aelius

Bun venit. Iti recomand Facultatea de Automatica, Electronica si Calculatoare in Craiova. Este foarte bine cotata si se invata bine acolo. Sper ca esti constient ca o sa ai si 12 ore pe zi. Daca mergi acolo, sa iti cumperi un filtru nou de cafea. O sa ai nevoie pentru noptile cand nu o sa dormi si o sa citesti manuale interminabile de +1000 de pagini. Sa nu mergi la Universitate pentru ca diploma de acolo este doar o hartie de sters la fund. Toti stiu ca acolo se trece doar cu jumatea de porc si damigeana de vin. Plus ca nu inveti nimic si te scuipa lumea. Seara, daca ai chef de buleala, mergi la Facultatea de Agronomie pe Brestei, cu o paine si o bara de salam, tragi pe cocosel tot caminul )

(22:26:46) aelius: http://25.media.tumblr.com/11260d97f09f0f2b395c723c129f9ad2/tumblr_mxrcoha2Xt1qksdfgo1_500.jpg (22:26:52) aelius: pe asta buna o cautai ? (22:26:55) aelius: )))))))))) (22:27:47) Zatarra: Ba tex (22:27:50) Zatarra: O vazut pretenamea (22:27:51) Zatarra: Auzi (22:27:55) Zatarra: Dute-n pula mea (22:27:57) Zatarra: De scarbos (22:27:58) Acidripp_banned: ))))))) (22:27:58) Zatarra: )))))) (22:28:00) 1337: lol (22:28:03) 1337: )))))))) (22:28:03) aelius: HAHAHHAHAHAHAHAHHAHA (22:28:05) tedeus: ))))))))))))))))))))))))))))

Arata-ne si noua staff-ul de care vorbesti: https://rstforums.com/forum/showgroups.php In plus, exista o sectiune dedicata in care iti poti exprima nemultumirile fata de moderatori, admini, imparati de chat si ce o mai fi ei. Daca tot spui ca aici e "Retard & Stupid Team", tu ce cauti ?

Daca tot va pierdeti timpul cu asa ceva, macar nu rulati porcariile ca 'root'. Vad ca foloseste pscan in loc de syn scan, asadar nu sunt necesare privilegii de root. Si citeste mai bine primul post al celui ce a deschis threadul. Comanda respectiva se executa cu argumente. De asemenea, nu scana de acasa. Ati baut gaz fratilor?!

