Still when you run Linux on a more regular computer, weight loss watch Netflix movies, as possible with Windows or perhaps a Mac. The reason why? My knowing could be that the individuals who own and handle Netflix, bless their own pointy minds, believe that when they released a Apache version involving Netflix, Apache “hackers” would bust throughout the DRM protection plans and everybody could watch Netflix free of charge.

Like Shawn Powers offers mentioned numerous times, they have perhaps that in reverse. The truth is, in the event that Netflix is constantly on the diss the Cpanel Community, there is absolutely no telling what to you suppose will happen. Ultimately, Cpanel “hackers” will learn how to show Netflix by themselves computers. Whenever that occurs, this can imply that Linux-using Netflix readers can watch the way they are spending money on by themselves desktop and laptops like Windows customers can. However it may also imply that Linux users can easily use a Netflix Watcher that could not make use of little details such as set up service is purchased. Basically, it may be possible some time for Linux customers to kind:

sudo apt-get WatchNetflixForFree

and a few minutes offer an app attached to their computer which will simply draw Netflix of most it’s DRM’ed pieces and octet. Free of charge. From revenge. Focus on dissed.

We how to start which of the scenarios will happen, however it could be the case that the important step is going on with this path. (Hat Suggestion Mike)

There is task management to increase funds to pay for a bounty for the functioning Netflix software for Cpanel. The guidelines require how the application be lawful. Which is good. I really hope it really is created and that i hope it really is legal. However you already know in addition to I actually do that movement in direction of the creating a legal Linux structured Netflix streaming software can lead to the introduction of technology that may be used intend to, in order to plain take what exactly is currently owned by simply Netflix.

As well as, given like personal computers operate, it could be simple enough, I believe, to set up the required software on any kind of Windows machine to operate the “Steal the actual Netflix Bits as well as Bytes” app as well as run this. Minimally, you might simply any key disk or even CD based duplicate of Linux watching movies free of charge on any pc or laptop, however it would possibly be much easier than which.,

I might personally oppose which and that i would not utilize it. I actually do not sign up for the concept when you can easily steal some thing (like movies or even musi), which stealing that would be therefore honest, maybe even morally needed. Napster was obviously a low justification in a brief history of private software, i think. But I am only one person. The actual “WatchNetflixForNothin” app might be possible, plus a mixture of Netflix misreading the actual Linux Community and also the actuality this is both insulting as well as potentially “fixable” can result in free films for all those who care in order to type that range I cite over, or something similar to it as being a truth.

I suppose Netflix will eventually arrive at be aware of error of corporate methods, and create a Linux Netflix Software.

At the same time, you might have the choice of applying stress. Give it a look: Netflix upon Linux Competition.

I believed the Linux bar by Netflix has been probably as a result of deal they have got with Microsoft as well as Silverlight. Additionally, the actual Netflix TOP DOG, Reed Hastings, is actually about the board of owners for Ms -at least having been.

Obviously the Silverlight constraint is not a strict one. Despite the fact that it’s leaned upon heavily with Home windows apps, it’s not with Google android, Roku, as well as Google OPERATING SYSTEM.

I did previously possess a television using a group of output jacks that could let me record anything it could possibly see on the VHS strapping. Constantly imagine such tvs aren’t still offered. The product quality probably isn’t great, but not are Netflix avenues if you get into it -that’s the reason why they stream perfectly. So I am just a little skeptical from the hacking reason. I believe this really is more related to Microsoft’s distaste with regard to Linux and also the tremendous strides droit like Ubuntu make during the last couple of years in creating a good OS which is more steady, more pleasant, and more reliable in its results and keep than Home windows.

Be cautious which pointy brains you bless — a lot of them are Ms. Netflix internet is really a partnership among Netflix and Ms, with MICROSOFT providing Silverlight to the player as well as DRM. We doubt Netflix is within a situation to see the linux local community with no lawsuit equivalent of the headshot from Ms at this stage.

We you do not have the chops to learn if the linux community might make a conclusion run round the DRM (Silverlight by itself was addressed by simply Moonlight/Mono), however I believe MS would device up and spin the actual Playready DRM in reply, then the arms ethnic background will be upon.

However at that time, the majority of Netflix’s old certification deals may have go out. And also the new licensing offers Big Content indications tend to be, a lot, a lot more stingy. A few years from at this point Netflix streaming might have shrunk a lot it does not matter which OS is actually serving upward, it merely requires isn’t worth every penny anymore. Many people thought that’s already occurred.

That raises the service which works with cpanel: Hulu.

