know-how:usefull_commands
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende Überarbeitung | ||
know-how:usefull_commands [2024/03/07 14:28] – [IP Assignment] cc | know-how:usefull_commands [2024/03/28 13:56] (aktuell) – [List wireless hardware capabilities hostapd/wpad] cc | ||
---|---|---|---|
Zeile 1543: | Zeile 1543: | ||
< | < | ||
iw dev wlan0 station dump | iw dev wlan0 station dump | ||
+ | </ | ||
+ | |||
+ | ====== List wireless hardware capabilities hostapd/ | ||
+ | |||
+ | < | ||
+ | -> iw list | ||
+ | |||
+ | root@foo:~# iw list | ||
+ | Wiphy phy1 | ||
+ | wiphy index: 1 | ||
+ | max # scan SSIDs: 4 | ||
+ | max scan IEs length: 2257 bytes | ||
+ | max # sched scan SSIDs: 0 | ||
+ | max # match sets: 0 | ||
+ | Retry short limit: 7 | ||
+ | Retry long limit: 4 | ||
+ | .... | ||
+ | Wiphy phy0 | ||
+ | wiphy index: 0 | ||
+ | max # scan SSIDs: 16 | ||
+ | max scan IEs length: 199 bytes | ||
+ | max # sched scan SSIDs: 0 | ||
+ | ... | ||
+ | |||
+ | |||
+ | </ | ||
+ | ====== List/scan wireless access points hostapd/ | ||
+ | * WLANs anzeigen cli | ||
+ | |||
+ | < | ||
+ | ggf. ip li set dev wlanxx up | ||
+ | iw dev wlanxx scan | ||
</ | </ | ||
Zeile 2470: | Zeile 2502: | ||
the way, when you do init=/ | the way, when you do init=/ | ||
+ | </ | ||
+ | ====== cryptsetup ====== | ||
+ | * Interesting read **argon2id**: | ||
+ | |||
+ | * Getestet auf Debian Bookworm / ursprünglich **argon2i** / Stand der Technik (2024-03-11): | ||
+ | < | ||
+ | root@mrWhiteGhost:/ | ||
+ | |||
+ | root@mrWhiteGhost:/ | ||
+ | / | ||
+ | |||
+ | root@mrWhiteGhost:/ | ||
+ | LUKS header information | ||
+ | Version: | ||
+ | Epoch: | ||
+ | Metadata area: 16384 [bytes] | ||
+ | Keyslots area: 16744448 [bytes] | ||
+ | UUID: 123-123-123 | ||
+ | Label: | ||
+ | Subsystem: | ||
+ | Flags: | ||
+ | |||
+ | Data segments: | ||
+ | 0: crypt | ||
+ | offset: 16777216 [bytes] | ||
+ | length: (whole device) | ||
+ | cipher: aes-xts-plain64 | ||
+ | sector: 512 [bytes] | ||
+ | |||
+ | Keyslots: | ||
+ | 0: luks2 | ||
+ | Key: 512 bits | ||
+ | Priority: | ||
+ | Cipher: | ||
+ | Cipher key: 512 bits | ||
+ | PBKDF: | ||
+ | Time cost: 4 | ||
+ | Memory: | ||
+ | Threads: | ||
+ | AF stripes: 4000 | ||
+ | AF hash: sha256 | ||
+ | Area offset: | ||
+ | Area length: | ||
+ | Digest ID: 0 | ||
+ | Tokens: | ||
+ | Digests: | ||
+ | 0: pbkdf2 | ||
+ | Hash: | ||
+ | Iterations: | ||
+ | |||
+ | root@mrWhiteGhost:/ | ||
+ | Enter passphrase for keyslot to be converted: | ||
+ | root@mrWhiteGhost:/ | ||
+ | 0 | ||
+ | root@mrWhiteGhost:/ | ||
+ | LUKS header information | ||
+ | Version: | ||
+ | Epoch: | ||
+ | Metadata area: 16384 [bytes] | ||
+ | Keyslots area: 16744448 [bytes] | ||
+ | UUID: 123-123-123 | ||
+ | Label: | ||
+ | Subsystem: | ||
+ | Flags: | ||
+ | |||
+ | Data segments: | ||
+ | 0: crypt | ||
+ | offset: 16777216 [bytes] | ||
