looking for a good man(1)

 dinosaur, mac, security, tech  Comments Off on looking for a good man(1)
Jan 152012
 
looking for a good man(1)

I like documentation.   Programs should have it.  But on the heels of the man path thing I did some more looking on my  Snow Leopard System. Finding all the SUID files outside the traditional /sbin areas shows a few more (e.g. “find -x / -type f -perm -04000 -ls”.)   Looks like 15 files, 8 of them by 3rd party vendors (good to know lazy coders are still out there): […]

walk like a /usr/bin/man

 code, dinosaur, mac, security, tech  Comments Off on walk like a /usr/bin/man
Jan 142012
 

Sometime, probably in the paleozoic era, I wrote a little perl script I just came across again.  At the time  I was frustrated by commands in /bin or /usr/bin not having documentation, even on a cleanly installed system… I guess I would think if something is important enough to install on a system you might want to tell your users what it does… so I thought I’d look at how […]

getting password hash on OS-X

 code, mac, security, tech  Comments Off on getting password hash on OS-X
Jan 142012
 

I keep having to look this up… so here’s a perl script (click to DL below). Also prints out some other stuff I keep forgetting how to get. Also does it for the user logged in, so you can sudo and have it work. Will die if you can’t read the hash file. Sample run: # ./get_hashpipe.pl Running Snow Leopard, version 10.6.8 You is: zen Gen UID for zen […]

Security in Bullet Time

 philosophy, security  Comments Off on Security in Bullet Time
Jan 102012
 
Security in Bullet Time

I’ve been thinking of virtual systems and probing and prodding the same. Virtualizing is sort of sticking something in amber, but instead of being a dead or frozen system it’s a place you can run anything you want for as long as you want, it’s alive; and it can be exactly like a target you want to hit, analyze, tear apart. To me in the virtual flytrap world things […]