The only method Hulu might get the rights in order to stream lots of Hulu (free) as well as some Hulu+ content material was with certification terms that essentially state: “No a single hooks their pc as much as their TELEVISION, correct? inch. Hulu(free) has been built about the conceit that individuals just watch this on the laptops. Because more people slot it for their TVs such as Netflix internet streaming, the greater the networks can limit the information they provide into it. Hulu+, half it anyhow, could be the items that Big Content is actually prepared to allow to become piped for your TV. Another half isn’t offered until you are streaming via a pc, while you are spending money for it.

A direct result which is that not one of the smart boxes or even game consoles permit Hulu (free); they may be only licensed to operate Hulu+. OrbTV arrives closest, however it is really a passthrough for the PC that really works Hulu. Anyone supply the PC, and also the wireless bandwidth in order to turn it on towards the Orb. You will find subscription services including Playon, however you might have another payment.

Therefore say you simply need cheap little package to flow Hulu(free) as well as Netflix for your TV. It will not appear to be excessive to inquire. You can find Netflix via a couple of different gaming systems, cell phones, boxees, Personal computers, what ever. You can find Hulu (free) about the cheapest free computer you are able to build/buy which is fast enough in order to decode the flow.

However the only method to get both equally:

-a Home windows or OS-X PERSONAL COMPUTER.

moan.

PLAYSTATION: Make sure you, please explaine to me I’m incorrect: I’d like to ditch the PERSONAL COMPUTER hiding behind the actual entertainment middle!

friendly ads
other
friendly link
click here
friendly link
clicky
read more
other
click here
other
click here
read more
clicky
click here
click here
clicky
other
click here
clicky
read more
other
friendly link
other
click here
read more
other
read more
clicky

The (standard) native Spotify Linux buyer got support totally free accounts recently. This is one way to install the idea on Ubuntu along with fix some bugs including not having the capacity to play local tunes in Ubuntu 11. 10 Oneiric Ocelot.

You should be aware that Spotify for Linux is often a preview release and is also currently unsupported therefore you may encounter troubles!

Install the ancient Linux Spotify buyer under Ubuntu

1. Add the Spotify repository (are going to be used to deploy Spotify and stay up-to-date with the most up-to-date Spotify versions).

Launch Software Sources with all the following command:

gksu –desktop /usr/share/applications/software-properties-gtk.desktop /usr/bin/software-properties-gtk

2. Under Software Sources, switch to the “Other Software” tab, click “Add” and paste the following line:

deb http://repository.spotify.com stable non-free

As soon as you do this, two repository lines are in reality added and the next one (regarding source code) will display one when running “sudo apt-get update”, thus remove this series:

http://repository.spotify.com stable non-free (Source Code)

from the same “Other Software” tab in Software Sources. Once you’re done, close the Software Sources window.

3. Import the Spotify repository key and install Spotify for Linux:

sudo apt-key adv –keyserver keyserver.ubuntu.com –recv-keys 4E9CFF4E
sudo apt-get update
sudo apt-get install spotify-client-qt

Spotify fixes for Ubuntu

Spotify has been installed, but if you are using Ubuntu 11.10 Oneiric Ocelot (or newer), you can’t play local music, or at least some file types don’t work and you’ll get a sound decoder error:

“There is a problem with the sound decoder. Spotify can’t play music”

This may even occur for some Spotify tracks.

To fix this, you need to install libavutil50, libavcodec52 and libavformat52 from the Ubuntu 11.04 Natty Narwhal repository. To make it easier (thanks to yugnip!), you can get all 3 from here:

32bit
64bit

Download the .debs above in a new folder, then use the terminal to navigate to it (“cd /path/to/folder”) and run:

sudo dpkg -i *.deb

Another problem is that Spotify for Linux doesn’t show any artwork in the Ubuntu Sound Menu, at least in Ubuntu 11.10. To fix this, use the command below:

mkdir -p ~/.cache/indicators/sound/album-art-cache

Unfortunately I didn’t found a fix for the out of place “Upgrade” button.

friendly links
other
friendly link
read more
friendly link
clicky
friendly link
read more
read more
read more
other
click here
read more
friendly link
friendly link
click here
read more
clicky

The Solution :
To start, you should close Skype and kill the heart beat audio server. To achieve this in one fast command open any terminal and work

killall skype && killall pulseaudio

Next you should tell your heart beat audio server never to auto launch alone (which it can by default). To achieve this we simply must add one configuration setting with a file. To try this run the control:

nano ~/. pulse/client. conf

Inside the text file which is opened paste these line:

autospawn = no

Save and shut the file (ctrl+x when working with nano), launch Skype and you should be good to look.

