[Solved] Apache2 access log browserToolbarGetData?v=2

Nagios3 as sentinel for your servers and clientsAs I wrote in a previous article, someone is buzzing my server with continuous requests for inexistent resources, just like /browserToolbarGetData?v=2. This could be related with a new ip address i just boght, i don’t know yet but there is no trace of this io address history, so i think i’m the first using it, so io’m prone to belive it is just a remote possibility… anyway let’s tale some countermeasures.
Continue reading “[Solved] Apache2 access log browserToolbarGetData?v=2”

(Visited 181 times, 1 visits today)

Apache2 access.log problem mapi?query= cmd getCounters jsonPrefix _PHJSONPCallback_1046 &rnd=

fail2ban-in-action-for-wordpress-security-and-performancesThis webpage http://file.oboz.ua/files/vf4f51401192c57_20123223481.mail%5B1%5D is trying to make a fishing attack using this page to serve unprocessed html code in order to make something with user of mail.ru.
if you see a log entry like this:

37.147.118.211 - - [02/Jan/2013:08:53:31 +0000] "GET /mapi?query=%7B%22cmd%22%3A%22getCounters%22%2C%22jsonPrefix%22%3A%22__PHJSONPCallback_47%22%7D&rnd=1357116906112 HTTP/1.1" 403 507 "http://my.mail.ru/friends?" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.12 (KHTML, like Gecko) Maxthon/3.0 Chrome/18.0.966.0 Safari/535.12"

Continue reading “Apache2 access.log problem mapi?query= cmd getCounters jsonPrefix _PHJSONPCallback_1046 &rnd=”

Incoming search terms:

  • odnoklassniki ru/mapi?query={cmd:getcounters jsonprefix:__phjsonpcallback_2} (684)
  • odnoklassniki ru/mapi?query={cmd:getcounters} (258)
  • https://ok ru/mapi?query={\cmd\:\getCounters\} (24)
  • odnoklassniki ru/mapi?query={cmd:getCounters jsonPrefix:__PHJSONPCallback_3} (15)
  • odnoklassniki ru/mapi?query={cmd:getCounters jsonPrefix:__PHJSONPCallback_4} (10)
  • growthhyh (1)
(Visited 2,287 times, 1 visits today)

Eclipse PDT: Animation Start An internal error has occurred. java.lang.NullPointerException

eclipseIf you see this message every time you run or debug your scripts, relax it is nothing serious.
I didn’t investigate where the image (think) of the animation is supposed to be, so i can replace it with a one-pixel image.
Anyway there is a workaround for this:
Continue reading “Eclipse PDT: Animation Start An internal error has occurred. java.lang.NullPointerException”

Incoming search terms:

  • An error has occurred See error log for more details java lang NullPointerException (21)
  • EclipsePDT:AnimationStartAninternalerrorhasoccurred java lang NullPointerException|GiuseppeUrsoBlog (13)
  • builtm78 (1)
(Visited 2,124 times, 1 visits today)

[ITA] [RISOLTO] Eclipse PDT: Animation Start An internal error has occurred. java.lang.NullPointerException

eclipseMi è capitato di imbattermi in questo messaggio di errore mentre testavo il debug di Eclipse con Xdebug sul mio mac. A quanto pare non è niente di serio, anzi sembrerebbe (almeno a naso) legato ad un’immagine non trovata, utilizzata appena prima l’ esecuzione di alcuni comandi (come il debug).
Non ho controllato dove dovrebbe trovarsi questa immagine, al limite si potrebbe rimpiazzarla con una innoqua immagine da 1 pixel, ad ogni modo esiste una soluzione a portata di mano, semplice e veloce:
Continue reading “[ITA] [RISOLTO] Eclipse PDT: Animation Start An internal error has occurred. java.lang.NullPointerException”

(Visited 396 times, 1 visits today)

WordPress and the strange “Posted on %A %B %e%q, %Y”

Custom Grunge WordPress LogoApparentely it starts with no reason, but actually it starts because of qtranslate wordpress plugin.
You don’t ave to uninstall it as it is a valid tool.
Just it needs a little adjustment in its code. Continue reading “WordPress and the strange “Posted on %A %B %e%q, %Y””

(Visited 1,967 times, 1 visits today)

Using rsync, ssh and cronjob – automatic secured backup

One of My favourite technical article EVER!

