Thursday, August 14, 2014

Web Server HTTPS : Secure HTTP Protocol pada CentOS

Pada beberapa halaman web kita sering menemukan alamat yang menggunakan “https://” seperti pada login aplikasi bank, paypal, facebook, email, dll. apakah sebenarnya https itu? dan bagaimana kita menyediakan webserver dengan fitur https?
HTTPS adalah kepanjangan dari Hypertext Transfer Protocol Secure yang merupakan sebuah protokol kombinasi antara HTTP (Hypertext Transfer Protocol) dan Cryptographic Protocol. Pada protokol ini selain menggunakan komunikasi plain text, juga menyandikan data sesi dengan menggunakan protokol SSL (Secure Socket Layer) atau Protokol TLS (Transport Layer Security). Pada umumnya Port yang digunakan adalah port 443 dan url yang digunakan adalah https://
menyediakan webserver https
Untuk menyediakan webserver berbasis https, saya mencoba melakukan instalasi pada mesin webserver dengan sistem operasi CentOS. langkah-langkahnya adalah :
1.  Mendapatkan paket aplikasi yang dibutuhkan
Paket aplikasi yang dibutuhkan adalah mod_ssl dan OpenSSL. mod_ssl adalah interface yang digunakan Apache untuk menggunakan OpenSSL. kita bisa menginstallnya menggunakan yum atau rpm.
Untuk instalasi dengan yum caranya :
1
yum install mod_ssl openssl
2.  Men-generate “self-signed certificate“
Untuk menyiapkan sebuah web server agar menerima koneksi HTTPS, administrator harus membuat sertifikat kunci publik untuk server web. Sertifikat ini harus ditandai oleh otoritas sertifikat yang terpercaya agar semua browser web bisa menerimanya koneksi HTTPS dari web server kita. Sertifikasi ini untuk menyatakan bahwa pemegang sertifikat tersebut memang merupakan sertifikat resmi. Web browser pada umumnya didistribusikan dengan sertifikat yang resmii sehingga mereka dapat memverifikasi koneksi HTTPS web server kita. Sertifikat sekuritas ini ada yang gratis (free) ada juga yang berlangganan antara US$13 – US$1.500 per tahun.
Tapi ada cara lain, yaitu membuat sertifikat kita sendiri, tetapi resikonya setiap web browser akan memberikan peringatan bahwa sertifikat milik web server kita tidak resmi. Untuk mendapatkan sertifikat sekuritas langkahnya adalah :
1
2
3
4
5
6
7
8
9
10
11
12
13
# Generate private key
openssl genrsa -out ca.key 1024
 
# Generate CSR
openssl req -new -key ca.key -out ca.csr
 
# Generate Self Signed Key
openssl x509 -req -days 365 -in ca.csr -signkey ca.key -out ca.crt
 
# Move the files to the correct locations
mv ca.crt /etc/pki/tls/certs
mv ca.key /etc/pki/tls/private/ca.key
mv ca.csr /etc/pki/tls/private/ca.csr
Kemudian kita harus mengupdate konfigurasi Apache SSL
1
nano +/SSLCertificateFile /etc/httpd/conf.d/ssl.conf
Mengubah path untuk mencocokkan di mana file kunci disimpan.
1
SSLCertificateFile /etc/pki/tls/certs/ca.crt
Kemudian mengatur path untuk Sertifikat Key File
1
SSLCertificateKeyFile /etc/pki/tls/private/ca.key
restart Apache
1
service httpd restart
3.  Mengeset Virtual Host
Nah kemudian kita membuat virtual host pada webserver kita agar kita mempunyai 2 host yang berbeda dalam 1 webserver.
Misalnya kita akan mengarahkan host http port 80 ke direktori /var/www/html/ dan untuk host https port 443 ke direktori /var/www/secure/. Maka kita lakukan modifikasi pada file konfigurasi apache /etc/httpd/conf/httpd.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<VirtualHost *:80>
        <Directory /var/www/html>
        AllowOverride All
        </Directory>
        DocumentRoot /var/www/html
        ServerName 172.18.3.184
</VirtualHost>
NameVirtualHost *:443
<VirtualHost *:443>
        SSLEngine on
        SSLCertificateFile /etc/pki/tls/certs/ca.crt
        SSLCertificateKeyFile /etc/pki/tls/private/ca.key
        <Directory /var/www/secure>
        AllowOverride All
        </Directory>
        DocumentRoot /var/www/secure
        ServerName 172.18.3.184
</VirtualHost>
kemudian restart Apache
1
service httpd restart
4.  Configure firewall
Langkah terakhir kita set konfigurasi firewall agar menerima request yang melalui port 443
1
2
3
iptables -A INPUT -p tcp --dport 443 -j ACCEPT
/sbin/service iptables save
iptables -L -v

