[root@defendo ~]# suricata -c /etc/suricata/suricata.yaml -q 0
12/12/2013 -- 09:59:35 - <Info> - This is Suricata version 1.4.6 RELEASE
12/12/2013 -- 09:59:35 - <Info> - CPUs/cores online: 4
12/12/2013 -- 09:59:35 - <Info> - NFQ running in standard ACCEPT/DROP mode
12/12/2013 -- 09:59:35 - <Info> - allocated 2097152 bytes of memory for the defrag hash... 65536 buckets of size 32
12/12/2013 -- 09:59:35 - <Info> - preallocated 65535 defrag trackers of size 108
12/12/2013 -- 09:59:35 - <Info> - defrag memory usage: 9174932 bytes, maximum: 33554432
12/12/2013 -- 09:59:35 - <Info> - AutoFP mode using default "Active Packets" flow load balancer
12/12/2013 -- 09:59:35 - <Info> - preallocated 1024 packets. Total memory 3176448
12/12/2013 -- 09:59:35 - <Info> - allocated 131072 bytes of memory for the host hash... 4096 buckets of size 32
12/12/2013 -- 09:59:35 - <Info> - preallocated 1000 hosts of size 80
12/12/2013 -- 09:59:35 - <Info> - host memory usage: 211072 bytes, maximum: 16777216
12/12/2013 -- 09:59:35 - <Info> - allocated 2097152 bytes of memory for the flow hash... 65536 buckets of size 32
12/12/2013 -- 09:59:35 - <Info> - preallocated 10000 flows of size 184
12/12/2013 -- 09:59:35 - <Info> - flow memory usage: 3937152 bytes, maximum: 33554432
12/12/2013 -- 09:59:35 - <Info> - IP reputation disabled
12/12/2013 -- 09:59:35 - <Info> - using magic-file /usr/share/file/magic
12/12/2013 -- 09:59:35 - <Info> - Delayed detect disabled
12/12/2013 -- 09:59:36 - <Info> - 13 rule files processed. 4977 rules successfully loaded, 0 rules failed
12/12/2013 -- 09:59:37 - <Info> - 4977 signatures processed. 232 are IP-only rules, 1643 are inspecting packet payload, 3956 inspect application layer, 0 are decoder event only
12/12/2013 -- 09:59:37 - <Info> - building signature grouping structure, stage 1: adding signatures to signature source addresses... complete
12/12/2013 -- 09:59:37 - <Info> - building signature grouping structure, stage 2: building source address list... complete
12/12/2013 -- 09:59:37 - <Info> - building signature grouping structure, stage 3: building destination address lists... complete
12/12/2013 -- 09:59:37 - <Info> - Threshold config parsed: 0 rule(s) found
12/12/2013 -- 09:59:37 - <Info> - Core dump size set to unlimited.
12/12/2013 -- 09:59:37 - <Info> - fast output device (regular) initialized: fast.log
12/12/2013 -- 09:59:37 - <Info> - Unified2-alert initialized: filename unified2.alert, limit 32 MB
12/12/2013 -- 09:59:37 - <Info> - http-log output device (regular) initialized: http.log
12/12/2013 -- 09:59:37 - <Info> - binding this thread 0 to queue '0'
12/12/2013 -- 09:59:37 - <Info> - setting queue length to 4096
The Gentleman's Guide To Forum Spies

1. COINTELPRO Techniques for dilution, misdirection and control of a internet forum
2. Twenty-Five Rules of Disinformation
3. Eight Traits of the Disinformationalist
4. How to Spot a Spy (Cointelpro Agent)
5. Seventeen Techniques for Truth Suppression
    ______________________________________________________________________________________
     
     
    COINTELPRO Techniques for dilution, misdirection and control of a internet forum..
     
    There are several techniques for the control and manipulation of a internet forum no matter what, or who is on it. We will go over each technique and demonstrate that only a minimal number of operatives can be used to eventually and effectively gain a control of a 'uncontrolled forum.'
     
