Stunnel on Debian/Ubuntu with Squid Rumi, October 27, 2015 What’s Stunnel The Stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server. It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the program’s code. What… Continue Reading
Install Openmediavault on Debian Wheezy/7 Rumi, October 3, 2015April 27, 2018 First Install Debian minimal Configure your Debian repositories Update the repository sources and add the contrib and non-free repositories. nano /etc/apt/sources.list It should look something like this: deb http://ftp.us.debian.org/debian/ wheezy main contrib non-free deb-src http://ftp.us.debian.org/debian/ wheezy main contrib non-free deb http://security.debian.org/ wheezy/updates main contrib non-free deb-src http://security.debian.org/ wheezy/updates main contrib… Continue Reading
Enable mod_rewrite on Apache for Debian Rumi, September 8, 2015 To enable and load mod_rewrite, do the following. $ sudo a2enmod rewrite Then open up the following file, and replace every occurrence of “AllowOverride None” with “AllowOverride all”. $ sudo vi /etc/apache2/sites-available/default or $ sudo vi /etc/apache2/sites-available/000-default Finally, restart Apache2. $ sudo service apache2 restart Continue Reading
Cacti on Debian (Updated) Rumi, April 19, 2015April 19, 2015 Downloading Cacti You can download the newest version of Cacti from its website. wget http://www.cacti.net/downloads/cacti-0.8.7b.tar.gz Installing Cacti Install apache webserver with php support, mysql database server, snmp, some php modules and rrdtool. apt-get install apache2 libapache2-mod-php5 php5 php5-cli php5-mysql php5-gd php5-snmp mysql-client mysql-server libmysqlclient15-dev snmp snmpd rrdtool Add a user… Continue Reading
NFS Server and Client on Debian 6/7 Rumi, March 13, 2015 Assumptions: NFS Server IP: 172.16.5.100 NFS Client Node1: 172.16.5.101 NFS Client Node2: 172.16.5.102 NFS Client Node3: 172.16.5.103 NFS Client Node4: 172.16.5.104 On the NFS Server: Install nfs-kernel-server Install nfs-kernel-server and nfs-common Install nfs-common on the computer that has the files to be shared. apt-get update && sudo apt-get install nfs-kernel-server nfs-common Edit the exports… Continue Reading
Install and configure fail2ban Rumi, January 4, 2015 Servers do not exist in isolation, and those servers with only the most basic SSH configuration can be vulnerable to brute force attacks. fail2ban provides a way to automatically protect the server from malicious signs. The program works by scanning through log files and reacting to offending actions such as… Continue Reading
rkhunter perfect configuration Rumi, January 4, 2015January 4, 2015 Introduction Exposing any computer to the internet is in some ways risky. There are many ways that your server can be compromised or attacked by remote systems and malicious software, and it is an ongoing and proactive process to defend yourself against potential threats. One potential concern is rootkits. Rootkits… Continue Reading
Install Perfect Mail Server with ISPConfig and Horde 5.0 on Debian Wheezy- Part-2 Rumi, October 13, 2014October 13, 2014 Install necessary packages apt-get install php5-sasl php5-intl libssh2-php php5-curl php-http php5-xmlrpc php5-geoip php5-ldap php5-memcache php5-memcached php5-tidy Register the Horde Pear channel pear channel-discover pear.horde.org Set the Horde installation directory pear install horde/horde_role pear run-scripts horde/horde_role You'll be asked the following question: Filesystem installation for base Horde application: /var/www/horde You can… Continue Reading
Install Perfect Mail Server with ISPConfig and Horde 5.0 on Debian Wheezy- Part-1 Rumi, October 13, 2014October 13, 2014 First, Install Basic Debian Wheezy. Make sure your network configurations are ok. Once installed start doing following- Fixing hostname- edit /etc/hosts. Make it look like this: vi /etc/hosts 127.0.0.1 localhost.localdomain localhost 192.168.0.100 server1.example.com server1 # The following lines are desirable for IPv6 capable hosts ::1 localhost ip6-localhost ip6-loopback ff02::1 ip6-allnodes… Continue Reading
Bash Shellshock fix with scripts for Debian, Ubuntu, CentOS and other distros. including old Rumi, October 3, 2014December 19, 2014 First check if your Bash is vulnerable, execute the following command- env x='() { :;}; echo vulnerable’ bash -c ‘echo this is a test’ If your system is vulnerable, you will see: vulnerable this is a test If your system is not vulnerable, you will see: bash: warning: x: ignoring… Continue Reading