sekian, selamat mencoba

Step by Step Install SSL di cPanel

Step by Step Install SSL di cPanel

Step 1: Siapkan Email Approver
Sebelum Anda meregistrasi SSL Siapkan email untuk approval SSL yang biasanya di kirim dari penerbit SSL, tanpa email ini kita tidak akan mendapatkan SSL Resmi. contoh email yang di butuhkan pilih salah satu:
admin@namadomain.com
webmaster@namadomain.com
administrator@namadomain.com

Step 2: Buat KEY dan CSR (Certificate Signing Request)
Anda perlu membuat KEY, CSR pada hosting dengan login ke cpanel pilih SSL/TLS Manager klik Generate, view, or delete SSL certificate signing requests.
Kolom yang perlu di isi (ini hanya sebagai contoh):
Key: Pilih Generate a new 2,048 bit Key
Domains: contoh: www.mydomain.com
City: Bandung
State: West Java
Country: ID
Company: Your Company Name
Company Division: IT Consulting
Email: username@mydomain.com
Passphrase dan Description boleh di kosongkan. lalu klik Generate
CSR ini nanti nya akan di gunakan untuk membeli SSL ke perusahaan penerbit SSL. pada SSL/TLS Manager di cpanel klik? Generate, view, or delete SSL certificate signing requests.
Apabila step ini sudah anda lakukan, cpanel akan memberikan sebuah kode CSR. seperti di bawah ini:
SAMPLE ONLY
—–BEGIN NEW CERTIFICATE REQUEST—–
MIIDCjCCAnMCAQAwdTEZMBcGA1UEAxMQaG9zdC5kb21haW4ubmFtZTEVM
BMGA1UECxMMT3JnYW5pemF0aW9uMRUwEwYDVQQKEwxPcmdhbml6YXRpb2
4xDTALBgNVBAcTBENpdHkxDjAMBgNVBAgTBVN0YXRlMQswCQYDVQQGEwJ
VUzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAyZ1dYomQ4jhSr6f
G3GYxjS4B837+y3A6xIM9OVXV4ZnSIe9nOLHgdksQJpwaQeOZwWeqifte
hrJ/s55PvPxok+Tqq0t7BfMkkUSuiYnFdUo1OpDPdw3cEaP9WWSrduouI
Vnq2AWTDw2ykyxKg6neb2vYTZRvbot7M578Vvh6P8CAwEAAaCCAVMwGgY
KKwYBBAGCNw0CAzEMFgo1LjAuMjE5NS4yMDUGCisGAQQBgjcCAQ4xJzAl
MA4GA1UdDwEB/wQEAwIE8DATBgNVHSUEDDAKBggrBgEFBQcDATCB/QYKK
wYBBAGCNw0CAjGB7jCB6wIBAR5aAE0AaQBjAHIAbwBzAG8AZgB0ACAAUg
BTAEEAIABTAEMAaABhAG4AbgBlAGwAIABDAHIAeQBwAHQAbwBnAHIAYQB
wAGgAaQBjACAAUAByAG8AdgBpAGQAZQByA4GJACB3C0g9psK0+V+N/Me1
JsG39vonCPQBdOwNp6zHJSPCU3FwQ0SgFpEQNy6HEn79I0CMrU93q9Hh1
TQtd2YU6lWHQunXrIcytmAFVjhibNX6Dp1e41Wjc2N4ilJyy1GFss686c
dZt2GP6y04I74/OvkW2Wf9nezUrMrESM2PP4B1AAAAAAAAAAAwDQYJKoZ
IhvcNAQEFBQADgYEAg4+QHTvkP5CG+WcGnrhKiMkJnMP6QEsds40obUDS
dGtEupQz8C+4xoMd1aM68q9Ri6Va+JTeuhKHxLz9hT/KUJhNBy0sRfnx+
JkQdrKG69UanTwvLqXINh9xChw9ErIto/2kZI5kl2KYQdiOqTv6p0GEUP
Rq/MD52Zy3bOzSRF0=?
—–END NEW CERTIFICATE REQUEST—–
Step 3: Install SSL
Setelah anda mendapatkan SSL Resmi dari penerbit, kini saatnya untuk menginstall SSL pada hosting anda. upload CRT pada kolom isian Certificate pada cPanel. klik? Generate, view, upload, or delete SSL certificates.
SAMPLE ONLY
—–BEGIN CERTIFICATE—–
MIIFDzCCA/egAwIBAgIDBE4KMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT
MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew
HhcNMTExMjA2MjM1MDI2WhcNMTIxMjA4MTYyMzE2WjCB/zEpMCcGA1UEBRMgLVE2
U0N2amJ4SFhQWDFjNUNFbDlKU1NnYkRtSm5IU0UxCzAJBgNVBAYTAklEMSUwIwYD
VQQKExx3d3cucmlyaWNvbGxlY3Rpb25ib25la2EuY29tMRMwEQYDVQQLEwpHVDgy
NDA5MDk3MTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNvbS9yZXNvdXJjZXMv
Y3BzIChjKTExMS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQgLSBS
YXBpZFNTTChSKTElMCMGA1UEAxMcd3d3LnJpcmljb2xsZWN0aW9uYm9uZWthLmNv
bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMrp2varrykFoUalYkeZ
XZ6A7LpeghPuXTzgeFtZp4sEuOCXLTt1EClpsM1AEkafWcfsk8l3fPecbqmxjJzz
yhMhdeMZ3I3NEGlleBhQviQ9Ca9j79rRS8i7a4mOKs2pHyAqdU4U0YnjLf5AzfyS
izrr1VcxZYn3fX0/cnLR+9KluSSzZb96P+rBnjRIMmo4wLG2Ps1/XziXwYCVsxgC
ZYUmYBkxqFni/AEhfJrifu+gRcIXnpGdJwZYxnE7xHzSZ2D5+8GvJZI1RmjGyLXp
FeuZuudbPXygS7dqUdnKg7DwIjd6EA7HHYazWvZP7vVAQoeH67dFbXpZSP2uImUU
mAsCAwEAAaOCAVQwggFQMB8GA1UdIwQYMBaAFGtpPWoYQkrdjwJlOf01JIZ4kRYw
PJhZc/vNR6sz5UhIeHchXfcoXu9nk+jklSFoW6JjtiZRrq9j+YdDFEgFBMtWU/Gf
Obj1/hpsRTVVSh0VNRnNzy3V9V0lupvCqO2SKlCeFFSxaXeTgxb7oFhPW615/d2q
T7WRtUhtuyfjgOBYpJMeu1lyoF/2LUJ7/irGV61W5Hlv1dnt0eaqHbnRn11tTjDs
iaAn
—–END CERTIFICATE—–
Step 4: Aktifasi SSL ke HTTPS
Semua sudah selesai. kini saatnya anda mengaktifkan fitur HTTPS pada website anda. pada SSL/TLS manager klik? Setup a SSL certificate to work with your site.
pilih nama domain yang ingin di setup SSLnya. misal: secure.namadomain.com
kemudian klik Install Certificate yang terdapat di bagian bawah kolom. apabila install berhasil silahkan untuk mencoba akses https://secure.namadomain.com pada web browser anda.


