If you do not know yet what is grsec / grsecurity, a good starting point is http://grsecurity.net/. For linux, grsecurity is a “Holy Grail” in security. In addition, it will get rid of a problem that has linux and that irritates me me: ps aux (after any user can see all processes.) In this short [...]
Installing and configuring dhcpd server on Debian (Lenny) ## Install DHCP server for automatic IP assignment apt-get update apt-get install dhcp3-server ## Remove original config file and set the IP address for eth1 (internal network card) rm /etc/dhcp3/dhcpd.conf pico /etc/network/interfaces # —————————————— # ## Example configuration: (no eth0) auto eth1 iface eth1 inet static address [...]
Undoubtedly, memcached is the best caching system can be run distributed reaching extreme performance ( it uses libevent find). As dependency to be used we will need: libevent, memcached and php-memcached PECL. ## Install PHP PECL Memcache and memcached-(Dependencies will be installed along with them) yum install php-pecl-memcache memcached ## To Configure the memcached edit [...]
## To find memory used by a group of processes (Example: php-cgi / http): ps aux | grep –exclude=grep httpd | awk ‘BEGIN{s=0;}{s=s+$6;}END{print s;}’ ## To find the average memory after a group of processes: ps aux | grep –exclude=grep httpd | awk ‘BEGIN{s=0;}{s=s+$6;}END{print s/126;}’ Note: The return value is expressed in KB. From holy [...]
First of all we will explain the terms used. DSO – Dynamic Shared Object MPM – Multi-Processing Modules The idea is to run on the same apache both mod_php (DSO) with suphp. First, mod_php is very fast but sux at security chapter. In this case (example) Apache with MPM Prefork have two virtual hosts, each [...]
Perhaps you have wondered how to set per virtual host settings when using mod_php (DSO) to apache. The suPHP is simple for each user or virtual host can have his own php.ini . In the example below you can see how to configure a virtual host with PHP custom settings. We use Suhosin to enhance [...]
Installation and setup for a VPN server on Debian Lenny in few minutes # Install pptpd apt-get install pptpd # Turn on IP Forwarding sysctl-w net.ipv4.ip_forward = 1 # We set the permanent IP forwarding pico /etc/sysctl.conf # Remove the comment line “net.ipv4.ip_forward = 1″ # Configure pptpd # Example: 10.0.1.1 LOCALIP remoteip 10.0.0.3-10.0.0.200 # [...]
To synchronize with a server on the exact time and if you want to set the hardware clock in localtime and time as short as possible, you can use the example below, (this example is for linux) root@example[~] # rm /etc/localtime && ln -s /usr/share/zoneinfo/US/Pacific /etc/localtime root@example[~] # ntpdate -vb de.pool.ntp.org && hwclock -w Aug [...]
This is a tutorial for beginners extremely small: In this short tutorial I will show you how to install apache and php on Debian in just 4 minutes. Setting the example was done on a virtual machine. root@example:~# apt-get install apache2 root@example:~# apt-get install php5 php5-cli php5-cgi php5-curl php5-common php5-gd php5-mcrypt php5-mysql php5-tidy libapache2-mod-php5 [...]
9WWVWRNNBR6R Domain Name Service (DNS) is an Internet service that maps IP addresses and fully qualified domain names (FQDN) to one another. In this way, DNS alleviates the need to remember IP addresses. Computers that run DNS are called name servers. Ubuntu ships with BIND (Berkley Internet Naming Daemon), the most common program used for [...]
Learn how to install Dynamic Host Configuration Protocol The Dynamic Host Configuration Protocol (DHCP) is a network service that enables host computers to be automatically assigned settings from a server as opposed to manually configuring each network host. Computers configured to be DHCP clients have no control over the settings they receive from the DHCP [...]
NFS allows a system to share directories and files with others over a network. By using NFS, users and programs can access files on remote systems almost as if they were local files. Some of the most notable benefits that NFS can provide are: Local workstations use less disk space because commonly used data can [...]
OpenSSH is a freely available version of the Secure Shell (SSH) protocol family of tools for remotely controlling a computer or transferring files between computers. Traditional tools used to accomplish these functions, such as telnet or rcp, are insecure and transmit the user’s password in cleartext when used. OpenSSH provides a server daemon and client [...]
The Linux kernel includes the Netfilter subsystem, which is used to manipulate or decide the fate of network traffic headed into or through your server. All modern Linux firewall solutions use this system for packet filtering. Firewall Introduction The kernel’s packet filtering system would be of little use to administrators without a userspace interface to [...]
Ethernet Most ethernet configuration is centralized in a single file, /etc/network/interfaces. If you have no ethernet devices, only the loopback interface will appear in this file, and it will look something like this: # This file describes the network interfaces available on your system # and how to activate them. For more information, see interfaces(5). [...]
Recent Comments