IpTables — Netfilter. (Yet another fine tutorial.)

IpTables :

Target : Self.

The Basic iptables tutorial 1 — from the  UCHW. 2 Has been very helpful in the past, to me, in getting up to speed with IpT. 3

Now, that I’m somewhat “ older, ” I may be “ ready, ” to take the plunge — into the deeper waters of netfilter’s innerworkings. 😉 😀 Nuh, not really, I’m just kidding ! Netfilter — Iptables, has a very steep learing curve ! In other words : Don’t blame me, if something goes wrong. I’m posting “ as is, ” 4 I’ll also assume, you’re sitting in front of your computer, and are not logged in remotely !

##  A helpful hint :
##  In case you get stuck ?
##  Flush all rules, from the default chains.
sudo iptables -F
##  Flush all rules, from any userdefined chains.
sudo iptables -X

So, while I promised — a few days ago — to write up a more thorough description on how to use IpTables, I remember, to have written up 5 something similar, in the past. But to be fair, how I thought back then, and now, are way too much apart for me to make use of it. 😉 Let me start afresh, and point you to some recommended reading, while I conjure up a basic configuration for you to use, if you so would choose ‽ But remember : It’s always better though, to figure things out for yourself !

Hence the Recommended reading :

Nuff said ! Let’s get to work.

Continue reading

Stop Trying to Clean Your Infected Computer! Just Nuke it and Reinstall Windows

The key to securing your computer is ensuring it doesn’t get infected in the first place. ← Agreed ! 😉

via Stop Trying to Clean Your Infected Computer! Just Nuke it and Reinstall Windows.

Well … I’d like to add : Never to use an operating system, which defaults to have everything set to “ executable. ” Which is one of my main peeves with this particular operating system, and also one of the reasons : Why I migrated away from windows, all those years ago. 😉

I prefer to be in the “ driver’s seat, ” and this means — how “ painful, ” or “ troublesome ” this might seem ? 😀 That I taketh, or giveth away the power to execute programs. 😆

Then again, that’s just me. If it’s all just working fine for you. Or if you love to run multiple resource hogging av-tools, anti-malware programs, etc. Then be my guest. It is not like I don’t know what it’s like. 😉 Truthfully though : I prefer to spend my time, figuring out things, and make my computer do things for me. This, instead of, having to play watchdog all the time. And always remember : To make backups, of all your important files. 😉

Some examples :

I taketh :

# Or should I write my(own)program. ; )
chmod -x yourprogram

I giveth :

chmod u+x yourprogram

</rant>

Target : Self.

How to install Linux Mint via USB — Part II.

 — Get it here.

*smallish update*

↑ Yesterday I wondered what had happened to my screenshots, and scribbles I thought I had placed them on my /home/me drive, but apparently I forgot that ecryptfs works “ transparently. ” That is, when I’m logged into my box it overlays my regular home, with a ‘ secretive ’ one. 😀 Anyway, there you go, and may the screenshots be of use to anyone out there ?

After much deliberation, I have decided to forego my intent to install LMDE, as I hinted at in my previous post. Why, you might ask ? Well …, because of this.

The Installer States:

You have selected to partition your partitions manually, this feature is for ADVANCED USERS ONLY. ← “ advanced ”should bet taken, with a grain of salt. 😉

Before continuing, please mount your target filesystem(s) at /target. ← I did that !

Do NOT mount virtual devices such as /dev, /proc, /sys, /etc on /target. ← Quite possibly the reason for my update-initramfs -u failure — during my first try ‽

During the install, you will be given time to chroot into /target and install any packages that will be needed to boot your new system.

During the install, you will be required to write your own /etc/fstab. ← No big deal. 😉

If you aren’t sure what any of this means, please go back and deselect manual partition management.

↑ This very much looks like the installer telling you : I want your disk all to myself, because fuck you that’s why. 😀 ← Not gonna happen though, not anytime soon. 😉

I did some googling, and came upon this post, which is quite self-explanatory. Though my needs differ quite from the author’s. 😉

Anyway !

While in my live-session, I did the fix installer bug, as suggested.

##  Around line 1860 ‽
gksudo /usr/lib/live-installer/frontend/gtk_interface.py

And changed :

self.wTree.get_widget("button_next").show()

Into this :

##  Mind the indentation. ; )
self.wTree.get_widget("button_next").show()
Self.wTree.get_widget("button_next").set_sensitive(True)

Next, I fired up the installer, and from thereon end everything is pretty much straightforward. That is, until … You come to the actual manual partitioning section — Over the years, I’ve done many alternate-installs — it doesn’t quite look like the way I’m used to do things. 😉 I ended up, doing the partitioning first. Setup everything as required (mounting them all at /target), and then let the installer use the paved road to do its dirty work. ← It all seemed to have worked though, no errors, and such ‽

I’d love to tell you how I succeeded, and that I’m writing you this post, from that install … Unfortunately, it apparently wasn’t meant to be. I’ll spare you the update-initramfs -u “ saga ” (during my first try, and yes I actually got it to boot, and ask for my passphrase!), and I’ll spare you the apt-get -f install story, that happened during my second run.