Da, eu lucrez cel mai mult in CLI. Pana deschizi Photoshop .... pana editezi ceva. E vorba doar de o comanda la exiftool. Poti sterge si adauga meta-urile intr-o singura secunda. Apropo de stergerea meta-urilor: Chiar crezi ca sunt multi care el sterg ? Imaginea ta: macbook ~$ exiftool-5.12 1_Search_Engine_Optimization_for_Images.jpg ExifTool Version Number : 9.06 File Name : 1_Search_Engine_Optimization_for_Images.jpg Directory : . File Size : 59 kB File Modification Date/Time : 2014:01:17 10:46:37+02:00 File Access Date/Time : 2014:01:17 11:20:06+02:00 File Permissions : rw-r--r-- File Type : JPEG MIME Type : image/jpeg Exif Byte Order : Big-endian (Motorola, MM) Image Description : NOVAtu Tutorial Search Engine Optimization for Images Orientation : Horizontal (normal) X Resolution : 72.009 Y Resolution : 72.009 Resolution Unit : inches Software : Adobe Photoshop CS6 (Windows) Modify Date : 2014:01:17 09:43:41 Artist : NOVAtu Rstforums Copyright : Daca postati acest tutorial pe blog-ul vostru, va rog sa precizati sursa Color Space : sRGB Exif Image Width : 800 Exif Image Height : 650 Compression : JPEG (old-style) Thumbnail Offset : 498 Thumbnail Length : 7776 Current IPTC Digest : 49293efeaee7d2a6fcce759d15743d9e Coded Character Set : UTF8 Application Record Version : 0 Caption-Abstract : NOVAtu Tutorial Search Engine Optimization for Images By-line : NOVAtu Rstforums By-line Title : NOVAtu Search Engine Optimizatio Object Name : Search Engine Optimization for Images Time Created : 00:00:00+00:00 Province-State : MADRID Country-Primary Location Name : SPAIN Keywords : Search Engine, SEO for Images, Optimization for Images Copyright Notice : Daca postati acest tutorial pe blog-ul vostru, va rog sa precizati sursa IPTC Digest : 49293efeaee7d2a6fcce759d15743d9e Displayed Units X : inches Displayed Units Y : inches Global Angle : 30 Global Altitude : 30 Copyright Flag : True URL : https://rstforums.com/forum/80116-search-engine-optimization-pentru-imagini.rst Photoshop Thumbnail : (Binary data 7776 bytes, use -b option to extract) Photoshop Quality : 3 Photoshop Format : Standard Progressive Scans : 3 Scans XMP Toolkit : Adobe XMP Core 5.3-c011 66.145661, 2012/02/06-14:56:27 Creator Tool : Adobe Photoshop CS6 (Windows) Create Date : 2014:01:17 08:55:05+01:00 Metadata Date : 2014:01:17 09:43:41+01:00 Rating : 5 Format : image/jpeg Color Mode : RGB ICC Profile Name : sRGB IEC61966-2.1 Authors Position : NOVAtu Search Engine Optimization Date Created : 2014:01:17 City : ALCORCON State : MADRID Country : SPAIN Headline : Search Engine Optimization for Images Web Statement : https://rstforums.com/forum/80116-search-engine-optimization-pentru-imagini.rst Marked : True Instance ID : xmp.iid:6ECB971B537FE3118943C952ABA80518 Document ID : xmp.did:6DCB971B537FE3118943C952ABA80518 Original Document ID : xmp.did:6DCB971B537FE3118943C952ABA80518 Title : Search Engine Optimization for Images Creator : NOVAtu Rstforums Description : NOVAtu Tutorial Search Engine Optimization for Images Rights : Daca postati acest tutorial pe blog-ul vostru, va rog sa precizati sursa Subject : Search Engine, SEO for Images, Optimization for Images Supplemental Categories : security Creator Work URL : https://rstforums.com/ Person In Image : Search Engine Optimization for Images History Action : saved, converted, saved History Instance ID : xmp.iid:6DCB971B537FE3118943C952ABA80518, xmp.iid:6ECB971B537FE3118943C952ABA80518 History When : 2014:01:17 09:43:41+01:00, 2014:01:17 09:43:41+01:00 History Software Agent : Adobe Photoshop CS6 (Windows), Adobe Photoshop CS6 (Windows) History Changed : /, / History Parameters : from image/png to image/jpeg Profile CMM Type : Lino Profile Version : 2.1.0 Profile Class : Display Device Profile Color Space Data : RGB Profile Connection Space : XYZ Profile Date Time : 1998:02:09 06:49:00 Profile File Signature : acsp Primary Platform : Microsoft Corporation CMM Flags : Not Embedded, Independent Device Manufacturer : IEC Device Model : sRGB Device Attributes : Reflective, Glossy, Positive, Color Rendering Intent : Media-Relative Colorimetric Connection Space Illuminant : 0.9642 1 0.82491 Profile Creator : HP Profile ID : 0 Profile Copyright : Copyright (c) 1998 Hewlett-Packard Company Profile Description : sRGB IEC61966-2.1 Media White Point : 0.95045 1 1.08905 Media Black Point : 0 0 0 Red Matrix Column : 0.43607 0.22249 0.01392 Green Matrix Column : 0.38515 0.71687 0.09708 Blue Matrix Column : 0.14307 0.06061 0.7141 Device Mfg Desc : IEC http://www.iec.ch Device Model Desc : IEC 61966-2.1 Default RGB colour space - sRGB Viewing Cond Desc : Reference Viewing Condition in IEC61966-2.1 Viewing Cond Illuminant : 19.6445 20.3718 16.8089 Viewing Cond Surround : 3.92889 4.07439 3.36179 Viewing Cond Illuminant Type : D50 Luminance : 76.03647 80 87.12462 Measurement Observer : CIE 1931 Measurement Backing : 0 0 0 Measurement Geometry : Unknown (0) Measurement Flare : 0.999% Measurement Illuminant : D65 Technology : Cathode Ray Tube Display Red Tone Reproduction Curve : (Binary data 2060 bytes, use -b option to extract) Green Tone Reproduction Curve : (Binary data 2060 bytes, use -b option to extract) Blue Tone Reproduction Curve : (Binary data 2060 bytes, use -b option to extract) DCT Encode Version : 100 APP14 Flags 0 : Encoded with Blend=1 downsampling APP14 Flags 1 : (none) Color Transform : YCbCr Image Width : 800 Image Height : 650 Encoding Process : Baseline DCT, Huffman coding Bits Per Sample : 8 Color Components : 3 Y Cb Cr Sub Sampling : YCbCr4:2:0 (2 2) Date/Time Created : 2014:01:17 00:00:00+00:00 Date/Time Original : 2014:01:17 00:00:00+00:00 Image Size : 800x650 Thumbnail Image : (Binary data 7776 bytes, use -b option to extract) macbook ~$ ps: Sa nu cazi la extrema cu asta Imaginea originala: macbook ~$ du -csh 1_Search_Engine_Optimization_for_Images.jpg 60K 1_Search_Engine_Optimization_for_Images.jpg 60K total macbook ~$ Imaginea fara tag-uri: macbook ~$ du -csh 1_Search_Engine_Optimization_for_Images.jpg 36K 1_Search_Engine_Optimization_for_Images.jpg 36K total macbook ~$ Pentru a sterge toate meta-urile: macbook ~$ exiftool-5.12 -all= 1_Search_Engine_Optimization_for_Images.jpg 1 image files updated macbook ~$ Cum arata cu meta-urile sterse: macbook ~$ exiftool-5.12 1_Search_Engine_Optimization_for_Images.jpg ExifTool Version Number : 9.06 File Name : 1_Search_Engine_Optimization_for_Images.jpg Directory : . File Size : 32 kB File Modification Date/Time : 2014:01:17 11:29:01+02:00 File Access Date/Time : 2014:01:17 11:28:59+02:00 File Permissions : rw-r--r-- File Type : JPEG MIME Type : image/jpeg DCT Encode Version : 100 APP14 Flags 0 : Encoded with Blend=1 downsampling APP14 Flags 1 : (none) Color Transform : YCbCr Image Width : 800 Image Height : 650 Encoding Process : Baseline DCT, Huffman coding Bits Per Sample : 8 Color Components : 3 Y Cb Cr Sub Sampling : YCbCr4:2:0 (2 2) Image Size : 800x650 macbook ~$ Cred ca ai adaugat mult prea multe cu Photoshopul

