Pages

Sunday, August 7, 2022

Fedora 36 : Rootkit Hunter tool.

rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits. It does this by comparing SHA-1 hashes of important files with known good ones in online databases, searching for default directories (of rootkits), wrong permissions, hidden files, suspicious strings in kernel modules, and special tests for Linux and FreeBSD..., see wikipedia .
You can find it on this website.
On Fedora 36 you can search and install with the DNF tool.
[root@fedora mythcat]# dnf search rkhunter
Last metadata expiration check: 3:38:34 ago on Sat 06 Aug 2022 10:35:34 AM EEST.
======================== Name Exactly Matched: rkhunter ========================
rkhunter.noarch : A host-based tool to scan for rootkits, backdoors and local exploits
[root@fedora mythcat]# dnf install rkhunter.noarch
Last metadata expiration check: 3:39:00 ago on Sat 06 Aug 2022 10:35:34 AM EEST.
The first step is to upgrade it and then you can check the system.
[root@fedora mythcat]# rkhunter --propupd
[ Rootkit Hunter version 1.4.6 ]
File created: searched for 179 files, found 139

[root@fedora mythcat]# rkhunter --check
[ Rootkit Hunter version 1.4.6 ]

Checking system commands...

  Performing 'strings' command checks

...
The result can be found on the log file and you can set settings on the conf file type.
[root@fedora mythcat]# vi /var/log/rkhunter/rkhunter.log
[root@fedora mythcat]# vi /etc/rkhunter.conf
Posted by Labels: , , , , , , , , , ,

Thursday, July 21, 2022

Fedora 36 : first steps with the Hy.

Hy is a dialect of the Lisp programming language designed to interact with Python by translating s-expressions into Python's abstract syntax tree (AST). Hy was introduced at Python Conference (PyCon) 2013 by Paul Tagliamonte.
This is quite similar to the old GIMP Script Fu that I've worked with in the past. The syntax assumes a join like tabs in HTML, only we'll use parentheses. I haven't studied in detail the implications it has with the python language, but it certainly wasn't invented for nothing.
First, you need to install it with the pip tool.
[mythcat@fedora ~]$ pip3 install hy --user
Collecting hy
...
Successfully built hy
Installing collected packages: funcparserlib, colorama, hy
Successfully installed colorama-0.4.5 funcparserlib-1.0.0 hy-0.24.0
The I test some examples:
[mythcat@fedora ~]$ hy
Hy 0.24.0 using CPython(main) 3.10.5 on Linux
=> (setv a 1)
=> "hello world"
"hello world"
=> (setv mylist [1 2 3])

=> (get mylist 0)
1
=> (defn greet [name]
...  "Hello "
...  (print "Hello " name))
=> (greet "mythcat")
Hello  mythcat
You can test it online with this online tool:
Posted by Labels: , , , , , , , , , , ,

Saturday, June 11, 2022

Fedora 36 : The zeek tool.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Use the DNF tool to add repo for zeek tool:
[root@fedora home]# dnf config-manager --add-repo https://download.opensuse.org/repositories/security:zeek/Fedora_36/security:zeek.repo

Adding repo from: https://download.opensuse.org/repositories/security:zeek/Fedora_36/security:zeek.repo
Use DNF tool to install 
[root@fedora home]# dnf install zeek-lts
The Zeek Network Security Monitor. (Fedora_36)   18 kB/s |  77 kB     00:04    
Last metadata expiration check: 0:00:02 ago on Sat 11 Jun 2022 12:33:29 AM EEST.
Dependencies resolved.
================================================================================
 Package                    Arch     Version              Repository       Size
================================================================================
Installing:
 zeek-lts                   x86_64   4.0.7-1.1            security_zeek   7.9 k
Installing dependencies:
 libbroker-lts-devel        x86_64   4.0.7-1.1            security_zeek   1.3 M
 libpcap-devel              x86_64   14:1.10.1-3.fc36     fedora          141 k
 python3-GitPython          noarch   3.1.26-1.fc36        fedora          275 k
 python3-gitdb              noarch   4.0.9-2.fc36         fedora          107 k
 python3-semantic_version   noarch   2.8.4-9.fc36         fedora           39 k
 python3-smmap              noarch   5.0.0-1.fc36         fedora           46 k
 zeek-lts-btest             x86_64   4.0.7-1.1            security_zeek   326 k
 zeek-lts-core              x86_64   4.0.7-1.1            security_zeek   4.8 M
 zeek-lts-devel             x86_64   4.0.7-1.1            security_zeek   957 k
 zeek-lts-libcaf-devel      x86_64   4.0.7-1.1            security_zeek   1.6 M
 zeek-lts-zkg               x86_64   4.0.7-1.1            security_zeek    50 k
 zeekctl-lts                x86_64   4.0.7-1.1            security_zeek   1.8 M