Which is why — to finish up this ( “ lament ” ) post — that I’ve decided to go the Debian way. At least one good thing came out of it. The LMDE live-image, is exactly that : A good, and decent image ! 😉

Target : Self.

How to install Linux Mint via USB — Linux Mint Community.

How to install Linux Mint via USB — Linux Mint Community.

With a few screenshots, I wish to show you : How “ ridiculously ” easy it is, to get a working ISO ported to an USB ! 😉 All this, without having to wrap my brain around the following. 😉

Well — first of all — you’d need to get a current ISO, which you first ought to copy bit for bit, onto a designated USB pen drive.

My USB got recognized as :

/dev/sdc1

After wich I proceeded to “ install ” my ISO to :

##  Yes, without the ‘ 1. ’
/dev/sdc

Like so :

Screenshot: dd copying lmde iso to /dev/sdc

Screenshot : dd copying lmde iso to device.

##  The ‘ \ ’ increases readability.
sudo dd if=/media/my-movies/lmde-201403-64bit.iso \  
of=/dev/sdc oflag=direct  bs=1048576

And here we get to see — last line — it in fact did “ install ” LMDE to target. 😉

Screenshot: Output of the command  indicating success of the previous ```dd``` command.

Screenshot : Output of the command

df -Th 2>&-|less

indicating success of the previous command :

##  The ‘ \ ’ increases readability.
sudo dd if=/media/my-movies/lmde-201403-64bit.iso \  
of=/dev/sdc oflag=direct  bs=1048576

I rebooted — *while crossing my fingers* — and was greeted with my future desktop environment ! YAY 😉 ← Before you boot from your USB, make certain the option to boot from it, is checked in your BIOS ! 😉

Screenshot : LMDE live-session.

Screenshot : LMDE live-session.

Screenshot : LMDE — System Info.

Screenshot : LMDE — System Info.

Screenshot : LMDE — System Monitor.

Screenshot : LMDE — System Monitor.

Screenshot : LMDE — NetworkManager.

Screenshot : LMDE — NetworkManager.

And now I say : A BIG thank you to the developers, and I’ll be on my way …

Target : Self.

Is it possible to give your computer a fixed ip-address ?

Short answer : Yes it is ! 😉

The end result, if I had followed above mentioned tutorial, would have been :

auto lo
iface lo inet loopback

auto eth0
iface eth0 inet static
address 192.168.1.150
netmask 255.255.255.0
gateway 192.168.1.1
dns-nameservers 208.67.220.220 208.67.222.222

Long answer :

I really don’t like dnsmasq. Granted, at first it did make my iptables administration a lot easier ! As dnsmasq runs as user : nobody, which in practice means that I only had one rule, which allowed user nobody to connect to opendns’ name servers only. Et voila, Bob’s your uncle. 😉

Ok, so anyway here you can read/learn how to set things up properly, and here you can test if your efforts were fruitful. 😉

I did a search query, to see if the use of dnsmasq is an ubuntu specific beast (Well, you know their paradigm — from release to release : “ Change, for the sake of change. ” 😆 )

My search led me here : Understanding dnsmasq in Precise Pangolin.

And ultimately I followed the instructions — as I read them — on ubuntugeek, you need to edit the /etc/NetworkManager/NetworkManager.conf file.

One way to do so is (as root) :

gksudo gedit /etc/NetworkManager/NetworkManager.conf

Then change :

dns=dnsmasq

To :

#dns=dnsmasq
Path : /etc/NetworkManager/NetworkManager.conf

Path : /etc/NetworkManager/NetworkManager.conf

↑ See image.

Save, and exit the file, and then restart your network-manager.

Like so :

sudo restart network-manager

 — Source.

Now the whole point of this post is : To show you, how to give your computer a fixed ip-address. Allow me to show you how I did it, by means of using a few screenshots to clarify. 😉

NM applet : after right-clicking, and choosing network settings.

NM applet : after right-click, and choosing network settings.

NM applet : IPv4 Settings tab.

NM applet : IPv4 Settings tab.

In summary :
I’ve shown you how to setup a fixed ip-address, and I briefly wrote about, opendns, and iptables. ← To which I’ll refer, once I start writing more, about network related matters. Until then : “ Have fun tinkering, and don’t ever forget to make backups, of any system file you wish to edit. ” ← You’ll thank yourself later, that you did !

Target : Self