• R/O
  • SSH
  • HTTPS

masspie: Commit


Commit MetaInfo

Revision20 (tree)
Zeit2020-02-17 19:08:53
Autorelge

Log Message

better intro and getting started guide writeup on initial scan and checkiprev

Ändern Zusammenfassung

Diff

--- README.md (revision 19)
+++ README.md (revision 20)
@@ -1,28 +1,86 @@
11 # MASSPIE
22
3-_Mass-scanning port `25/tcp` and eventually checking if STARTTLS is enforced or not_
3+_Mass-scanning port `25/tcp` and eventually checking if STARTTLS is enforced and validates_
44
55 ## REQUIREMENTS
66
7- apt install dnsutils traceroute nmap htop iftop ntopng
7+Only [Masscan](https://pub.nethence.com/network/masscan) and the `host` command are truly required, but a few tools may also become handy to handle the load.
8+
9+Slackware
10+
11+ ls -lF /var/log/packages/{bind,traceroute,nmap,htop,iftop,nload}-*
12+
13+Ubuntu
14+
15+ apt install dnsutils traceroute nmap htop iftop nload ntopng
16+
17+## INITIAL SCAN
18+
19+_Required as root & heavy network load_
20+
21+ month=`date +%Y%m`
22+ mkdir -p ~/mass/$month/
23+ cd ~/mass/$month/
24+ screen -S $month
25+ cat /etc/masscan/exclude.conf
26+ ls -alF
27+ time masscan 0.0.0.0/0 -p25 --excludefile /etc/masscan/exclude.conf --rate=500000 -oG massp25.og
28+
29+and check the network load e.g. with `nload`
30+
31+At rate `250,000`, it takes about 15 hours
32+
33+At rate `500,000`, network TX is about 210 Mbit/s and it takes about 2:15 hours
34+
35+ real 134m51.334s
36+ user 17m6.783s
37+ sys 28m2.972s
38+
39+## INSTALLATION
40+
41+Just in case somebody manages to shell-inject code into our `host` probes, it's best to run all this as a user
42+
843 useradd -m -s /bin/bash -g users mass
44+
45+Move the scanned materials to its home directory. Got 11 to 13 millions?
46+
47+ grep -v ^# ~/mass/$month/massp25.og | wc -l
48+ mv ~/mass/$month/ ~mass/
49+ chown -R mass:users ~mass/$month/
50+
51+and switch to it
52+
953 su - mass
1054
11-## INSTALLATION
55+Then grab the Masspie scripts and start a GNU/Screen session in there
1256
13- svn checkout https://svn.osdn.net/svnroot/masspie/
14- #svn checkout svn+ssh://elge@svn.osdn.net/svnroot/masspie/
57+ svn checkout https://svn.osdn.net/svnroot/masspie/
1558 cd masspie/
1659
60+ month=`date +%Y%m`
61+ cd ~/$month/
62+ screen -S masspie
63+
1764 ## IPREV CHECK
1865
19-Stress some DNS services, possibly yours, or your ISP's.
66+_As user and heavy CPU times_
2067
21- for x in `seq -w 000 999`; do ./validptr.bash x$x & done; unset x
22- jobs
68+Stress some DNS services, possibly yours, or your ISP's. This can be split across multiple servers. Eventually switch around the order of nameservers into `resolv.conf`.
2369
24-Check the load with `htop` -- this can otherwise be split across multiple servers. If so, eventually switch around the order of nameservers into `resolv.conf`.
70+ vi /etc/resolv.conf
2571
72+ cd ~/$month/
73+ ls -lF massp25.og
74+ #rm -rf splitted/
75+ #rm -f splitted/*.ptr splitted/*.weird
76+ ~/masspie/checkiprev.bash
77+ ls -lF massp25.og.ip.sort
78+ ls -F splitted/ip[0-9][0-9][0-9]
79+ tail splitted/ip099
80+ tail -G splitted/ip099.ptr
81+
82+and check the CPU load with `htop`
83+
2684 ## CUSTOM OPENSSL
2785
2886 _Exit when EHLO/STARTTLS was not advertised_
Show on old repository browser