vol.4 2016-01-30
Chap. 1 Twitter Pixiv *1 *2 *3 1.1 *4 1.1.1 JSON *5 JSON HTTP *6 JSON 1.1 JSON HTTP *1 Open Source INTelligence *2 IMagery INTelligence *3 SIGnals INTelligence *4 *5 JavaScript Object Notation JavaScript *6 HyperText Transfer Protocol HTTP/1.1 HTTP/2 1
Chap. 1 1.1 1.1 JSON HTTP HTTP TCP *7 1.2 TCP IP 2 *7 Transmission Control Protocol UDP User Datagrap Protocol TCP 2
Chap. 1 1.1 1.2 1.3 1.3 3
Chap. 1 1.1 FIN *8 1.1.2 tcpdump Ubuntu Windows Mac *9 Ubuntu tcpdump ip $ ip addr 3: wlp3s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP... link/ether 64:80:99:XX:XX:XX brd ff:ff:ff:ff:ff:ff inet 192.168.0.15/24 brd 192.168.0.255 scope global dynamic wlp3s0 valid_lft 82707sec preferred_lft 82707sec inet6 fe80::6680:99ff:fexx:xxxx/64 scope link valid_lft forever preferred_lft forever ip wpl3s0 * 10 inet inet6 IP IPv4 IPv6 link/ether MAC tcpdump GAME START $ sudo tcpdump -i wlp3s0 -w sample1.pcap tcpdump: listening on wlp3s0, link-type EN10MB (Ethernet), capture size 262144 bytes -i -w * 11 *8 *9 *10 Ubuntu 15.10 BIOS 4
Chap. 1 1.1 Ctrl-C tcpdump 9087 packets captured 9089 packets received by filter 0 packets dropped by kernel 1.1.3 pcap sample1.pcap PCAP tcpdump $ tcpdump -c 3 -r sample1.pcap reading from file sample1.pcap, link-type EN10MB (Ethernet) 18:46:44.729953 IP 192.168.0.15.46616 > example.com.https: Flags [FP.], seq 2227832473:2227832600, ack 3058760346, win 362, options [nop,nop,ts val 880984 ecr 1753418069], length 127 18:46:44.942783 IP 192.168.0.18.ssh > 192.168.0.15.53312: Flags [P.], seq 3827020108:3827020500, ack 3108412220, win 1810, options [nop,nop,ts val 136141708 ecr 880778], length 392 18:46:44.942811 IP 192.168.0.15.53312 > 192.168.0.18.ssh: Flags [.], ack 392, win 1436, options [nop,nop,ts val 881037 ecr 136141708], length 0 -c 3 3 -r 1 1 > HTTPS SSH 80 $ tcpdump -c 3 -r sample1.pcap 'port 80' reading from file sample1.pcap, link-type EN10MB (Ethernet) 18:46:54.378176 IP 192.168.0.15.60526 > 125.6.189.7.http: Flags [F.], seq 1477232437, ack 2440899299, win 229, options [nop,nop,ts val 883396 ecr 4286787085], length 0 18:46:54.378217 IP 192.168.0.15.60530 > 125.6.189.7.http: Flags [F.], seq 3390295697, ack 934525571, win 229, options [nop,nop,ts val 883396 ecr 4286787084], length 0 18:46:54.378236 IP 192.168.0.15.60528 > 125.6.189.7.http: Flags [F.], seq 3335369749, ack 1111981478, win 229, *11 5
Chap. 2 SSL ( Ubuntu Japanese Team ) 2014 8 Google Web HTTPS *1 Web SSL SSL SEO 1 VPN HTTPS 2.1 HTTPS? VPS Web Web VPS Web HTTPS HTTPS SSL 2.2? Web SSL X.509 HTTPS Web Web Web Web Web EV EV SSL *1 http://googlewebmastercentral-ja.blogspot.jp/2014/08/https-as-ranking-signal.html 21