I don’t usually produce redundancy copying articles from other’s websites, but after happened to a website (cannot mention, but it was suddenly closed), i decided to keep it (until its license grants me to keep it).

source: http://troy.jdmz.net/rsync/index.html

Using Rsync and SSH
Keys, Validating, and Automation
This document covers using cron, ssh, and rsync to backup files over
a local network or the Internet. Part of my goal is to ensure no user
intervention is required when the computer is restarted (for passwords,
keys, or key managers).

Incoming search terms:

  • raspberry pi rsync (18)
  • rsync raspberry pi (11)
(Visited 3,898 times, 1 visits today)

[Ita] Come installare XBMC su Raspberry Pi con Raspbian Wheezy

Xbmb on top of raspbian: how to

Questo articolo illustrerà la procedura per installare correttamente XBMC su un Raspberry Pi che utilizza Raspbian Wheezy, ovvero Debian. Continue reading “[Ita] Come installare XBMC su Raspberry Pi con Raspbian Wheezy”

Incoming search terms:

  • raspbian xbmc (104)
  • installare xbmc su raspbian (43)
  • xbmc raspbian (26)
  • raspbian wheezy (23)
  • installare xbmc su raspberry (20)
  • portakalsepeti com (19)
  • raspbian wheezy static ip (18)
  • raspbian wheezy xbmc (18)
  • come installare xbmc su raspberry pi (14)
  • installare xbmc su raspberry pi (13)
(Visited 18,331 times, 1 visits today)

WordPress and “ALERT – script tried to increase memory_limit to 268435456 bytes” issue

untitledSometimes you can find the following line appearing in your webserver error logs:

[Tue Mar 13 10:48:03 2012] [error] [client 23.19.25.190] ALERT - script tried to increase memory_limit to 268435456 bytes which is above the allowed value (attacker '23.xx.25.190', file '/var/www/xxxxx/xxxxxx/xxxxxx/web/wp-admin/admin.php', line 109), referer: http://website.com/wp-admin/edit.php

There is a quick solution and it can be found in a file called:

wp-includes/default-constants.php

[20121223 – UPDATED]: Please, see the Andreas comment below.
It seems to be better to move the “define(‘WP_MAX_MEMORY_LIMIT’, ’64M’);” in wp-config.php rather than default-constants.php. Anyway this stopped after the wordpress update
Thank you Andreas!

you can easily change (around line 96) the var value from 256 megs to the memory size that best suits your server needs.

Do not hesitate to comment for help.

Incoming search terms:

  • late5pf (1)
(Visited 1,898 times, 2 visits today)

WordPress and “ALERT – configured POST variable limit exceeded – dropped variable” issue

ICustom Grunge WordPress Logot may happen in several hosting environments to discover this line in your webserver error log:

ALERT - configured POST variable limit exceeded - dropped variable 'name_of_dropped_variable' (attacker '20.2.26.212', file '/several dirs..../wp-admin/post.php'), referer: http://sitename.tld/wp-admin/post.php?post=181&action=edit

Well i discovered and solved this situation:

Cause: It is caused by PHP suhosin

you can “locate” it on your disk it using the “locate” command as follows

(if it is first time you use locate) type:

# updatedb

then type:

# locate suhosin

for my machine (debian) it is located within /etc/php5/conf.d/suhosin.ini

so you can edit it by typing:

#nano /etc/php5/conf.d/suhosin.ini

Now, look into your suhosin.ini fìle until you see the followings vars:

suhosin.post.max_vars

suhosin.request.max_vars

You want to remove the comment symbol “;” from the very beginning of these two lines and the increase the default value (it should be 200) to at least 500 in order to make complex wordpress themes working properly.

Remember to kick apache2 typing

#/etc/init.d/apache2 restart

Incoming search terms:

  • alert - configured post variable limit exceeded - dropped variable (12)
  • balloonzom (1)
(Visited 2,882 times, 1 visits today)

VPS: Debian squeeze apt-get update returned an error code (1)

Also known as “E: Sub-process /usr/bin/dpkg returned an error code (1)“.
Well you are trying to run apt-get upgrade on a virtual private server running Debian squeeze (it can happen on Lenny too) hosted on several Xen based platforms.
It happens because grub cannot find your disk in order to rewrite your initrd image.

Since Xen kernel management is transparent to your machine itself, and it is all you need in order to boot your machine, you can remove grub with no fear, typing:

root@apple.com:~#apt-get remove grub-legacy grub-common

And yes, finally you will go to the end of your apt-get upgrade process.

Hope this can help out there!

