I needed a command line tool to ping a number of CIDR network ranges, show me the status of each IP address and give me a return time for those that responded. I now have cidr_pinger.pl. It’s not as fast as a ‘nmap -sP blah/24’ but it does give me a return time. Although it only took ten minutes work with the ever incredible CPAN I’m putting it on here Read on →

Adding FireFox extensions through the GUI one-by-one is, if you ignore memory leaks, one of the browsers most annoying quirks. Fortunately, modern versions of the browser allow you to drop a number of xpi files in to your “extensions” directory and install them as a batch when you start FireFox. Of course you need local copies to do this but that’s where a little bit of perl web spidering comes in… The hardest part of the process is actually finding where to drop them. Read on →

I’ve got a couple of new Greasemonkey scripts I’ve been using. First up is Expand Undeadly/OpenBSD Journal Comments. Which does just that. I’ve also started using the Mozilla.org Add-on Pages - 100 results per page script after I started to go insane from constantly clicking for more results. The last plugin from the batch was never finished as someone else had already gotten around to it! Google Images in IMDb was just waiting to be written. Read on →

As the title says, Mozilla.org has announced the Extend Firefox Finalists. Of the 18 plugins that have made it to the last round I’m already using five of them so I’m pretty happy with the list.

While discussing the FIA via SSH article, one of my comments got some feedback; the comment was sudos config potentially giving the game away. A number of people suggested the same solution, patch where the source looks for the config file and compile it yourself. The idea is that you put a fake config file in the usual place, patch the source to use a different location and then compile the application. Read on →

Since being bitten by the Greasemonkey bug I’ve found dozens of ways to write broken and invalid JavaScript. While the JavaScript console that comes bundled with FireFox has helped track them down it’s come up short on a number of occasions. Fortunately we’ve now got FireBug, a per page JavaScript console with a bundle of extras. Including an integrated element inspector and XMLHttpRequest sniffer that shows you any AJAX traffic. And now for an related, annoying quirk. Read on →

I’m on call this weekend so I’m pretty limited in what I can get up to. At least that’s my excuse for watching TV… First up I saw the movie adaptation of Doom. I’ve blogged about the Doom movie before and unfortunately I was right. It was bloody terrible. Almost no plot, insanely bad voice acting from Rosamund Pike and lots of pointless corridors. The only highlight was the first person section that gave a nod to the original franchise. Read on →

Hal Pomeranz has an interesting article on File Integrity Assessment via SSH over at sysadmin magazine (well worth a subscription). At my last job a couple of us discussed doing something similar so I enjoyed the article; it’s nice to see someone actually implement the damn thing. The basic idea addresses one of the implicit weaknesses with FIA tools. You give the attacker an obvious target to try and subvert. While there are little tricks you can employ to make their life harder (add a false positive so if they replace the binary with a fake it doesn’t report everything you’d expect etc.) Hals technique moves the whole FIA setup off the machine. Read on →

What do multiple Nagios status pages, network traffic graphs and RT incident queues have in common? They’re all tabs I have open throughout the day. Because any of them can change at anytime, watching them has been always been a PITA. I used to get around this with a custom kludge that drove IE through a set series of pages. On the upside it worked. On the downside the periodic flicker of page changes drove me nuts. Read on →

Once you’ve been using a tool for a while you often reach a plateau where it’s “good enough” and you stop looking for ways to tweak it. I’ve been using bash for a number of years and I’ve got set in my ways; until I sat next to a co-worker who uses zsh. My first Linux machine had a 14” monitor that could only do low resolutions. Screen space was at a premium and every character was precious. Read on →