Din cate probabil stiti, google indexeaza mult mai multe informatii decat vedem in motorul de cautare in mod obisnuit. La aceste informatii se adauga si metadata din imagini. Am observat asta cautand in google images dupa niste tag-uri si am examinat o imagine sa vad pe ce criteriu mi-a aparut in search pentru ca numele acesteia nu avea nicio legatura cu ce am cautat eu. Imaginea am analizat-o cu exiftool Sa vedem cum sta treaba. Descarcam o imagine de pe un site oarecare: marian@pluto:~/work/seo$ curl -o imagine.jpg http://cache.pakistantoday.com.pk/2013/05/5274-gun-fire-WallFizz.jpg % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 341k 100 341k 0 0 180k 0 0:00:01 0:00:01 --:--:-- 248k marian@pluto:~/work/seo$ Vedem ce informatii meta contine imaginea originala: macbook seo$ exiftool-5.12 imagine.jpg ExifTool Version Number : 9.06 File Name : imagine.jpg Directory : . File Size : 49 kB File Modification Date/Time : 2014:01:16 23:35:43+02:00 File Access Date/Time : 2014:01:16 23:35:43+02:00 File Permissions : rw-r--r-- File Type : JPEG MIME Type : image/jpeg JFIF Version : 1.01 Resolution Unit : inches X Resolution : 1 Y Resolution : 1 Image Width : 600 Image Height : 400 Encoding Process : Baseline DCT, Huffman coding Bits Per Sample : 8 Color Components : 3 Y Cb Cr Sub Sampling : YCbCr4:2:0 (2 2) Image Size : 600x400 macbook seo$ Adaugam ceva keywords, descriere, copyright: marian@pluto:~/work/seo$ exiftool \ > -Comment='Brandurile comercializate de compania RST LTD va asigura garantia calitatii' \ > -Keywords='calitate,nume produs,cod produs, exemplu ..' \ > -Copyright='RST LTD @ 2014' \ > imagine.jpg 1 image files updated Verificam informatiile introduse in imagine: marian@pluto:~/work/seo$ exiftool imagine.jpg ExifTool Version Number : 8.60 File Name : imagine.jpg Directory : . File Size : 342 kB File Modification Date/Time : 2014:01:16 21:58:28+00:00 File Permissions : rw-r--r-- File Type : JPEG MIME Type : image/jpeg JFIF Version : 1.01 Exif Byte Order : Big-endian (Motorola, MM) X Resolution : 1 Y Resolution : 1 Resolution Unit : None Y Cb Cr Positioning : Centered Copyright : RST LTD @ 2014 Current IPTC Digest : 5e9c360d0a9d4da80f86fbad65df409b Keywords : calitate,nume produs,cod produs, exemplu .. Application Record Version : 4 Comment : Brandurile comercializate de compania RST LTD va asigura garantia calitatii Image Width : 1600 Image Height : 1200 Encoding Process : Baseline DCT, Huffman coding Bits Per Sample : 8 Color Components : 3 Y Cb Cr Sub Sampling : YCbCr4:2:0 (2 2) Image Size : 1600x1200 Referinte: - ExifTool - Wikipedia, the free encyclopedia - ExifTool by Phil Harvey - exiftool Application Documentation Official Google Webmaster Central Blog: 1000 Words About Images Q: What happens to the EXIF, XMP and other metadata my images contain? A: We may use any information we find to help our users find what they’re looking for more easily. Additionally, information like EXIF data may be displayed in the right-hand sidebar of the interstitial page that appears when you click on an image. Q: Should I really submit an Image Sitemap? What are the benefits? A: Yes! Image Sitemaps help us learn about your new images and may also help us learn what the images are about. Nota: Chestia cred ca este buna daca cineva va fura tot timpul pozele facute de voi. Il puteti da in judecata si aveti dovada clara ca pozele sunt ale voastre (prin metadata info) Avantajul este ca puteti ridica un site web si in google images dupa anumite cuvinte cheie. Daca postati acest tutorial pe blog-ul vostru, va rog sa precizati sursa: https://rstforums.com/forum/80116-search-engine-optimization-pentru-imagini.rst