Chap. 2 SSL 2.3 SSL *2 2.3 SSL Web SSL SSL ( ) SSL ( EV ) SSL ( ) SSL ( ) StartCom The StartSSL Free (Class 1) * 3 EFF Linux Foundation Let's Encrypt *4 Amazon Web Services (ELB) CDN(CloudFront) AWS Certicate Manager * 5 StartSSL Class1 (StartCom Class 1 ) 1 Let's Encrypt ACME 2016 1 AWS ELB CloudFront SSL ACS(AWS Certicate Manager) CDN EC2 ELB CloudFront Web SSL : Let's Encrypt? Let's Encrypt (?) 2015 12 Let's Encrypt *6 *2 *3 https://startssl.com/ *4 https://letsencrypt.org/ *5 https://aws.amazon.com/jp/certificate-manager/ *6 http://blog.trendmicro.co.jp/archives/12775 22
Chap. 2 SSL 2.4 https Ubuntu 2.4 https Ubuntu Ubuntu SSL Japanese Team Ubuntu Weekly Recipe 387 Ubuntu SSL *7 2048byte CSR openssl -sha256 SHA-2 SHA-1 *8 2.5 StartSSL SSL StartSSL SSL SSL StartsSSL whois webmaster@( ) SSL whois *9 2.5.1 StartSSL StartSSL StartSSL whois *7 http://gihyo.jp/admin/serial/01/ubuntu-recipe/0387 *8 SSL HTTPS *9 Value-domain.com Web 23
Chap. 2 SSL 2.5 StartSSL SSL 2.1 StartSSL StartSSL SSL Web 2.5.2 StartSSL Validation Wizard Domain Validation whois "webmaster@( )" Click to send validation code 24
Chap. 3 Xymon Maniax Hajime MIZUNO(@mizuno_as) 1 2! 3.1 Xymon BigBrother / Xymon Ubuntu Weekly Recipe 383 *1 Recipe Xymon Xymon Xymon 3.2 Recipe RAID Xymon /usr/lib/xymon/client/ext/ xymon-client 3.1 /usr/lib/xymon/client/ext/raid.sh 3.1: RAID *1 http://gihyo.jp/admin/serial/01/ubuntu-recipe/0383 33
Chap. 3 Xymon Maniax 3.2 #!/bin/sh COLUMN=raid COLOR=green MSG="RAID Status" STATUS=$(/bin/cat /proc/mdstat) echo $STATUS /bin/grep -e '\[.*_.*\]' if [ $? -eq 0 ]; then COLOR=red MSG="${MSG} RAID is degraded! $STATUS " else MSG="${MSG} All is OK $STATUS " fi $BB $BBDISP "status $MACHINE.$COLUMN $COLOR `date` ${MSG} " exit 0 1. /proc/mdstat * 2 2. 3. BB *3 BB /usr/lib/xymon/client/bin/xymon *4 $ /usr/lib/xymon/client/bin/xymon Xymon version 4.3.7 Usage: /usr/lib/xymon/client/bin/xymon [--debug] [--merge] [--proxy=http://ip.of.the.proxy:port/] RECIPIENT DATA RECIPIENT: IP-address, hostname or URL DATA: Message to send, or "-" to read from stdin xymon Xymon IP *2 *3 BigBrother *4 BB /usr/lib/xymon/client/etc/xymonclient.cfg 34
Chap. 3 Xymon Maniax 3.2 BBDISP Xymon IP /var/run/xymon/bbdisp-runtime.cfg Xymon xymon man XYMON MESSAGE SYNTAX status status 3.2 3.2: status status[+lifetime][/group:group] HOSTNAME.TESTNAME COLOR <additional text> status ( ).( ) MACHINE *5 COLUMN *6 COLOR "red" "yellow" "green" "clear" green red Xymon Web /proc/mdstat Xymon /usr/lib/xymon/client/etc/clientlaunch.cfg 3.3 3.3: clientlaunch.cfg [raid] ENVFILE $XYMONCLIENTHOME/etc/xymonclient.cfg CMD $XYMONCLIENTHOME/ext/raid.sh LOGFILE $XYMONCLIENTHOME/logs/raid.log INTERVAL 5m ENVFILE BB BBDISP $XYMONCLIENTHOME/etc/xymonclient.cfg *7 CMD raid.sh LOGFILE $XYMONCLIENTHOME/logs /var/log/xymon INTERVAL Xymon CPU DISK RAID Xymon RAID HTTP SSH hosts.cfg *8 *5 MACHINE BB BBDISP /etc/init.d Xymon Upstream uname -n sed -e 's/./,/g' Debian/Ubuntu /etc/default/xymon-client CLIENTHOSTNAME *6 COLUMN *7 XYMONCLIENTHOME xymonclient.cfg *8 cpu disk memory 35