Hope this will save you someone the 20 moments I spent running around Google to locate this information.

red letting are command that you need to issue as root

1. click on Computer > More Applications > YaST

2. Put in root password for YaST

3. Scroll down until you see Software Management and single click on it

4. Check for the following software. If you don’t have it installed, install it

   1. kernel-source

   2. gcc

   3. gcc-c++

   4. make (This is most likely already installed, but just to double check)

5. Once you have installed that software, lets head over to the command line. Right click on the desktop and select “open terminal”

6. Once you get into the terminal, you want to log in as a super user or root. You can do this by using the su command

   clmowers@linux-box:~> SUPassword:linux-box:/home/clmowers #

7. Next you want to run the following command. This will check for the needed software and it will also show you the kernel modules that are installed. You MUST have the same kernel numbers though out, or you will have issues later down the road

   rpm -qa kernel* gcc* make

   It will look like this when the command is run

   linux-box:/home/clmowers # rpm -qa kernel* gcc* make gcc-c++-4.2-24make-3.81-66kernel-source-2.6.22.17-0.1 gcc42-c++-4.2.1_20070724-17 kernel-default-2.6.22.17-0.1 gcc-4.2-24 gcc42-4.2.1_20070724-17

   Notice that both of the kernels are the same. If these numbers are diffent then you need to run the online updates to get the lastest ones and to make sure everything matches. ***Just remember that these numbers change, This was the latest kernel when I wrote this, yours might be different from mine.

8. OK, lets move on. Next we want to change the directory to /usr/scr/linux. We can do that by this command

   linux-box:/home/clmowers # cd /usr/src/linux

9. next we want to issue these commands. Don’t worry, we are almost done in the command line for the time being.

   linux-box:/home/clmowers # make mrproper; make cloneconfig; make modules_prepareYou will notice that it is done when you get back to this linelinux-box:/home/clmowers #

10. YEA!!! The moment we all have been waiting for, installing vmware server. But we are not done yet. Once vmware server is installed we will need to configure it. Then you can start adding all the VM that your heart desires.

11. Next you want to go to where you have downloaded the file and right click and select install software

12. Once the windows closes we are ready to configure it. I know I know, but we are almost done. Just 2 more minutes.

13. open up a new terminal window (or open the one you already had) and issue this command

    linux-box:/home/clmowers # cd /usr/binlinux-box:/usr/bin #

14. This will bring you to the /usr/bin directory. Next we want to run the pl script the vmware was so kind of to provide us. This will let us configure the server

    linux-box:/usr/bin # vmware-config.pl

15. We will start out by reading the EULA. Hit space or enter to go through the agreement. Once you are done reading hit Q and then type yes. Now what I did was just accept all the defaults. This will give you a very good install of vmware. My only suggestion would be to create a folder under your /home/username/ directory called vms. When you get to the question asking you where you want to have your virutual machine saved, type in that location.

16. You will be ask for your license key, so make sure that you have one. Type it in and press eneter.

No guarantee that this will work for you!

1 Requirements

To install such a system you will need the following:

• The Perfect Setup – Debian Etch (Debian 4.0)
• Installing Lighttpd With PHP5 And MySQL Support On Debian Etch

2 Setting up lighttpd

Once Lighttpd is installed, you’ll have to modify the configuration file to use it

vi /etc/lighttpd/lighttpd.conf

#bind to port (Default: 80)
server.port = 81



# bind to localhost (recommended for proxy behind Apache, otherwise comment this out for all)
server.bind = "localhost"

This is not a full listing of the configuration file, but rather a highlight of the most important parts. Notice that we’ve set the server port to 81. By doing this, we’re making sure it doesn’t clash with Apache listening on port 80. If you wanted to let Lighttpd power your entire site instead of Apache, you can set this to port 80, or comment it out to accept the default.
Then we restart Lighttpd:

/etc/init.d/lighttpd restart

3 Setting up Apache’s proxy

To let Apache take the output of Lighttpd on port 81 and map it to your website, you’ll need to make sure the Proxy module of Apache is loaded.
Using the Perfect Setup tutorial this module will either be there already but not activated.

a2enmod proxy_http
a2enmod proxy_connect

If you are using virtual hosting, you will want to use the following code to set up a proxy between the applicable directives:

ProxyRequests Off
ProxyPreserveHost On
ProxyPass /media http://0.0.0.0:81/
ProxyPassReverse / http://0.0.0.0:81/

Then we restart Apache:

/etc/init.d/apache2 reload

4 Final notice

In the above example, Lighttpd will serve up your media folder, leaving Apache to do the rest. Set this to any folder that has static content in it and Lighttpd will serve it, instead of Apache. Another good use of Lighttpd would be to serve up multimedia files, taking the load off of Apache. The increase of performance you’ll gain is dependent on many factors. If you only have Lighttpd serve up your images, it probably won’t help too much. You can put all of your static content, including HTML and PDF files, images, and movies in a folder called /static and then set the ProxyPass variable to that for a slightly better performance.

