Sunday, March 31, 2013

HOWTO : Update Pentoo 2013.0 RC1.1 on ASUS Sabertooth X79

For routine update/upgrade of Pentoo, you need to follow the following steps :

# This syncs the gentoo and pentoo repos like "apt-get update" in debian
emerge --sync
# This updates all the normal packages like "apt-get upgrade" in debian
emerge --deep --update --newuse world -vt
# This optionally merges in changed config files. unchanged files are merged automatically
etc-update
# This removes old packages which are not needed like "apt-get autoremove" in debian
emerge --depclean
# This rebuilds anything which may have been broken in update
emerge @preserved-rebuild
# This checks all the programs installed from VCS for new revisions and updates if needed
smart-live-rebuild
# Verifies there is no breakage after updates
revdep-rebuild
# Regenerate the main menu for XFCE WM (run it under each regular account)
genmenu.py -x
#merge in any new config files
etc-update
#clean up the distfiles dir to remove old/un-needed files
eclean-dist -d

Optional
# Check /var/log/portage/elog/summary.log file
# You might need to run extra commands. For example:
emerge @x11-module-rebuild
eselect java-vm set system icedtea-bin-7

#after python/perl upgrade:
perl-cleaner --modules
python-updater


That's all! See you.

Install Pentoo 2013.0 RC1.1
Customize Pentoo 2013.0 RC1.1

Saturday, March 30, 2013

HOWTO : Pentoo 2013.0 RC1.1 on ASUS Sabertooth X79

After about a month of tries and errors, this article is the most updated and error free for the Pentoo 2013 RC1.1 installation as at April 22, 2013.

Pentoo is based on Gentoo and it is a Penetration Testing Linux distribution. The developers of Pentoo targetted their product for serious Pentesters. Pentoo is not for newbies as it is based on Gentoo which requires some Linux experience to master this distribution.

Hardware

CPU : Intel i7-3930K (6 cores, 12 cores with Hyper-Threading, Socket 2011)
Motherboard : ASUS SaberTooth X79
RAM : Corsair Vengeance DDR3 1600 32GB (4GB x 8)
Hard Drive : WD SATA III 3TB Red WD30EFRX
Display Card : Inno3D nVidia GeForce GTX 590 384bit 3072MB DDR5 x 2

Making of Bootable USB Pendrive

Use UNetbootin to make a bootable USB pendrive. Before booting, edit syslinux.cfg on the usb pendrive and add "nodetect" to the kernel line to prevent asking for password when boot. Unetbootin switches the bootloader and there was a mistake in the converted config file. This issue has been logged and fixed for the next release.

Live USB Boot to Desktop

Press F8 to pop up the BIOS boot menu and DO NOT select the UEFI option of the USB pendrive.

Once it is booted up, at the "livecd" prompt type the following to bring up the ethernet card. Make sure you are connecting to the internet :

dhcpcd eth0

Type the following to build the latest version of nVidia display card driver :

mkxf86config.sh
eselect opengl set xorg-x11
nvidia-xconfig


After that, type the following command to bring up the desktop :

startx

Live USB Boot to Install

Step 0 :

Press F8 to pop up the BIOS boot menu and DO NOT select the UEFI option of the USB pendrive.

Step 1 :

dhcpcd eth0
layman -s pentoo
emerge -1 pentoo-installer


pentoo-installer

Step 1a :

If you have a hard drive that is larger than 2TB, you need to manual configure your partitions :

/dev/sda1 - /boot
/dev/sda2 - swap
/dev/sda3 - /


Then following the menu to install step by step. At last, you will be asked for install the bootloader, you should install to /dev/sda.

Step 2 :

After the installation, remove the USB pendrive and reboot your box and login as root.

Next, clean up live configuration :

dhcpcd eth0

Fix the /etc/inittab file :
rc-update delete fixinittab
emerge -1 sys-apps/sysvinit


Remove live-related configuration :
rm /etc/gconf /usr/share/livecd
emerge -1 gnome-base/gconf


Then, reboot your box again and login as root.

