Buat folder rahasia sendiri

Buka Notepad, lalu ketikan tulisan berikut (copy-paste) dan simpan dengan file kunci.bat

cls
@ECHO OFF
title Folder FolderRahasia
if EXIST “Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}” goto UNLOCK
if NOT EXIST FolderRahasia goto MDLOCKER
:CONFIRM
echo Apakah anda ingin mengunci FolderRahasia tersebut ? (Y/N)
set/p “cho=>”
if %cho%==Y goto LOCK
if %cho%==y goto LOCK
if %cho%==n goto END
if %cho%==N goto END
echo Ketik Y atau N.
goto CONFIRM
:LOCK
ren FolderRahasia “Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}”
attrib +h +s “Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}”
echo FolderRahasia Terkunci
goto End
:UNLOCK
echo Masukkan Password untuk membuka kunci
set/p “pass=>”
if NOT %pass%== inipassword goto FAIL
attrib -h -s “Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}”
ren “Control Panel.{21EC2020-3AEA-1069-A2DD-08002B30309D}” FolderRahasia
echo FolderRahasia sudah di buka
goto End
:FAIL
echo Password salah
goto end
:MDLOCKER
md FolderRahasia
echo FolderRahasia Sukses di buat
goto End
:End

diambil dari http://www.untukku.com, untuk password inipassword bisa diganti dengan password anda, tinggal klik file kunci bat….. semoga bermanfaat

Aplikasi dan Game Java HT G32

Sudah dites dan jalan dengan baik di hapir semua type HT link serries

paket 1 aplikasi (Klik disini)

snaptu,ebuddy 1.5,opera 5 full (update 16-03-2010),english indonesia kamus,facebook link,file explorer (buat yang  sembunyikan file /folder dengan password) he he :),memory up (bersihkan cache, memory di hp biar tetep segar),Qur’an tafsir,google maps (di G32 kenceng di jenis lain maaf agak lambat),mobile PDF,word/excel viewer

paket 2 games (Klik disini)

asphalt 3,asphalt urbanGT3,asterix and obelix,PES 2010,Bruce lee Iron Fist,Call of duty,Mafia war,Moto GP,Real Footbal,Spiderman,Transformer,Smack Down WWF

Mohon masukan jika ada yang gagal

games baru :

Who want to be a  millionaire download

kumpulan puisi cinta,asmaul husna,game same color,safe(aplikasi simpan data penting),doa2 harian download

resident evil download

guitar hero 5,adobe reader pdf,tnt mutant ninja,hang man,ages of empire III download

mobile explorer download

Perintah Dasar Linux (CLI)

& adduser alias bg cat cd chgrp chmod chown cp fg find grep

gzip halt hostname kill less login logout ls man mesg mkdir

more mount mv passwd pwd rm rmdir shutdown su tail talk tar

umount unalias unzip wall who xhost + xset zip

Penjelasan lebih lanjut bersambung ...

Konfigurasi SSH

Konfigurasi SSH

Sebelum konfigurasi SSH, kita set terlebih dahulu router agar tcp packet di port 22 dapat melewati server.

[root@my ~]# vi /etc/ssh/sshd_config
#MaxAuthTries 6
PermitRootLogin no // line 39: hapus tanda ‘#’ dan rubah nilainya –> ‘no’
PermitEmptyPasswords no // line 59: hapus tanda ‘#’
PasswordAuthentication yes

[root@my ~]# /etc/rc.d/init.d/sshd restart

[root@my ~]# chkconfig sshd on

Untuk mencek ssh yang sudah dikonfigurasi untuk melakukan koneksi dari windows ke server ssh gunakan putty.download disini.

Jalankan putty kemudian lakukan pengisian ip server contoh 200.100.100.1
Atau jika sudah ada domain masukan nama domainnya.

DNS Server

Konfigurasi DNS

Tahap awal untuk melakukan instalasi DNS adalah memeriksa apakah daemon yang dibutuhkan untuk domain sudah terinstall atau belum. Dalam kasus ini kita menggunakan bind daemon.Untuk mengeceknya gunakan perintah

#rpm –qa | grep bind

Sebagai contoh kita akan konfigurasi BIND dengan named.conf.

