This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
foreach ($config['system']['user'] as $user) { | |
if (!empty($user['md5-hash'])) { | |
echo "{$user['name']},{MD5}{$user['md5-hash']}\n"; | |
} | |
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
diff --git a/etc/inc/vpn.inc b/etc/inc/vpn.inc | |
index 4d242e6..fc4bce5 100644 | |
--- a/etc/inc/vpn.inc | |
+++ b/etc/inc/vpn.inc | |
@@ -575,7 +575,7 @@ EOD; | |
$uniqueids = 'yes'; | |
if (!empty($config['ipsec']['uniqueids'])) { | |
- if (in_array($uniqueids, $ipsec_idhandling)) | |
+ if (array_key_exists($config['ipsec']['uniqueids'], $ipsec_idhandling)) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Apr 2 10:35:06 openvpn[74272]: OpenVPN 2.3.6 amd64-portbld-freebsd10.1 [SSL (OpenSSL)] [LZO] [MH] [IPv6] built on Mar 31 2015 | |
Apr 2 10:35:06 openvpn[74272]: library versions: OpenSSL 1.0.1l-freebsd 15 Jan 2015, LZO 2.09 | |
Apr 2 10:35:06 openvpn[74272]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts | |
Apr 2 10:35:06 openvpn[74272]: TUN/TAP device ovpns2 exists previously, keep at program end | |
Apr 2 10:35:06 openvpn[74272]: TUN/TAP device /dev/tun2 opened | |
Apr 2 10:35:06 openvpn[74272]: ioctl(TUNSIFMODE): Device busy: Device busy (errno=16) | |
Apr 2 10:35:06 openvpn[74272]: do_ifconfig, tt->ipv6=1, tt->did_ifconfig_ipv6_setup=0 | |
Apr 2 10:35:06 openvpn[74272]: /sbin/ifconfig ovpns2 10.0.14.1 10.0.14.2 mtu 1500 netmask 255.255.255.255 up | |
Apr 2 10:35:06 openvpn[74272]: /usr/local/sbin/ovpn-linkup ovpns2 1500 1560 10.0.14.1 10.0.14.2 init | |
Apr 2 10:35:06 openvpn[75323]: UDPv4 link local (bound): [AF_INET]192.168.20.74:1195 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Site A | |
P1 Tunnel to Site B | |
P2 A->B | |
P2 C->B | |
P1 Tunnel to Site C | |
P2 A->C | |
P2 B->C | |
Site B | |
P1 Tunnel to Site A |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
: cat /etc/fstab | |
/dev/ufs/pfsense0 / ufs ro,sync,noatime 1 1 | |
/dev/ufs/cf /cf ufs ro,sync,noatime 1 1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Hey folks, | |
I'm an entrepreneur based in the Bay Area.. in this case, It appears our once open & trusting attitude towards our regular guests @ home-hackatons most likely lead to its demise. The result -- a total compromise of our personal network, all workstations and mobile devices - and of course, my PFSense/Netgate C2758 I had been evaluating was among the casualties. | |
Before I go any further, the C2758 support code is: 2809614B . Also to clarify: the device has been offline for the past 6 months and I have really not spent much time evaluating the extent of the compromise. From what little I recall, it seemed the NIC oproms had been reflashed and I'm assuming the extent of the compromise was more substantial. | |
If the approach is at all similar to the handful of our other systems I've spent time evaluating -- then you may well find the system of interest. In those cases, each involved rootkits that would consistently survive restoration efforts using various known methods of persistence. One or |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$ git diff RELENG_2_2_3 RELENG_2_2 -- etc/inc/ipsec.inc > ../ipsec_stuff.diff | |
$ git diff RELENG_2_2_3 RELENG_2_2 -- etc/inc/vpn.inc >> ../ipsec_stuff.diff | |
$ cat ../ipsec_stuff.diff | |
diff --git a/etc/inc/ipsec.inc b/etc/inc/ipsec.inc | |
index 8bfed07..5c7d15d 100644 | |
--- a/etc/inc/ipsec.inc | |
+++ b/etc/inc/ipsec.inc | |
@@ -44,22 +44,22 @@ $ipsec_loglevels = array("dmn" => "Daemon", "mgr" => "SA Manager", "ike" => "IKE | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Directory to output the videos | |
DESTDIR=~/Videos/ | |
# Delay before starting | |
DELAY=10 | |
# Sound notification to let one know when recording is about to start (and ends) | |
beep() { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Directory to output the videos | |
DESTDIR=~/Videos/ | |
# Delay before starting | |
DELAY=10 | |
# Sound notification to let one know when recording is about to start (and ends) | |
beep() { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Something went wrong, check errors! | |
Log saved on /usr/obj./usr/home/pfsense/freesbie2/.tmp_buildkernel | |
mfi.o(.text+0x5480): In function `mfi_attach': | |
: undefined reference to `mfi_tbolt_alloc_cmd' | |
mfi.o(.text+0x54a8): In function `mfi_attach': | |
: undefined reference to `mfi_intr_tbolt' | |
mfi.o(.text+0x5716): In function `mfi_attach': | |
: undefined reference to `mfi_intr_tbolt' | |
mfi.o(.text+0x593c): In function `mfi_attach': | |
: undefined reference to `mfi_tbolt_sync_map_info' |