Step 3 :

(First time configuration)

You are advised to follow the prompt from the screen to do the update.

dhcpcd eth0
nano /etc/portage/make.conf


ACCEPT_LICENSE="AdobeFlash-11.x Intel-SDP PUEL"

# You may wish to edit your VIDEO_CARDS line to match your system better.
# nVidia users:
USE="binary-drivers cuda opencl qemu -doc -examples"
VIDEO_CARDS="nvidia fbdev vga vesa"


# AMD (ATi) users :
USE="binary-drivers opencl qemu -doc -examples"
VIDEO_CARDS="fglrx fbdev vga vesa"


If you are installing Pentoo to virtualbox or vmware, please use the following settings :
# Guest OS users should add virtualbox/vmware flags:
USE="binary-drivers opencl qemu -doc -examples"
VIDEO_CARDS="virtualbox fbdev vga vesa"


Step 4 :

(First time update)

emerge --sync

After that, you are required to react to the recommendation on the screen (which is usually in green colour). You may requried to update portage (if any), please do :

emerge --oneshot portage

Then, you may prompt to do the following (if any) :
emerge @preserved-rebuild

*** nVidia and cuda drivers are to be installed then. If AMD (ATi), no action to be taken.

Reboot the box and login as root again.

Step 5 :

If nVidia user :
nvidia-xconfig

startx

To update/upgrade the packages :
emerge --deep --update --newuse world -vt

To merge the config files (if any) :
etc-update

*** select "-3" to replace with the new config files and answer "yes" for all questions.

To delete not necessary packages including unused video drivers :
emerge --depclean

To rebuild anything when some packages are broken in the update :
emerge @preserved-rebuild

To update/upgrade the SVN packages :
smart-live-rebuild

To make sure there is no breakage after the update :
revdep-rebuild

To regenerate the main menu of Xfce window manager (you are required to do this step on each user) :
genmenu.py -x

To check if any config file need to be merge or not :
etc-update

To clean up the box (remove old or not needed packages) :
eclean-dist -d

To rebuild X11 related drivers :
emerge @x11-module-rebuild

To set the java vm to the latest version :
eselect java-vm list
eselect java-vm set system icedtea-bin-7


or

eselect java-vm set system 1

*** if the icedtea-bin-7 is in the first item.

To recompile perl when it is upgraded :
perl-cleaner --modules

To recompile python when it is upgraded :
python-updater

Step 6 :

After that, reboot and login as root.

If you would like the xfce4 window manager :
startxfce4

Else, if you want to have e17 window manager :
startx

The network interface name will be changed to "eno1" (due to udev-2000) for my box (you may need to use "ifconfig -a" to confirm :

dhcpcd eno1

startxfce4

To make sure wicd will be launch without problem even you are login as normal user :
rc-update add wicd default

Step 7 :

nano /etc/conf.d/hostname

Change to :
HOSTNAME="pentoo"

*** or any hostname you like.

Step 8 (Optional) :

If you are AMD (ATi) user, you may need to do the following in order to launch the window manager :
rc-update add acpid boot

*** If you login as normal user, you just "startx" to xfce4 window manager.

*** If you login as root but want to use "startx" to xfce4 window manager, you need to :

nano .xinitrc
exec ck-launch-session startxfce4
#exec enlightenment_start


Step 9 (Optional) :

If you do not want to have weird or new network interface name, you can refer to this link to fallback to kernel based name.

Or simply following the below step :

ln -s /dev/null /etc/udev/rules.d/80-net-name-slot.rules

Then, reboot your box.

Know issue

As at April 22, 2013, CUDA and her related applications, such as pyrit, cudaHashcat-plus64.bin and Cryptohaze-Multiforcer do not work due to the Pentoo's hardened kernel. The workaround for Cryptohaze-Multiforcer is at here. Hope the development team can solve this problem as soon as possible.



That's all! See you.

Update Pentoo 2013.0 RC1.1
Customize Pentoo 2013.0 RC1.1

Wednesday, March 27, 2013

HOWTO : BackBox 3.01 on ASUS Sabertooth X79

BackBox Linux project was born in Italy in 2010 and it is created by Raffaele Forte University of Calabria computer engineering student and security enthusiast.

The current version is 3.01 and it is released on Jan 23, 2013. This version is based on Ubuntu 12.04 LTS. It comes with windows manager Xfce4.