 

Output of my machine follows:

Setting up linux-image-2.6.32-5-amd64 (2.6.32-39squeeze1) ...
Running depmod.
Running update-initramfs.
update-initramfs: Generating /boot/initrd.img-2.6.32-5-amd64
Examining /etc/kernel/postinst.d.
run-parts: executing /etc/kernel/postinst.d/initramfs-tools 2.6.32-5-amd64 /boot/vmlinuz-2.6.32-5-amd64
run-parts: executing /etc/kernel/postinst.d/zz-update-grub 2.6.32-5-amd64 /boot/vmlinuz-2.6.32-5-amd64
Searching for GRUB installation directory ... found: /boot/grub
warning: grub-probe can't find drive for /dev/xvda1.
grub-probe: error: cannot find a GRUB drive for /dev/xvda1.  Check your device.map.
run-parts: /etc/kernel/postinst.d/zz-update-grub exited with return code 1
Failed to process /etc/kernel/postinst.d at /var/lib/dpkg/info/linux-image-2.6.32-5-amd64.postinst line 799.
dpkg: error processing linux-image-2.6.32-5-amd64 (--configure):
subprocess installed post-installation script returned error exit status 2
Setting up linux-image-2.6.32-5-xen-amd64 (2.6.32-39squeeze1) ...
configured to not write apport reports
Running depmod.
Running update-initramfs.
update-initramfs: Generating /boot/initrd.img-2.6.32-5-xen-amd64
Examining /etc/kernel/postinst.d.
run-parts: executing /etc/kernel/postinst.d/initramfs-tools 2.6.32-5-xen-amd64 /boot/vmlinuz-2.6.32-5-xen-amd64
run-parts: executing /etc/kernel/postinst.d/zz-update-grub 2.6.32-5-xen-amd64 /boot/vmlinuz-2.6.32-5-xen-amd64
Searching for GRUB installation directory ... found: /boot/grub
warning: grub-probe can't find drive for /dev/xvda1.
grub-probe: error: cannot find a GRUB drive for /dev/xvda1.  Check your device.map.
run-parts: /etc/kernel/postinst.d/zz-update-grub exited with return code 1
Failed to process /etc/kernel/postinst.d at /var/lib/dpkg/info/linux-image-2.6.32-5-xen-amd64.postinst line 799.
dpkg: error processing linux-image-2.6.32-5-xen-amd64 (--configure):
subprocess installed post-installation script returned error exit status 2
configured to not write apport reports
Errors were encountered while processing:
linux-image-2.6.32-5-amd64
linux-image-2.6.32-5-xen-amd64
E: Sub-process /usr/bin/dpkg returned an error code (1)

After the cure, finally:

root@apple.com:~# apt-get remove grub-legacy grub-common
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages were automatically installed and are no longer required:
gettext-base libfreetype6 ucf os-prober
Use 'apt-get autoremove' to remove them.
The following packages will be REMOVED:
grub-common grub-legacy
0 upgraded, 0 newly installed, 2 to remove and 0 not upgraded.
2 not fully installed or removed.
After this operation, 5,931 kB disk space will be freed.
Do you want to continue [Y/n]? Y
(Reading database ... 17063 files and directories currently installed.)
Removing grub-legacy ...
Removing grub-common ...
Processing triggers for man-db ...
Processing triggers for install-info ...
Setting up linux-image-2.6.32-5-amd64 (2.6.32-39squeeze1) ...
Running depmod.
Running update-initramfs.
update-initramfs: Generating /boot/initrd.img-2.6.32-5-amd64
Examining /etc/kernel/postinst.d.
run-parts: executing /etc/kernel/postinst.d/initramfs-tools 2.6.32-5-amd64 /boot/vmlinuz-2.6.32-5-amd64
run-parts: executing /etc/kernel/postinst.d/zz-update-grub 2.6.32-5-amd64 /boot/vmlinuz-2.6.32-5-amd64
Setting up linux-image-2.6.32-5-xen-amd64 (2.6.32-39squeeze1) ...
Running depmod.
Running update-initramfs.
update-initramfs: Generating /boot/initrd.img-2.6.32-5-xen-amd64
Examining /etc/kernel/postinst.d.
run-parts: executing /etc/kernel/postinst.d/initramfs-tools 2.6.32-5-xen-amd64 /boot/vmlinuz-2.6.32-5-xen-amd64
run-parts: executing /etc/kernel/postinst.d/zz-update-grub 2.6.32-5-xen-amd64 /boot/vmlinuz-2.6.32-5-xen-amd64

et voilà

And now

Some music

Incoming search terms:

  • raspbmc dpkg: error processing network-manager (--configure): (10)
(Visited 3,234 times, 1 visits today)