Disabling pfsync0 pseudo-interface on FreeBSD

Often on FreeBSD servers you can see the pfsync0 pseudo-interface up:

[root@bsd ~]# ifconfig
...(skipped)
pfsync0: flags=0<> mtu 2020 
 syncpeer: 224.0.0.240 maxupd: 128

Unless you are running a pf firewall with redundancy, you won't need this, moreover on CPanel/WHM enabled servers, Cpanel sometimes tries ...

more…

Installing Slackware Linux on an EeePC 701 by PXE

Just a few notes on this matter. I've used my notebook (running slackware 13.0 too) as a pxe server to install slackware on my Asus EeePC 701.

  • Install dhcpd

    slackpkg install dhcp
    
  • Sample dhcpd config:

    floyd[~]$ cat /etc/dhcpd.conf
    # dhcpd.conf
    #
    # Configuration file for ISC dhcpd (see ...
more…

RWhoisd, indexer issue on Linux

Getting `sort...` errors when running rwhois_indexer on Linux? (I was experiencing this on CentOS 5)

[root@server html]# /usr/local/rwhoisd/bin/rwhois_indexer -c /usr/local/rwhoisd/etc/rwhoisd.conf -v -A 203.23.23.0/22 -C network -s txt
sort: open failed: +4: No such file or directory ...
more…

Iptraf with bonding support

Default iptraf build that comes with RedHat or CentOS does not support bondX interfaces, or vlan (ethX.Y) interfaces, however there's a version on bugzilla.redhat.com that does support it. More details: https://bugzilla.redhat.com/show_bug.cgi?id=441081 Also, for you the lazy ones out there ...

more…

RDP through a ssh tunnel

How to access RDP if firewall is closed down, and access to server is restricted to a few ips:

ssh user@allowed.server.com -L 3389:windows.server.com:3389
# and in a different terminal:
rdesktop -uadministrator -pp455w0rd localhost

That's it! Secure encrypted rdesktop session :)

more…

Detecting Conficker with nmap

As the Conficker worm is vastly discussed and getting a lot of attention, latest nmap version can detect it, won't post here how, here's the direct link to the resource:

http://www.net-security.org/secworld.php?id=7252

more…

Freebsd php-fpm fastcgi server init script

#!/bin/sh

# PROVIDE: phpfpm
# KEYWORD: shutdown

#
# Add the following lines to /etc/rc.conf to enable php-fpm:
#
#phpfpm_enable="YES"
#
#

. /etc/rc.subr

name=phpfpm
rcvar=`set_rcvar`

command="/usr/local/sbin/php-fpm"
command_args=""
pidfile=/usr/local/logs/php-fpm.pid
required_files=/usr/local/etc/php-fpm.conf

# set defaults

phpfpm_enable=${phpfpm_enable:-"NO"}

start_cmd ...
more…

OpenSUSE developers announced csync

Andreas Schneider has unleashed the first public release candidate of csync 0.42, which is now available as source from the csync Web site, or via one-click for openSUSE 11.0 and 11.1.

Project homepage: http://www.csync.org/

This tool looks like a promising alternative to unison, which ...

more…

Installing SVN server on FreeBSD

Quick installation of SVN on FreeBSD, access by svn:// protocol

portinstall subversion
mkdir /home/svn-repo
pw user add -n svn -u 3690 -d /home/svn-repo
chown svn:svn /home/svn-repo/
chsh -s /bin/false svn

Add to /etc/rc.conf:

svnserve_enable="YES"
svnserve_data="/home/svn-repo"
svnserve_user="svn"
svnserve_group="svn"

Start ...

more…

Using vnstat for simple traffic accounting

vnStat is a network traffic monitor for Linux that keeps a log of daily network traffic for the selected interface(s). vnStat isn't a packet sniffer. The traffic information is analyzed from the /proc vfs, so vnStat can be used without root permissions. However at least a 2.2 ...

more…