The increase of performance you’ve gained so far with Lighttpd is not phenomenal, but helps to increase the website performance and reduces the load on your server.

5 Links

• Lighttpd: http://www.lighttpd.net
• Apache Module mod_proxy: http://httpd.apache.org/docs/2.0/mod/mod_proxy.html
• PHP: http://www.php.net
• MySQL: http://www.mysql.com
• Debian: http://www.debian.org

Lighttpd is a secure, fast, standards-compliant web server designed for speed-critical environments. This tutorial shows how you can install Lighttpd on a Fedora 8 server with PHP5 support (through FastCGI) and MySQL support.

I do not issue any guarantee that this will work for you!

1 Preliminary Note

In this tutorial I use the hostname server1.example.com with the IP address 192.168.0.100. These settings might differ for you, so you have to replace them where appropriate.

2 Installing MySQL 5.0

First we install MySQL 5.0 like this:

yum install mysql mysql-server

Then we create the system startup links for MySQL (so that MySQL starts automatically whenever the system boots) and start the MySQL server:

chkconfig –levels 235 mysqld on
/etc/init.d/mysqld start

Create a password for the MySQL user root (replace yourrootsqlpassword with the password you want to use):

mysqladmin -u root password yourrootsqlpassword

Then check with

netstat -tap | grep mysql

on which addresses MySQL is listening. If the output looks like this:

tcp 0 0 localhost.localdo:mysql *:* LISTEN 2713/mysqld

which means MySQL is listening on localhost.localdomain only, then you’re safe with the password you set before. But if the output looks like this:

tcp 0 0 *:mysql *:* LISTEN 2713/mysqld

you should set a MySQL password for your hostname, too, because otherwise anybody can access your database and modify data:

mysqladmin -h server1.example.com -u root password yourrootsqlpassword

3 Installing Lighttpd

Lighttpd is available as a Fedora package, therefore we can install it like this:

yum install lighttpd

Then we create the system startup links for Lighttpd (so that Lighttpd starts automatically whenever the system boots) and start it:

chkconfig –levels 235 lighttpd on
/etc/init.d/lighttpd start

Now direct your browser to http://192.168.0.100, and you should see the Lighttpd placeholder page:

Lighttpd’s default document root is /srv/www/lighttpd on Fedora, and the configuration file is /etc/lighttpd/lighttpd.conf.

4 Installing PHP5

We can make PHP5 work in Lighttpd through FastCGI. Therefore we install the packages lighttpd-fastcgi and php-cli:

yum install lighttpd-fastcgi php-cli

5 Configuring Lighttpd And PHP5

To enable PHP5 in Lighttpd, we must modify two files, /etc/php.ini and /etc/lighttpd/lighttpd.conf. First we open /etc/php.ini and add the line cgi.fix_pathinfo = 1 right at the end of the file:

vi /etc/php.ini

[...]
cgi.fix_pathinfo = 1

Then we open /etc/lighttpd/lighttpd.conf and uncomment “mod_fastcgi”, in the server.modules stanza:

vi /etc/lighttpd/lighttpd.conf

[...]
server.modules              = (
#                               "mod_rewrite",
#                               "mod_redirect",
#                               "mod_alias",
                                "mod_access",
#                               "mod_cml",
#                               "mod_trigger_b4_dl",
#                               "mod_auth",
#                               "mod_status",
#                               "mod_setenv",
                                "mod_fastcgi",
#                               "mod_proxy",
#                               "mod_simple_vhost",
#                               "mod_evhost",
#                               "mod_userdir",
#                               "mod_cgi",
#                               "mod_compress",
#                               "mod_ssi",
#                               "mod_usertrack",
#                               "mod_expire",
#                               "mod_secdownload",
#                               "mod_rrdtool",
                                "mod_accesslog" )
[...]

and then, further down the file, there’s a fastcgi.server stanza which we uncomment as well:

[...]
#### fastcgi module
## read fastcgi.txt for more info
## for PHP don't forget to set cgi.fix_pathinfo = 1 in the php.ini
fastcgi.server             = ( ".php" =>
                               ( "localhost" =>
                                 (
                                   "socket" => "/var/run/lighttpd/php-fastcgi.socket",
                                   "bin-path" => "/usr/bin/php-cgi"
                                 )
                               )
                            )
[...]