sumber indonetmedia

Thursday, July 24, 2014

Cara Mengetahui Cek NomorSendiri kartu Simpati AS XL Indosat Im3 Axis Three Smart Fren

Kartu Telkomsel ( Simpati dan AS )
Ketik :     *808#  kemudian tekan tombol Call

Kartu XL
Ketik :     *123*7*1*1*1#  kemudian tekan tombol Call

Kartu Indosat ( Im3 dan Mentari )
Ketik :     *777*8#  kemudian tekan tombol Call

Kartu Axis
Ketik :     *2#  kemudian tekan tombol Call

Kartu Three
Ketik :     *998#  kemudian tekan tombol Call

Kartu Smart
Ketik :     *551# kemudian tekan tombol Call

Kartu Fren
Untuk fren caranya adalah dengan cara mengirimkan sms, formatnya ketik : STATUS dan kirim ke 551, dan akan ada balasan ” Anda berada dalam layanan selular dengan nomor aktif 0888xxx”.

Saturday, August 03, 2013

Unsur Oksigen Ditemukan pada 1774

Oksigen atau zat asam adalah unsur kimia dalam sistem tabel periodik yang mempunyai lambang O dan nomor atom 8. Ia merupakan unsur golongan kalkogen dan dapat dengan mudah bereaksi dengan hampir semua unsur lainnya (utamanya menjadi oksida). Pada Temperatur dan tekanan standar, dua atom unsur ini berikatan menjadi dioksigen, yaitu senyawa gas diatomik dengan rumus O2 yang tidak berwarna, tidak berasa, dan tidak berbau. Oksigen merupakan unsur paling melimpah ketiga di alam semesta berdasarkan massa dan unsur paling melimpah di kerak Bumi.

