The page is not redirection properly Screenshot
If you are a web developer and recently launched website and you are not able to login in It is because of improper permissions on sessions directory defind in php.ini.
simple do;
chmod 777 -R /tmp/site-sessions
This will allow your web server to read/write sessions from this directory.
Personally one of my friend had problem and he lost his self for couple of hours. Hope it helps others too.
{ 0 comments }
Today I was installing Android SDK on Linux behind authentication proxy server. I tried different settings but there was no way to put user,password in proxy settings. In the end finally I found a workaround to install Squid Proxy on my LinuxMint 11 (Ubuntu based distro) and set proxy to local and it worked enormous!
wget http://http.us.debian.org/
wget http://http.us.debian.org/
wget http://archive.ubuntu.com/
wget http://archive.ubuntu.com/
wget http://archive.ubuntu.com/
dpkg -i libdb5.1_5.1.25-11_amd64.deb libdb5.1-dev_5.1.25-11_amd64.deb squid-langpack_20110214-1_all.deb squid-common_2.7.STABLE9-4ubuntu2_all.deb squid_2.7.STABLE9-4ubuntu2_amd64.deb
vi /etc/squid/squid.conf
search for ‘cache_peer and put following around there
cache_peer 192.168.0.100 parent 8080 0 no-query default login=username:password never_direct allow all
Make a note of following :
Real Proxy Server = 192.168.0.100 8080 = proxy server port Username = Your authentication proxy user name. Password = Your Password for proxy.
And restart squid
service squid stop
service squid start
Now define following in your application it will work like a charm;
Proxy Server IP : 127.0.0.1 Port : 3128
Hope that works same for you.
{ 0 comments }
A funny song share by one of our friend from UGHackers community.
Hackers’ Song
“Put another password in,
Bomb it out and try again
Try to get past logging in,
We’re hacking, hacking, hacking
Try his first wife’s maiden name,
This is more than just a game,
It’s real fun, but just the same,
It’s hacking, hacking, hacking”
{ 0 comments }
Today i was reading interesting post by Zone-h.org Which says 1.5 million websites were defaced and reported on Zong-h. Most of the attacks were SQL Injections, LFI, RFI, Web Dav and misconfiguration of the web server or application itself.
The report further says, large number of attacks happened on Linux Operating System. We talk too much about Linux kernel but the first thing is code which need to be written in efficient way.
Some interesting numbers in chart is mentioned on this page too, Up to date stats
{ 0 comments }
MySQL.com was compromised via amazing blind SQL injection. You can see the database, tables & users informations on full disclosure website.
Vulnerable Target : http://mysql.com/customers/view/index.html?id=1170
Host IP : 213.136.52.29
Web Server : Apache/2.2.15 (Fedora)
Powered-by : PHP/5.2.13
Injection Type : MySQL Blind
Current DB : web
The worse is they posted passwords dump and hundreds of people have already cracked it. We recommend you to change your password on urgent basis as it is the normal bad practice people use same password for all online portals e.g web mail, paypal and so on.
The good or bad guy who had fun with it is ;
[+] Author: Jackh4xor @ w4ck1ng [+] Site: http://www.jackh4xor.com
{ 0 comments }
Nmap on Android phone
Nmap is open source security scanner used for network exploration. We have been using it widely on Linux and windows operating system. And now we have finally got Nmap for android. This is really great to see.
Download :
{ 0 comments }