Studi kasus menggunakan global IP adddress 173.16.0.80/29 dan Private address 200.100.100.0/24, Domain name [fedora.net.id].

a. Konfigurasi

#vi /var/named/chroot/etc/named.conf
options { directory “/var/named”;
/*
* If there is a firewall between you and nameservers you want
* to talk to, you might need to uncomment the query-source
* directive below. Previous versions of BIND always asked
* questions using port 53, but BIND 8.1 uses an unprivileged
* port by default.
*/

// query-source address * port 53;
allow-query { localhost; 200.100.100.0/24; };
allow-transfer { localhost; 200.100.100.0/24; };
allow-recursion { localhost; 200.100.100.0/24; };
};

controls {
inet 127.0.0.1 allow { localhost; } keys { rndckey; };
};

// ini untuk ip private di lokal
view “internal” {
match-clients {
localhost; 200.100.100.0/24;
};

zone “.” IN {
type hint;
file “named.ca”;
};

zone “net.id” IN {
type master;
file “fedora.net.id.db”;
allow-update { none; };
};

zone “100.100.200.in-addr.arpa” IN {
type master;
file “100.100.200.db”;
allow-update { none; };
};

zone “localdomain” IN {
type master;
file “localdomain.zone”;
allow-update { none; };
};

zone “localhost” IN {
type master;
file “localhost.zone”;
allow-update { none; };
};
zone “0.0.127.in-addr.arpa” IN {
type master;
file “named.local”;
allow-update { none; };
};

zone “255.in-addr.arpa” IN {
type master;
file “named.broadcast”;
allow-update { none; };
};

zone “0.in-addr.arpa” IN {
type master;
file “named.zero”;
allow-update { none; };
};

};

// ini untuk menghubungkan dengan jaringan luar. Catatan : jangan dibuat jika tidak ada

view “external” {
match-clients {
any;
};

zone “.” IN {
type hint;
file “named.ca”;
};

zone “net.id” IN {
type master;
file “fedora.net.id.wan.db”;
allow-update { none; };
};

zone “80.0.16.173.in-addr.arpa” IN {
type master;
file “80.0.16.173.db”;
allow-update { none; };
};
};

include “/etc/rndc.key”;

Langkah berikutnya adalah bagaimana membuat file zone.

alamat 200.100.100.0/24
network address ? 200.100.100.0
range of network ? 200.100.100.1 – 200.100.100.255
bagaimana membuat ? 100.100.200.in-addr.arpa
alamat 173.16.0.80/29
network address ? 173.16.0.80
range of network ? 173.16.0.80 – 173.16.0.87
bagaimana membuat ? 80.0.16.173.in-addr.arpa

b. Zones

#vi /var/named/chroot/var/named/fedora.net.id.db

$TTL 1H
@ IN SOA fedora.net.id. root.fedora.net.id. (
21
3H
1H
1W
1H )

IN NS fedora.net.id.
IN A 200.100.100.1
IN MX 20 mail.fedora.net.id.
fedora IN A 200.100.100.1
mail IN A 200.100.100.1
www IN A 200.100.100.1
lan IN A 192.168.0.2

http://www.fedora.net.id. IN CNAME fedora.net.id.
ftp.fedora.net.id. IN CNAME fedora.net.id.
nfs.fedora.net.id. IN CNAME fedora.net.id.
mail.fedora.net.id. IN CNAME mx.fedora.net.id.
lan.fedora.net.id. IN CNAME fedora.net.id.
mx.fedora.net.id. IN A 200.100.100.1

#vi /var/named/chroot/var/named/100.100.200.db

$TTL 1H
@ IN SOA fedora.net.id. root.fedora.net.id. (
16
3H
1H
1W
1H )
IN NS fedora.net.id.
IN PTR fedora.net.id.
IN A 255.255.255.0
2 IN PTR fedora.net.id.