Din intamplare am autorizatie de lucru pana la 20Kv. Va spun sincer ca ar trebui sa va potoliti cu astea si sa platiti pe ce consumati. @ovidelu47: - Daca la borna 1 a contorului nu apare Faza este posibila frauda. Exista devize de instalare si este specificat clar cum a fost montat. - Daca pun clestele ampermetric pe faza ce merge catre tine si imi arata 20 de AMPERI, eu stiu ca tu ai consum de 4.4 KWh. Este exact invers: https://rstforums.com/forum/70814-metode-furt-curent-electric-10.rst#post503143 Numaratoarea precum si scrisul la romani este de la stanga la dreapta, nu invers. @p3bogdan: Consumul de pe casa scarii este impartit la locatari. Exista un contor comun. Deci vrei sa stai acasa cu stromeleacu-n sus langa caloriferul electric si sa plateasca oamenii caldura ta ? Acum controalele se fac cu politie, nu mai e ca pe vremuri sa vina doi gigei si sa le dai o damigeana de vin ca te-au prins. Si acum banuiesc ca threadul poate fi inchis pentru ca deja este vorba de un furt si nicidecum de cunostinte din domeniu. Multumesc pentru intelegere.

asta se ocup cu curvasareala iar categoria asta este pentru Black Seo si monetizare. Spam-ul pe index pleaca de la reply-uri, nu de la un thread deschis. E simplu, nu mai dati reply de pomana si folositi report. thread closed. "There are currently 51 users browsing this thread. (49 members and 2 guests)", Sa va alerg ma! Daca era un curs de ceva, nu era inghesuiala asa // edit: Ban lui cross pentru threaduri de rahat. Unele din ele sunt cu e-whoring. Aici nu e comunitate de curvalai. In plus, e-whoring e frauda. Ban si dj3mixx pentru insulta: https://rstforums.com/forum/members/putoare/?tab=reputation#reputation-content

Daca facea networksolutions asta in Germania, isi lua un 10.000 de euro amenda. Practici de rahat. In privinta threadului: Chiar nu vad ce legatura are cu tutorialele.