Then we restart Lighttpd:

/etc/init.d/lighttpd restart

This guide explains how you can install Apple’s Safari browser on Ubuntu 7.10. As there is no Linux version of Safari, we will run it under Wine. We will use a tool called PlayOnLinux to install Safari under Wine. With PlayOnLinux you can install lots of Windows games and some Windows applications (such as Office 2003, IE6, MS Money, etc.) on Linux. Installing Safari on Linux is good for people such as web designers who have switched to Linux but still need to test their web sites in other browsers.

I do not issue any guarantee that this will work for you!

1 Installing PlayOnLinux

Open Firefox and go to http://www.playonlinux.com/en/download.html. Click on the link reading Click here for the .deb package:

In the Firefox download dialogue, select Open with GDebi Package Installer (default):

After the download has finished, the Package Installer comes up. Click on the Install Package button:

Type in your password:

Afterwards, the dependencies of PlayOnLinux are being downloaded and installed:

Next, PlayOnLinux is being installed:

After the installation you can click on Close and leave the Package Installer:

2 Starting PlayOnLinux For The First Time

Now open a terminal (Applications > Accessories > Terminal):

We install the package cabextract (which is needed to extract .exe files) like this:

sudo apt-get install cabextract

Afterwards, we start PlayOnLinux by typing:

playonlinux

If 3D aceleration isn’t enabled on your desktop and you get a warning like in the below image, you can click it away. It’s not important (at least for Safari – this might be different if you want to install Windows games which I haven’t tried):

Now PlayOnLinux is being initialized. Click your way through the following dialogues (which are in French – we will change PlayOnLinux’ language soon):

Click on Télecharger (means Download in French):

Click on Suivant (means Next):

Finally, we get to the PlayOnLinux window:

3 Configuring PlayOnLinux

First let’s change the language of PlayOnLinux (if French isn’t your mother tongue). Go to Options > Langue:

Click on Suivant:

Select your preferred language and click on Suivant:

The change will take effect after a restart of PlayOnLinux (which we will do later – we still have to configure a few other things):

Next we set up the repositories where PlayOnLinux downloads its scripts from (there are scripts for each Windows application that PlayOnLinux can install to run under Wine). Go to Options > Dépots:

Enable the Community repository:

Afterwards do the same again for the WorkOnLinux repository:

Finally we create a menu entry for PlayOnLinux in the Applications menu. Go to Options > Tableaux de bord…

… and click on Yes:

Now we must restart our desktop session. Press CTRL + ALT+ Backspace and log in again.

4 Installing Safari

Now start PlayOnLinux again, this time by using its menu entry (Applications > PlayOnLinux > PlayOnLinux):

After PlayOnLinux has started, click on the Install button:

The Installation wizard starts. Select WorkOnLinux and click on Next:

In the next step select Safari and click on Install:

Click on Install again:

Select Next…

… then Download:

Click on Next:

Install Microsoft Visual C++ by accepting its license:

The next window tells us that we must download the Safari .exe file from Apple before we can proceed:

Open Firefox and go to http://www.apple.com/safari/download/ (although PlayOnLinux displays another URL in the previous image). Select Safari for Windows XP or Vista (without Quicktime) and click on the Download Safari 3 Beta button:

Save the file somewhere on your computer:

Back in PlayOnLinux, click on Next…

… and then on Browse:

Select the Safari executable you’ve just downloaded from your hard drive…

… and click on Next:

The next message tells us to deselect Install Bonjour for Windows and Install Apple Software Update during the Safari setup – please keep this in mind, we’ll need it soon:

The Safari installer starts. Click on Next >:

Accept the Safari license:

Now it’s time to disable Install Bonjour for Windows as well as the Apple updates. This is important – otherwise Safari might not work as expected on Linux:

Now Safari is being installed:

Click on Finish to leave the installer:

In the next step PlayOnLinux downloads and installs the Adobe Flash player for Safari:

Click on Yes if you want to have a Safari shortcut on your desktop…

… and in the menu:

The Safari installation is complete, you can leave PlayOnLinux now:

Now you can start Safari:

This is how it looks:

5 Links

• Safari: http://www.apple.com/safari/download
• PlayOnLinux: http://www.playonlinux.com
• Wine: http://www.winehq.org
• Ubuntu: http://www.ubuntu.com

Installing Ruby on Rails (RoR) on windows, OSX and Linux. Generally there are 3 installations: OSX, Windows and Linux, and Linux install is the most easy one.

