dnsmasq: stop dns-rebind attacks

Sven Bachmann
Hi, in this years Black Hat conference, Craig Heffner will show an attack against many home routers which is based on DNS rebinding. This article shows you, how to disable it on dnsmasq. DNS rebinding is based on the following scheme (thanks to Mitternachtshacking - article in german): Webbrowser loads page with flash from server DNS for is: 212.18.45.xx with TTL=1 Webbroswer loads xmlsocket-policy from server www.

Nagios: Could not read object configuration data!

Sven Bachmann
If you are using Debian lenny/sid and Nagios complains after apt-get install nagios3 with the message: “Error: Could not read object configuration data!” than one solution could be to add the user www-data to the group www-data. Command: adduser www-data www-data Don’t forget to reload the apache process. For some strange reason this user was not in his default group and so the CGI could not read the file /var/cache/nagios3/objects.