Adalah Joseph Priestley (13 Maret 1733 - 6 Februari 1804) seorang filosofi dan ahli kimia berkebangsaan Inggris yang menemukan unsur Oksigen. Penemuan Priestley di hari ini pada 1774, membuktikan penemuan unsur kimia ini yang sebelumnya telah dilakukan oleh Carl Wilhelm Scheele.

Saturday, July 27, 2013

Lumba-Lumba memanggil sesama temannya dengan nama

Ilmuwan menemukan bukti bahwa lumba-lumba memanggil sesama temannya dengan nama. Penemuan mengungkap mamalia laut tersebut menggunakan siulan unik untuk mengidentifikasi satu sama lain.

Tim dari Universitas St Andrews di Skotlandia menemukan ketika hewan tersebut mendengar panggilan mereka diulangi, mereka meresponnya. Studi tersebut dipublikasikan dalam jurnal Pengetahuan Akademi Nasional.

"Lumba-lumba hidup di lingkungan tiga dimensi, mereka di lepas pantai dan butuh tetap bersama-sama sebagai kelompok," ujar peneliti Vincent Janik dikutip BBC.

Ilmuwan sudah lama menduga lumba-lumba menggunakan peluit khas dalam banyak cara yang sama seperti manusia menggunakan nama. Penelitian sebelumnya menemukan panggilan tersebut sering digunakan dan lumba-lumba di kelompok yang sama mampu belajar dan menyalin suara yang tidak biasa. Namun, ini merupakan pertama kalinya hewan tersebut diidentifikasi menggunakan panggilan 'nama'.

Untuk meneliti, para peneliti mencatat sekelompok lumba-lumba liar, menangkap suara tanda masing-masing hewan. Mereka kemudian menerima panggilan kembali menggunakan speaker bawah air. Para peneliti menemukan individu hanya merespon panggilan mereka sendiri.

Tim percaya lumba-lumba bertindak seperti manusia yakni ketika mereka mendengar nama mereka, mereka menjawab. Janik mengatakan keterampilan ini mungkin muncul untuk membantu binatang tetap bersama-sama dalam sebuah kelompok di habitat bawah air mereka yang luas.

Thursday, July 25, 2013

Let's roads to Mount Fuji With Google Street View

Not the first time Google invites Internet users 'streets' explore interesting places in the world. Google is now re-invites Internet users to conquer Mount Fuji through the touch of a fingertip.
related articles
Google `application` Play Games Official Released
Google `application` Play Games Official Released
Game Asphalt Racing `8` More Optimal on Nexus 7 Tablet New
Game Asphalt Racing `8` More Optimal on Nexus 7 Tablet New

Search one of the famous icons in Japan and included in the world heritage site which has been confirmed by UNESCO in June. Until now, Mount Fuji is one of the active volcanoes crowded in the summer (around July to September).

To perpetuate the hiking trail along the 3,776 meters, the team uses Google Street View Trekker. Like the search results at other locations, you also can see a 360 degree view around Mount Fuji. As reported by Ubergizmo page on Wednesday (07/24/2013).

There are more than 14,000 images depicting panoramic views of the surrounding mountains which became one of the UNESCO world heritage site. The presence of Google Street View lets you explore Mt Fuji even when entering the winter.

Previously Google has also browse the Galapagos Islands, and the Burj Khalifa using Street View. Last week Google also provides an online exploration of romantic locations, the Eiffel Tower in Paris.

Monday, July 22, 2013

Staring at the Future of Cloud Computing

These days, nearly everyone knows that the cloud is one of the major trends that drive komputansi for this decade. According to Forrester research institute, the global cloud market is expected to grow from U.S. $ 40.7 billion in 2011 to more than U.S. $ 241 billion in 2020, meaning an increase of over 600%.

Cloud was already accepted in everyday conversation - we no longer suppose it's a matter of what cloud and what are the benefits, now being discussed are practical things about how to achieve the vision of the ideal cloud.

One of the concepts in the past year a lot of attention is the hybrid cloud.

A service that combines private and public cloud, hybrid cloud is the next step when we talk about the cloud. A hybrid cloud is designed to allow the company leverages the scalability and cost efficiencies of public cloud service, while maintaining data governance, security and control of a private cloud service.