BackBox Linux is a penetration test Linux distribution. You can even install her packages (including BackBox menu) to your existing running Ubuntu 12.04 LTS box by adding her PPA repository.

It comes with about 60 pre-installed penetration testing tools but they are usable and well known. The tools are well tested by developers before they are released. Other tools can be installed by yourself or from the Ubuntu repository.

Using BackBox is just like using Ubuntu. It is easy to use and maintain.

Installation

If you have nVidia display card(s), you should add "nomodeset" to the boot menu of the Live DVD/USB by pressing "Tab" button on the keyboard. Once it is installed, the nVidia display card driver is installed automatically and the version is 304.48. Do not try to install other version of the nVidia driver yourself as other packages in the Ubuntu repository is broken.

There is no pain to install BackBox on ASUS Sabertooth X79 motherboard even it comes with UEFI BIOS. You just press "F8" when the computer is boot up to activate the boot menu. Select normal option, do not choose the UEFI option of DVD/USB. Then, it will boot fine.

To burn the bootable BackBox USB pendrive on Linux, you need to use Ubuntu's "Startup Disk Creator" (usb-creator-gtk) or UNetbootin.

Customization

sudo apt-get update
sudo apt-get dist-upgrade
sudo apt-get install galculator gedit radiotray axel-kapt libreoffice preload


Update Penetration Tools

Go to the menu, click "Update" and select the tools for update. It is very simple and easy as well as without pain. When you are updating "cvechecker", make sure you see the word "finish" or "done" before closing the terminal window as it needs time to download the data file. If you have slow internet connection, the download seems halt, but be patient until it is finished.

Performance Tuning

You may consider to add "noatime" and "nodiratime" to the /etc/fstab. Make sure you have no typo or your box will not boot properly.



That's all! See you.

Tuesday, March 26, 2013

What is going on for Kali Linux (Full Version)?

Kali Linux is only a collection of pentesting tools Linux distribution. All the pentesting tools can be obtained free of charge from the internet as those are freeware or open source software.

The development team of Kali Linux do not accept any voice from their users about their weakness of their product. For example, when telling them about the Kali Linux rebuild bugs, they always stating that they have built a lot of copies and they found no problem. Later, one of the developer fixed and it can be compiled correctly. You can refer to the following bug report for details.



I am getting unsatisfied with this response at that time. However, I am not an angry user at all.

The core person, muts who is also a founder of Offensive Security, deleted some of the bug reports instead of rating it as "invalid" if they find the bug report is nonsense. I think it is not a proper way to handle a bug tracker like this. I have four examples so far, they are :









On March 25, 2013 (at my time zone), I am chatting on the #kali-linux channel and telling them that Kali Linux is working perfectly on Gnome DE only but not the other DEs, such as KDE or Xfce. Why I am saying that? It is because, when I am rebuilding KDE and Xfce, I will find some packages missing according to the documentation of the Kali Linux. I am telling them that their documentation needs to be improved. However, one of the developer "balding_parrot" rely that it is a "guide" only.

Later, I tell them about the bug reports deletion, they banned me on the channel. Now, I am getting angry. I delete all the articles (3 HOWTO's only so far) in the Kali Linux forum. I also delete all the articles on my blog that regarding to Offensive Security and Kali Linux. I am an angry user now. The following is Xchat log (the last 300 lines) about the conversation on March 25, 2013 :



Under the angry mood, I write my blog like this on that day.

Later, my accounts on Kali Linux bug tracker and Kali Linux forum are banned.

I will not use Kali Linux any more as there are some other pentesting Linux distributions in the internet. Meanwhile, the pentesting tools are available under freeware or open source license.

That's all! See you.

Monday, March 25, 2013

What is going on for Kali Linux?

Today, I experienced an upset incident which Kali Linux freenode channnel banned me for I just told them the truth about the fact that one of the developers (he is muts) to delete some of the bug reports.

In my opinion, why they not rated the entries as invalid instead of deleting it. However, I was banned. Therefore, I deleted what I posted in the forum of Kali Linux (http:www.kali.org). Later learnt that I was also banned for the Kali forum.