    Technique #1 - 'FORUM SLIDING'
     
    If a very sensitive posting of a critical nature has been posted on a forum - it can be quickly removed from public view by 'forum sliding.' In this technique a number of unrelated posts are quietly prepositioned on the forum and allowed to 'age.' Each of these misdirectional forum postings can then be called upon at will to trigger a 'forum slide.' The second requirement is that several fake accounts exist, which can be called upon, to ensure that this technique is not exposed to the public. To trigger a 'forum slide' and 'flush' the critical post out of public view it is simply a matter of logging into each account both real and fake and then 'replying' to prepositined postings with a simple 1 or 2 line comment. This brings the unrelated postings to the top of the forum list, and the critical posting 'slides' down the front page, and quickly out of public view. Although it is difficult or impossible to censor the posting it is now lost in a sea of unrelated and unuseful postings. By this means it becomes effective to keep the readers of the forum reading unrelated and non-issue items.
     
    Technique #2 - 'CONSENSUS CRACKING'
     
    A second highly effective technique (which you can see in operation all the time at www.abovetopsecret.com) is 'consensus cracking.' To develop a consensus crack, the following technique is used. Under the guise of a fake account a posting is made which looks legitimate and is towards the truth is made - but the critical point is that it has a VERY WEAK PREMISE without substantive proof to back the posting. Once this is done then under alternative fake accounts a very strong position in your favour is slowly introduced over the life of the posting. It is IMPERATIVE that both sides are initially presented, so the uninformed reader cannot determine which side is the truth. As postings and replies are made the stronger 'evidence' or disinformation in your favour is slowly 'seeded in.' Thus the uninformed reader will most like develop the same position as you, and if their position is against you their opposition to your posting will be most likely dropped. However in some cases where the forum members are highly educated and can counter your disinformation with real facts and linked postings, you can then 'abort' the consensus cracking by initiating a 'forum slide.'
     
    Technique #3 - 'TOPIC DILUTION'
     
    Topic dilution is not only effective in forum sliding it is also very useful in keeping the forum readers on unrelated and non-productive issues. This is a critical and useful technique to cause a 'RESOURCE BURN.' By implementing continual and non-related postings that distract and disrupt (trolling ) the forum readers they are more effectively stopped from anything of any real productivity. If the intensity of gradual dilution is intense enough, the readers will effectively stop researching and simply slip into a 'gossip mode.' In this state they can be more easily misdirected away from facts towards uninformed conjecture and opinion. The less informed they are the more effective and easy it becomes to control the entire group in the direction that you would desire the group to go in. It must be stressed that a proper assessment of the psychological capabilities and levels of education is first determined of the group to determine at what level to 'drive in the wedge.' By being too far off topic too quickly it may trigger censorship by a forum moderator.
     
    Technique #4 - 'INFORMATION COLLECTION'
     
    Information collection is also a very effective method to determine the psychological level of the forum members, and to gather intelligence that can be used against them. In this technique in a light and positive environment a 'show you mine so me yours' posting is initiated. From the number of replies and the answers that are provided much statistical information can be gathered. An example is to post your 'favourite weapon' and then encourage other members of the forum to showcase what they have. In this matter it can be determined by reverse proration what percentage of the forum community owns a firearm, and or a illegal weapon. This same method can be used by posing as one of the form members and posting your favourite 'technique of operation.' From the replies various methods that the group utilizes can be studied and effective methods developed to stop them from their activities.
set a "a"
set b "b"
set ab "ab"
puts [set $a$b]
4 Darkslick Shores
4 Scalding Tarn
2 Watery Grave
3 Kira, Great Glass-Spinner
3 Cursecatcher
4 Lord of Atlantis
4 Master of the Pearl Trident
4 Silvergill Adept
4 Æther Vial
4 Spreading Seas
2 Spell Pierce
3 Dismember
1 Steel Sabotage
2 Hurkyl's Recall
2 hreads of Disloyalty
3 Spellskite
3 Relic of Progenitus
http://geizhals.at/de/812617
    http://geizhals.at/de/677396
    http://geizhals.at/de/686485
    http://geizhals.at/de/781378
    http://geizhals.at/de/645185
    http://geizhals.at/de/769860
    http://geizhals.at/de/830474
    http://geizhals.at/de/621917
    http://geizhals.at/de/697913
    http://geizhals.at/de/626332
    http://geizhals.at/de/853349
    http://geizhals.at/de/supermicro-x10sae-retail-mbd-x10sae-o-a956579.html
http://geizhals.at/de/812617                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/677396                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/686485                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/781378                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/645185                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/769860                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/830474                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/621917                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/697913                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/626332                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/853349                                                                                                                                                                                                                                                                                               
    http://geizhals.at/de/supermicro-x10sae-retail-mbd-x10sae-o-a956579.html
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/ruby/2.0.0/thread.rb:187: [BUG] Segmentation fault
ruby 2.0.0p353 (2013-11-22 revision 43784) [x86_64-linux]

