Name: Alif Azman
Posts by :
I’m back, again. Blogging again after soo long.
I would like to highlight a case study where recently I learned that most of mailserver especially based on exim have no SMTP verification for the HELO/EHLO request on the default port (25) by default.
A spammer can simply telnet to the target mailserver of certain domain and sending email as a valid user to user’s who ar e in same domain without authentication.
[root@hostname ~]# telnet mail.mytest.com 25
Connected to mail.mytest.com.
Escape character is ‘^]’. 220 mytest.com ESMTP Exim 4.76 Sat, 18 Oct 2014 08:52:09 +0800
501 Syntactically invalid EHLO argument(s)
ehlo mytest.com 250-mytest.com
Hello mytest.com [123.456.789]
250-AUTH PLAIN LOGIN
250 HELP mail from:<email@example.com>
250 OK rcpt to:<firstname.lastname@example.org>
354 Enter message, ending with “.” on a line by itself
Subject: This is a test
Hello, This is a test
250 OK id=1XfIGK-0007PS-HJ
Eventhough the outbound remote mail is filtered by default through the ACL, the concern is a spammer can send e-mail to known user within the same domain and cause confusion and perhaps worst case scenario could cause tense between employee. Imagine if a spamming or perhaps there is a naughty employee with some technical background sending a fake e-mail. That could be dangerous!!
Solution: Server administrator have to filter the exim MTA ACL (Access Control) to filter communication on port 25 for unauthorize usage.
StartSSL offering free SSL for public. However, the limitation is now by wildcard and subdomain only. For single domain name SSL, we have to purchase for it. But, I believe that’s better than nothing. At least it can be use for academic research or for Student final year project.
Recently I’m trying to review backup solution for my office. And of course I’ll go for FREE solution since backup solution out there is quite not cost effective with size of rganization that I work for.
Introduced by my Operation manager, I’m testing that on my own Laptop to a VM that I set up in our office. What does CrashPlan have to offer?
1. FREE backup from machine to machine. Just install crashplan in both machine. Set one to be destination backup and you’re done.
2. Easy user interface To me, the UI is clean and nice. And not too complicated like bacula or other backup solution i’ve ever tested.
3. Backup report. It’s awesome when we can receive a backup report status of the machine. With this, we can now which machine is not being backup. You can set the alarm notice your self.
Download latest eclipse (I’m using Linux platform,64 Bit). Download from:
Install eclipse IDE
Install ADT (Android Development Tools) in eclipse.
Osteen is a Pastor at Lakewood Church, United States. He conducted his sermon every Sunday at the giant lakewood church which used to be old compaq data center.
Being a Muslim doesn’t mean it’s forbidded to listen and read from Christians or from other faith. As long it’s in term of knowledge, nothing is wrong. Allah said in the Quran:
“All the knowledge is coming from Allah”..
It’s almost a year I’ve owned this book and it is listed in my favourite book list so far.
Interesting way of motivation session
Pastor osteen always started his sermon with something funny. It makes his audience not to feel to formal in his church.
While from his book, it’s actually a compilation of his presented sermon. The way he relate daily human problem within bible context is amazing. Talking about prophet david, moses, and of course Jesus P.BU.H.
This book sometime give me the way out of my problem by teaching us how to be happy. Well from my observation…..
Blogged via mobile
Recently our company has decided to partial upgrade office computer system to replace 4/5 years Intel Pentium 4.
We decided to purhased few unit of Acer Aspire X-100 pc which we believe able to serve the user just nice. However, that is not what happening. With even a browser open doing nothing, the cpu processing reach up to 94%. This caused lagging performance while doing even word processing. The system come with pre-installed windows 8.
Therefore, I decided to replaced one of it with the wonderful Linux distro, Ubuntu.(I’m a fedora Linux user but I’m suggesting Ubuntu for newbie Linux user).
Now come the major concern. That user PC was previously act as printer server(shared via network) due to strategic location of that PC in the office.
My concern as following:
1. The printer driver for Linux.
2. Challanges of sharing the printer among 98% percent of Windows user.
Will share how I overcome that in my next post.
Blogged via mobile
Saya telah membeli sedikit buah-buahan di pasar malam beberapa minggu lepas. Isteri saya memberitahu kepada saya bahawa epal yang telah saya beli mempunyai tompokan putih yang pelik di atasnya.
Setelah diteliti bahawa ianya disaluti dengan lilin. Ianya mungkin dilakukan oleh peniaga untuk menampakkan buah buahan lebih cantik berkilat.
Pengajaranya, telitilah makanan yang anda dapatkan di pasaran. Dan basuhlah buah-buahan dengan teliti.
I discovered this software while I’m finding the ideal way to record all my daily finance (Every single cents, from groceries, medical, insurance, credit card, and etc.) I used to try practice to record in a book and transfer it to excel last time. But I realise, it’s hard to ensure myself to practice that daily evey night before I go to bed.
So, I’ve decided to go for this software while browsing from Play Store. I’ve been using this for almost 3 month and I found that I like it. Each time I spend, I earn, I’ll record it in this sofware. It also have a feature where we can export to excel spreadsheet which I love the most.
Some screenshot for viewer reference:
Add new expenses
Enjoy your expense recording!!
Early this year, our company decided to retiring few servers. One of it is an Intel(R) Core(TM)2 Quad CPU server: This to allow a brand new server taking place in the rack at our datacenter, AIMS KL. And for sure, to serve our customer with carrier grade server.
Therfore, I decided to convert that 2u server into this:
Convet 2U server move the MOBO to Desktop Casing
I’ve installed a Virtualization server control called Proxmox with capabilities of hosting 2 Virtualization hypervisor (KVM and OpenVZ).
Utilize it as my testing server, and VNC server. So, I don’t have to connect to all the server again and again everyday.
VNC Server on-line 24/7