Disabling pfsync0 pseudo-interface on FreeBSD

Often on FreeBSD servers you can see the pfsync0 pseudo-interface up:

[root@bsd ~]# ifconfig
...(skipped)
pfsync0: flags=0<> mtu 2020 
 syncpeer: 224.0.0.240 maxupd: 128

Unless you are running a pf firewall with redundancy, you won't need this, moreover on CPanel/WHM enabled servers, Cpanel sometimes tries to …

more…

Installing Slackware Linux on an EeePC 701 by PXE

Just a few notes on this matter. I've used my notebook (running slackware 13.0 too) as a pxe server to install slackware on my Asus EeePC 701.

  • Install dhcpd

    slackpkg install dhcp
    
  • Sample dhcpd config:

    floyd[~]$ cat /etc/dhcpd.conf
    # dhcpd.conf
    #
    # Configuration file for ISC dhcpd (see 'man …
more…

RWhoisd, indexer issue on Linux

Getting `sort...` errors when running rwhois_indexer on Linux? (I was experiencing this on CentOS 5)

[root@server html]# /usr/local/rwhoisd/bin/rwhois_indexer -c /usr/local/rwhoisd/etc/rwhoisd.conf -v -A 203.23.23.0/22 -C network -s txt
sort: open failed: +4: No such file or directory …
more…

Iptraf with bonding support

Default iptraf build that comes with RedHat or CentOS does not support bondX interfaces, or vlan (ethX.Y) interfaces, however there's a version on bugzilla.redhat.com that does support it. More details: https://bugzilla.redhat.com/show_bug.cgi?id=441081 Also, for you the lazy ones out there, quick …

more…

RDP through a ssh tunnel

How to access RDP if firewall is closed down, and access to server is restricted to a few ips:

ssh user@allowed.server.com -L 3389:windows.server.com:3389
# and in a different terminal:
rdesktop -uadministrator -pp455w0rd localhost

That's it! Secure encrypted rdesktop session :)

more…

Detecting Conficker with nmap

As the Conficker worm is vastly discussed and getting a lot of attention, latest nmap version can detect it, won't post here how, here's the direct link to the resource:

http://www.net-security.org/secworld.php?id=7252

more…

Freebsd php-fpm fastcgi server init script

#!/bin/sh

# PROVIDE: phpfpm
# KEYWORD: shutdown

#
# Add the following lines to /etc/rc.conf to enable php-fpm:
#
#phpfpm_enable="YES"
#
#

. /etc/rc.subr

name=phpfpm
rcvar=`set_rcvar`

command="/usr/local/sbin/php-fpm"
command_args=""
pidfile=/usr/local/logs/php-fpm.pid
required_files=/usr/local/etc/php-fpm.conf

# set defaults

phpfpm_enable=${phpfpm_enable:-"NO"}

start_cmd …
more…

OpenSUSE developers announced csync

Andreas Schneider has unleashed the first public release candidate of csync 0.42, which is now available as source from the csync Web site, or via one-click for openSUSE 11.0 and 11.1.

Project homepage: http://www.csync.org/

This tool looks like a promising alternative to unison, which …

more…

Installing SVN server on FreeBSD

Quick installation of SVN on FreeBSD, access by svn:// protocol

portinstall subversion
mkdir /home/svn-repo
pw user add -n svn -u 3690 -d /home/svn-repo
chown svn:svn /home/svn-repo/
chsh -s /bin/false svn

Add to /etc/rc.conf:

svnserve_enable="YES"
svnserve_data="/home/svn-repo"
svnserve_user="svn"
svnserve_group="svn"

Start …

more…

Using vnstat for simple traffic accounting

vnStat is a network traffic monitor for Linux that keeps a log of daily network traffic for the selected interface(s). vnStat isn't a packet sniffer. The traffic information is analyzed from the /proc vfs, so vnStat can be used without root permissions. However at least a 2.2.x …

more…