nixCraft » RedHat/Fedora Linux http://www.cyberciti.biz/tips This is a Linux sys admin journal by Vivek about sys admin work, Linux tips & tricks, hacks, news and more. Wed, 24 Apr 2013 18:50:55 +0000 en-US hourly 1 http://wordpress.org/?v=3.5.1 Linux: Creating a Network File System (NFS) Share For Apache / Lighttpd / Nginx Web Serverhttp://www.cyberciti.biz/tips/linux-nfs-storage-for-apache-lighttpd-nginx-webserver.html http://www.cyberciti.biz/tips/linux-nfs-storage-for-apache-lighttpd-nginx-webserver.html#comments Fri, 22 Jun 2012 22:53:07 +0000 nixCraft http://www.cyberciti.biz/tips/?p=9160 Creating a Network File System (NFSv4.0) shared network resource is exactly like creating any other shared network resource in Linux or Unix for Apache / Lighttpd / Nginx web server. You need to type the following commands on vm05 having an IP address 192.168.1.14.
This blog post is part in the "Run Different Linux Network Services on Separate Systems/VM" series.]]> http://www.cyberciti.biz/tips/linux-nfs-storage-for-apache-lighttpd-nginx-webserver.html/feed 3 Linux: Configure MySQL Database Serverhttp://www.cyberciti.biz/tips/linux-configure-mysql-database.html http://www.cyberciti.biz/tips/linux-configure-mysql-database.html#comments Fri, 22 Jun 2012 22:52:06 +0000 nixCraft http://www.cyberciti.biz/tips/?p=9165 This vm node stores your data in RDBMS such as mysql or postgresql. In this setup, I'm going to use MySQL database server. You need to type the following commandss on vm04 having an IP address 192.168.1.13 only.
This blog post is part in the "Run Different Linux Network Services on Separate Systems/VM" series.]]> http://www.cyberciti.biz/tips/linux-configure-mysql-database.html/feed 2 Configure Memcached Distributed Memory Caching Systemhttp://www.cyberciti.biz/tips/setting-up-memcached-on-centos-rhel-fedora-linux.html http://www.cyberciti.biz/tips/setting-up-memcached-on-centos-rhel-fedora-linux.html#comments Fri, 22 Jun 2012 22:51:17 +0000 nixCraft http://www.cyberciti.biz/tips/?p=9164 Memcached can speed up database driven dynamic web site. It must be deployed within trusted network where vm01 and vm02 clients may freely connect to our server. You need to type the following commands on vm03 having an IP address 192.168.1.12.
This blog post is part in the "Run Different Linux Network Services on Separate Systems/VM" series.]]> http://www.cyberciti.biz/tips/setting-up-memcached-on-centos-rhel-fedora-linux.html/feed 3 HowTo: Configure Apache Web Server To Use NFS Shared HTML+PHP5 Fileshttp://www.cyberciti.biz/tips/how-to-configure-apache-web-server.html http://www.cyberciti.biz/tips/how-to-configure-apache-web-server.html#comments Fri, 22 Jun 2012 22:50:38 +0000 nixCraft http://www.cyberciti.biz/tips/?p=9161 The Apache web server is responsible for providing access to dynamic content via the HTTP or HTTPS protocol. In this example, I'm going to install and use the Apache 2 web server + php5 safely and set DocumentRoot to vm05:/exports/html mounted at /var/www/html. You need to type the following commands on vm02 having an IP address 192.168.1.11.
This blog post is part in the "Run Different Linux Network Services on Separate Systems/VM" series.]]> http://www.cyberciti.biz/tips/how-to-configure-apache-web-server.html/feed 3 Configure Lighttpd Web Server To Use NFS Shared Static Fileshttp://www.cyberciti.biz/tips/how-to-configure-lighttpd-web-server.html http://www.cyberciti.biz/tips/how-to-configure-lighttpd-web-server.html#comments Fri, 22 Jun 2012 22:48:54 +0000 nixCraft http://www.cyberciti.biz/tips/?p=9163 The Lighttpd web server is responsible for providing access to static content via the HTTP or HTTPS protocol. In this example, I'm going to install and use the Lighttpd web server and set DocumentRoot to vm05:/exports/static mounted at /var/www/static. You need to type the following commands on vm01 having an IP address 192.168.1.10 only.
