admin password

Simple Script – Loop with Execute

adminpassword — Fri, 19 Jun 2009 19:56:54 +0000

simple unix loop

for mv in first second third; do echo `date | awk {'print $1'}` $mv; done

Fri first
Fri second
Fri third

Another one for monitoring the size of a file:

while :; do ls -l myfile.txt | nawk '{if ($5 > 70000) print $5 "\a"  }'; sleep 5; done

Remove Empty Directories

adminpassword — Mon, 15 Jun 2009 03:35:06 +0000

Back to commandlinekungfu. This was a great exercise that I won’t even bother explaining since their blog already has a better explanation than I could ever come up with.

http://blog.commandlinekungfu.com/2009/06/episode-45-removing-empty-directories.html

c:\for /F "delims=?" %i in ('"dir /aD /s /b . | sort /r"') do @rmdir "%i"

$ find . -type d -empty -delete

Policies?

adminpassword — Fri, 12 Jun 2009 18:32:07 +0000

On, the FIRST Podcast interview with Jeff Crume http://media.first.org/podcasts/first_podcast_ep5.mp3, it was mentioned that the IT security groups need to understand the business needs and develop secure solutions for those needs. The argument was that the user will bypass IT security if we simply say “NO”.

Although I basically agree with the premise, I disagree with the expectation that users will do what they want without asking for IT security help. OK, that might happen a few times. However, if there is a policy, and the user bypasses security by ignoring the policy, fire them! If they have management support, fire them too.

It won’t take long until people realize that the policies are expected to be followed. On the other hand, if you have a policy and individuals violate the policy with no consequences, then that creates an environment where policy is voluntary.

So, is the policy voluntary or not?

OpenOtto

adminpassword — Sun, 31 May 2009 03:24:00 +0000

Security Justice, http://securityjustice.com/archives/62, has a great interview with Tiffany Rad on hacking your car. The OnStar discussions were very interesting especially the comments regarding law enforcement being able to listen to private conversations even when OnStar is not active. At least not active in the sense that the owner is paying for the service. Of course a warrant is required.

The meat of the interview was about OpenOtto. As always, anything good, can be used for bad. Imagine this: Suppose a bad guy wants to take care of his wife/girlfriend/enemy, whatever. Suppose their car is setup so that when it goes above 60 MPH, the cruise control engages to a speed of 100 MPH. At the same time, the disk brakes apply slight pressure on the driver side wheels and locks at that level veering toward ongoing traffic. Finally the air bags are deployed.

dumpsec

adminpassword — Mon, 25 May 2009 21:13:33 +0000

Dumpsec is a simple utility by Somarsoft to evaluate permissions and users on a Windows PCs.

The GUI is very helpful. The Report menu displays the different reports available with Dumpsec.
Once you are familiar with the different reports, you can then use the command line utility to automate those reports. Below are a couple of examples for the command line.

dumpsec.exe /rpt=allsharedirs /outfile=c:\myfile.txt /saveas=tsv
dumpsec.exe /computer=\\127.0.0.1 /rpt=users /outfile=c:\myfile.txt /saveas=csv

Notice that the saveas can be tsv or csv depending on your next step.
Also, notice that the second includes a computer using 127.0.0.1. Obviously this is analyzing itself but it can be used on a remote computer.

Favorite New Website

adminpassword — Thu, 14 May 2009 04:46:37 +0000

http://blog.commandlinekungfu.com

Day 1 – This was an easy one. I included an extra that does the same thing. It’s been a while since I ran into this problem but if you need to convert a DOS/Win file to a Unix file, this is fairly easy.

tr ‘\r’ ‘\n’ < file.txt > file.txt
sed ‘s/.$//’

tr is great for converting case as well.
tr “[a-z]” “[A-Z]” < file.txt

A good site specifically for sed one liners, http://sed.sourceforge.net/sed1line.txt

“Cultural Intelligence”

adminpassword — Wed, 13 May 2009 03:10:49 +0000

Since I typically focus on the bits and bytes of technology, today was the first time I heard of Cultural Intelligence (and other related subjects; cultural synergy, cultural IQ, cultural awareness). At first I thought it was about corporate culture or a superset of group dynamics, but that’s only a small part. This is expanded to global cultures.

Considering the world is flat (thanks T.L. Friedman), there is a need to expand our knowledge of different cultures. In the context where cultural awareness was discussed, the focus was on business partners. But we need a more global cultural awareness for life.

I’m reminded of the book from the late 80s, Cultural Literacy. We need Cultural Literacy expanded beyond just an American point of view. I can see several books coming out,
“Cultural Literacy of Pick your country/religion/social group”

admin password

adminpassword — Mon, 11 May 2009 14:16:53 +0000

If your administrator password is password, you may want to change it.

Hilarious!!

adminpassword — Mon, 11 May 2009 03:58:00 +0000