#vi /var/named/chroot/var/named/fedora.net.id.wan.db (dijelaskan berikutnya)
#vi /var/named/chroot/var/named/80.0.16.173.db (dijelaskan berikutnya)

NTP Server

Network Time Protocol (NTP)  adalah protocol untuk meng-sinkron-kan sistem waktu (clock) pada komputer terhadap sumber yang akurat, melalui jaringan intranet atau internet. Terdapat  beberapa situs NTP “Stratum 1” (situs NTP dengan sumber waktu dari atomic clock) and “Stratum 2” (situs NTP dengan sumber waktu dari situs NTP lain, dengan  sedikit penurunan tingkat akurasi) yang dapat digunakan oleh publik.

Dalam aplikasinya, sebaiknya jaringan mempunyai satu (atau lebih) NTP server lokal  (Stratum 2 atau 3) untuk semua work-station, yang di-sinkron-kan terhadap NTP server di luar jaringan. Konfigurasi ini lebih menjamin korelasi antar sistem-sistem yang terkait dalam jaringan yang bersangkutan.

Konfigurasi NTP sebagai berikut:

Konfigurasi Jaringan

[root@my ~]#vi /etc/sysconfig/network-scripts/ifcfg-eth0
#Advanced Micro Devices (AMD) 79c970 [PCnet32 LANCE] NIC dari vmware
ONBOOT=yes
DEVICE=eth0
BOOTPROTO=static
BROADCAST=200.100.100.255
HWADDR=00:50:43:00:3B:AE
TYPE=Ethernet
USERCTL=no
IPV6INIT=no
#DNS1=
IPADDR=200.100.100.1
NETMASK=255.255.255.0
#GATEWAY=

Konfigurasi Servis

1. Cek keberadaan services yang berjalan :
[root@my ~]#chkconfig –list | less
2.Mematikan service yang tidak diperlukan
[root@my ~]#/etc/rc.d/init.d/yum-updatesd stop
Stopping yum-updatesd [ OK ]
[root@my ~]#chkconfig yum-updatesd off
3.Uninstall service
[root@my ~]#rpm -e yum-updatesd off
4.Jenis-jenis service

ConsoleKit	It records users’ actions on the system in log files.
NetworkManager	The NetworkManager daemon attempts to keep an active network connection available at all times.
NetworkManagerDispatcher	The NetworkManagerDispatcher daemon runs commands in the /etc/NetworkManager/dispatcher.d directory in response to interfaces coming up and down.
anacron	Anacron can be used to execute commands periodically, with a frequency specified in days.
atd	atd runs jobs queued by at.
autofs	autofs controls the operation of the automount(8) daemons running on the Linux system.
bluetooth	It provids wireless connections among computers.
cpuspeed	This program monitors the system?fs idle percentage and reduces or raises the CPUs?f clock speeds and voltages accordingly to minimize power consumption when idle and maximize perfor-mance when needed.
crond	The daemon to execute scheduled commands.	*
cups	It’s the print system.
dund	It’s BlueZ Bluetooth dial-up networking daemon.
firstboot	It’s a tool that we can configure basic settings ofthe system by it.
gpm	It’s a cut and paste utility and mouse server for virtual consoles.
haldaemon	It searches infomations for hardwares.
ip6tables	It’s IPv6 packet filter administration.
iptables	It’s administration tool for IPv4 packet filtering and NAT.
irda	IrDA is a complete implementation of the various IrDA protocols and IrDA drivers for Linux.
irqbalance	It distributes hardware interrupts across processors on a multiprocessor system.	*
kudzu	It detects and configures new and/or changed hardware on a system.
mdmonitor	It watches software-based RAID.
messagebus	It sends messages between apprications.	*
microcode_ctl	It’s microcode utility for Intel IA32 processors.
multipathd	The multipathd daemon is in charge of checking for failed paths. When this happens, it will reconfigure the multipath map the path belongs to, so that this map regains its maximum per-formance and redundancy.
netconsole	It sends printk message from kernel on UDP.
netfs	It’s NFS client.
netplugd	It’s the daemon for network cable hotplug management.
network	It’s the daemon for network system.	*
nfs	It’s NFS server.
nfslock	It provids file lock function for NFS server.
nscd	Nscd is a daemon that provides a cache for the most common name service requests.
pand	The pand PAN daemon allows your computer to connect to ethernet networks using Bluetooth.
pcscd	It’s PC/SC Smart Card Daemon.
psacct	Belum tahu nih
rdisc	Belum tahu nih
readahead_early	It reads files in page cache early.	*
readahead_later	It reads files in page cache early when system is running in GUI mode.
restorecond	It’s the daemon that watches for file creation and then sets the default SELinux file context.
rpcbind	It’s universal addresses to RPC program number mapper.
rpcgssd	It’s the daemon which is used for network filesystem like NIS or NFS.
rpcidmapd	It’s the daemon which is used for network filesystem like NIS or NFS.
rpcsvcgssd	It’s the daemon which is used for network filesystem like NIS or NFS.
rsyslog	It reads and/or clears kernel message ring buffer; set console_loglevel.	*
saslauthd	saslauthd is a daemon process that handles plaintext authentication requests on behalf of the SASL library.
sendmail	It’s SMTP server.
smartd	It’s SMART Disk Monitoring Daemon.
sshd	It’s OpenSSH SSH daemon.	*
udev-post	Belum tahu juga
wpa_supplicant	It’s Wi-Fi Protected Access client and IEEE 802.1X supplicant.
ypbind	ypbind finds the server for NIS domains and maintains the NIS binding information.
yum-updatesd	yum-updatesd provides notification of updates which are available to be applied to your system.