Numele domeniului a fost 'cenzurat' la cerere din posturile acestui thread. Confirm asta. Au fost niste neintelegeri intre el si un moderator. Are concediu o saptamana si nu ne bagam peste deciziile celorlalti admini/moderatori. Utilizatorul este de incredere.

Multumim, asteptam aia cu NSA iti poate accesa calculatorul, chiar daca este scos din priza. )

Salut, Sunt patriahul bisericii ortodoxe romane, arhiepiscop al bucurestilor, mitropolit al munteniei si dobrogei, loctiitor al inaltului tron episcopal din cezareea capadociei, patron peste casele de toleranta din bucuresti, preafericitul detinator al panaramelor de lux din braila, imparat peste biserici si ceruri si sfatul meu este sa te pocaiesti caci sfarsitul este aproape fiule. Numai prin cainta si rugaciune iti vei atinge telul. Viata ta se va schimba in bine, fericirea te va cuprinde atat in CURsul noptii cat si in timpul zilelor insorite, vei avea bani cu sacul si vei gasi cele mai tari hack-uri in materie de facebook, yahoo messenger si alte site-uri si aplicatii preacurvite internationale.

Ai fi vrut sa-l iei tu, cu 6 posturi ) Sobolan mic de stepa ce esti.

(22:55:51) Oust: Daca da Domnul sa mearga treaba cu porno-ul imi iau PS4! O sa arzi in iad! )

// Update Sunt doar doua bucati: Cpu Model: Xeon 3065 @ 2.33 GHz Cpu Specs: 2 Core, 4MB L2 Cache 2 x 160 GB SATA (Raid 1 Software) Memory: 8 GB Network Port Speed: 100Mbps 1 IP Addresses included with custom reverse DNS Monthly cost: 50 euro Setup fee: 0 // S-au dat ambele.

Inseamna ca nu am invatat amandoi acelasi PHP si eu stiu altul ) Vezi ca exista 'socket programming' in php

Scuze ... dar e un gunoi de script. Macar nu mai spune ca l-ai facut tu. Oricum el zice ca e facut de altcineva: Scriptul nu este bun pentru "adus vizite" pentru ca nu stie sa faca load cumva si la javascript (ex: sa contorizeze si google analytics vizitele). De DDoS Nu poate fi vorba pentru ca deschide "simultan?!" o singura conexiune. Ce face scriptul, face doar hits la un site (http get si atat) De asemenea, observ ca are ban @ManutaDeAur

Asta ?. Nu, nu este ilegal. Poate imoral. Daca ei te intercepteaza, nu este ilegal, spun ca o fac pentru scopuri legale. (pentru a combate criminalitatea informatica). Daca tu interceptezi pe cineva, se numeste infractiune. Intai te poate intercepta sa vada daca e ceva interesant si apoi pot merge sa obtina legal un ordin judecatoresc pentru asta. Dar cine-i verifica oricum? In Romania o dispozitie judecatoreasca pentru interceptare o obtine un procuror in cateva ore. Si asta fara dovezi. Pur si simplu: "Exista indicii temeinice si presupuneri rezonabile" + Cireasa de pe tort. Cand un referat ticalosit facut de procuror are 200.000 de pagini, cine crezi tu ca sta sa-l citeasca ? Legea pentru noi are caracter obligatoriu. Pentru ei are caracter facultativ. Crezi cumva ca suntem Liberi si e Democratie ? Te inseli. E tot un fel de inchizitie, dar cu alta fata. Nu stiu ce va mira. Se pot altera headerele pachetelor TCP/IP ? DA. Deci asta se numeste spoofing. Insusi rahatul de protocol are flaws si noi le numim features.