This blog post is part in the "Run Different Linux Network Services on Separate Systems/VM" series.]]> http://www.cyberciti.biz/tips/how-to-configure-lighttpd-web-server.html/feed 2 30 Best Sources For Linux / *BSD / Unix Documentation On the Webhttp://www.cyberciti.biz/tips/linux-unix-bsd-documentations.html http://www.cyberciti.biz/tips/linux-unix-bsd-documentations.html#comments Wed, 21 Dec 2011 20:11:40 +0000 nixCraft http://www.cyberciti.biz/tips/?p=8323 Man pages are written by sys-admin and developers for IT techs, and are intended more as a reference than as a how to. Man pages are very useful for people who are already familiar with Linux, Unix, and BSD operating systems. Use man pages when you just need to know the syntax for particular commands or configuration file, but they are not helpful for new Linux users. Man pages are not good for learning something new for the first time. Here are thirty best documentation sites on the web for learning Linux and Unix like operating systems.]]> http://www.cyberciti.biz/tips/linux-unix-bsd-documentations.html/feed 30 Linux: 25 PHP Security Best Practices For Sys Adminshttp://www.cyberciti.biz/tips/php-security-best-practices-tutorial.html http://www.cyberciti.biz/tips/php-security-best-practices-tutorial.html#comments Wed, 23 Nov 2011 05:48:07 +0000 nixCraft http://www.cyberciti.biz/tips/?p=8173 PHP is an open-source server-side scripting language and it is a widely used. The Apache web server provides access to files and content via the HTTP OR HTTPS protocol. A misconfigured server-side scripting language can create all sorts of problems. So, PHP should be used with caution. Here are twenty-five php security best practices for sysadmins for configuring PHP securely.]]> http://www.cyberciti.biz/tips/php-security-best-practices-tutorial.html/feed 51 Google Public DNS Servers Launchedhttp://www.cyberciti.biz/tips/google-public-dns-servers-launched.html http://www.cyberciti.biz/tips/google-public-dns-servers-launched.html#comments Thu, 03 Dec 2009 19:43:55 +0000 nixCraft http://www.cyberciti.biz/tips/?p=6122 Today, Google has announced the launch of their free DNS resolution service. Many ISPs and 3rd party provider such as OpenDNS snoops around or send traffic to ad servers. However, Google promises not to play with end users and send the exact response his or her computer expects without performing any blocking, filtering, or redirection that may hamper a user's browsing experience. In other words Google will not hijacking your traffic on non-existent domain name and it will follow strict RFC standard. ]]> http://www.cyberciti.biz/tips/google-public-dns-servers-launched.html/feed 33 Download Fedora 12 CD / DVD ISOhttp://www.cyberciti.biz/tips/fedora-12-download-cd-dvd-iso.html http://www.cyberciti.biz/tips/fedora-12-download-cd-dvd-iso.html#comments Tue, 24 Nov 2009 10:08:01 +0000 nixCraft http://www.cyberciti.biz/tips/?p=6027 Fedora Linux version 12 has been released and available for download ( jump to download link ). Fedora Linux is a community-based Linux distribution. Fedora is sponsored by Red Hat, Inc. Fedora is considered as the second most popular distro, behind Ubuntu Linux. ]]> http://www.cyberciti.biz/tips/fedora-12-download-cd-dvd-iso.html/feed 46 Linux / Windows Application For Prevention Of RSI (Repetitive Strain Injury)http://www.cyberciti.biz/tips/repetitive-strain-injury-prevention-software.html http://www.cyberciti.biz/tips/repetitive-strain-injury-prevention-software.html#comments Wed, 04 Nov 2009 05:21:00 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5950 workrave-image Repetitive strain injury (RSI) is occupational overuse syndrome, non-specific arm pain or work related upper limb disorder. RSI caused from overusing the hands to perform a repetitive task, such as typing, writing, or clicking a mouse. Unfortunately, most people do not understand what RSI is or how serious it can be. You can easily prevent RSI using open source software called Workrave.]]> http://www.cyberciti.biz/tips/repetitive-strain-injury-prevention-software.html/feed 14 20 Linux Server Hardening Security Tipshttp://www.cyberciti.biz/tips/linux-security.html http://www.cyberciti.biz/tips/linux-security.html#comments Fri, 30 Oct 2009 07:52:11 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5687 Securing your Linux server is important to protect your data, intellectual property, and time, from the hands of crackers (hackers). The system administrator is responsible for security Linux box. In this first part of a Linux server security series, I will provide 20 hardening tips for default installation of Linux system.]]