Heartbleed kontrol scripti.

Heartbleed açığını kontrol etmek için bir script.

Python ile yazılmış.

Kullanımı :

[root@management scripts]# python hb-test.py 
Usage: hb-test.py server [options]

Test for SSL heartbeat vulnerability (CVE-2014-0160)

Options:
  -h, --help            show this help message and exit
  -p PORT, --port=PORT  TCP port to test (default: 443)
  -s, --starttls        Check STARTTLS
  -d, --debug           Enable debug output

Script için : Heart Bleed kontrol scripti

Orjinal Link : https://gist.githubusercontent.com/takeshixx/10107280/raw/8052d8479ad0c6150464748d639b0f5e877e8c37/hb-test.py

Not : Sadece HTTPS değil aynı zamanda IMAPS, POP3S, SMTPS protokollerini de kullanıyorsanız muhakkak test edin.

Diğer kontrol adresleri :

https://filippo.io/Heartbleed/
https://lastpass.com/heartbleed/
http://tif.mcafee.com/heartbleedtest

Posted in Genel, Linux on April 14th, 2014 by Kürşad DARA | | 0 Comments

OpenSSL ile 2048 bit CSR oluşturma

Önce key dosyasını oluşturuyoruz.

[root@localhost ~]# openssl genrsa -out keydosyası.key 2048
Generating RSA private key, 2048 bit long modulus
..............................................................+++
...............................................+++
e is 65537 (0x10001)

Eğer yukardaki komuta -des3 gibi bir parametre eklerseniz key dosyanız şifre korumalı olacaktır. Web sunucunuzu yeniden başlattığınızda size bu şifreyi soracaktır. O yüzden çok gerekli olmadığı durumlarda kullanmamak lazım.

[root@localhost ~]# openssl req -nodes -newkey rsa:2048 -keyout keydosyasi.key -out csrdosyasi.csr
Generating a 2048 bit RSA private key
............................................................................+++
..........................................+++
writing new private key to 'keydosyasi.key'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:TR
State or Province Name (full name) [Berkshire]:NA
Locality Name (eg, city) [Newbury]:Istanbul
Organization Name (eg, company) [My Company Ltd]:test
Organizational Unit Name (eg, section) []:IT           
Common Name (eg, your name or your server's hostname) []:www.test.com
Email Address []:info@test.com

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

Bundan sonrasında apache’ye gerekli konfigürasyonu girmek kalıyor.

Posted in Apache, Linux on August 9th, 2010 by Kürşad DARA | | 0 Comments

Categories

Apache (7)

Console (6)

Dfm (2)

Ev Tasarımları (4)

File Systems (1)

Fusion IO (2)

Genel (9)

Java (1)

JavaScript (1)

jQuery (1)

Lighttpd (1)

Linux (55)

LiteSpeed (1)

Mail Servers (2)

MongoDB (2)

MySQL (34)

Nagios (3)

Nesne Tasarımları (1)

Netapp (3)

Nginx (2)

Ofis Tasarımları (1)

PHP (6)

PowerMTA (1)

Proftpd (1)

Scripting (1)

Storage Systems (5)

Tasarım (6)

Veritabanları (7)

Vsftpd (1)

Web Development (6)

Windows (2)

Archives

April 2014

January 2014

November 2013

October 2013

August 2013

May 2013

April 2013

February 2013

December 2012

November 2012

August 2012

July 2012

June 2012

May 2012

April 2012

March 2012

February 2012

January 2012

December 2011

November 2011

September 2011

June 2011

May 2011

April 2011

December 2010

September 2010

August 2010

June 2010

May 2010

April 2010

January 2010

June 2009

April 2009

January 2009

May 2008

April 2008

March 2008

February 2008

January 2008

Links

• Apache
• Bilgi|Akademisi
• Coşkun Sunalı
• Lighttpd
• Memcache
• MySQL
• Php
• Sphinx