Saturday, March 21, 2015

How To Patch and Protect OpenSSL Vulnerability # CVE-2015-0291 CVE-2015-0204 [ 19/March/2015 ]

           ,      No comments   
On 19th March 2015, multiple high and moderate severity level vulnerabilities released in OpenSSL, a Secure Sockets Layer toolkit used in a Linux and Unix-like systems. How can I fix these vulnerabilities on a CentOS/RHEL/Ubuntu and Debian Linux based server for OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r, and 0.9.8zf.? How do I verify that my Linux server has been fixed against the OpenSSL vulnerability?

serious security problem has been found and patched in the OpenSSL Library. Multiple vulnerabilities have been discovered in OpenSSL on 19/March/2015. The Common Vulnerabilities and exposures project identifies the following issues:

Monday, March 9, 2015

How To Mount Remote Directory With SSHFS on a Linux

           ,      No comments   
How can I mount remote directory with ssh on a Linux bases system? How do I use SSHFS to mount remote file systems over SSH on a Ubuntu or Debian/RHEL/CentOS/Arch Linux system?

SSH is a secure protocol and you can use it to mount a directory on a remote server or local laptop with the help of the SSHF service. With SSHFS you can mount remote server file system to your local development workstation/laptop powered by Linux.

FreeBSD Unix Find Out Which Programs Are Listing On a Given Port Number

                No comments   
I'm a new FreeBSD Unix system user. How can I find out the process/programs names listing on a certain port on a FreeBSD Unix systems using command line? How do I lookup the process which is currently bound to the given network port on a FreeBSD server?

 You can use any one of the following command-line tools that displays network connections, routing tables, and a number of network interface statistics on a FreeBSD operating systems.

Sunday, March 8, 2015

Linux Change Disk Label Name on EXT2 / EXT3 / EXT4 File Systems

           ,      No comments   
How can I modify partition labels on a Linux operating systems? How to change disk name on the ext4 file system on a Ubuntu Linux using command line?

You need to use the e2label command to set a text label to your disk drive partitions and then refer to them in the /etc/fstab file. The e2label command must be run as root user. Normal users can not modify partition label for security reasons.

Use ssh-copy-id with an OpenSSH Server Listening On a Different Port

                No comments   
My OpenSSH server listening on TCP port number 2222. How can I use ssh-copy-id with an sshd server with listening on a different port on a Linux or Unix-like systems?

 The ssh-copy-id is a shell script that uses ssh command to log into a remote machine using a login password to install your public key in a remote machine’s authorized_keys. The script also secure the remote user's home, ~/.ssh, and ~/.ssh/autho-rized_keys files by changing the permissions.

Ubuntu Linux: Edit and Open Files That Require Administrator Privileges

                No comments   
here are certain files in Ubuntu Linux (or Unix-like systems) that only root user access or edit. How can I edit and/or open files that requires admin (root) access on a Ubuntu Linux?

Configuration files, server settings and other files in /etc/ usually owned by root user and require editing for configuration purpose on a Linux or Unix-like systems. You can raise privileges using any one of the following mechanism:

Sunday, March 1, 2015

Ubuntu Linux 12.04/14.04 LTS Install Memcached Server For Python and PHP Apps

                No comments   
I'm a new Ubuntu 12.04/14.04 server user. How do I install and use memcached on an Ubuntu Linux 14.04 LTS server? How can I my apps written in PHP or Python can use memcached on an Ubuntu LTS server?

Memcached is a general-purpose distributed memory caching system. It is usually used to speed up dynamic database-driven webapps or websites by caching objects in RAM. It is often result into reducing database load. You need to install the following packages:

Howto Configure PFSense Site-to-Site IPSec VPN Tunnel For Remote Access

           ,      No comments   
I work from a small office/home office and I need to set up an IPSec site-to-site VPN between a Cisco/OpeNBSD IPSec-enabled gateway and firewall running PFSense. How do I configure the VPN tunnel so that I can access remote subnet and servers behiend a Cisco firewall/router securely? How do I setup a tunnel mode configuration which will provide you with an encrypted site-to-site network, allowing networks at multiple remote locations to be able to securely communicate using my PFSense located in my SOHO?