> http://www.cyberciti.biz/tips/linux-security.html/feed 116 Use a Linux LiveCD to Avoid Windows Malware For Netbankinghttp://www.cyberciti.biz/tips/use-linux-live-cd-usb-for-online-banking.html http://www.cyberciti.biz/tips/use-linux-live-cd-usb-for-online-banking.html#comments Thu, 15 Oct 2009 12:53:55 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5791 Internet has revolutionized the way online users can shop and avail banking services like internet Banking from anywhere, anytime without visiting bank. But, how safe is your money with online net-banking which allows to carry out money transfer? Companies and in some case individuals lost anywhere from $10,000 to $500,000 dollars because of a single malware infection. The cyber crooks are targeting innocent MS-Windows user. If you are concerned about how best to protect yourself from this type of fraud, use Linux LiveCD for online banking and avoid Microsoft Windows at all cost.]]> http://www.cyberciti.biz/tips/use-linux-live-cd-usb-for-online-banking.html/feed 6 How To: Upgrade Red Hat Enterprise Linux 5.3 to v5.4http://www.cyberciti.biz/tips/red-hat-enterprise-linux-5-4-released.html http://www.cyberciti.biz/tips/red-hat-enterprise-linux-5-4-released.html#comments Wed, 02 Sep 2009 18:22:59 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5708 Red Hat Enterprise Linux v5.4 has been released and available via RHN for immediate update. The new version includes the kernel-based virtual machine (KVM) virtualization, next generation of developer features and tools including GCC 4.4, a new malloc(). Also included clustered, high-availability filesystem to support Microsoft Windows storage needs on Red Hat Enterprise Linux.]]> http://www.cyberciti.biz/tips/red-hat-enterprise-linux-5-4-released.html/feed 24 CentOS Linux Project In Troublehttp://www.cyberciti.biz/tips/centos-linux-project-in-trouble.html http://www.cyberciti.biz/tips/centos-linux-project-in-trouble.html#comments Thu, 30 Jul 2009 18:55:47 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5580 CentOS is a community-supported, freely-available operating system based on Red Hat Enterprise Linux. Lance Davis created CentOS and now he goes absent without leave. In an open letter from his fellow CentOS developers:
You have long promised a statement of CentOS project funds; to this date this has not appeared. You hold sole control of the centos.org domain with no deputy; this is not proper. You have, it seems, sole 'Founders' rights in the IRC channels with no deputy ; this is not proper.
]]> http://www.cyberciti.biz/tips/centos-linux-project-in-trouble.html/feed 48 BIND 9 Dynamic Update DoS Security Updatehttp://www.cyberciti.biz/tips/bind-dynamic-update-dos.html http://www.cyberciti.biz/tips/bind-dynamic-update-dos.html#comments Wed, 29 Jul 2009 15:47:12 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5570 BIND 9 is an implementation of the Domain Name System (DNS) protocols. named daemon is an Internet Domain Name Server for UNIX like operating systems. Dynamic update messages may be used to update records in a master zone on a nameserver. When named receives a specially crafted dynamic update message an internal assertion check is triggered which causes named to exit. An attacker which can send DNS requests to a nameserver can cause it to exit, thus creating a Denial of Service situation. configuring named to ignore dynamic updates is NOT sufficient to protect it from this vulnerability. This exploit is public. Please upgrade immediately.]]> http://www.cyberciti.biz/tips/bind-dynamic-update-dos.html/feed 7 Top 20 OpenSSH Server Best Security Practiceshttp://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html http://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html#comments Fri, 24 Jul 2009 21:49:43 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5489 Don't tell anyone that I'm free OpenSSH is the implementation of the SSH protocol. OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems. However, the main advantage is server authentication, through the use of public key cryptography. From time to time there are rumors about OpenSSH zero day exploit. Here are a few things you need to tweak in order to improve OpenSSH server security.]]> http://www.cyberciti.biz/tips/linux-unix-bsd-openssh-server-best-practices.html/feed 134 Vmware Linux Guest Add a New Hard Disk Without Rebooting Guesthttp://www.cyberciti.biz/tips/vmware-add-a-new-hard-disk-without-rebooting-guest.html http://www.cyberciti.biz/tips/vmware-add-a-new-hard-disk-without-rebooting-guest.html#comments Sat, 18 Jul 2009 06:55:53 +0000 nixCraft /sys/class/scsi_host/host#/scan]]> http://www.cyberciti.biz/tips/?p=5411 As a system admin, I need to use additional hard drives for to provide more storage space or to separate system data from user data. This procedure, adding physical block devices to virtualized guests, describes how to add a hard drive on the host to a virtualized guest using VMWare software running Linux as guest.