As far as I know that Kali Linux is sponsored by Offensive Security which I was trained. Therefore, I deleted all my articles that about Offensive Security (offsec) and her courses.

I am very disappointed that the behavior of the developer (who stated that he is, balding_parrot) to act like this. Therefore, I will not use Kali Linux any more as there are many Pentesting distros out there.

That's all. See you.

Updated : You can view the full story at here.

HOWTO : Rebuild Kali Linux 1.0.1 for Xfce 4 Desktop

This article has been deleted for several days due to this reason. However, more than 2 readers request this article back. Thus, it is back, enjoy!

To rebuild Kali Linux for Xfce 4 takes time but it worths to process if you want to have a Xfce 4 desktop interface.

Step 0 :

Download the Kali Linux 1.0.1 and install to the hard drive. Make sure you enable the "mirror" when asked. Otherwise, your Kali will not working properly.

If you don't, please append the following to the /etc/apt/sources.list :

deb http://http.kali.org/kali kali main non-free contrib
deb-src http://http.kali.org/kali kali main non-free contrib


Then, do the following may fix the problem :

apt-get update && apt-get dist-upgrade

Make sure you DO NOT edit the GNOME/Xfce menu yourself as it will mess the Kali Menu. However, if you messed the Kali menu, you can do the following to fix :

rm ~/.config/menus

Step 1 :

To prepare your Kali box to be capable to rebuild the Kali iso files :

apt-get install git live-build cdebootstrap kali-archive-keyring apt-cacher-ng

Step 2 :

touch standard.list.chroot

Append some package name to the file in order to tell the maker to include such package to the .iso file.

Or copy and paste to the file namely "standard.list.chroot" to /root/ which includes some useful packages instead (you may edit this file) :

! Packages Priority standard
gedit
radiotray
preload
gtk-recordmydesktop
galculator
synaptic
axel
cpuid
network-manager-pptp
network-manager-pptp-gnome
network-manager-openvpn
network-manager-openvpn-gnome
network-manager-vpnc
network-manager-vpnc-gnome
isomaster
xchat-common
xchat
libreoffice
shutter
bluez-gstreamer
bluez-compat
bluez-alsa
bluez-cups


Step 3 :

Copy and paste to file "update-kali" to your /root/ directory :

apt-get update
apt-get -y dist-upgrade
apt-get --purge -y autoclean
apt-get --purge -y autoremove


Make it execuatable :

chmod +x update-kali

Step 4 :

rm -R /root/live-build-config

git clone git://git.kali.org/live-build-config.git

cp /root/standard.list.chroot /root/live-build-config/config/package-lists/
cp /root/update-kali /root/live-build-config/config/includes.chroot/root/

cd live-build-config

Step 5 :

nano config/package-lists/kali.list.chroot

To locate the following section in the file and make it looks like the following :

# Graphical desktops depending on the architecture
#
# You can replace all the remaining lines with a list of the
# packages required to install your preferred graphical desktop
# or you can just comment everything except the package of your
# preferred desktop.

#if ARCHITECTURES i386 amd64
# *** GNOME DESKTOP ***
iceweasel
alsa-base
alsa-firmware-loaders
gstreamer0.10-alsa
gnome-alsamixer
gir1.2-gstreamer-0.10
gstreamer0.10-pulseaudio
gstreamer0.10-nice
gstreamer0.10-ffmpeg
gstreamer0.10-x
gstreamer0.10-gconf
gstreamer0.10-plugins-base
gstreamer0.10-plugins-ugly
libgstreamer0.10-0
libclutter-gst-1.0-0
gir1.2-clutter-gst-1.0
libgstreamer-plugins-bad0.10-0
libgstreamer-plugins-base0.10-0
gstreamer0.10-plugins-good
gir1.2-gst-plugins-base-0.10
gstreamer0.10-plugins-bad
kali-defaults
kali-root-login
desktop-base
network-manager-gnome
network-manager
xfce4
#endif


Step 6 :

/etc/init.d/apt-cacher-ng restart
export http_proxy=http://localhost:3142/


./build_all.sh

The rebuilt amd64.iso and i386.iso are located at /root/live-build-config/images. The process will take 4 to 6 or more hours to complete. Please be patient.