Windows:

Go to http://www.rubyonrails.org/, and download the package containing gems (windows installer).

Install the package.

Update the gem system via:

gem update –system

Update installed gems via:

gem update

When this is done install the relevant gems. I would suggest the following as a minimum:
*rails (for the framework)
Please note, that rails 2.02 is the newest version, you can install an older version via

gem install v1.2.6 rails

*mysql (for database assess)
*mongrel (webserver better when webrick)

When asked for the version you want to use, choose the newst version, that has win32 in the option.

OSX 10.4 and 10.5

Go to http://www.macports.org/ and download the correct version of the file (tiger/leopard).

Read through the installation guide: http://www.macports.org/install.php

Quick guide:
Install the correct xcode for your system.
Install the macports program (this can take a little while)
When done, do:

sudo port install ruby
sudo port install rb-gems (enabling gems under ruby)
sudo gem install rails (framework)
sudo port install rb-mysql (mysql for use under RoR)
sudo gem install mongrel (webserver)
sudo port install subversion (for easy install for remote plugins)

Linux (Ubuntu like / Debian based)

sudo apt-get update && sudo apt-get upgrade (getting newst list, and updateing software before continuing).
sudo apt-get install ruby subversion mysql libmysql-ruby1.8

sudo gem install rails
sudo gem install mongrel

And you should be set to go.

IDE for use with RoR:
Textmate (OSX), has very poor subversion integration, but good RoR integration
Not free
Eclipse (good integration, via plugins)
http://www.eclipse.org/ download plugins via Aptana website, for RoR support.
Free

Aptana (good integration via plugins) http://www.aptana.com/
complete IDE, eclipse based. Free
IDEA (good integration via plugins)
Complete IDE suite, with great integration of subversion, mysql and even jira for bugtracking.
Professional, but expensive.

Remeber to point your IDE to where your RoR / rails is installed for best integration:
Windows most often: c:\ruby\bin
OSX: /opt/local/
Linux: /usr/bin/ruby

Errors:

Linux:

sudo gem update –system

Which introduced this error:

/usr/bin/gem:23: uninitialized constant Gem::GemRunner(NameError)

whenever I tried to run rubygems. On the rails forum, I found a fix for it!. Simply add the line to the file /usr/bin/gem (may be different on a mac):

require 'rubygems/gem_runner'

after

require 'rubygems'

Source: http://www.nickpeters.net/2007/12/31/fix-for-uninitialized-constant-gemgemrunner-nameerror/

This error when installing gems:

extconf.rb:1:in `require’: no such file to load—mkmf (LoadError)

from extconf.rb:1.

Do:

sudo apt-get install ruby1.8-dev

This document describes how to set up TrueCrypt with GUI on Ubuntu 7.10. TrueCrypt is a free open-source encryption software for desktop usage.

This howto is a practical guide without any warranty – it doesn’t cover the theoretical backgrounds. There are many ways to set up such a system – this is the way I chose.

1 Preparation

Set up a standard Ubuntu 7.10 system and update it.

2 Needed Packages

First we install some needed packages with the synaptic package manager.

• sun-java6-jre
• python-pexpect

You’ll see this window during the installation – mark the corresponding checkbox and proceed if you agree with the license agreement.

Afterwards check if all went well – open a terminal and enter.

java -version

The output should look like this:

java version “1.6.0_03″
Java(TM) SE Runtime Environment (build 1.6.0_03-b05)
Java HotSpot(TM) Client VM (build 1.6.0_03-b05, mixed mode, sharing)

3 Truecrypt

3.1 Installation

Open http://www.truecrypt.org/downloads.php within your browser and download the latest stable version for Ubuntu 7.10 (.tar.gz-file containing the .deb-package).

Afterwards unpack the .tar.gz-file, …

… switch to the folder with the unpacked files and install the .deb-package with the GDebi package installer (simply double click on the package). Click on “Install Package” to start the installation.

Enter the root password.

The package and its dependencies are being installed.

3.2 System Configuration

Please note, that the following steps (3.2.1 – 3.2.3) can be done automatically by the tcgui installer (step 4). Proceed if you have problems with the tcgui-installer or want to configure the system manually in the first place – otherwise go ahead with step 4.

3.2.1 Users & Groups

We have to add the group “truecrypt” to the system and afterwards we add the root-account and our user-account to it. The settings for users and groups are available in the gnome system menu.