Fara suparare, citeste putin aici "Fake Google SSL Certificates" Asta nu se schimba niciodata TU -> ISP -> VPN Ce il impiedica pe provider sa faca o routare ? Si uitam ceva, majoritatea utilizatorilor ruleaza windows. Nu vad ce l-ar impiedica pe ISP sa nu iti traga un redirect la hosturile de update utilizate de antivirus, windows si alte aplicatii. Caz in care ai instala ce iti dau ei. Eu asa as face, nu vad de ce ei nu

Deci, trimiteai email html cu sms sender? Interesant dude

Ba tu esti dus? Ti-ai facut 47.000 de usere doar de dragul de a injura aici. 666b666 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] 666BLODAS666 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] BL0DAS666 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] BLODAS666 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] BlodasIsBack 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] CacatLaCur 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] COAILI_Productions 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] Evanescent 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] Evanescent2 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] FuckMe 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] I_love_M2G 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] MasterOfCrowz 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] MuiePentruRST 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User] TheMadNigga 109.100.232.27 [Find Latest Posts by User] [View Other IP Addresses for this User]

Domnu, fai asta cu iptables (vezi ce e cu bold). Connmark este pentru marcarea pachetelor iar cu hashlimit definesti o rata de pachete intr-o unitate de timp, nicidecum o latime de banda. ext_if = "hme0" ext_if2 = "hme1" int_if = "hme2" ext_gw2 = "192.168.1.1" protocols = "{ tcp, udp, icmp, gre, ipv6, esp, ipencap }" icmp_types = "{ echoreq, unreach }" state_inspection = "flags S/SAFR modulate state" udpblock = "{ 22, 80, 443 }" ftp_ports = "{ 20:21 }" passive = "{ 32000:63000 }" voipports = "{ 5060, 5061, 5062, 5063, 5064 }" torrent = "{ 6881:6999 }" table <BLACKLIST> persist file "/etc/firewall/blacklist" table <SLOWQUEUE> persist file "/etc/firewall/slowqueue" set fingerprints "/etc/firewall/os-fingerprint" set block-policy drop set optimization aggressive #set ruleset-optimization basic # http://kestas.kuliukas.com/pf.conf/#NATQueueing set state-policy if-bound set optimization normal set loginterface $ext_if set skip on lo0 set skip on tun0 set skip on hme1 set skip on hme3 set skip on gif0 set skip on gre0 set skip on $int_if set require-order yes set timeout { frag 10, tcp.established 3600, interval 5 } set timeout { tcp.first 30, tcp.closing 30, tcp.closed 30, tcp.finwait 30 } set timeout { udp.first 30, udp.single 30, udp.multiple 30 } set timeout { other.first 30, other.single 30, other.multiple 30 } set timeout { adaptive.start 0, adaptive.end 0 } set limit { states 32000000, frags 32000000, src-nodes 320000000, tables 32000000, table-entries 32000000 } scrub on $ext_if all random-id reassemble tcp fragment reassemble [B]altq on $int_if bandwidth 100Mb hfsc queue { ether, nattraffic } queue nattraffic hfsc ( upperlimit 400Kb ) bandwidth 420Kb { toint_pri, toint_def } queue toint_pri qlimit 10 hfsc ( red, realtime 35%, linkshare 50% ) priority 4 bandwidth 70% queue toint_def qlimit 10 hfsc ( red, realtime 15%, linkshare 30% ) priority 3 bandwidth 20% altq on $ext_if priq bandwidth 2.0Mb qlimit 800 queue { ftp, ssh, web, voip, icmp, torrent, other } queue other qlimit 200 priority 5 priq(rio,default) queue ftp qlimit 50 priority 2 priq(rio,ecn) queue web qlimit 300 priority 14 priq(rio,ecn) queue voip qlimit 500 priority 15 priq(red) queue ssh qlimit 50 priority 4 priq(red) queue icmp qlimit 50 priority 3 priq(red) queue torrent qlimit 20 priority 6 priq(rio,ecn)[/B] nat from 10.0.0.2 to any -> ($ext_if) # Workstation nat from 10.0.0.3 to any -> ($ext_if) # Voip nat from 10.0.0.4 to any -> ($ext_if) # SUN nat from 10.0.0.5 to any -> ($ext_if) # NetBSD nat from 10.0.0.6 to any -> ($ext_if) # VM nat from 10.0.0.7 to any -> ($ext_if) # IBM nat from 10.0.0.8 to any -> ($ext_if) # HP nat from 10.0.0.9 to any -> ($ext_if) # Alina (Wireless) nat from 10.0.0.10 to any -> ($ext_if) # HP Printer nat from 10.0.0.11 to any -> ($ext_if) # Netgear Wireless nat from 10.0.0.12 to any -> ($ext_if) # Server nou nat from 172.16.0.2 