Miscellaneous work and pages

These pages are used to store informations on misc subjects: howtos, useful commands, scrips, configuration, etc.

Debian

• Installing a build daemon (buildd)

GDB

• Scripting GDB

NuFW

NuFW dedicated page

Prelude

As a debian developer, I'm also maintaining the complete Prelude-IDS suite. Quoting the website:

**

Prelude is an Hybrid IDS framework, that is, it is a product that enable all available security application, be it opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard, that enables different kinds of sensors to generate events using an unified language.

Prelude benefits from its ability to find traces of malicious activity from different sensors (Snort, honeyd, Nessus Vulnerability Scanner, Samhain, over 30 types of systems logs, and many others) in order to better verify an attack and in the end to perform automatic correlation between the various events.

Prelude is commited to providing an Hybrid IDS that offers the ability to unify currently available tools into one, powerful, and distributed application.

**

Debian packages for sid (unstable) are sent to main, so you should be able to get them using apt-get install prelude-lml, for ex. People wanting to use the most recent packages can use http://packages.inl.fr/stable/ as a source for debian/stable. To use it, just add the following line to yout /etc/apt/sources.list file:

deb http://packages.inl.fr stable/

For a complete installation guide on a Debian system, see Howto install (a recent version of) Prelude on Etch using Debian Packages.

Currently, some work is needed to add correct dabatase support (especially for PostgreSQL), to fix permissions, and to ease installation by adding an auto-registration for sensors.

I'm maintaining some backports for etch (using a buildd). If some people are willing to maintain packages for Ubuntu, Mandriva or other distributions, just contact me so we can share some work.

• Scripting prelude with Perl (to send OcsInventory alerts to prelude in IDMEF format)
• Howto install (a recent version of) Prelude on Etch using Debian Packages
• Reverse Relaying
• Various tips : clean up old alerts, etc.

OcsInventory

Open Computer and Software Inventory Next Generation is an application designed to help a network or system administrator keep track of the computers configuration and software that are installed on the network. It also allows deploying softwares, commands or files on client computers.

• OcsInventory tips (howto install debian package with pre-seeded values, etc).

OpenVZ

OpenVZ is an Operating System-level server virtualization solution, built on Linux. OpenVZ creates isolated, secure virtual environments — VEs (otherwise known as virtual private servers, or VPSs) on a single physical server enabling better server utilization and ensuring that applications do not conflict. Each VE performs and executes exactly like a stand-alone server; VEs can be rebooted independently and have root access, users, IP addresses, memory, processes, files, applications, system libraries and configuration files.

• creating a new template
• copying a VPS

PostgreSQL

• Backing up a database
• Stored Procedures: procedural languages, PL/pgSQL
• Performance Tuning
• Various tips