using ssh keys:

ls -al /root/.ssh/authorized_keys
ls -al /home/*/.ssh/authorized_keys

Fix: remove all authorized_keys that are compromised from the system

I will add more info about OpenVPN and other openssl key software here, but I wonder if you know any other ways to clean out and fix a system for these ssl key security issues?

After upgrading to the new Ubuntu 8.04 LTS, I’ve got some minor problems with my browser.

I guess that problems I’m experiencing now is going to be better later.

Look at the list of plugins/extensions I have, few of them are ready for the 3.0 version of Firefox:
Continue reading ‘Firefox 3.0 beta 5 on Ubuntu 8.04′

For sysadmins: I will give you an idea of how to test for week passwords on several servers.

First, collect all /etc/shadow from every server into a single directory (”passwordcheck”) on your own machine and name each of the files like the servername.

I assume that you have a ssh key installed on your user account on all of your servers.
Insecure: The ssh-commands below might give away your password to other users.
Continue reading ‘Run john the ripper on several servers / password files’

I wrote this liferea syncing script for liferea yesterday. It seems to work as I wanted.. When I’ve got some problems, the backup that this script implements helps me solving the issues. I’m pleased with how this script makes my RSS more joyful.

I hope you can get some good ideas or that this script helps you sync your RSS feeds.
Continue reading ’sync-liferea.sh syncing script’

I’m going to make some ideas/thoughts about how to synchronize what you have read of your RSS feeds between two computers. I have wanted to do this for a while now.

First part is if you want to do the sql-stuff to export and import the items that you have marked as read.

Alternative1: Export a list of read items from liferea.db on pc1 and update items in liferea.db on pc2
First, make sure to turn of Liferea on both computers. It locks the sqlite database so it is not possible for us to export the list of items that are read on pc1 or update them on pc2.
Make sure to have backup of both computers. I just say this so you don’t blame me.
Continue reading ‘Sync Liferea – How to synchronize what items you have read between two pcs’

The bash script /usr/bin/liferea-add-feed is adding the url you send as an argument to your list of rss feeds in Liferea. If liferea is not running it will tell you “Liferea is not running! You need to start it first.” but if you did like me, the url is passed from firefox to the liferea-add-feed -script without you seeing that anything goes wrong. To avoid this, I changed the liferea-add-feed script so it makes sure that liferea is running before trying to add the RSS feed.
Continue reading ‘liferea-add-feed – Start Liferea if it is not running to add RSS feed’