Chap. 3 Xymon Maniax 3.3 3.1 RAID RAID 3.2 3.3 Xymon hosts.cfg cpu disk memory les ports procs (clear) analysis.cfg Xymon 3.4 3.4: 36
Chap. 4 Ubuntu Evernote Rakugou Evernote *1 Ubuntu 4.1 Evernote Ubuntu Ubuntu Evernote Ubuntu Ubuntu Evernote Ubuntu Evernote * 2 *3 4.2 4.2.1 Everpad Ubuntu Magagine Japan Vol.10 PPA 15.04 Launchpad (14.04 12.04 Launchpad ) 14.04 12.04 LTS *1 https://evernote.com/intl/jp/ *2 Evernote Evernote Linux ( ) Linux *3 https://evernote.com/intl/jp/download/ Ubuntu 44
Chap. 4 Ubuntu Evernote 4.2 $ sudo add-apt-repository ppa:nvbn-rm/ppa $ sudo apt-get update $ sudo apt-get install everpad : Everpad VirtualBox 14.04 Create Note 15.10 *4 4.2.2 Neighbornote Neighbornote *5 Nixnote Evernote Java OpenSSL *4 Let's note 14.04 Vol.3 15.10 *5 https://neighbornote.herokuapp.com/index.html#home 45
Chap. 4 Ubuntu Evernote 4.2 $ sudo apt-get install libssl-dev openjdk-7-jre *6 64bit x64 zip $ cd ~/ $ chmod +rw neighbornote-0.5.4-linux-x64-installer.run $./neighbornote-0.5.4-linux-x64-installer.run Neighbornote : neighbornote Nixnote *6 https://neighbornote.herokuapp.com/download.html 46
Chap. 4 Ubuntu Evernote 4.2 : 47
Chap. 5 5.1 Ubuntu GNOME (vol.3 ) 5.1.1 12 PC HDD OS Ubuntu GNOME 14.04 LTS HDD dd 5.1.2 OS Ubuntu GNOME 14.04 15.10 Ubuntu Weekly Recipe 396 Ubuntu GNOME 15.10 15.10 iso USB Ubuntu usb-creator Windows Universal USB Installer *1 HDD dd *2 PC UEFI UEFI /home/ikuya /var/vm rsync VirualBox /var/vm /home/ikuya /var/vm *1 Wine USB *2 HDD HDD HDD HDD dd HDD HDD HDD GParted HDD 56
Chap. 5 5.1 Ubuntu GNOME 5.1.3 vim vlc ssh lv chromium-browser shotwell byobu git vinagre gimp virtualbox virtualbox-guest-additions-iso owncloud-client clipit bijiben asunder light-themes easytag gedit-plugins epiphany-browser fonts-ipafont subversion imagemagick samba retext Mozc *3 Atom Pandoc Pandoc Atom SoftEther-VPN systemd github.com/ikunya/softethervpn 5.1.4 /etc/ /etc/ HDD /etc/ tar HDD samba ssh /etc/prole.d/unzip-default-charset.sh /etc/udev/rules.d/99-udisks2.rules unzip /media/( )/(UUID ) /media/(uuid ) Ubuntu Japanese Team PPA unzip $ cat /etc/udev/rules.d/99-udisks2.rules ENV{ID_FS_USAGE\}=="filesystem", ENV{UDISKS_FILESYSTEM_SHARED\}="1" 5.1.5 GNOME Shell "Dash to Dock" "topicons" 2 Weather " (gnome-weather)" Tweak Tool [ ] [GTK+] [Ambiance] [ ] [Human-Dark] Ambiance light-themes Ubuntu Ubuntu GNOME Ubuntu *3 Mozc vol.3 57
2 Windows 95 50 67
Ubuntu 16.04 LTS 68
vol.4 (C) 2016 Ubunchu! Magazine Zapppaaan