Upgrade to Pro — share decks privately, control downloads, hide ads and more …

DJUGL June 2013

Kura
July 17, 2013
Technology
0
110

DJUGL June 2013

Kura

July 17, 2013
Tweet

Other Decks in Technology

See All in Technology
検証を通して見えてきたTiDBの性能特性
lycorptech_jp
PRO
6
3.7k
EMとして2023年度に頑張ったこと / What we did well in FY2023 as a EM
pauli
1
170
レガシーをぶっ壊せ。AEONで始めるDevRelの話 / Qiita Night 2024-2-22
aeonpeople
3
1.3k
DevOpsDays History and my DevOps story
kawaguti
PRO
9
2.5k
Kernel MemoryでAzure OpenAI Serviceとお手軽データソース連携
mitsuzono
1
240
20240418_Google ColabにLLMが搭載されたようなのでPython x データ分析の勉強方法を考えてみる
doradora09
0
130
コンテナセキュリティの基本と脅威への対策
kyohmizu
3
760
JAWS-UG Bedrock Claude Night
yamahiro
3
570
Google Cloud Next '24でブログを10本書いた方法と勉強会を沸かせた方法
yasumuusan
0
290
[新卒向け研修資料] テスト文字列に「うんこ」と入れるな(2024年版)
infiniteloop_inc
3
13k
Google Cloud Next '24 Recap(Cloud Run/k8s)
mokocm
0
110
本当のAWS基礎
toru_kubota
0
510

Featured

See All Featured
Statistics for Hackers
jakevdp
789
220k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
30
6k
Testing 201, or: Great Expectations
jmmastey
28
6.3k
Code Review Best Practice
trishagee
55
15k
How to Ace a Technical Interview
jacobian
272
22k
Pencils Down: Stop Designing & Start Developing
hursman
117
11k
The MySQL Ecosystem @ GitHub 2015
samlambert
243
12k
Infographics Made Easy
chrislema
238
18k
The Art of Programming - Codeland 2020
erikaheidi
42
12k
Designing for Performance
lara
601
67k
How to name files
jennybc
65
93k
Code Reviewing Like a Champion
maltzj
514
39k

Transcript

  1. Blackhole Kura | @kuramanga Yes, this presentation is deliberately digusting

    and brown. I am shit at making slides.

  2. What is Blackhole? • An async “fake” MTA • Built

    on the Tornado framework • Low disk I/O (high disk I/O with debug flag enabled)

  3. Uhh... Why? • Speed testing • Integration testing • Oh

    shit I need to test on a copy of live data but can't anonymise user content and don't want to accidentally send emails to users • Honey pot (Nectar suite)

  4. Using Blackhole • Using blackhole.io service via raw SMTP or

    sending an email to <name>@blackhole.io • Running your own blackhole server just like you would Postfix, Exim etc

  5. Here be dragons (the debug flag is dangerous)

  6. [08A6002A19] RECV: EHLO [hel.kura.io] [08A6002A19] SEND: 250-2.5.0 OK, done [08A6002A19]

    SEND: 250-SIZE 512000 … [08A6002A19] RECV: MAIL FROM:<[email protected]> size=64 [08A6002A19] SEND: 250 2.5.0 OK, done [08A6002A19] RECV: RCPT TO:<[email protected]> [08A6002A19] SEND: 250 2.5.0 OK, done [08A6002A19] RECV: DATA [08A6002A19] SEND: 354 3.5.4 Start mail input; end with <CRLF>.<CRLF> [08A6002A19] RECV: From: <[email protected]> [08A6002A19] RECV: To: <[email protected]> [08A6002A19] RECV: Subject: Test [08A6002A19] RECV: [08A6002A19] RECV: gwergerg [08A6002A19] RECV: . [08A6002A19] SEND: 251 2.5.0 OK, done [08A6002A19] RECV: QUIT [08A6002A19] SEND: 221 2.2.1 Thank you for speaking to me

  7. PyPy • Works well with PyPy 1.9 and 2.0 •

    Performance improvements of blackhole.io of 1000% over time • Caveat: a bug somewhere that causes the process to crash on PyPy 2.0 when daemonizing... Works if daemon.start() is disabled. No clue why, need to fix.

  8. Nectar (dev/planned) • Honey pot suite, split in to 5

    components • Nectar-MTA – based on Blackhole, logs all incoming/outgoing connections + data • Nectar-SSH – Kippo-like SSH honeypot, brute force logging, fake Linux environment, shell logging • Nectar-Web – Web honeypot, exposes XSS and SQL injection vulns, logs all requests and exploit attempts • Nectar-GUI – web-based GUI for viewing and graphing data

  9. [Taylor Placeholder]

  10. [Taylor Placeholder]

  11. [Taylor Placeholder]

  12. Questions

  13. Linkies • http://blackhole.io • https://github.com/kura/blackhole • http://nectar.blackhole.io • @kuramanga •

    http://git.io/kura • [email protected]

  14. fin