Bouns #1

If your CPU is too old that does not support PAE, you need to rebuild your Kali Linux.

Follow Step 1 to Step 5 as above.

cd live-build-config
cd auto
nano config


Locate the following :

lb_opts="--debian-installer live --linux-flavours 686-pae"

and replaces with :

lb_opts="--debian-installer live --linux-flavours 486"

Save it and exit.

cd ..

or

cd /root/live-build-config

/etc/init.d/apt-cacher-ng restart
export http_proxy=http://localhost:3142/


lb config --architecture i386
lb build


That's all! See you.

Tuesday, March 19, 2013

HOWTO : nVidia Display Card on Kali Linux 1.0.1

This article has been deleted for several days due to this reason. However, more than 2 readers request this article back. Thus, it is back, enjoy!

Kali Linux is the most advanced penetration testing distribution. Back|Track 5 R3 is retired and is no longer supported. Kali Linux is based on Debian Wheezy 7.0.

This distribution can be custom build the ISO file in x86 and x86_64. The documentation is detailed and completed. The installation of Kali Linux is easy and fast.

Installation of nVidia Display Card Driver

UPDATE on October 27, 2013 : In Kali Linux 1.0.5, you need to remove winexe to install nVidia driver and CUDA driver. apt-get update

apt-get install nvidia-kernel-source nvidia-detect nvidia-libopencl1 nvidia-opencl-common nvidia-support nvidia-opencl-icd nvidia-visual-profiler nvidia-glx nvidia-installer-cleanup nvidia-kernel-common nvidia-smi nvidia-alternative nvidia-opencl-dev libglx-nvidia-alternatives nvidia-kernel-dkms nvidia-cuda-toolkit nvidia-vdpau-driver nvidia-xconfig glx-alternative-nvidia libgl1-nvidia-alternatives nvidia-settings libgl1-nvidia-glx xserver-xorg-video-nvidia libcublas4 libcudart4 libcufft4 libnpp4 libnvidia-compiler libcuda1 libcuinj4 libnvidia-ml1 libxvmcnvidia1 libcusparse4 libcurand4 python-pycuda-doc python-pycuda-headers python-pycuda nvidia-cuda-doc nvidia-cuda-gdb

nvidia-xconfig

Then, reboot your box. Although the version of the driver is quite old but it is workable.

That's all! See you.

HOWTO : Rebuild Kali Linux 1.0.1

This article has been deleted for several days due to this reason. However, more than 2 readers request this article back. Thus, it is back, enjoy!

To rebuild Kali Linux takes time but it worths when you need the most updated Kali Linux on Live DVD or USB thumb drive.

Step 0 :

Download the Kali Linux 1.0.1 and install to the hard drive. Make sure you enable the "mirror" when asked. Otherwise, your Kali will not working properly.

If you don't, please append the following to the /etc/apt/sources.list :

deb http://http.kali.org/kali kali main non-free contrib
deb-src http://http.kali.org/kali kali main non-free contrib


Then, do the following may fix the problem :

apt-get update && apt-get dist-upgrade

Make sure you DO NOT edit the GNOME menu yourself as it will mess the Kali Menu. However, if you messed the Kali menu, you can do the following to fix :

rm ~/.config/menus

Step 1 :

To prepare your Kali box to be capable to rebuild the Kali iso files :

apt-get install git live-build cdebootstrap kali-archive-keyring apt-cacher-ng

Step 2 :

touch standard.list.chroot

Append some package name to the file in order to tell the maker to include such package to the .iso file.

Or copy and paste to the file namely "standard.list.chroot" to /root/ which includes some useful packages instead (you may edit this file) :

! Packages Priority standard
gedit
radiotray
preload
gtk-recordmydesktop
galculator
synaptic
axel
cpuid
network-manager-pptp
network-manager-pptp-gnome
network-manager-openvpn
network-manager-openvpn-gnome
network-manager-vpnc
network-manager-vpnc-gnome
isomaster
xchat-common
xchat
libreoffice
shutter
bluez-gstreamer
bluez-compat
bluez-alsa
bluez-cups


Step 3 :

