Monday, May 05, 2008

Practical (1st day 5/5/08)



Isnin 5/5/08
Tempat : IMATERA DIGITAL IMAGE SERVICES SDN BHD
Cawangan Utara (Perlis/Kedah/Penang)
Staf : 3 org
Practical Student : 2 ( PSP & KISMEC)
Tempoh Praktikal : 2 bulan [ 4 Mei 08- 3 July 08]
Waktu kerja : 8.30pg - 5.30ptg - Isnin-Jumaat (Sabtu & Ahad= Cuti.. yahoooo...heheheh)

Latar Belakang syarikat
http://portal.imateradigital.com/imatera/

Merupakan sebuah sykt yg telah di tubuhkan seawal tahun 1991 yg menawarkan perkhidmatan ICT khususnya kpd kerajaan dan swasta juga adalah syarikat milik bumiputera sepenuhnya.
Gabungan dari perkataan : (Faith and Harmony/ Tranquility ) Iman + Sejahtera = IMATERA.

Hmmm... hari ini buat apa ?
Alhamdulillah dapat peruntukan 1 pc utk diriku.
Hmmm.. byk virus lah pulak.. kena tukar Kaspersky baru best skit.. sok baru nk settle sebab tak bawa installer nyer ..
Bos suh copy struktur phpSQL lak dah...hmmm bab2 koding ni yg kureng..huh...
1 folder ada 68 perkara & lagi 1 ada 7 perkara di dalamnyer..
Alhamdulillah settle gak ptg tadi. So .. ini hari copy struktur dlm MS_Excel.

guna Winscap utk masuk root server
http://localhost/phpmyadmin

Tuesday, April 01, 2008

Linux_Shutdown_Commandline

RESTART/REBOOT LINUX
----------------------------------------------------------------------
Linux: Reboot: How to reboot from the command line??
Method: reboot from the command line:
 shutdown -fr now # restarts
or
 shutdown -r now # restarts
or
 reboot
---
---
Method: reboot using <DEL>
When in a text mode screen,
press <DEL>
---
SHUTDOWN LINUX
----------------------------------------------------------------------
Linux: shutdown: How to shutdown from the command line??
Method: shutdown from the command line:
 shutdown -fr now # shutdown

Web Development

RABU - 12/3/08

Web Development dibahagikan kpd 2 :
  • Static --- Pure HTML
  • Dynamic

Static
  • Content
  • nk ubah/edit perlu buka semula fail tersebut
  • pages yang tersedia

Dynamic
  • content can be anything (dynamicly loaded into web page)
  • Develop guna mySQL & PHP
  • Keperluan : web server (-> apache) + mySQL + PHP
  • Software : WAMP, XAMP, Easy PHP [ ada ketiga-tiga keperluan diatas -packages)
Web Authoring Tools -> Dreamweaver

Buat folder untuk...( step )
  1. /var/www/html
  2. mkdir shadia
  3. vim index.html

Web development is a broad term for any activities related to developing a web site for the World Wide Web or an intranet.
This can include e-commerce business development, web design, web content development, client-side/server-side coding, and web server configuration.
However, among web professionals, "web development" usually refers only to the non-design aspects of building web sites, e.g. writing markup and coding.
Web development can range from developing the simplest static single page of plain text to the most complex web-based internet applications, electronic businesses, or social network services.
For larger businesses and organizations, web development teams can consist of hundreds of people (web developers).
maller organizations may only require a single permanent or contracting webmaster, or secondary assignment to related job positions such as a graphic designer and/or Information systems technician.
Web development may be a collaborative effort between departments rather than the domain of a designated department.

Reference-http://en.wikipedia.org/wiki/Web_development



Thursday, February 28, 2008

Firewall

Merupakan suatu aplikasi @ perisian yang mengawal in & out bound (apa saja yg masuk dr network card) network traffic
  • menapis in / out dlm network
  • pengawal traffic (allow & block)
  • bukan antivirus
  • cth firewall (COMODO -> rules allow + block)
Keperluan pada pc :
  • utk kawal in & out bound yg berlaku dlm network card
  • control sebarang komunikasi atr pc dgn pc yg lain / host lain drpd network card.
  • hanya menggunakan rules
    • 1. allow + deny
    • 2. accept + firewall
    • 3. allow + block

* Setiap komunikasi yang berlaku menggunakan IP + Port
Port
80 - http
8080 - proxy
21 - ftp
53 - DNS
110 - POPS
22 - ssh (hacker selalu guna)
20 - telnet

* Reason guna firewall Staff & student :
  • tidak benarkan mana-mana pihak boleh control server
  • Kalau student & staf boleh control server maka tiada fungsi Chief Network Server
* PC standalone tidak boleh control PC lain untuk block kerana ia bukan server (iaitu PC yg lain2 tidak connect pada PC tersebut)


A firewall is a dedicated appliance, or software running on another computer, which inspects network traffic passing through it, and denies or permits passage based on a set of rules.

Reference - http://en.wikipedia.org/wiki/Firewall

Monday, February 25, 2008

Latihan hacked di www.hackthissite.org

Di website ini disediakan cara2 utk hack website berdasarkan kepada Basic Level, Mission level dan seterusnya. Untuk Basic Level didalamnya terdapat 10 stage...
kusut kepala utk lepas setiap stage nih....aduhai... (kak murni kata utk menjadi hackers yg sebenaqnya kena fikior secara kritis / analitics thinking....)...
Tapi bagi diA,sebenarnya klu takde basic belajaq html coding, script (javascript & vbscript) tu tak leh gak... jadi blur2..gitu ;-p
Lama dah ngaji coding2 tuh....mcm siput jer nk buat ujian kt www.hackthissite.org ...hmmm
Sehingga tarikh hari ini 25/2/08 dari 22/2/08 baru lepas stage 7 @ nk masuk stage 8.

Hacked Website menggunakan SQL Injection (magic code)

SQL Injection - Magic Code

Berikut adalah antara website yg berjaya nadia masuki dan ketika ini mungkin website-website tersebut telah kemaskini (update) :
1. http://www.inneresteem.com
2. http://myeshop4u.com
3. pgcs.upm.edu.my/pli
4. www.diginex.com.my
5. http://www.alhidayah-tamesna.com
6. www.agriplaza.com.my
7. www.lamwood.net
8. http://www.iccweb.com
9. www.mcmweb.org
10. http://www.bima.net
11. www.melrosepyro.com
12. http://bcahosting.com
13. http://www.mathcounts.org
14. www.malangkab.go.id
15. www.nyscatholicconference.org

Wednesday, February 20, 2008

Remote File Inclusion (RFI)

Remote File Inclusion (RFI)

  • 1 teknik yang digunakan untuk ceroboh website internet drpd komputer kawalan jauh (remote computer)
  • is a technique used to attack Internet websites from a remote computer.
  • berlaku dlm programming yg tidak mempertimbangkan security khususnya dlm php
  • berlaku dalam url
  • include