linux

Failsafe zoneminder with gluster and geo-replication.

Near year ago i configured zoneminder for monitoring my approach. But i got one problem, host that running zoneminder placed in same approach, so, if it will be stolen, it will be stolen with recordings. I spend a lot of time while choosing solution to organize replication on remote server. Most solution that i found […]

Tags: , ,

Posted in Linux related, Security related | 3 Comments »

How to block large ip subset on the example of TOR

I wrote before how i blocked TOR exit nodes by iptables, disadvantages of method that i used before – big amount of rules (one per each ip). This solution easy and obvious, but had speed penalty. Today i want write about more effective solution that use ipset, let’s see what is ipset: IP sets are […]

Tags: , ,

Posted in Linux related, Security related | 1 Comment »

How to swindle hoster or the tale of how to defeat greed.

I remembered one interesting story. One time we bought dedicated server, when we made out the order i specified partition layout in additional comment section (raid 1 + lvm), when i got access to the server i saw that OS have one partition on LVM spliced over both drives. We wrote email, and asked to […]

Tags:

Posted in Linux related | No Comments »

How to transfer data between hosts securely.

From time to time i faced with task how to transfer important data between servers securely (ie over ssl or something similar). I do not use passwords for remote access and do not have private keys on remote systems, so i can not use ssh for this purposes. First i wanted to write about solution […]

Tags: , ,

Posted in Linux related, Security related | 6 Comments »

Bug in munin

Few weeks i observed strange graphs for network usage produced by munin, i did not attach any importance to this. But few days ago when i seen again 600Mbit badwidth usage on host that had 10Mbit connection i remembered that before made some changes in munin.conf. I looked at config and found that changed directive […]

Tags: , , ,

Posted in Linux related | No Comments »

A riddle from abyss

A week ago, when i worked at home computer i encountered with strange issue, xorg was stuck, i tried ctrl-alt-backspace and magic keys without result, so i rebooted host. While computer is booted i saw few errors from different daemons that they can not found some files and finally when i tried to login i […]

Tags: ,

Posted in Linux related | No Comments »

Apt pinning note

Some days ago i got additional VDS and wanted to install php5-fpm from dotdeb, but after i added dotdeb repository, apt started to try upgrade mysql and nginx from dotdeb. Solution to stop that: $ cat > /etc/apt/preferences.d/dotdeb << EOF Package: * Pin: origin "packages.dotdeb.org" Pin-Priority: 50 EOF$ cat > /etc/apt/preferences.d/dotdeb << EOF Package: * […]

Tags: ,

Posted in Linux related | No Comments »

IPv6 Ready

Yeah!

Tags: ,

Posted in Linux related | No Comments »

Tor blacklist

Few month ago i was interested in how to block incoming traffic from Tor network. Tor network have finitely numbers of exit nodes, so the solution is to block traffic from this nodes. I see two solutions how to block exit nodes.  First use TorDNSEL service, in brief you can check that connection comes from […]

Tags: , ,

Posted in Linux related, Security related | No Comments »

Port based routing

After i came on new work i found that can not send email thru SMTPS, because port 465 closed on router. At this point i already had configured VPN access on my home router, so i think that it is good idea to route SMTPS traffic thru VPN, let’s start. For this purposes i needed […]

Tags: , , ,

Posted in Linux related | No Comments »


Powered by WordPress. Designed by Försäkra Online.