Tuning Linux/Unix tips from nixCraft

Linux 25 PHP Security Best Practices For Sys Admins

last updated July 19, 2019 in Linux, php, RedHat/Fedora Linux, Security, Sys admin, Tuning, UNIX

PHP is an open-source server-side scripting language, and it is a widely used. The Apache/Nginx/Lighttpd web server provides access to files and content via the HTTP OR HTTPS protocol. A misconfigured server-side scripting language can create all sorts of problems. So, PHP should be used with caution. Here are twenty-five php security best practices for Linux and Unix sysadmins for configuring PHP securely.

Linux Convert ext3 to ext4 File system

last updated January 23, 2009 in CentOS, Data recovery, Linux, Linux desktop, Linux distribution, RedHat/Fedora Linux, Storage, Suse Linux, Sys admin, Tips, Troubleshooting, Tuning, Ubuntu Linux

Some time ago ext4 was released and available for Linux kernel. ext4 provides some additional benefits and perforce over ext3 file system. You can easily convert ext3 to ext4 file system. The next release of Fedora, 11, will default to the ext4 file system unless serious regressions are seen. In this quick tutorial you will learn about converting ext3 to ext4 file system.

FreeBSD Turn On Process Accounting – Track System Resources Used By Users

last updated January 8, 2009 in FreeBSD, Howto, Monitoring, Security, Sys admin, Tips, Troubleshooting, Tuning

I’ve already written about Linux process accounting under Linux ( see how to keep a detailed audit trail of what’s being done on your Linux systems). You can easily setup process accounting under FreeBSD. This tutorial expalins how to enable and utilizing FreeBSD process accounting including many other useful options are explained to keep track of system resources used, and their allocation among users.

Apache2 mod_fastcgi: Connect to External PHP via UNIX Socket or TCP/IP Port

last updated December 30, 2008 in Apache, CentOS, fedora linux, Howto, lighttpd, Networking, php, RedHat/Fedora Linux, Security, Tips, Troubleshooting, Tuning

Now, mod_fastcgi is configured and running. FastCGI supports connection via UNIX sockets or TCP/IP networking. This is useful to spread load among various backends. For example, php will be severed from 192.168.1.10 and python / ruby on rails will be severed from 192.168.1.11. This is only possible with mod_fastcgi.

Linux: Should You Use Twice the Amount of Ram as Swap Space?

last updated June 8, 2017 in data center, Debian Linux, fedora linux, File system, FreeBSD, Gentoo Linux, kernel, Linux, Linux desktop, Linux laptop, OpenBSD, RedHat/Fedora Linux, Solaris, Storage, Suse Linux, Tuning, Ubuntu Linux, UNIX

Linux and other Unix-like operating systems use the term “swap” to describe both the act of moving memory pages between RAM and disk and the region of a disk the pages are stored on. It is common to use a whole partition of a hard disk for swapping. However, with the 2.6 Linux kernel, swap files are just as fast as swap partitions. Now, many admins (both Windows and Linux/UNIX) follow an old rule of thumb that your swap partition should be twice the size of your main system RAM. Let us say I’ve 32GB RAM, should I set swap space to 64 GB? Is 64 GB of swap space required? How big should your Linux / UNIX swap space be?

CentOS / Red Hat Enterprise Linux 5.2 Poor NFS Performance and Solution

last updated August 22, 2008 in Apache, CentOS, data center, File system, High performance computing, Howto, Linux, Linux distribution, Networking, package management, RedHat/Fedora Linux, Security Alert, Storage, Sys admin, Troubleshooting, Tuning

A few days ago I noticed that NFS performance between a web server node and NFS server went down by 50%. NFS was optimized and the only thing was updated Red Hat kernel v5.2. I also noticed same trend on CentOS 5.2 64 bit edition.

Lighttpd Drupal CMS Clean URL ( SEO ) Rules Set Configuration

last updated July 30, 2008 in CentOS, lighttpd, Linux, Tuning

Drupal is modular framework and content management system (CMS) and works under Lighttpd too. By default, Drupal passes path arguments to itself via its internally generated URLs. This small howto explains setting up clean url using Lighttpd web sever.

Linux udev tip: Assign Static SCSI Device Name

last updated June 20, 2008 in GNU/Open source, Hardware, High performance computing, Howto, Linux, Linux distribution, RedHat/Fedora Linux, Sys admin, Tips, Tuning, UNIX

udev allows Linux users to have a dynamic /dev directory and it provides the ability to have persistent device names. In this tip you will learn about creating the static SCSI device name for /block/sdd as /dev/scsiharddisk.

Lighttpd mod_rewrite Hotlink Protection To Display Image Message

last updated June 12, 2008 in Apache, lighttpd, Linux, Networking, RedHat/Fedora Linux, Security, Tuning, UNIX

Describes how to stop image or any media hotlinking under Lighttpd and redirect to another image to save bandwidth.

How To Avoid Sudden Outburst Of Backup Shell Script or Program Disk I/O on Linux

last updated June 3, 2008 in High performance computing, kernel, Linux, Storage, Troubleshooting, Tuning

A sudden outburst of violent disk I/O activity can bring down your email or web server. Usually, a web, mysql, or mail server serving millions and millions pages (requests) per months are prone to this kind of problem. Backup activity can increase current system load too. To avoid this kind of sudden outburst problem, run your script with scheduling class and priority. Linux comes with various utilities to manage this kind of madness.