Hashcat OpenLDAP MD5 passwords

Submitted by cliff on Mon, 09/03/2020 - 16:07

OpenLDAP has the ability to still use MD5 hashed passwords without a salt. 

In the userPassword field these will look like {MD5}CguNWKsfq1tWI1V95R4sag==. (Which is actually 'thisisnotarealpassword')

When exporting them using slapcat they will be base64 encoded and look like: e01ENX1DZ3VOV0tzZnExdFdJMVY5NVI0c2FnPT0K

To use them in hashcat do the following:

Upgrade a erpnext instance from debian 9 to debian 10

Submitted by cliff on Tue, 11/02/2020 - 09:56

The base line i've did this with is ERPNext 12 on Debian 9 with Python 3.5. We use nginx as a reverse proxy frontend with letsencrypt certificates. 

We need to upgrade this to ERPNext 12 on Debian 10 with Python 3.7.

First make a snapshot if you are running it in a VM. This makes it much easier to rollback after it fails.

apt-get update
apt-get upgrade
apt-get dist-upgrade

Do not do an apt-get autoremove because this will remove python 3.5 and this will make the next step hell.

De-clouding your life

Submitted by cliff on Tue, 04/02/2020 - 16:26

Last year I decided to start running more in house services instead of using cloud services. I had to find replacements for the following products I use.

These are mainly google servers. I do use gmail but not for most of my mail. This is handled by my own mailserver. Still I moved most of it back to my original setup. The following products still needed replacement:

  • Google Drive
  • Google Photos
  • RING Doorbell
  • NEST Thermostat

 

vMotion stuck at "Migrating the active state of virtual machine"

Submitted by cliff on Mon, 04/11/2019 - 10:49

In some situations when using veeam or doing manual vmotion migrations, it can happen that the migration gets stuck.

Usually this state occurs when the source esxi and destination esxi are having some kind of communication issue. The fix is the following:

  • Start SSH on both source and destination ESXi.
  • restart vxpa and hostd on the destination machine:
/etc/init.d/hostd restart
/etc/init.d/vpxa restart

If the process continues or errors you are done, if not,

HA: Shutter control with SonOff 4CH Pro

Submitted by cliff on Mon, 15/04/2019 - 09:28

I wanted to control my shutters with homeassistant, mainly to make them go up and down automatic at preset times. This can be done with a SonOff. Most people selected the SonOff dual for this task, but it has no mechanical/electrical protection to prevent from both outlets to be powered on at the same time.

WIP: Fun with the Foscam FI9853EP

Submitted by cliff on Wed, 27/03/2019 - 10:27

A few months ago I acquired a Foscam FI9853EP v2 IP Camera. It's a low budget cheap outdoor cam, which seems to do it's job marginally well. There are some quirks, but at EUR 66 it's not that bad. After the latest firmware upgrade to 2.84.2.35 (system firmware 1.12.5.4) it seems the cam started to show problems providing a RTSP stream towards my Shinobi setup. After some tinkering it started working again.

Foscam FI9853EP Pinout

Submitted by cliff on Wed, 05/09/2018 - 17:42

The foscam FI9853EP outdoor IP camera comes default with an attached cable loom, which is very awkward for an outdoor cam. Luckily it's very easy to fix this if you have a POE capable switch.

Cable colour pinout:

Orange White (pin 1)
Orange (pin 2) 
Green White (pin 3) 
Green (pin 6) 
Grey (pin 4) 
Purple (pin 8)

So just cut off the cable and connect it to an IDC strip or use an RJ45 8P8C connector.