MENTAL NOTE – Setup bridge device on centos, rhel, scientific linux

FROM: http://www.banym.de/linux/centos/setup-bridge-device-on-centos

1. Install all needed packages:

yum install bridge-utils

yum install tunctl

2. Disable NetworkManager and enable network at boot time:

chkconfig NetworkManager off

chkconfig –levels 35 network on

/etc/init.d/NetworkManager stop

/etc/init.d/network restart

3. Create br0 configuration

vi /etc/sysconfig/network-scripts/ifcfg-br0

Change following configuration to your needs.

DEVICE=br0

TYPE=Bridge

BOOTPROTO=static

DNS1=192.168.0.1

GATEWAY=192.168.0.1

IPADDR=192.168.0.100

NETMASK=255.255.255.0

ONBOOT=yes

SEARCH=”example.com”

4. Modify eth0 configuration:

vi /etc/sysconfig/network-scripts/ifcfg-eth0

DEVICE=eth0

HWADDR=00:1e:90:f3:f0:02

ONBOOT=yes

TYPE=Ethernet

IPV6INIT=no

USERCTL=no

BRIDGE=br0

5. Restart network or reboot machine

/etc/init.d/network restart

or

reboot

Credits to: http://www.banym.de

Converting SSL-certificates from CRT format to PEM

MENTAL NOTE from http://moze.koze.net/?p=81
Converting SSL-certificates from CRT format to PEM

Dovecot, for example, seems to expect pem-files, while RapidSSL only issues
crt-files. The solution? Use OpenSSL to convert (via the DER-format) to pem:

openssl x509 -in input.crt -out input.der -outform DER

then

openssl x509 -in input.der -inform DER -out output.pem -outform PEM

Google Galaxy Nexus security flaw using face unlock

Hello everyone,

Today I was playing MW3 on my Playstation3 and I thought it would be nice to have the online players face somewhat showing on the screen, I was imagining how this could be done so I look for inspiration on my newest gadget the GALAXY NEXUS which just arrived a few days ago.

One of the functionalities I like the most is the face recognition feature and I use it from day one.

But first let me tell you what i think about the Galaxy Nexus, I’m so thrilled with it that i don’t see any negative spots yet, the one i can remember it’s also a positive thing and is it’s size.

Apart from that the screen is simply astonishing and the speed and easy to use make this phone a rock star, I know this isn’t an objective review on the mobile phone but this post is not intended to be a review.

On the other end there is a functionality that is also a very big security flaw – FACE UNLOCK.

Google warns you about face recognition not being the safest of methods to unlock your phone, but nevertheless you can pass the locking feature just by using any other photo of you.

I used my facebook.com photos to unlock the phone and I had about 80% success with a couple of face photos, nevertheless I didn’t succeed with the profile photo (maybe the resolution was too low, on the smaller picture). This trick took me less than a minute to accomplish.

It’s not an high tech hack, and it probably works if your phone is stolen or lost, but it won’t save you from your jealous girlfriend (or boyfriend), won’t save you from your dads or sons. In the end it’s way too easy for someone familiar with you to access your personal data if you use face unlock.

Maybe this could be fixed using the phone proximity sensor that could be used to determine the distance of the phone to the face (i was only successful using the phone about 10-15cm from the monitor), also recording the phone relative inclination with the face and finally by detecting any type of movement on the moment the face is being verified.

Despite one of the biggest innovations being a big “no go” at least in my opinion, I still love my Nexus.

That’s all folks,

Pedro Oliveira

Qualcomm, Inc. Sony Gobi 2000 Wireless Modem – OpenSuSE 12.1 – Vaio VPCSB

sony-vaio-vpcsb16fg-2

Hello,

Recently I’ve updated my openSuSE 11.4 to the latest openSuSE 12.1, it was a hassle free upgrade and my system is running smoothly, nevertheless I didn’t use one of my favorite features on this laptop, the built-in GSM card.
Today I needed it and, bummer,  it didn’t work, even if I could see it in network manager, I remembered I didn’t install the firmware (this card needs a firmware to be inserted every time the device boots). So I put the files in /lib/firmware/gobi and run gobi_loader it ran just perfect.
Next i reboot the laptop, but it didn’t load the firmware automatically, I’ve checked udev and the entry was missing.

So in order to use the Qualcomm, Inc. Sony Gobi 2000 Wireless Modem with the Vaio VPCSB you’ll need:

Install gobi_loader

sudo zypper in gobi_loader

Copy the firmware files to /lib/firmware/gobi (you can find these files on the net (i won’t put them here because of license issues) the names;

amss.mbn apps.mbn UQCN.mbn

With the latest gobi_loader from SuSE it’s all. But it still doesn’t work do the following:

Create a new udev rule file (with joe, vi, kwrite, gedit, etc), just don’t forget you must be root or use sudo:

vi /etc/udev/rules.d/61-gobi.rules

Content:

# udev rules for firmware loading on qualcomm gobi devices

ACTION==”add”, SUBSYSTEM==”tty” KERNEL==”ttyUSB*” GOTO=”gobi_rules”

GOTO=”gobi_rules_end”

LABEL=”gobi_rules”
ATTRS{idVendor}==”05c6″, ATTRS{idProduct}==”9225″, RUN+=”gobi_loader -2000 $env{DEVNAME} /lib/firmware/gobi”
LABEL=”gobi_rules_end”

Cheers,
Pedro Oliveira

Click to access the login or register cheese