Transaction Summary
================================================================================
Install  13 Packages

Total download size: 11 M
Installed size: 57 M
Is this ok [y/N]:y
Downloading Packages:
(1/13): python3-gitdb-4.0.9-2.fc36.noarch.rpm   232 kB/s | 107 kB     00:00    


Complete!
Create a script file named main.zeek:
event zeek_init()
        {
        print "Hello, World!";
        }

event zeek_done()
        {
        print "Goodbye, World!";
        }
... and run this file:
[mythcat@fedora ~]$ /opt/zeek/bin/zeek main.zeek
Hello, World!
Goodbye, World!
Posted by Labels: , , , , , , , , ,

Saturday, June 4, 2022

Fedora 36 : Fill out this survey for a badge.

I've always liked Fedora distro because it applies a concept of interactivity between developers and users.
Even if not everything works, you can see the progress made from the older versions.
Today I completed my feedback in a survey requested by them and I also got a small badget for my effort.
You can find it on this webpage.
Posted by Labels: , , , , , , , , ,

Sunday, May 22, 2022

Fedora 36 : Inkscape 1.2 with Huion WH 1409 graphic tablet.

In this tutorial I will show you how to install and use the Huion WH 1409 graphics tablet with the new release of Inkscape 1.2 software.
You will need to use the DKMS feature of the kernel and the tablet-specific drivers.
Let's start with the following command to get the driver and show the files:
[root@fedora mythcat]# git clone https://github.com/DIGImend/digimend-kernel-drivers.git
Cloning into 'digimend-kernel-drivers'...
remote: Enumerating objects: 1475, done.
remote: Counting objects: 100% (26/26), done.
remote: Compressing objects: 100% (19/19), done.
remote: Total 1475 (delta 9), reused 15 (delta 7), pack-reused 1449
Receiving objects: 100% (1475/1475), 447.25 KiB | 1.66 MiB/s, done.
Resolving deltas: 100% (969/969), done.
[root@fedora mythcat]# cd digimend-kernel-drivers/
[root@fedora digimend-kernel-drivers]# dir
compat.h    dracut.conf        hid-uclogic-params.c  README.md
COPYING        hid-ids.h        hid-uclogic-params.h  udev.rules
debian        hid-kye.c        hid-uclogic-rdesc.c   usbhid
depmod.conf    hid-polostar.c        hid-uclogic-rdesc.h   xorg.conf
digimend-debug    hid-rebind        hid-viewsonic.c
dkms.conf    hid-uclogic-core.c  Makefile
Let's create it using the command
[root@fedora digimend-kernel-drivers]# make dkms_install
...

dkms add .
Creating symlink /var/lib/dkms/digimend/11/source -> /usr/src/digimend-11
dkms build digimend/11

Building module:
cleaning build area...
make -j1 KERNELRELEASE=5.17.9-300.fc36.x86_64 KVERSION=5.17.9-300.fc36.x86_64...
...
Let's check and reboot.
[root@fedora digimend-kernel-drivers]# dkms status
digimend/11, 5.17.9-300.fc36.x86_64, x86_64: installed (original_module exists)
[root@fedora digimend-kernel-drivers]# reboot
After rebooting the diver must be activated and you will see that Linux responds to the movement of the tablet pen.
[root@fedora mythcat]# modprobe -r hid-kye hid-uclogic hid-viewsonic
Install the latest version of inkscape 1.2 using the DNF utility.
Start the inkscape software:
[mythcat@fedora ~]$ inkscape
static bool Inkscape::UI::Dialog::DialogContainer::recreate_dialogs_from_state(InkscapeWindow*, const Glib::KeyFile*): Key
file does not have group “Windows”
Gdk-Message: 15:09:10.534: Error flushing display: Broken pipe
It seems that inkscape does not detect and set the tablet if you use the settings of this software, but you can use the tablet with this software even if you do not set it.
Posted by Labels: , , , , , , , , , , , , , , ,

Wednesday, May 4, 2022

Fedora 36 : Install django-hypergen and test it.

Today I test the last version of python version 3.11.0a7 with the Django-hypergen example.
The install process can be found on the GitHub page project.
You can see the full tutorial here.
Posted by Labels: , , , , , , , ,

News: Firefox 100 on Fedora distro.

This new release can download it and read more on the official webpage.
I tested today and as you can see this is working well:
Posted by Labels: , , , , , ,
Subscribe to: Posts (Atom)