Enter the root password.

Click on “Manage Groups“.

Click on “Add Group“.

Insert “truecrypt” (without the quotes) as name for the new group, mark the checkbox next to the root and your username and click on “OK“.

3.2.2 Sudo

Next we configure sudo in order that TrueCrypt is useable without a password query – open a terminal and enter:

sudo visudo

Add the following line:

%truecrypt ALL=(root) NOPASSWD:/usr/bin/truecrypt

It should look like this:

# /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
# Defaults
Defaults        !lecture,tty_tickets,!fqdn
# Uncomment to allow members of group sudo to not need a password
# %sudo ALL=NOPASSWD: ALL
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root    ALL=(ALL) ALL
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
%truecrypt ALL=(root) NOPASSWD:/usr/bin/truecrypt

To save the changes press CTRL+O (STRG+O on a german keyboard) and hit enter. Close the editor via CTRL+X (STRG+X on a german keyboard).

3.2.3 TrueCrypt Group

As a last resort we have to assign TrueCrypt itself to the new group that we created at step 3.2.1. Open terminal and enter:

sudo chgrp truecrypt /usr/bin/truecrypt

Afterwards we check if all went well – enter:

truecrypt -l

If you’re NOT asked for a system password and the output looks like this …

No volumes mapped

… all is fine.

4 TrueCrypt GUI (tcgui)

Tcgui provides a GUI that is similar to the windows GUI for truecrypt. It’s licensed unter the GPL.

4.1 Download

Open http://tcgui.tc.funpic.de/en/download.htm (http://tcgui.tc.funpic.de/download.htm for German users) within your browser and download the latest version (When I was writing this howto the latest version was 0.4).

Afterwards unpack the file.

4.2 Installation

Open a terminal, switch to the unpacked files and run the installer.

cd Desktop/tcgui-0.4/
sudo bash install.sh $USER

Note: Don’t replace $USER with your username – simply copy & paste the line.

Choose your language (german or english) and answer the following questions with no (n) – unless you haven’t realized step 3.2.1 till 3.2.3. After the installation finished you have to log out and back in to take the changes effect.

4.3 Access The GUI

The TrueCrypt GUI is available in the gnome applications menu.

Click on “Yes” if you agree with the warranty agreement.

The GUI appears – make yourself familiar with it.

Note: Please have a look at the readme in the tcgui-folder (on your desktop). Which functions are working without problems and which not is described at the end of the file – so you should read it before you you’re playing around with the GUI

4.4 Deinstallation

If you want to deinstall the TrueCrypt GUI open a terminal and enter:

sudo bash /usr/share/tcgui/uninstall.sh

Note: The group “truecrypt” will not be deleted and the changes in the sudo configuration will not be restored.

5 Links

TrueCrypt: http://www.truecrypt.org/
TrueCrypt License: http://www.truecrypt.org/license.php
TrueCrypt Linux manpage: http://www.truecrypt.org/docs/linux-manpage.php
TrueCrypt GUI (en): http://tcgui.tc.funpic.de/en/index.htm
TrueCrypt GUI (de): http://tcgui.tc.funpic.de/index.htm
Ubuntu: http://www.ubuntu.com/

In this tutorial I will describe how to install and configure Snort (an intrusion detection system (IDS)) from source, BASE (Basic Analysis and Security Engine), MySQL, and Apache2 on Ubuntu 7.10 (Gutsy Gibbon). Snort will assist you in monitoring your network and alert you about possible threats. Snort will output its log files to a MySQL database which BASE will use to display a graphical interface in a web browser.

1. Gain root privileges

It is easiest to do this install as root user.

sudo su -

2. Install some packages

The following will install all the required packages to make this setup work:

apt-get install libpcap0.8-dev libmysqlclient15-dev mysql-client-5.0 mysql-server-5.0 bison flex apache2 libapache2-mod-php5 php5-gd php5-mysql libphp-adodb php-pear libc6-dev g++ gcc pcregrep

3. Get and compile snort

The Snort package in the Gutsy repo’s are out of date. So I prefered to download the most current and install that. This is the only thing we will compile from scratch.

