Typo Filters
I have been using typo for a while now and noticed that others had managed to get syntax highlighting working in their blog, but I couldn't find out how from the man pages. As per usual, a quick look on google has turned up the goods. For a quick review of the filters that you can use to format your text in typo, have a look at Scott Laird's article entitled 'Introduction to Typo filters'.
EDIT: I just found some help documentation for the text filters buried within the admin interface at http://yourblog/admin/textfilters
Ruby String.capitalize for all words
So, I was trying to uppercase the first letter of all the words in a string. For example:
'the example string' -> 'The Example String'
So I had a look around and found this great little snippet of code:
Check out the original post here:
http://snippets.dzone.com/posts/show/4702
Laters,
J.
'the example string' -> 'The Example String'
So I had a look around and found this great little snippet of code:
'the example string'.gsub(/\b\w/){$&.upcase} Laters,
J.
Rake -- making sense of the garden tools
So, I thought it would be a good idea to get used to the ruby build tool Rake. It merges some of the best features of ant and make in a nice neat ruby bundle, to create a really useful build tool with direct access to a powerful scripting language. After much playing around and reading excelent articles on the subject:
Once saved I was ready to give my new code a test drive. I fired up the command line and:
Now all three tasks can be called from the same Rakefile and all that needs to be done is to prefix them with the namspace. To clean the database you would run rake like this:
So there you have a very brief foray into Rakefiles. With loads more to learn, I would suggest reading the links mentioned at the beginning of this article.
- Rails envy tell you all you need to get started using some very funny analogies.
- Martin Fowler takes a more in depth look at how rake stacks up against other build languages like make and ant.
require 'rake'
task :default => :hello
desc 'Say hello'
task :hello do
puts 'Hello World'
end anon@box:~/ruby$ rake (in /home/anon/ruby) Hello WorldI was in inspired by the ease with which I had written a simple rake task. So I decided to create a slightly more complex one using namespaces. Namespaces allow you to group related tasks with a common prefix, making it easier to figure out which tasks to call when you return to the script at a later date. It also allows you to have tasks with the same name perform different actions. A common example would be cleaning up files, directories and databases. It makes sense to name these actions clean or cleanup as that is the function they are performing. However, you can imagine the chaos if there were three tasks in a single Rakefile all with the same name. To get around this we use namespaces:
namespace :database do
task :clean do
#clean up the database
end
end
namespace :files do
task :clean do
#clean up the files
end
end
namespace :dir do
task :clean do
#clean up the directory structure
end
end
rake database:cleanThis was all working great, until I tried to make one of the tasks created in a name space the default task.
require 'rake'
task :default => :logs:clean
namespace :logs do
desc 'Clean up generated files'
task :clean do
#delete generated files
end
end
It turns out that ruby symbols don't like to have a ':' in them. After some digging around I discovered that tasks in namespaces have to be called slightly differently in order to get around this problem. The answer is to use a string:
require 'rake'
task :default => 'logs:clean'
namespace :logs do
desc 'Clean up generated files'
task :clean do
#delete generated files
end
end Disabling failed ssh logins from script kiddies
I have been getting a huge number of failed login attempts on my web server. These have been anoying for two reasons.
And that's all there is for the code. Then all I did was install it in the root crontab with the following line:
- Someone is trying to hack into my machines.
- The machine can slow to a crawl when trying to deal with the thousands of requests that I am getting. Causing my web services to slow down.
So, the question is:
How can I deal with this?
Some common suggestions:
- Change your port to a non-standard port such as 2222, or some other random number. I agree that this does work, but it can be annoying if my applications cant be configured to connect to a non-standard port.
- Use port knocking to keep the port closed, until the right sequence of ports have been probed. This sounds more elegant than changing the port number, but again if my programs cant do this, then I need some sort of hack to get the port open.
I have gone for a slightly different approach, which is to setup a cronjob to monitor my log files and add the offenders to a list of banned ip addresses. The code was written in ruby and is running on a debian server
Without further ado, here is the code:#!/usr/bin/ruby -T
# hash of found ips used to store the ips found in the
# auth.log
ipFound = Hash.new(0)
puts 'Checking for scanning attempts'
# 1. read in the auth.log
authLog = File.open('/var/log/auth.log','r')
authLog.each_line { |line|
# 2. check for the ip addresses that are scanning
if line =~ /Failed password for invalid user/
if line =~ /(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})/
@ipaddress = $1
#add it to the list
ipFound[@ipaddress] += 1
end
end
}
authLog.close
# hash used to store the ips that are already banned
ipDenied = Hash.new(0)
# open the list of banned ip adresses
hostsDeny = File.open('/etc/hosts.deny','r')
hostsDeny.each_line { |line|
if line =~ /ALL:(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})/
ipDenied[$1] += 1
end
}
hostsDeny.close
# if ip not in denied list or from the local network,
# then add it
hostsDenied = File.open('/etc/hosts.deny','a')
ipFound.each_pair { |ip,count|
puts "IP:#{ip} -> #{count}"
if ipDenied[ip] != 0
puts "IP Already denied"
next
end
if ip =~ /^192.168.1/
puts "IP in local network"
next
end
if count < 10
puts "Didn't scan that much"
next
end
puts "Adding to the denied list"
hostsDenied << "ALL:#{ip}\n"
}
hostsDenied.close
puts "Done"
10 * * * * /path/to/banning_code 2>&1 | Mail -s 'offender ban run' you@your.domainNow it gets run every ten minutes and adds login offenders to the banned list. There is loads more that could be done with this code and it doesn't check for some edge cases, but it will catch most of the script kiddies and get rid of them, until their ip address changes :-(
Installing Typo
So, today I thought I would try installing Typo, the ruby blog software. The initial install attempts lead to a few problems.
- After creating a fresh debian install and using apt to get ruby and gems tried to run 'gem install typo'. Everything seemed to go well, until I actually tried to run the typo install command. It wasn't there. Apparently the debian version of gems is broken and wont install the required stubs into the /usr/bin directory. To get around this I had to manually install the gems package from rubygems.org.
- With gems manually installed I tried to get typo yet again. This time I received an error message stating that SSL was not installed on the system. Fixing this required an apt-get of openssl and libopenssl-ruby
- After finally getting rails and typo installed I tried running the typo command yet again. The failure this time complained about the migrate task not working. This turned out to be due to the rails version being too new. So, I downgraded the installed version of rails to 1.2.6 from 2.0.1 and everything worked fine.