When constructed properly, hybrid cloud provides a strategic advantage to the business by diverting resources from IT procurement fragmented into service innovation. When you give birth to a hybrid environment in which existing services talk to each other - not just a stand-alone - then you will build a rich fabric of services and attractive to users, both customers, internal or services that can be accessible to the public.

Open the Future

We believe the best way to implement this vision is to open a hybrid cloud.

What is an Open Hybrid Cloud is not just a technology or specification. It's more than just partners mutually announced their support for a particular technology platform, and proposes an open standard format to the agency.

Open Hybrid Cloud is a vision of creating an open cloud environment to achieve the flexibility, portability and innovation.

We believe, Open Hybrid Cloud has the following characteristics:

Nature of Open Source

Do not want to lock in a business and technology roadmap of specific IT vendors? If you want to have control over your IT destiny and have full knowledge of the technology behind your business, obviously there is no option other than Open Source.

Open Source allows you to collaborate and connect with the passionate community that will encourage innovation and leadership. This rapid innovation can be a strategic advantage for your company.

Community has a rich, robust and independent

Open Source is not merely a matter of license code or technology - the heart is the people behind it.

Open Source Community provides a structure and network rich environment that can be used by companies as well as cooperative. Open Source communities form the basis of a large pool of skilled IT workers, often with a larger size than those in proprietary and closed environment. The idea of ​​the Open Source community is also growing into a corporate environment - where customers, partners and vendors work together to innovate and bring forth ideas to address the challenges of existing business and future.

Could be put on the infrastructure you want

Cloud services are abstractions of the layer below it: virtualization, storage, networking, etc.. Should not be tied to a particular vendor's technology infrastructure.

In fact, the open structure is very important in delivering hybrid cloud services is tough and physical server infrastructure includes a variety of different, many virtualization platforms and various types of public cloud services.

Based on open standards is independent in its application

In order to have full flexibility, interoperability approach should not be tied to a particular platform that is controlled by a particular vendor.

Furthermore, an Open Hybrid Cloud services should be expanded with an open API that also are not controlled by a particular vendor. It enables users to add features, suppliers and technologies from a variety of sources and vendors. Flexibility and freedom to choose is the key of the Open Hybrid Cloud.

Allows full portability to another cloud

If you are developing applications for the cloud service, you should not have to rewrite it with a different language or use a different API now want to move to another service.

A framework for Open Hybrid Cloud will ensure that the testing and re-qualification will not be required each time you want to bring it to other service applications. Investment that has been spent on developing a cloud services - code, data, framework - should be moved to another place, resulting in cost savings.

OpenStack

The above reasons are why the future will komputansi cloud services running in the open.

The first step to reach Open Hybrid Cloud is available today, called OpenStack.

Began to attend since the end of last year, precisely in September 2012, under the care of a non-profit organization OpenStack Foundation, OpenStack is a global community of software developers who collaborate on an open standard cloud computing platform for public services, private and hybrid cloud.

Until now, there are more than 7,000 individual members from 100 countries and 850 different organizations, are contributing to OpenStack, including companies such as Red Hat, HP and IBMI.

In short, the cloud will change the future komputansi - he is open and already there now.



* About the Author: Damien Wong was General Manager, ASEAN, Red Hat

Thursday, April 25, 2013

Indonesian scientists Brain Scanner Showcase World's First 4D



  Indonesian scientists, Warsito P Taruno, scanners exhibiting brain activity in the world's first creations. He presented his creation at the International Symposium on Biomedical Imaging IEEE held in San Francisco, United States, 7 to 13 April 2013.

Warsito brain oemindai creation tool called 4D Brain Electrical Activity-based Scanner Capacitance Volume Tomography (ECVT). The tool has been patented in the world WIPO patent agency / PTO in 2006. IEEE itself is a professional scientific organization consisting of 425,000 people.

"ECVT used to measure electrical signals generated from human brain activity and reconstruct a volumetric image and brain activity," said in a release received Warsito Kompas.com, Friday (04/12/2013).

"This is the first technology in the world who can do a scan of the human brain activity and real time 4D, which can be used to help conduct a study of the human brain," imbub Warsito.

The Denganalat, abnormalities in the human brain can be seen. Warsito said, of abnormalities that can idketahui whether a person has certain diseases, such as epilepsy and Alzheimer's.

Warsito is Executive Director CTECH Edwar Technology Labs, a research institute located in Alam Sutera, Tangerang Selatan, which is focused on the development of scanning technology that supports the medical world.

In the symposium International Symposium on Biomedical Imaging, Warsito is the only speaker of Indonesia. Only a handful of speakers came from Asia. Total, there are 371 papers were presented from 700 applicants from around the world.