It is possible to add or remove a SCSI device explicitly, or to re-scan an entire SCSI bus without rebooting a running Linux VM guest. This how to is tested under Vmware Server and Vmware Workstation v6.0 (but should work with older version too). All instructions are tested on RHEL, Fedora, CentOS and Ubuntu Linux guest / hosts operating systems. ]]> http://www.cyberciti.biz/tips/vmware-add-a-new-hard-disk-without-rebooting-guest.html/feed 34 20 Linux System Monitoring Tools Every SysAdmin Should Knowhttp://www.cyberciti.biz/tips/top-linux-monitoring-tools.html http://www.cyberciti.biz/tips/top-linux-monitoring-tools.html#comments Sat, 27 Jun 2009 02:26:39 +0000 nixCraft http://www.cyberciti.biz/tips/?p=4934 Need to monitor Linux server performance? Try these built-in command and a few add-on tools. Most Linux distributions are equipped with tons of monitoring. These tools provide metrics which can be used to get information about system activities. You can use these tools to find the possible causes of a performance problem. The commands discussed below are some of the most basic commands when it comes to system analysis and debugging server issues such as:
  1. Finding out bottlenecks.
  2. Disk (storage) bottlenecks.
  3. CPU and memory bottlenecks.
  4. Network bottlenecks.
]]> http://www.cyberciti.biz/tips/top-linux-monitoring-tools.html/feed 316 Lighttpd Traffic Shaping: Throttle Connections Per Single IP (Rate Limit)http://www.cyberciti.biz/tips/lighttpd-set-throughput-connections-per-ip.html http://www.cyberciti.biz/tips/lighttpd-set-throughput-connections-per-ip.html#comments Sun, 21 Jun 2009 00:02:13 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5148 If you do not control or throttle end users, your server may run out of resources. Spammers, abuser and badly written bots can eat up all your bandwidth. A webserver must keep an eye on connections and limit connections per second. This is serving 101. The default is no limit. Lighttpd can limit the throughput for each single connection (per IP) or for all connections. You also need to a use firewall to limit connections per second. In this article I will cover firewall and lighttpd web server settings to throttle end users. The firewall settings can be applied to other web servers such as Apache / Nginx and IIS server behind PF / netfilter based firewall.]]> http://www.cyberciti.biz/tips/lighttpd-set-throughput-connections-per-ip.html/feed 15 Slowloris DoS Tool: It Can Bring Down Apache 1.x/2.xhttp://www.cyberciti.biz/tips/apache-http-dos-tool-released.html http://www.cyberciti.biz/tips/apache-http-dos-tool-released.html#comments Fri, 19 Jun 2009 14:50:39 +0000 nixCraft http://www.cyberciti.biz/tips/?p=5138 Apache Security Update - a flaw In Apache can be used to carry out DoS. Slowloris is a new Apache DoS tool which can use slow Internet links to bring down Apache servers, rather than flooding networks. Most D/DoS tool requires faster net connections but this tool works with minimal bandwidth. This tool can lead to a DoS attack on Apache 1.x, 2.x, dhttpd, GoAhead WebServer, and Squid, while MS IIS6.0, IIS7.0, and lighttpd are confirmed not vulnerable to this attack.]]> http://www.cyberciti.biz/tips/apache-http-dos-tool-released.html/feed 9