Lin Song hwdsl2

## howto-tomato-l2tp-ipsec-server.markdown

      
              1 file
            
          
              3 forks
            
          
              4 comments
            
          
              20 stars
            
          
                dferg
                / howto-tomato-l2tp-ipsec-server.markdown
            
            
              Last active
              December 18, 2023 21:49
            
              
                HOWTO: Install L2TP/IPsec Server on TomatoUSB
              
          
    Introduction

This howto describes setting up a LT2P over IPsec VPN server on your router with TomatoUSB firmware. This should allow you to connect using the built-in client to your Mac, iPhone or Android device. (Not sure about Windows.)
At the end of this tutorial, you should have a L2TP/IPsec VPN server that starts automatically on boot. Mac/iPhone/Android devices can connect with their native client and will be assigned an IP address within your LAN subnet. They should be able to talk to other devices on your LAN and should be able to contact hosts on the Internet NAT'd behind your WAN IP address.
Requirements


Router running Shibby's fork of TomatoUSB
entware installed to a USB stick mounted at /opt (howto)


## linux上用strongswan搭建ikev2协议vpn.md

      
              1 file
            
          
              68 forks
            
          
              20 comments
            
          
              165 stars
            
          
                losisli
                / linux上用strongswan搭建ikev2协议vpn.md
            
            
              Last active
              February 28, 2023 22:57
            
          
    测试平台：DigitalOcean VPS ubuntu14.04 x64, strongswan5.2.2
运行以下命令请使用root权限
一：安装strongswan

由于ubuntu软件仓库中strongswan版本较低，因此从官网源码编译安装
apt-get install build-essential     #编译环境
aptitude install libgmp10 libgmp3-dev libssl-dev pkg-config libpcsclite-dev libpam0g-dev     #编译所需要的软件

  
## hb-test.py
#!/usr/bin/env python2
"""
Author: takeshix <takeshix@adversec.com>
PoC code for CVE-2014-0160. Original PoC by Jared Stafford (jspenguin@jspenguin.org).

Supportes all versions of TLS and has STARTTLS support for SMTP,POP3,IMAP,FTP and XMPP.
"""

import sys,struct,socket
from argparse import ArgumentParser

## .gitignore
# Compiled source #
###################
*.com
*.class
*.dll
*.exe
*.o
*.so

# Packages #

## ss-redir 透明代理.md

      
              1 file
            
          
              73 forks
            
          
              25 comments
            
          
              312 stars
            
          
                wen-long
                / ss-redir 透明代理.md
            
            
              Last active
              March 18, 2024 12:13
            
              
                ss-redir 透明代理.md
              
          
    ##ss-redir 的 iptables 配置(透明代理)

透明代理指对客户端透明，客户端不需要进行任何设置就使用了网管设置的代理规则

创建 /etc/ss-redir.json 本地监听 7777
运行ss-redir -v -c /etc/ss-redir.json
iptables -t nat -N SHADOWSOCKS
# 在 nat 表中创建新链
iptables -t nat -A SHADOWSOCKS -p tcp --dport 23596 -j RETURN
# 23596 是 ss 代理服务器的端口，即远程 shadowsocks 服务器提供服务的端口，如果你有多个 ip 可用,但端口一致，就设置这个


## nginx.conf
# This configuration file is provided on an "as is" basis,
# with no warranties or representations, and any use of it
# is at the user's own risk.
#
# You will need to edit domain name information, IP addresses for
# redirection (at the bottom), SSL certificate and key paths, and
# the "Public-Key-Pins" header. Search for any instance of "TODO".

user www-data;
worker_processes 4;

## try_or_die.sh
#!/bin/sh

##############################################################################
# This code known is distributed under the following terms:
#
# Copyright (c) 2013 Isaac (.ike) Levy <ike@blackskyresearch.net>.
# All rights reserved.
#
# Redistribution and use in source and binary forms, with or without
# modification, are permitted provided that the following conditions

## setuid-root-backdoor.md

      
              1 file
            
          
              31 forks
            
          
              2 comments
            
          
              85 stars
            
          
                dergachev
                / setuid-root-backdoor.md
            
            
              Last active
              March 16, 2024 00:49
            
              
                How to use setuid to install a root backdoor. 
              