Copy and paste to file "update-kali" to your /root/ directory :

apt-get update
apt-get -y dist-upgrade
apt-get --purge -y autoclean
apt-get --purge -y autoremove


Make it execuatable :

chmod +x update-kali

Step 4 :

Copy and paste to file "rebuild-kali" to your /root/ directory :

# clean the previous live-build-config directory and pull the new config file
echo "Removing the previous live-build-config direcotry ...."
cd /root/
rm -R live-build-config
echo "Getting the new live-build-config file ...."
git clone git://git.kali.org/live-build-config.git
echo "Copying the customized standard.list.chroot from /root/ ...."
cp /root/standard.list.chroot /root/live-build-config/config/package-lists/
echo "Copying the update-kali and rebuild-kali scripts from /root/ ...."
cp /root/update-kali /root/live-build-config/config/includes.chroot/root/
cp /root/rebuild-kali /root/live-build-config/config/includes.chroot/root/
echo "Enable the apt-cacher-ng ...."
/etc/init.d/apt-cacher-ng restart
export http_proxy=http://localhost:3142/
cd live-build-config
echo "Be patient .... Building amd64.iso and i386.iso ...."
echo "It will takes 4-6 hours or more to complete ...."
echo "Please DON'T close this terminal ...."
./build_all.sh


Make it execuatable :

chmod +x rebuild-kali

Step 5 :

If you have 64-bit Kali Linux installed, you can build amd64.iso and i386.iso (PAE) at the same time. If you have 32-bit Kali Linux installed, you can only build i386.iso (PAE). To build the amd64.iso and i386.iso at the same time by executing the following command :

./rebuild-kali

The .iso files will be created at /root/live-build-config/images/ and it will takes 4 to 6 or more hours to complete. It depends on the power of your CPU and amount of RAM you have. I recommend you have at least 2 GB RAM to do the rebuild.



Bouns #1

If your CPU is too old that does not support PAE, you need to rebuild your Kali Linux.

Follow Step 1 to Step 4 as above.

cd /root/
rm -R live-build-config


git clone git://git.kali.org/live-build-config.git

cp /root/standard.list.chroot /root/live-build-config/config/package-lists/
cp /root/update-kali /root/live-build-config/config/includes.chroot/root/
cp /root/rebuild-kali /root/live-build-config/config/includes.chroot/root/


cd live-build-config
cd auto
nano config


Locate the following :

lb_opts="--debian-installer live --linux-flavours 686-pae"

and replaces with :

lb_opts="--debian-installer live --linux-flavours 486"

Save it and exit.

cd ..

or

cd /root/live-build-config

/etc/init.d/apt-cacher-ng restart
export http_proxy=http://localhost:3142/


lb config --architecture i386
lb build


That's all! See you.

Sunday, March 10, 2013

HOWTO : BitCoin Mining with nVidia GeForce on Ubuntu Desktop 12.04 LTS and 12.10

What is BitCoin?

Bitcoin is an experimental new digital currency that enables instant payments to anyone, anywhere in the world. Bitcoin uses peer-to-peer technology to operate with no central authority: managing transactions and issuing money are carried out collectively by the network. Bitcoin is also the name of the open source software which enables the use of this currency.

BitCoin Mining Benchmark

I think it is not too late for BitCoin mining. I know that AMD Radeon display card is more faster than nVidia when doing BitCoin mining and hash cracking. There is a benchmark comparsion at here. However, I have two nVidia GeForce GTX590 display card and I have no fund to buy another system for the purpose.

To install Ubuntu Desktop on nVidia system, you need to add "nomodeset" as Linux kernel parameter.

