Archives

All posts for the month August, 2009

IFrame Exploits on the rise again – AKA: “Yeah people suck”

Posted by dbcooper on August 27, 2009
Posted in: Network, Security.

! WARNING ! – DO NOT VISIT THE SITES BELOW – ! WARNING !

I noticed some Pakistan site had pingbacks for some articles we wrote, but no comments from the person that copy and pasted them (verbatim) on their site.

Well, being the person that I am, I fired up “Wireshark” on my Linux box (of course) to investigate their site further.

I noticed they had various other sites tied to the same domain, so I visited another one (other than the blog) and low and behold something was a little fishy.

Their “photo” site tried to launch a little gift for me……an “IFrame exploit” and if you’re running Windows you get a special prize for the visit…..a worm.  ;0)

Continue reading “IFrame Exploits on the rise again – AKA: “Yeah people suck”” »

RHEL 5.3 and Depsolve problems in Yum

Posted by willc on August 25, 2009
Posted in: RedHat.

During some recent server patches on Red Hat Enterprise Linux 5.3, I kept getting ‘depsolve’ errors on several packages. This was odd, as I had not made any changes to anything, installed anything new, or removed anything.

Turns out this is a known bug in 5.3, and luckily, the solution is simple:

$> yum clean all

Run that, and it refreshes your local repository. The next time you go to update packages your server will refresh everything with the Red Hat respository, and all will be good!

How to recover MySQL’s “root” password quickly

Posted by dbcooper on August 2, 2009
Posted in: Linux, RedHat.

Have you ever been in a rush or just had a complete brain freeze with your MySQL passwords?

Well…..I have.  :)

——————————-

Step # 1 : Stop mysql service

SHELL> /etc/init.d/mysql stop

——————————-

Step # 2: Start to MySQL server w/o password:

SHELL> mysqld_safe --skip-grant-tables &

——————————-

Step # 3: Connect to mysql server using mysql client and setup the new root password:

SHELL> mysql -u root
mysql> use mysql;
mysql> update user set password=PASSWORD("$PASSWORD") where User='root';
mysql> flush privileges;
mysql> quit

——————————-

Step #4: Stop and Restart MySQL Server: (try your new $PASSWORD)

SHELL> /etc/init.d/mysql stop
SHELL> /etc/init.d/mysql start
SHELL> mysql -u root -p

——————————-

Note: There are other ways to reset the password, but I like this one.