Threshold based alerting on netflow data has been proved to be ineffective even for a binary classification for DDoS/not DDoS flows. This brief investigation wants to show that common patterns emerge from analysis on aggregated netflow data that can allow automatic identification of such patterns using machine learning.
There are plenty of tools to monitor network interfaces on a linux machine (es. iftop, iptraf). One day I needed a way to monitor network parameters of tens of linux firewalls remotly and without installing anything on targets. After evaluated existent solutions I wrote rim.
Many already know that netcat (or nc, its shortcut defined on many systems) has been defined the Sysadmin' Swiss Army knife. Lets take a look at some tips useful to test if some ports are really opened on a system.
If you are tryng to:
# pip install MySQL-python
in a system where MySQL is installed manually (not with a packet manager) maybe you'll get into my same troubles.
There is no packages (client or server) for CentOS yet but you can use an rpm for Fedora you can get here.
Grab one not too new. I used the one for Fedora 15 for a CentOS 6.2. After that to use nbd-client you need the nbd kernel module. Unfortunatly there is no kernel module in this rpm. If you are lucky try as root:
# modprobe nbd
but if you are not you need to find nbd.ko somewhere else (for example inside a kernel' rpm) or decide to compile it by youself.
After you got the module:
# insmod nbd.ko
Now you can use nbd-server and nbd-client.
Contents
Social "things" have replaced traditional ways of communication like sms and mails. One day i needed a new, fast, mobile and snappy way of communication. So i made Comunikino.
It consists of two main parts, a script in python that runs on the PC and a box that goes on desktop connected through an USB cable used for data and power (no external power needed if you use a 500mA capable usb port!). You need to create a mailbox for Comunikino with pop access, i raccomend to use gmail as many providers don't offer pop access for free mailboxes.
Using Comunikino is simple, just send a mail to its mailbox and the subject will be printed to its LCD (max 16 chars). Who reads the message can use one of three Comunikino's buttons to send a mail back to the address setted in python script to say yes, no or readed (this button can also to be used to say: “hey! I'm thinking of you”). Simple, isn't it?
Do you believe that? Google made up a Chrome (and Chromium) extension to let you bypass Analytics's tracking code on every website you visit. So if you work on a website and don't want to perturb site stats or if you are jealous about your privacy this is for you! You can download it on Chrome web store.
Let's see how easy it is to communicate with an Arduino 2009 board and the pySerial python's module. What we will do is to use python to send characters serially to an Arduino 2009 which will send them back.
Everything here has a demonstration purposes only, since the code proposed here has no specific function but you can easily modify it to get something usable for your projects (take a look at Comunikino for example). The methods has been tested on Ubuntu 10.04 but should work on other distributions as on various Windows and Mac OSX with minimal modification.
To carry out my plan of a DIY home automation system (domotics) I am experimenting the use of the EIA 485 communications protocol. Having wired the house with lots of cat5 cables and knowing that two of the four pairs of which it is composed are not used for the 100Mbps, I tried to pass the signal on these wires to see if the two streams (TCP/IP and the EIA 485) could coexist without major problems. Here's how the test was performed.