-- Control frame information -----------------------------------------------
c:0003 p:0028 s:0009 e:000008 METHOD /usr/local/rvm/rubies/ruby-2.0.0-p353/lib/ruby/2.0.0/thread.rb:187
c:0002 p:0026 s:0005 e:000004 BLOCK  /home/apoc/rbot/lib/rbot/ircbot.rb:93 [FINISH]
c:0001 p:---- s:0002 e:000001 TOP    [FINISH]

/home/apoc/rbot/lib/rbot/ircbot.rb:93:in `block in restart_logger'
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/ruby/2.0.0/thread.rb:187:in `pop'

-- C level backtrace information -------------------------------------------
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x1a678a) [0x7fcffcaea78a] vm_dump.c:647
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x6b18c) [0x7fcffc9af18c] error.c:283
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(rb_bug+0xb8) [0x7fcffc9af468] error.c:302
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x12bacd) [0x7fcffca6facd] signal.c:672
/lib/libpthread.so.0(+0xeff0) [0x7fcffc736ff0]
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x198748) [0x7fcffcadc748] vm.c:1286
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x19a094) [0x7fcffcade094] vm.c:648
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x19a19a) [0x7fcffcade19a] vm.c:715
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x1b0dbe) [0x7fcffcaf4dbe]
/usr/local/rvm/rubies/ruby-2.0.0-p353/lib/libruby.so.2.0(+0x1b4340) [0x7fcffcaf8340] thread_pthread.c:765
/lib/libpthread.so.0(+0x68ca) [0x7fcffc72e8ca]
/lib/libc.so.6(clone+0x6d) [0x7fcffbbd0b6d] parse.y:175

-- Other runtime information -----------------------------------------------

* Loaded script: launch_here.rb

* Loaded features:
(ns cljbot.core)

(use '[clojure.string])
(use '[clojure.pprint :only (pprint)])

(import '(javax.net.ssl SSLSocketFactory)
        '(javax.net.ssl X509TrustManager)
        '(javax.net.ssl SSLContext)
        '(javax.net.ssl TrustManager)
        '(java.security SecureRandom)
        '(java.io BufferedReader)
        '(java.io PrintWriter)
        '(java.util.regex Pattern)
        '(java.io InputStreamReader))

(def HOST "irc.teranetworks.de")
(def PORT 6697)
(def CHANNEL "#woot")
(def IDENT 
  {:nick "conjurer"
   :username "cljbot"
   :realname "Clojure"})
(def CRLF "\r\n")
(def PREFIX "!")