The latest version of snort at the time of writing is 2.8.0.1

First let’s go to a working directory:

cd /usr/src/

Open a web browser and navigate to http://www.snort.org/dl right click on the most recent release and copy link location.

a. Download snort and snort rules

wget http://www.snort.org/dl/current/snort-2.8.0.1.tar.gz

There are a couple options for rules. The following will download the public rules, however with a quick registration at the snort site you can get more current rules. Your choice but the next command is run the same way with the appropriate URL:

wget http://snort.org/pub-bin/downloads.cgi/Download/vrt_pr/snortrules-pr-2.4.tar.gz

b. Unpack and get them ready for compile

tar zxvf snort-2.8.0.1.tar.gz
cd snort-2.8.0.1
tar zxvf ../snortrules-pr-2.4.tar.gz

c. Now compile them

./configure -enable-dynamicplugin –with-mysql
make
make install

Keep this directory handy as you can simply run

make uninstall

To uninstall snort later if you choose

d. Move things into position

We now need to move the rules and config for snort into position

mkdir /etc/snort /etc/snort/rules /var/log/snort
cd /usr/src/snort-2.8.0.1/etc
cp * /etc/snort/
cd ../rules
cp * /etc/snort/rules

4. Configure Snort

We need to modify the snort.conf file to suite our needs.

Open /etc/snort/snort.conf with your favorite text editor (nano, vi, vim, etc.).

# vi /etc/snort/snort.conf

Change “var HOME_NET any” to “var HOME_NET 192.168.1.0/24” (your home network may differ from 192.168.1.0)
Change “var EXTERNAL_NET any” to “var EXTERNAL_NET !$HOME_NET” (this is stating everything except HOME_NET is external)
Change “var RULE_PATE ../rules” to “var RULE_PATH /etc/snort/rules“

Scroll down the list to the section with “# output database: log, mysql, user=“, remove the “#” from in front of this line.
Change the “user=root” to “user=snort”, change the “password=password” to “password=snort_password“, “dbname=snort“
Make note of the username, password, and dbname. You will need this information when we set up the Mysql db.
Save and quit.

5. Setup the Mysql database.

Log into the mysql server.

# mysql -u root -p

Create the snort database. Make sure you change the ‘snort_password’ to something else!

mysql> create database snort;
grant all privileges on snort.* to ‘snort’@'localhost’ identified by ‘snort_password’; mysql> exit

We will use the snort schema for the layout of the database.

# mysql -D snort -u snort -p < /usr/src/snort-2.8.0.1/schemas/create_mysql

NOTE: Use your snort DB user password when prompted.

6. Time to test Snort

In the terminal type:

# snort -c /etc/snort/snort.conf

If everything went well you should see an ascii pig.

To end the test hit ctrl + c.

NOTE: If you get errors you may want to try commenting out lines 97,98 and 452 of /etc/snort/rules/web-misc.rules. This was an issue in the past but doesn’t seem to be anymore.

7. Get and install BASE

Open a web browser and go to http://sourceforge.net/project/showfiles.php?group_id=103348.

Click on download then right click on the newest tar.gz package and select copy link (at the time of writing this is base-1.3.9).

In the terminal type:

cd
wget http://easynews.dl.sourceforge.net/sourceforge/secureideas/base-1.3.9.tar.gz

Now go to your web document root (by default this is /var/www), unpack the tarball and set the permissions needed to configure BASE:

cd /var/www/
tar zxvf ~/base-1.3.9.tar.gz cd .. chmod 757 base-1.3.9

We want to make sure that a couple of Pear modules are activated:

pear install Image_Color
pear install Image_Canvas-alpha
pear install Image_Graph-alpha

8. Set up BASE

Open a web browser and navigate to http://YOUR.IP.ADDRESS/base-1.3.9/setup.

Click continue on the first page.

• Step 1 of 5: Enter the path to ADODB.
  This is /usr/share/php/adodb.
• Step 2 of 5:
  Database type = MySQL, Database name = snort, Database Host = localhost, Database username = snort, Database Password = snort_password
• Step 3 of 5: If you want to use authentication enter a username and password here and check the box.
• Step 4 of 5: Click on Create BASE AG.
• Step 5 of 5: once step 4 is done at the bottom click on Now continue to step 5.

Bookmark this page.

Change the permissions back on the /var/www/base-1.3.9 folder.

# chmod 755 /var/www/base-1.3.9

We are done. Congrats!!!

To start Snort in the terminal type (make sure you change eth0 to the right interface for your machine:

# snort -c /etc/snort/snort.conf -i eth0 -D

This starts snort using eth0 interface in a daemon mode.

To make sure it is running you can check with the following command:

# ps aux | grep snort

If it’s running you will see an entry similar to snort -c /etc/snort/snort.conf -i eth0 -D.

If you would like to learn how to write your own Snort rules there is a guide at http://www.snort.org/docs/snort_manual/node16.html.
Good luck.