Sysadmin – nixCraft

How to colorizing cat command output or files using ccat app on Linux or Unix system

August 30, 2017August 30, 2017in Command Line Hacks, Howto last updated August 30, 2017

The [nixcmd name="cat"] (short for concatenate) is one of the most frequently used flexible commands on Linux, Apple MacOS X, *BSD (FreeBSD / OpenBSD / NetBSD), Unix-like operating systems. It is useful to display text files on screen, copy text files, combine text files, create new text files and more. If you cat command with colours, try ccat app.

How to corrects your previous Linux/Unix command with thefuck app

August 29, 2017August 29, 2017in Command Line Hacks, Howto last updated August 29, 2017

Let us face it we all make mistakes at the command line. Typos? Wrong options? Forget to add sudo? The list goes on. There is a neat little app called thefuck which corrects your previous Linux and Unix command line mistakes.

I put a cronjob in /etc/cron.{hourly,daily,weekly,monthly} and it does not run and how can I troubleshoot it?

August 23, 2017August 27, 2017in Cloud Computing, Howto, Open Source, Web Developer last updated August 27, 2017

Recently I created a simple shell script called backup.sh in /root/scripts directory to just backup MySQL database and dumped it to /nfs/mysql/ directory. I put a file (more like used the ln command to create a soft link ) in /etc/cron.hourly/ and it doesn’t run. There was no error in systemd log or cron log. Why is my cron job was not working, and here is how I troubleshoot it.

OpenSSL drops TLS 1.0/1.1 support for Debian Unstable and what does it mean for Debian sid users?

August 7, 2017August 7, 2017in Debian Linux last updated August 7, 2017

From the announcement mailing list:

I’ve just uploaded a version of OpenSSL to unstable that disables the TLS 1.0 and 1.1 protocol. This currently leaves TLS 1.2 as the only supported SSL/TLS protocol version.
This will likely break certain things that for whatever reason still don’t support TLS 1.2. I strongly suggest that if it’s not supported that you add support for it, or get the other side to add support for it.
OpenSSL made a release 5 years ago that supported TLS 1.2. The current support of the server side seems to be around 90%. I hope that by the time Buster releases the support for TLS 1.2 will be high enough that I don’t need to enable them again.

exa a modern replacement for ls written in rust for Linux/Unix

August 4, 2017August 4, 2017in Command Line Hacks last updated August 4, 2017

ls is a command to show files in Linux and Unix-like operating systems. A ls command first appeared in a version of AT&T UNIX as well as in Multics. BSD and GNU Coreutils package provides the ls command with minor syntax changes. There is now third alternative named exa. It is a modern replacement for ls.

5 Awesome Open Source Groupware Software Suite

August 2, 2017August 3, 2017in Open Source last updated August 3, 2017

Groupware (also known as “Collaborative software”) is nothing but an app that helps users in everyday tasks such as calendar/scheduling, address books, email, forums, mailing lists, IM, wiki and more. The use of collaborative software in the work space creates a collaborative working environment. You can synchronize and share your files and photos easily using your hardware while maintaining privacy and security. Here is a list of 5 of them that you must know.

Increase your Linux server Internet speed with TCP BBR congestion control

July 21, 2017July 22, 2017in Cloud Computing last updated July 22, 2017

I recently read that TCP BBR has significantly increased throughput and reduced latency for connections on Google’s internal backbone networks and google.com and YouTube Web servers throughput by 4 percent on average globally – and by more than 14 percent in some countries. The TCP BBR patch needs to be applied to the Linux kernel. The first public release of BBR was here, in September 2016. The patch is available to any one to download and install. Another option is using Google Cloud Platform (GCP). GCP by default turned on to use a cutting-edge new congestion control algorithm named TCP BBR.

Download of The Day: Fedora Linux 26

July 11, 2017July 11, 2017in Linux News last updated July 11, 2017

Fedora 26 with KDE Fedora Linux version 26.0 has been released ( jump to download ) after many months of constant development and available for download in various media format. Fedora 26 is a free and open source operating system includes various new features such as GCC 7, Golang 1.8, Python 3.6, DNF 2.0, OpenSSL 1.1.0 and more. Fedora 26 runs on both ARM servers and desktop boards too.

How to fix IPMI KVM JAVA BMCMD5withRSA and is treated as unsigned error

July 8, 2017July 8, 2017in Datacenter, Hardware last updated July 8, 2017

Like any good sysadmin, I kept my servers and desktop side up to date and patched all the time. However, recent Java updates have broken my IPMI KVM Java Applets on Dell, IBM, HP, Supermicro and FreeNAS mini servers. You will get an error that read as follows:

Unsigned application requesting unrestricted access to system. The following resource is signed with a weak signature algorithm MD5withRSA and is treated as unsigned.

Why port 80 (HTTP) reported as open by nmap when it is closed?

July 2, 2017in Security last updated July 2, 2017

I recently setup a small server which is running Debian 9. The purpose of this machine is to run OpenVPN server on port 443 to bypass censorship. It runs the following services and nothing else:

Squid on private IP belongs to VPN pool (10.8.0.1:3128)
SSH on private IP belongs to VPN pool (10.8.0.1:22)
DNS resolver on private IP belongs to VPN pool (10.8.0.1:53)
OpneVPN on public IP port 443 (server_public_ip_address:443)