This week has been a sort of non-event. Although I did get a refund on a parking ticket as mentioned in some previous spurious blog. Had a call from a friend, she had just bought a new wireless card and was struggling to get it connected. The Knoppix I installed on her laptop is running fine but something I have generally found with Linux is that once it is working, leave it well alone! I asked why she had bought the new card. "It's a 'G' and it's faster than my 'B', Internet has been slow'. Hmmm, Internet slow. How do you explain this one?
After a lil work getting the config right for s hosting/shell server I finally came up with the script that will patch, compile, and install the gresecurity patched kernel. You just run the shell script and it will download the kernel and patch, patch the kernel, download the config, and then compile and install.
The config I got made up is for Pentium4/Xeon/Celeron based servers.
Tuxmachines is now forced to halt the submission of anonymous news/links at least for a while. I think some new kind of bot is filling up the queue with numerous submissions of various spam. I apologize to the legitimate contributors.
The last few months I have been using a server for security research, kernel testing, mod security rules testing, firewalls, dos protection, you name it. As well as to host my ircd and site. We basically have the server for development and testing although it is ran just like any other hosting server. In order to do the research we do we must keep a server.
This is a short review I wanted to write about cpanel. I never have been the greatest fan of it since it is only compatible with apache1 and all but after using other control panels I realized how secure and practical cpanel is for a multiple user server and hosting enviorment.
Read it here http://www.evolution-security.com/modules.php?name=News&file=article&sid=291
The installation went fine (in a roundabout sort of way). Oh yes, there were the niggles and gripes, teething problems, times that I had to resort to the beating the insolent teenager of technology with a hammer to get it to work, but in the end it did just that. What on earth am I talking about? Well... the customer of mine, Mr Windows, is now Mr Linux (apart from a couple PCs) and so is his network of around 100 or so workstations. Working like a charm (or curse?). I didn't have the heart to tell him that I was learning this stuff as I went along, that would have probably put the fear of God into his chequebook and his writing hand. I’ll keep the patient under constant observation for a while until it can be taken out of critical care but the prognosis is looking good and the transplant is looking to be a success. Wipe please Nurse! Scalpel, backup tape, CD.
(gimped by Texstar)
Short review of CentOS and Red Hat and how Ubuntu is not gonna push anyone out of the server and enterprise market especially these two.
The computer lab we were using at Western Oregon University had Windows XP on all the machines. The first day of class, I used Win-XP for a few minutes--but I just couldn't stand it anymore . . . I whipped-out my PCLinuxOS CD I'd brought along with me, and proceeded to install Linux on the machine . . .
any help would be greatful
For those using apf on the new kernels and getting ipt_state error, since 2.6.15 they changed the name of them kernel modules and apf does not recognize them. Do not enable monokern as some people suggest, this will screw up your passive ftp and will not work good
The concept of open-source, free software is very appealing. Many of the Linux-distros are very good, but I still haven't found one that fits my needs perfectly. Also, my needs will propably change as I become more aquainted to Linux. At this time, my favourite distro is propably Mandriva One, though it would've been Ubuntu if they had had support for restricted formats.
GrSecurity kernel upgrade and patch script. Downloads the 22.214.171.124 kernel and the latest grsecurity patch and then unpacks and patches the kernel, after that it tells you what to do next.
After extenisve testing I have found what I think are the best mod security rules you can have for a basic server with average php scripts.