Konfigurasi Firewall dan SE linux

Konfigurasi Firewall dan SE(Security-Enhanced Linux). : firewall dibutuhkan kalau kita saat mengaktifkan router, untuk latihan ini kita disable dulu.
[root@my ~]#/etc/rc.d/init.d/iptables stop
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: filter [ OK ]
Unloading iptables modules: [ OK ]
[root@my ~]#chkconfig iptables off
[root@my~]#chkconfig ip6tables off
[root@my~]#vi /etc/sysconfig/selinux
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#enforcing – SELinux security policy is enforced.
#permissive – SELinux prints warnings instead of enforcing.
#disabled – SELinux is fully disabled.
SELINUX=disabled // rubah ini
# SELINUXTYPE= type of policy in use. Possible values are:
#targeted – Only targeted network daemons are protected.
#strict – Full SELinux protection.
SELINUXTYPE=targeted

Konfigurasi awal : Menambahkan User pada LFD

1. Membuat user contoh ;periyadi …
[root@my ~]#useradd periyadi
[root@my ~]#passwd periyadi
Changing password for user fedora.
New UNIX password:                                           // masukan passwordnya
Retype new UNIX password:                           // ulangi sekali lagi passwordnya
passwd: all authentication tokens updated successfully.
[root@my ~]#exit                                           // logout

2. Berpindah login dari user ke root
my login: periyadi                                                              // masukan username yang sudah dibuat sebelumnya
password:                                                                     // masukan password
[periyadi@my ~]$ su – // pindah ke root
Password:                                                                      // masukan password root
[root@my ~]#
3. Menjadi user periyadi yang mengendalikan sistem root, user lain tidak
[root@my ~]#vi /etc/group
// di line 11: tambahkan user tadi,modus edit tekan tombol insert
wheel:x:10:root,periyadi
#save file gunakan perintah/ketikan :wq!
[root@my~]#vi /etc/pam.d/su
#%PAM-1.0
auth sufficient pam_rootok.so
# Hapus ‘#’ pada line berikut
auth required pam_wheel.so use_uid
auth include system-auth
account sufficient pam_succeed_if.so uid = 0 use_uid quiet
account include system-auth
password include system-auth
session include system-auth
session optional pam_xauth.so
4.seting forward mail yang ke root dialihkan ke user periyadi
[root@my ~]#vi /etc/aliases
# Person who should get root’s mail
# dibawah, hapus ‘#’ dan tambahkan user periyadi
root:periyadi
[root@my ~]#newaliases                                             // set aliases baru
/etc/aliases: 77 aliases, longest 10 bytes, 776 bytes total