(defn trust-invalid-manager []
  "This allows the ssl socket to connect with invalid/self-signed SSL certs."
  (reify X509TrustManager
    (getAcceptedIssuers [this] nil)
    (checkClientTrusted [this certs authType])
27/11/2013 -- 09:56:43 - <Info> - This is Suricata version 1.4.6 RELEASE
27/11/2013 -- 09:56:43 - <Info> - CPUs/cores online: 4
27/11/2013 -- 09:56:43 - <Info> - NFQ running in standard ACCEPT/DROP mode
27/11/2013 -- 09:56:43 - <Info> - allocated 2097152 bytes of memory for the defrag hash... 65536 buckets of size 32
27/11/2013 -- 09:56:43 - <Info> - preallocated 65535 defrag trackers of size 108
27/11/2013 -- 09:56:43 - <Info> - defrag memory usage: 9174932 bytes, maximum: 33554432
27/11/2013 -- 09:56:43 - <Info> - AutoFP mode using default "Active Packets" flow load balancer
27/11/2013 -- 09:56:43 - <Info> - preallocated 1024 packets. Total memory 3176448
27/11/2013 -- 09:56:43 - <Info> - allocated 131072 bytes of memory for the host hash... 4096 buckets of size 32
27/11/2013 -- 09:56:43 - <Info> - preallocated 1000 hosts of size 80
27/11/2013 -- 09:56:43 - <Info> - host memory usage: 211072 bytes, maximum: 16777216
27/11/2013 -- 09:56:43 - <Info> - allocated 2097152 bytes of memory for the flow hash... 65536 buckets of size 32
27/11/2013 -- 09:56:43 - <Info> - preallocated 10000 flows of size 184
27/11/2013 -- 09:56:43 - <Info> - flow memory usage: 3937152 bytes, maximum: 33554432
27/11/2013 -- 09:56:43 - <Info> - IP reputation disabled
27/11/2013 -- 09:56:43 - <Info> - using magic-file /usr/share/file/magic
27/11/2013 -- 09:56:43 - <Info> - Delayed detect disabled
27/11/2013 -- 09:56:50 - <Info> - 49 rule files processed. 14271 rules successfully loaded, 0 rules failed
27/11/2013 -- 09:57:08 - <Info> - 14279 signatures processed. 1137 are IP-only rules, 4470 are inspecting packet payload, 10693 inspect application layer, 72 are decoder event only
27/11/2013 -- 09:57:08 - <Info> - building signature grouping structure, stage 1: adding signatures to signature source addresses... complete
27/11/2013 -- 09:57:08 - <Info> - building signature grouping structure, stage 2: building source address list... complete
27/11/2013 -- 09:57:11 - <Info> - building signature grouping structure, stage 3: building destination address lists... complete
27/11/2013 -- 09:57:13 - <Info> - Threshold config parsed: 0 rule(s) found
27/11/2013 -- 09:57:13 - <Info> - Core dump size set to unlimited.
27/11/2013 -- 09:57:13 - <Info> - fast output device (regular) initialized: fast.log
27/11/2013 -- 09:57:13 - <Info> - http-log output device (regular) initialized: http.log
27/11/2013 -- 09:57:13 - <Info> - binding this thread 0 to queue '0'
27/11/2013 -- 09:57:13 - <Info> - setting queue length to 4096
27/11/2013 -- 09:57:13 - <Info> - setting nfnl bufsize to 6144000
27/11/2013 -- 09:57:13 - <Info> - stream "max-sessions": 262144
URLS:
https://github.com/pagespeed/ngx_pagespeed
http://nginx.org/en/download.html

Deps for ngx_pagespeed:
sudo apt-get install build-essential zlib1g-dev libpcre3 libpcre3-dev
deps for geoip:
sudo apt-get install libgeoip-dev

Paths:
to ngx_pagespeed:
/home/zeitgeist/nginx/ngx_pagespeed_1.7.30.1-beta
to nginx:
/home/zeitgeist/nginx/nginx-1.4.4

nginx configure flags:
--prefix=/opt/nginx 
--with-http_ssl_module
--with-http_gzip_static_module
--with-http_stub_status_module
--with-http_spdy_module
--with-http_realip_module
--with-http_geoip_module
--with-ipv6
--add-module=/home/zeitgeist/nginx/ngx_pagespeed_1.7.30.1-beta
(passenger module is added by passenger-install-nginx-module)

Install process:

cd /home/zeitgeist/htdocs