Skip to main content

EzLynx Splunk regex

Looking to extract the EzLynx app and quote IDs from those referrer URLs in splunk?

Use this regex:

^.+(app\.ezlynx\.com).+[qQ]uote[dD]etails\.aspx\?[aA]pp[qQ]uote[iI]d=(?P\d+)(&[aA]pp[iI]d=(?P\d+))?\".*$

I still take coffee as payment.

Popular posts from this blog

THE RISE OF FASCIST SOCIAL MEDIA

The Merriam-Webster dictionary defines fascism as: a tendency toward or actual exercise of strong autocratic or dictatorial control .  The phrase "dictatorial control" is important for the case that I am going to make about fascism in social media. The word "dictatorial" means "of or relating to a dictator," and a dictator is "one ruling in an absolute and often oppressive way." In 2020, social media has seen a rise in the number of autocratic events of censorship. The two social media outlets that I am going to focus on are Facebook and Twitter.  Background Facebook is a semi-private curated blogging platform where you, the user, share information at your leisure. The public part of Facebook is in Facebook Groups. With a group, outside people who are not privy to your "Facebook Wall" will join your group and establish a communal discourse. This can be private, by invitation only, or public. The Facebook is auth-walled so that you must

DNS Custom Logs and selinux

If you google "named custom logs selinux" you will find quite a bit of chatter about setting up custom logs outside of /var/log for DNS (named). These posts are interesting, but they tend to be run on posts about learning selinux and becoming an expert on named. What you need to know? If you have setup custom logging locations in your /etc/named.conf file, such as:     channel default_file {         file "/var/log/named/default.log" versions 3 size 5m;         severity dynamic;         print-time yes;     }; Then you will likely see errors like this in /var/log/messages: Oct 26 11:41:13 namedsvr setroubleshoot: SELinux is preventing /usr/sbin/named from write access on the directory /var/named/chroot/var/log/named. For complete SELinux messages. run sealert -l 6eab4aaf-e615-4ade-9e88-4efdc789eaf2 Then you run the sealert command as suggested by the very friendly selinux audit log and you are told: #============= named_t ============== #!

Atoms in The Universe

Computer scientists like to talk about the number of atoms in the universe when talking about computational complexity. If you have 10**100 nodes to evaluate, and there are only 10**86 atoms in the universe, then there is no way to compute your node tree. 10**86 atoms? Where does that number come from? Who made this up. In [1] the claim is that there are 10**86 hydrogen atoms out there. That seems like alot, right? Remember Avogadro? He came up with a number too [2]. His number is 6.022 x 10**23 atoms per mole. That's alot of atoms too, right? Hmm. If you had one cubic mole of something, how many atoms are in there? Well, that's (10**23)**3, or about 10**69. That's not 10**86, but it's close. How many cubic moles are 10**86 atoms then? Well, about 86/69, or about 1.25 cubic moles. So the total sum of all atoms in the universe is just 1.25 cubic moles? Or rather, let's topsy turvy this. There are more atoms in 1.3 cubic moles of water than the universe. Ah