to any -> ($ext_if) # tex nat from 192.168.1.0/24 to any -> ($ext_if) # VPN # HP rdr on $ext_if inet proto tcp from any to $ext_if port { 20, 21, 22, 53, 81, 443 } tag HP -> 10.0.0.8 rdr on $ext_if inet proto udp from any to $ext_if port { 20, 21 } tag HP -> 10.0.0.8 rdr on $ext_if2 inet proto tcp from any to $ext_if2 tag HP-PRINTER -> 10.0.0.10 rdr on $ext_if inet proto tcp from any to $ext_if port $passive -> 10.0.0.8 # vm rdr on $ext_if inet proto tcp from any to $ext_if port 400 -> 10.0.0.6 port 22 rdr on $ext_if inet proto tcp from any to $ext_if port 515 -> 10.0.0.7 port 22 # VoIP rdr on $ext_if inet proto tcp from any to $ext_if port $voipports tag VOIP -> 10.0.0.3 rdr on $ext_if inet proto udp from any to $ext_if port $voipports tag VOIP -> 10.0.0.3 no rdr block in quick on $ext_if from <SLOWQUEUE> to any probability 97% block in quick on $ext_if from <BLACKLIST> to any block out quick on $ext_if from any to <BLACKLIST> block in quick on $ext_if proto tcp from <HTTP_OVERLOAD> to any port 80 block in quick on $ext_if proto tcp from <HTTPS_OVERLOAD> to any port 443 block in quick on $ext_if proto tcp from <SSH_ABUSIVE> to any port 22 block in quick on $ext_if proto tcp from <FTP_ABUSIVE> to any port 21 ## UDP DDoS Block block in quick on $ext_if proto udp from any to any port { !=20, !=1723 } ## Juno block in quick on $ext_if proto tcp from any port { 1024,3072 } to any block out quick on $ext_if proto tcp from any to any port { 1024,3072 } block in on $ext_if block out on $ext_if set skip on lo0 antispoof for $ext_if inet # disabled for vpn block in from no-route to any block in from urpf-failed to any block in quick on $ext_if proto tcp flags FUP/WEUAPRSF block in quick on $ext_if proto tcp flags WEUAPRSF/WEUAPRSF block in quick on $ext_if proto tcp flags SRAFU/WEUAPRSF block in quick on $ext_if proto tcp flags /WEUAPRSF block in quick on $ext_if proto tcp flags SR/SR block in quick on $ext_if proto tcp flags SF/SF pass out quick on $ext_if route-to ($ext_if2 $ext_gw2) from { 192.168.1.0/24 } to any block in quick on $ext_if from any to 255.255.255.255 pass out on $ext_if proto tcp from any port 21 to any flags S/SA modulate state queue ftp pass out on $ext_if proto tcp from any port 22 to any flags S/SA modulate state queue ssh pass out on $ext_if proto tcp from any port 80 to any flags S/SA modulate state queue web pass out on $ext_if proto tcp from any port $torrent to any flags S/SA modulate state queue torrent pass out on $ext_if proto tcp from any port $voipports to any keep state queue voip pass out on $ext_if proto tcp from any to any flags S/SA modulate state queue other pass out on $ext_if proto icmp from any to any keep state queue icmp pass out on $ext_if proto { udp, gre, ipv6, esp, ipencap } from any to any keep state pass in on { $int_if, $ext_if } proto tcp from any to any port 515 $state_inspection pass in on $ext_if proto { tcp, udp } from any to any port 1723 keep state pass in quick on $ext_if all allow-opts pass in on $ext_if proto tcp from any to any port 80 $state_inspection \ (source-track rule, max-src-conn 180, max-src-conn-rate 140/1, overload <HTTP_OVERLOAD> flush global) tag HTTP-SERVICE pass in on $ext_if proto tcp from any to any port 443 $state_inspection \ (source-track rule, max-src-conn 180, max-src-conn-rate 140/1, overload <HTTPS_OVERLOAD> flush global) tag HTTPS-SERVICE pass in on $ext_if proto tcp from any to any port 22 $state_inspection \ (source-track rule, max-src-conn 10, max-src-conn-rate 1/60, max-src-nodes 20, overload <SSH_ABUSIVE> flush global) tag SSHD-SERVICE pass in on $ext_if proto tcp from any to any port 81 keep state pass in on $ext_if proto tcp from any to any port 554 keep state pass in on $ext_if proto tcp from any to any port $ftp_ports $state_inspection \ (source-track rule, max-src-conn 30, max-src-conn-rate 30/1, overload <FTP_OVERLOAD> flush global) tag FTP-SERVICE pass in on $ext_if proto udp from any to any port $ftp_ports keep state pass in on $ext_if proto tcp from any to any port $passive keep state pass in on $ext_if proto udp from any to any port $passive keep state pass in on $ext_if proto tcp from any to any port { 5060, 5061 } keep state tag VOIP-IN pass in on $ext_if proto {tcp, udp} from any to any port 2222 keep state tag WRT # allow traceroute out pass out on $ext_if inet proto udp from any to any port 33433 >< 33626 keep state

