Skip to main content


Showing posts from October, 2015

Scan of the Month 15

See the original challenge here: Challenge
On 15 March. 2001, a Linux honeypot was successfully compromised, a rootkit was downloaded to the / partition and then deleted from the system. Your mission is to find and recover the deleted rootkit. If you are not sure where to begin on conducting this forensic analysis and recover the rootkit, we highly reccommend you start with the Forensic Challenge. The steps you will have to follow for the rootkit recovery are similar to the steps discussed there. We have posted only the / partion for download to keep this challenge simple. The compressed image is 13MB,(honeynet.tar.gz) MD5=0dff8fb9fe022ea80d8f1a4e4ae33e21. Once you have downloaded, untarred, and unzipped the partition image, it will be 255 MB and the checksum should be MD5=5a8ebf5725b15e563c825be85f2f852e.

Show step by step how you identify and recover the deleted rootkit from the / partition.
What files make up the deleted rootkit?"

The prep…

WordPress installation on Linux

Before starting the installation of WordPress I make sure you have added all the elements of LAMP. It is important to check and double check that your PHP module is actually working. The best way to verify this is to create a webpage with a small example code.

You can find more information about installation of LAMP from my previous posts:
Installing LAMP:
Warming up with LAMP:

Creating a MySql Database
mysql -u root -p


CREATE USER wpcarola@localhost IDENTIFIED BY 'verydifficultpassword';

I created a new database + user and configured the password.

GRANT ALL PRIVILEGES ON wpcarola.* to wpcarola@localhost IDENTIFIED BY 'verydifficultpassword';
Gave all privileges on this user.

Reloaded the privaledges from the possible grant tables in the database.

And finally exit the database.


Configuring settings for Apache2 virtual server

In this post I will show how to configure the basic settings for apache2 based virtual server and guide a website to appear in the desired address in local computer.

Setting up Apache
sudo apt-get updateI ran the update.
sudo apt-get install apache2Installed Apache.

sudo a2enmod userdir Enabled userdir

sudo service apache2 restart
and restarted the module.

I tested the functionality by writing "localhost" on my address bar and got "it works!"-page.
Creating a webpage
mkdir public_html
nano index.html

I created public_html on my home directory, entered and added a new folder for my virtual server ( Finally I made my index.html page with the following code:

<!doctype html>
              <meta charset="utf-8" />
               <h1>Carola's homepage</h1>
               <p>Welcome to<…