The hardware consists of an AMD 486 clone running at 133MHz, 64 MB of RAM, a 48x IDE CDROM drive (wow!), a floppy emulator, a Sound Blaster, 10Mbps Ethernet card, and a CompactFlash to IDE adapter.
Another great book to read online (or buy it if you like). The Linux Command Line http://linuxcommand.org/tlcl.php
This page links to various Linux performance material
it is to setup one big LUKS partition in each disk, and put a LVM2 Physical Volume inside each partition. At boot, the two LUKS partition are opened, their contents are assembled into a Volume Group, and I can have everything I want inside.
... sans entrer le pw plusieurs fois ...
intéressant, btrfs au lieu de lvm
https://www.redpill-linpro.com/techblog/2016/08/12/btrfs-and-encryption.html
et toujours la ref de Arch https://wiki.archlinux.org/index.php/Dm-crypt/Encrypting_an_entire_system#Encrypted_boot_partition_.28GRUB.29
limiter la bande passante utilisée avec wondershaper (sur l'interface) et trickle (par process)
Idem et plus https://unix.stackexchange.com/questions/83888/limit-outgoing-bandwidth-on-an-specific-interface
EvilAbigail is a Python-based tool that allows you run an automated Evil Maid attack on Linux systems, this is the Initrd encrypted root fs attack.
et aussi dans un chroot http://forums.debian.net/viewtopic.php?t=52283
mount /dev/sdb1 /media/disk
mount -o bind /sys /media/disk/sys
mount -t proc /proc /media/disk/proc
mount -o bind /dev /media/disk/dev
chroot /media/diskrun the command, exit chroot, umount all stuff and reboot.
This is the story of how we upgraded over 2000 Ubuntu production servers – turning over millions an hour – by installing the operating system in memory, wiping the root disk and reinstalling the OS back on disk from RAM. We did it, there was zero data loss and it saved us lots of time and […]
NsJail : A light-weight process isolation tool, making use of Linux namespaces, seccomp-bpf and cgroups
Recently I came across an excellent software called CoreFreq. It is a CPU monitoring software designed for 64-bits Processors w/ architectures Intel Atom, Core2, Nehalem, SandyBridge and superior, and AMD Family 0F. It runs on 64 bit Linux system. CoreFreq provides a framework to retrieve CPU data with a high degree of precision:
CVE-2016-0728 is caused by a reference leak in the keyrings facility.
https://gist.github.com/PerceptionPointTeam/18b1e86d1c0f8531ff8f
https://gist.github.com/matlink/e92b4cd522df178bf23f#file-cve_2016_0728-c-L103
reptyr is a utility for taking an existing running program and attaching it to a new terminal. Started a long-running process over ssh, but have to leave and don't want to interrupt it? Just start a screen, use reptyr to grab it, and then kill the ssh session and head on home.
via https://linuxfr.org/forums/linux-general/posts/reattacher-un-bash
doc de config récent et pratique
via http://www.undernews.fr/reseau-securite/anssi-publication-des-recommandations-de-securite-linux.html
utilisation du débogueur gdb
Ce cours se présentera sous forme d’une série d’articles, oui vous avez bien entendu, Série. A l’heure ou j’écris cette introduction, au moins deux autres articles sont en phase de relecture, et encore deux sont en phase de draft.