Ai targetul 'TOS', dar nu se compara. E ceva low end. In plus sunt doar 5 optiuni sinistre. Atentie, vorbim de netfilter nu de tc din pachetul iproute2 Functioneaza foarte empiric prioridizant pachetele, atata tot.

The Military Units that rely on very small aperture terminals (VSATs) for satellite communications in remote areas are vulnerable to cyber attack. Researchers from cyber intelligence company IntelCrawler recently identified nearly 3 million VSATs, many of them in the United States, and found that about 10,000 of them could be easily accessed because of configuration weaknesses. Researchers have warned that terminals having data transmission rate 4kbps to 16 Mbps used in narrow and broadband data transmission are vulnerable to cyber attack. VSATs are most commonly used to transmit narrowband data such as credit card, polling or RFID data or broadband data for VoIP or video using the Satellites in geosynchronous orbit generally used for Television & Radio broadcast, direct broadcast, military communication. Its name originated from the relatively small dish antenna with a diameter no longer than 10 feet (3 meters). IntelCrawler claimed that VSAT can be easily hacked because of poor password policy & default settings. Vulnerable terminals can be used for a planned cyber-attack, to be more precise on distributed network and infrastructure. Dan Clements, IntelCrawler's President said: "There's a lot of information that could be used in a nefarious way," Clements said. "Certainly you could put together a plan to go after certain grids or dams or power plants and have access to the centralized network at some point. According to the report, there are more than 313 open UHP VSAT, 9045 open terminals (HUGHES) and 1,142 terminals (SatLink), that can be easily hacked by malicious attackers. HUGHES is one of the largest manufacturers of VSATs which are mostly used in offline ATMs by several national central banks. Physical locations of a number of VSATs can be easily searched on Google maps and Google Earth, which could allow attackers to plan more sophisticated physical attacks. IntelCrawler also found network ranges of government and classified communications, e.g. Ministry of Civil Affairs of China infrastructure in ranges belongs to Shanghai VSAT Network Systems Co. LTD, and Ministry of Foreign Affairs of Turkey in Turksat VSAT Services, that poses critical threat to National Security. Source: Small satellite terminals (VSAT) are vulnerable to Cyber attack

Salut, Cred ca este vorba de 'session.gc_maxlifetime', vorbim imediat cu stimabilii sysadmini sa mareasca valoarea. Este curios faptul ca m-a delogat foarte rar. Cel mai probabil ai apucat cateva momente cand s-a facut cleaning la sesiuni