Installation

(A) BitCoin Wallet

sudo add-apt-repository ppa:bitcoin/bitcoin
sudo apt-get update
sudo apt-get install bitcoin-qt bitcoind


(B) OpenCL

sudo apt-get install ocl-icd-libopencl1

Download nvidia-opencl-icd 195.36.31-6squeeze2
http://packages.debian.org/squeeze/nvidia-opencl-icd

Download nvidia-opencl-common 195.36.31-6squeeze2
http://packages.debian.org/squeeze/nvidia-opencl-common

Download libcuda1 195.36.31-6squeeze2
http://packages.debian.org/squeeze/libcuda1

Install them with the following command :

sudo dpkg -i *.deb

sudo apt-get install python-pyopencl python-pyopencl-headers python-wxgtk2.8 python-wxtools wx2.8-i18n python-bumpy python-netifaces

* nvidia-opencl-icd, nvidia-opencl-common and libcuda1 may be fixed in Ubuntu 13.04 and you are not required to download sperately

(C) nVidia driver

sudo apt-get install jockey-common

For Ubuntu 12.10 :

Please refer to here as the Ubuntu 12.10 have a minor bug for nVidia display driver as it lack of kernel headers for building the nvidia module.

(D) GUIMiner

GUIMiner download from https://github.com/Kiv/poclbm

sudo apt-get install git
git clone https://github.com/Kiv/poclbm.git


Edit the file ioutil.py to correct something :

cd poclbm
nano ioutil.py


To make it looking like the following at the beginning of the file :

from glob import glob
#from serial.tools import list_ports
import serial


To run the GUIMiner :

cd poclbm
python guiminer.py


(E) Bonus

(1) GUIMiner for Windows (All-in-One)

GUIMiner Advanced Setup download

(2) AMD APP SDK for AMD Radeon

AMD APP SDK

(3) Ufasoft Miner (bitcoin-miner for CPU)

bitcoin-miner
bitcoin-miner for Windows
bitcoin-miner (Source Code for Linux)

(4) GUIMiner (poclbm.py) Settings

For best performance but higher temperature -
nVidia GTX590 : -v -f0 -w128
nVidia GTX460 : -v -f0 -w128

For lower temperature but lesser performance -
nVidia GTX590 : -s0.01
nVidia GTX460 : -s0.01

e.g. Two GTX590 (a total of 4 CUDA devices) running setting of -s0.01 at room temperature (21 degree) under water cooling. The temperature of each CUDA devices is around 50 degree. The performance of each CUDA device is around 73 Mhash/s. The total performance is about 292 Mhash/s. If this box is running in room temperature in summer here (around 30-33 degree), the maximum temperature of CUDA device will be around 80 degree under water cooling condition.

The performance of BitCoin mining of this box is not good at all with the high price of the GTX590. I do not recommend to use nVidia display card for BitCoin mining and hash cracking.

* each entry for each CUDA device in GUIMiner

(5) BFGMiner for AMD Radeon/CPU/ASIC

Ubuntu PPA

(6) ASIC mining is the most fastest in the world so far

(7) Make sure you have backup your BitCoin (BTC) as it is either stored in the pool server or local machine.

That's all! See you.

Sunday, March 03, 2013

EXPLOIT - CVE-2013-1763 Linux Kernel Local Privilege Escalation

This vulnerability is announced on Feb 24, 2013 by Mathias Krause. However, according to some sources in the internet (Russian forums) that this vulnerability was discovered for more than a year but it is not published until Mathias Krause.

The affected Linux kernel is from 3.0.8 to 3.7.9. The most common Linux distributions such as Fedora and Ubuntu are affected. Fedora 16 to 18 with the kernel before 3.7.9-205.fc18 are affected. Ubuntu 12.04 LTS to 12.10 (including the 13.04 which is under development at this writing) with the kernel before 3.5.0-25.39 are affected.

The exploit source codes are available in the wild for Arch Linux, Fedora and Ubuntu. The Arch Linux available exploit is targeted to 64-bit version while the available exploit for Fedora and Ubuntu are targeted to 32-bit. The exploitation for Ubuntu is more harder for script kiddies at the moment in my opinion.

Hereby, I made a video for the Ubuntu 12.10 with kernel 3.5.0-21 exploitation for your reference.



Reference :

National Vulnerability Database (NVD)
CX Security
SecurityFocus (with exploit source code)
Source code for 64-bit Ubuntu
Source code for 64-bit Fedora
Ubuntu 12.04 LTS Kernel image download
Ubuntu 12.10 Kernel image download

Please note that there is PPA for Ubuntu Kernel image out there and they may be not fixed, not kidding!

Updated on Mar 4, 2013 :

Latest learnt that the kernel version 2.6.x are also affected.

That's all! See you.