          
    Why You Can't Un-Root a Compromised Machine

Let's say somebody temporarily got root access to your system, whether because you "temporarily" gave them sudo rights, they guessed your password, or any other way. Even if you can disable their original method of accessing root, there's an infinite number of dirty tricks they can use to easily get it back in the future.
While the obvious tricks are easy to spot, like adding an entry to /root/.ssh/authorized_keys, or creating a new user, potentially via running malware, or via a cron job. I recently came across a rather subtle one that doesn't require changing any code, but instead exploits a standard feature of Linux user permissions system called setuid  to subtly allow them to execute a root shell from any user account from the system (including www-data, which you might not even know if compromised).
If the "setuid bit" (or flag, or permission mode) is set for executable, the operating system will run not as the cur

  
## stuns
{url:'stun:stun01.sipphone.com'},
{url:'stun:stun.ekiga.net'},
{url:'stun:stun.fwdnet.net'},
{url:'stun:stun.ideasip.com'},
{url:'stun:stun.iptel.org'},
{url:'stun:stun.rixtelecom.se'},
{url:'stun:stun.schlund.de'},
{url:'stun:stun.l.google.com:19302'},
{url:'stun:stun1.l.google.com:19302'},
{url:'stun:stun2.l.google.com:19302'},

## ghost-performance-nginx-config.conf
# sets the proxy cache path location, max size 2g
proxy_cache_path  /data/nginx/cache  levels=1:2 keys_zone=STATIC:100m inactive=24h max_size=2g;

# transfers the `Host` header to the backend
proxy_set_header        Host $host;

# uses the defined STATIC cache zone
proxy_cache             STATIC;

# cache 200 10 minutes, 404 1 minute, others status codes not cached
	#!/usr/bin/env python2
	"""
	Author: takeshix <takeshix@adversec.com>
	PoC code for CVE-2014-0160. Original PoC by Jared Stafford (jspenguin@jspenguin.org).

	Supportes all versions of TLS and has STARTTLS support for SMTP,POP3,IMAP,FTP and XMPP.
	"""

	import sys,struct,socket
	from argparse import ArgumentParser
	# Compiled source #
	###################
	*.com
	*.class
	*.dll
	*.exe
	*.o
	*.so

	# Packages #
	# This configuration file is provided on an "as is" basis,
	# with no warranties or representations, and any use of it
	# is at the user's own risk.
	#
	# You will need to edit domain name information, IP addresses for
	# redirection (at the bottom), SSL certificate and key paths, and
	# the "Public-Key-Pins" header. Search for any instance of "TODO".

	user www-data;
	worker_processes 4;
	#!/bin/sh

	##############################################################################
	# This code known is distributed under the following terms:
	#
	# Copyright (c) 2013 Isaac (.ike) Levy <ike@blackskyresearch.net>.
	# All rights reserved.
	#
	# Redistribution and use in source and binary forms, with or without
	# modification, are permitted provided that the following conditions
	{url:'stun:stun01.sipphone.com'},
	{url:'stun:stun.ekiga.net'},
	{url:'stun:stun.fwdnet.net'},
	{url:'stun:stun.ideasip.com'},
	{url:'stun:stun.iptel.org'},
	{url:'stun:stun.rixtelecom.se'},
	{url:'stun:stun.schlund.de'},
	{url:'stun:stun.l.google.com:19302'},
	{url:'stun:stun1.l.google.com:19302'},
	{url:'stun:stun2.l.google.com:19302'},
	# sets the proxy cache path location, max size 2g
	proxy_cache_path /data/nginx/cache levels=1:2 keys_zone=STATIC:100m inactive=24h max_size=2g;

	# transfers the `Host` header to the backend
	proxy_set_header Host $host;

	# uses the defined STATIC cache zone
	proxy_cache STATIC;

	# cache 200 10 minutes, 404 1 minute, others status codes not cached