Using chattr to prevent changes to PHP scripts?
My Saturday has been completely ruined by having to perform emergency cleanup on one of our servers due to an exploited PHP script which allowed them to upload a shell which allowed them to modify all...
View ArticleTips for analysing disk usage?
We provide creative services to a bunch of clients, and have a well structured filesystem layout on our fileservers. Essentially, /Client/JobType/JobIDGroup/JobID/Can get per-job/per-client with du,...
View ArticleHow to Windows?
Hi all -Recently started as a contractor "Unix" admin, supporting Red Hat Linux and Solaris. This is alll good, except one little rub: The office is all Windows 7. Beyond gaming and virus extraction...
View ArticleSSH chroot jail with extra applications.
I'm having issues chrooting an ssh user into their home directory. I configured sshd_config to match the user with directory /var/jail/ and shell is set to /bin/bash. I copied /etc/skel and all of...
View ArticleMail Server Guide/Book?
I work day-in and day-out in a Windows environment with a background in networking, but I play with Linux in my home lab as much as possible. I've had no issues setting up web servers, game servers,...
View ArticleChanging homepage in apache
Probably a stupid question but I'm really struggling to find an answer to this.I've just installed wordpress on my webserver which of course is using servername/wordpress. Is there a simple way to...
View ArticleVMware Sells Zimbra, Microsoft Exchange Rival, to Telligent...
submitted by raymii [link][comment]
View ArticleMultiple HTTPS sites on one Apache server + Internet Explorer + Windows XP =...
I host multiple secure sites on my Apache2 server, and each has its own SSL cert. In any modern browser, this is fine. However, I tried to access one of the sites in IE on an old XP box... only to be...
View ArticlePreventing SSH brute force.
I set up a new user yesterday and went to check /var/log/auth to see if they had logged in yet.I noticed that there were a ton of entries from a Chinese IP address that looks as if they were trying to...
View ArticleTuning sysctl.conf
Anyone want to share their typical mods to sysctl.conf for a standard deployment? submitted by breauxaj [link][14 comments]
View ArticleBash oneliner to read from stream until X number of lines?
Struggling to think of a brief title, so sorry about that. The goal is to read from a stream of data, say for instance 'tail -f' a log file, but stop after a predetermined number of matches with grep....
View ArticleWhy no GRUB2 in Red Hat 6 and derivatives?
Just curious on this, why does Red Hat 6 and derivative distros not use GRUB2, when Debian (I used it in Ubuntu) moved to GRUB2 approx. 3 years ago? While we are on the subject what are the pros and...
View ArticleVideo demo of zfsync, a new ZFS synchronization tool I'm working on.
submitted by mercenary_sysadmin [link][12 comments]
View ArticleATTN: Active Directory authentication via winbind/samba Ninjas
I got AD auth via winbind/samba going pretty easily. Sucking in SIDs and converting them to UIDs. Same with groups. Not super hard, works like a charm.Enter the monkey wrench.We have 2 other, totally...
View Articlezfsync update - new demo + public github repo
http://youtu.be/CFhyp209NHo - new (very short) demo, showing off pv integration ==> a REAL progress bar! (zfsync will fall back to my original hacky indicator, if you don't have pv available. which...
View ArticleWhere would you place files included in a script placed in /usr/local/bin/ on...
Where would you place files included in a script placed in /usr/local/bin/ on Ubuntu?And would you put your own scripts in /usr/local/bin or elsewhere?I don't really have a specific problem, for now I...
View ArticleFinding an Apache DOS attack
I just thought I'd throw this in here. I was looking at a client's server as Apache was consistently becoming overloaded within seconds of restarting. My immediate suspicion was a DOS, since we have...
View ArticleHow would you test e-mail functions (mta, smtp, imap, pop) from command line?
Hello, At my work I have a large percentage of support for e-mail services. So I often run manual telnet checks against a user account for smtp, imap, or pop. But the problem is the issue is usually...
View Article