+ | length: (whole device) | ||
+ | cipher: aes-xts-plain64 | ||
+ | sector: 512 [bytes] | ||
+ | |||
+ | Keyslots: | ||
+ | 0: luks2 | ||
+ | Key: 512 bits | ||
+ | Priority: | ||
+ | Cipher: | ||
+ | Cipher key: 512 bits | ||
+ | PBKDF: | ||
+ | Time cost: 5 | ||
+ | Memory: | ||
+ | Threads: | ||
+ | AF stripes: 4000 | ||
+ | AF hash: sha256 | ||
+ | Area offset: | ||
+ | Area length: | ||
+ | Digest ID: 0 | ||
+ | Tokens: | ||
+ | Digests: | ||
+ | 0: pbkdf2 | ||
+ | Hash: | ||
+ | Iterations: | ||
+ | |||
</ | </ | ||
====== encrypted zip ====== | ====== encrypted zip ====== | ||
Zeile 2742: | Zeile 2867: | ||
</ | </ | ||
* Routing: ** ip route ** {{ : | * Routing: ** ip route ** {{ : | ||
+ | * IPV6 enable: ipv6 unicast-routing | ||
< | < | ||
ip route | ip route | ||
Zeile 2776: | Zeile 2902: | ||
R1(config)# | R1(config)# | ||
</ | </ | ||
+ | |||
+ | ===== netstat / Dienste deaktivieren ===== | ||
+ | * **Achtung** Quote von Cisco | ||
+ | < | ||
+ | Router# show ip ports all | ||
+ | Proto Local Address | ||
+ | TCB Local Address | ||
+ | tcp ::: | ||
+ | tcp | ||
+ | udp | ||
+ | Router# | ||
+ | |||
+ | IOS versions prior to IOS-XE use the show control-plane host open-ports command. We mention this command because you may see it on older devices. The output is similar. However, notice that this older router has an insecure HTTP server and Telnet running. Both of these services should be disabled. As shown in the example, disable HTTP with the no ip http server global configuration command. Disable Telnet by specifying only SSH in the line configuration command, transport input ssh. | ||
+ | |||
+ | Router# show control-plane host open-ports | ||
+ | Active internet connections (servers and established) | ||
+ | Prot Local Address | ||
+ | | ||
+ | | ||
+ | | ||
+ | Router# configure terminal | ||
+ | Router(config)# | ||
+ | Router(config)# | ||
+ | Router(config-line)# | ||
+ | </ | ||
+ | |||
+ | ===== show / infos anzeigen ===== | ||
+ | |||
+ | < | ||
+ | show running-config | ||
+ | To verify the current configuration and settings | ||
+ | |||
+ | |||
+ | show interfaces | ||
+ | To verify the interface status and see if there are any error messages | ||
+ | |||
+ | show ip interface | ||
+ | To verify the Layer 3 information of an interface | ||
+ | |||
+ | show arp | ||
+ | To verify the list of known hosts on the local Ethernet LANs | ||
+ | |||
+ | show ip route | ||
+ | To verify the Layer 3 routing information | ||
+ | |||
+ | show protocols | ||
+ | To verify which protocols are operational | ||
+ | |||
+ | show version | ||
+ | To verify the memory, interfaces, and licences of the device | ||
+ | </ | ||
+ | |||
====== sed ====== | ====== sed ====== | ||
* Regex Search and Replace alle matches e.g. | * Regex Search and Replace alle matches e.g. |
know-how/usefull_commands.1709818113.txt.gz · Zuletzt geändert: 2024/03/07 14:28 von cc