May 2016
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

Categories

May 2016
M T W T F S S
 1
2345678
9101112131415
16171819202122
23242526272829
3031  

iSCSI Configuration on RHEL 7 / CentOS 7

iSCSI Configuration on RHEL 7 / CentOS 7

Step 1: First you need to create partition

[root@server1 ~]# fdisk -c /dev/sdb

Press ‘p’ to print partition table

Press ‘n’ to create a new partition

Press ‘p’ to create primary partition

Type Partition Number : […]

How to create OpenSSH rpm package and its upgrade

How to create OpenSSH rpm package and its upgrade

In this tutorial we will create rpm package of OpenSSH version 6.7 stable version and will do OpenSSH upgrade. You may be wondering why it is required to create rpm package of OpenSSH version. The answer is because of CVE-2014-2532 .

We recently notified with the […]

default network name to old “eth0” on RHEL 7 / Fedora 19 disable ipv 6

Tags: biosdevname=0, default network device, GRUB_CMDLINE_LINUX, how to change network name to old eth0, net.ifnames=0, net.ifnames=0 biosdevname=0, Red Hat Enterprise Network name

Step 1) add kernel boot args & regenerate the grub config

The following kernel boot arguments need to be added: biosdevname=0 net.ifnames=0

Open /etc/default/grub with your favorite editor and add those […]

The keystone CLI is deprecated in favor of python-openstackclient.

The keystone CLI is deprecated in favor of python-openstackclient.

UPDATE: It turns out that installing the new client can cause issues with Keystone. I found this out the hard way yesterday when it failed during a demo, preventing authentication from the command line. After a few hours troubleshooting it turns out Apache (httpd.service) and Keystone […]

Securing Apache – TRACE TRACK XSS

Securing Apache – TRACE TRACK XSS

I always scan my servers every month with Openvas as one of my PCI-DSS task. And this week I locking down my Apache servers.

Add this in you vhost file ore in the welcome.conf file and rerun you scan.

TraceEnable off

RewriteEngine On

RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)

RewriteRule .* – […]

Apache performance config

Apache performance config

Now on all my Apache i always load this Apache config. It enabled some apache standard performance config for Apache as a good standard.

KeepAlive. Gzip all transfer and local disk cache

my /etc/httpd/cond.f/01.conf

NameVirtualHost *:80 NameVirtualHost *:443

#Speedning upp webres Apache config

# 2 HOURS Header set Cache-Control “max-age=7200, public” # […]

Downgrade with glibc Update to using YUM

Downgrade with glibc Update to using YUM

1). Existing RPM version checking and backup #rpm -qa | grep glibc compat-glibc-headers-2.3.4-2.26 glibc-common-2.5-81 glibc-devel-2.5-81 compat-glibc-2.3.4-2.26 compat-glibc-2.3.4-2.26 glibc-2.5-81 glibc-headers-2.5-81 glibc-devel-2.5-81 glibc-2.5-81

2). createrepo REPODATA /usr/local/src/new_glibc

# pwd /usr/local/src/new_glibc

#createrepo ./ 12/12 – glibc-devel-2.5-123.el5_11.1.i386.rpm Saving Primary metadata Saving file lists metadata Saving other metadata

3). old_glibc.repo #vim /etc/yum.repos.d/new_glibc.repo […]

Linux operation and maintenance of automated tools Cobbler

Linux operation and maintenance of automated tools Cobbler

About operating system installation automation, the earlier we use RedHat launched Kickstart to batch install the operating system, in recent years, RedHat has introduced a Cobbler.

Cobbler development using Python, compact and lightweight, able to complete the installation of the system, and even manage some services. (Known […]

Linux operation and maintenance of automated tools Kickstart

Linux operation and maintenance of automated tools Kickstart

Bulk Kickstart installation of the operating system tools, RedHat earlier launch of the product (not much to say, now playing Cobbler friends

Test environment: CentOS 6.6 x86_64 minimal

First, the installation package

yum -y install dhcp tftp-server syslinux nfs-utils kickstart

cp /usr/share/doc/dhcp-4.1.1/dhcpd.conf.sample /etc/dhcp/dhcpd.conf

[…]

install Redis on a Centos 6.5 & Centos 7.0 Server

How to install Redis on a Centos 6.5 & Centos 7.0 Server

Redis is an open source, BSD licensed, advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets.

How To Install Redis on Centos 7 # wget -r –no-parent -A […]