The Facebook Open Graph, Google+ and Twitter Card Tags WordPress Plugin

Part 1: Duplicate Open Graph Meta Tags and the Facebook Open Graph Object Debugger
Part 2: Facebook Open Graph Object Debugger and the Share App ID Missing Warning
Part 3: More control sharing your WordPress site with Yoast SEO plugin

A Yoast configuration recommendation

SEO > Social > Facebook > Add Open Graph meta data > Disabled
SEO > Social > Twitter > Add Twitter card meta data > Disabled

Then add the ‘Facebook Open Graph, Google+ and Twitter Card Tags’ WordPress Plugin to replace those functions.

It’s a big improvement in my opinion. You’ll see in the image above that ‘On Post/Page, use image from:’ has all 5 boxes check-marked, I recommend that setting but of course, test with your own content sharing to see what is best. I try to start every blog post with a 1024px wide image with roughly a 2:1 aspect ratio, but that is not always the case, and those checked boxes will determine what to do next.

Also be sure to check-mark: Settings > Facebook Open Graph, Google+ and Twitter Card Tags > Open Graph > Facebook Open Graph Tags cache > Clear cache.

This will save you the trouble of manually scraping the Facebook cache when you change configurations or post content, huge help!

Any questions on other configuration options, holler at me.

Thanks!
-Yehuda

More Ubuntu 16.04 network security with tcpwrappers, sysctl and nmap

tcpwrappers

It may be old school, tcpwrappers is deprecated in many OS. It’s easier than a firewall to make fast or temporary changes and most importantly provides redundancy. With tcpwrappers and a firewall, there is no single point of failure.

# vi /etc/hosts.allow

To prevent logs from growing out of control, configure logrotate.

# vi /etc/logrotate.d/tcpwrappers

sysctl

To help harden your network from various attacks, add the following to the end of sysctl.conf, and be sure they are not uncommented elsewhere.

# vi /etc/sysctl.conf

Reload sysctl

# sysctl -p

nmap

To be able to scan your systems for vulnerabilities install nmap.

# apt -y install nmap

For documentation, refer to https://nmap.org

In summary, there are many things you can do to add security to your Ubuntu Linux system, what we have covered so far in this series, are essentials. Be sure to see the other posts.

http://openuptown.net/category/ubuntu

Thanks!
-Yehuda

Hacking a Windows 10 Admin Password

Lost your password?

No problem… If you are in physical possession of a Windows machine, you can easily reset the passwords with a small amount of technical direction.

Download Ubuntu 16.04.02 GNOME LTS

Download Linux onto a non-target Windows system. If you have preference to download another Linux distro, feel free. The important facet here is that it has a Live or Test mode so you can run Linux from the USB drive (2GB+) without installing on a hard drive.

https://wiki.ubuntu.com/UbuntuGNOME/GetUbuntuGNOME

Create a bootable USB drive on Windows

Again, do this on a non-target Windows system.

https://tutorials.ubuntu.com/tutorial/tutorial-create-a-usb-stick-on-windows#0

Shutdown Windows with shift key

Do this with the actual target Windows system that you need to replace the password on. Hold the shift key down and select shutdown. It is important to hold the shift key down so the drive is fully released from hibernation. If you do not do this it may cause complications mounting the drive from Linux.

Insert the USB drive in target system

Boot with the USB drive, immediately upon power on tapping escape until it lets you select boot device. Select the USB drive to boot from.

Start a Linux terminal session.

$ sudo fdisk -l
$ sudo cd /media
$ sudo mkdir mnt
$ sudo mount /dev/sda1 mnt # <– substitute red with your drive name from fdisk above
$ sudo cd Windows/System32 # <– case important
$ sudo cp -a osk.exe osk.exe.orig
$ sudo cp -a cmd.exe cmd.exe.orig
$ sudo cp cmd.exe osk.exe

Exit and shutdown the Ubuntu session, remove the USB drive.

Boot the target Windows system

Select the Ease of Access icon.

Next select the On-Screen Keyboard.

This will execute the renamed cmd.exe and bring up a command prompt as shown below.

Now you can type ‘net user’ to show all user accounts.

Then type ‘net user Administrator *’ to reset the password for Administrator as an example.

Do this for all user accounts and login with the new password, you should be set.

Be sure to copy cmd.exe.orig to cmd.exe and osk.exe.orig to osk.exe to undo the backdoor you created.

Thanks!
-Yehuda

Installing ubuntu-restricted-extras

The Ubuntu Gnome-Software Center does not show all available software such as technical packages

Kernels, console apps, etc. will not show up.

This may be a feature, but some consider it a bug. I consider it yet another good reason to use the command line which is better.

You can see by the description above ubuntu-restricted-extras is very useful to the desktop experience.

To install from the command line:

# apt -y install ubuntu-restricted-extras

You may run into a hitch when the Microsoft EULA comes up. Use tab to move forward, shift-tab to move in reverse. Use space to select/click the OK button.

If you somehow miss the EULA and need to be prompted again:

# apt –purge –reinstall install ttf-mscorefonts-installer

If you need to remove ubuntu-restricted-extras:

# apt show ubuntu-restricted-extras
# apt show ubuntu-restricted-addons

Important: Take note of all the ‘Recommends:’ packages

# apt remove ubuntu-restricted-extras ubuntu-restricted-addons
# apt remove [all the recommended packages]

To get rid of the installed dependencies for the recommended packages:

# apt autoremove [all the recommended packages]

To reinstall:

# apt -y install ubuntu-restricted-extras

Thanks!
-Yehuda