Firewalls
March 1st, 2010
No comments
Archive
Archive for the ‘unix/linux’ Category
Block Messenger (squid + iptables)
March 1st, 2010
No comments
Block Messenger (squid + iptables)
In Mexico i was installed a firewall and squid on a server the important options are:
squid.conf:
acl no_permitido dstdomain "/etc/squid/blocked.domains" acl msn_mime req_mime_type -i ^application/x-msn-messenger$ acl msn_gw url_regex -i gateway.dll http_access deny all msn_mime http_access deny all msn_gw
blocked.domains:
.ebuddy.com .messengerfx.com .iloveim.com .meebo.com ...
iptables:
iptables -I FORWARD -p tcp --dport 1863 -j REJECT
FreeBSD Wireless WEP/WAP
February 28th, 2010
No comments
FreeBSD Wireless WEP/WAP
/etc/wpa_supplicant.conf
# WEP network={ ssid="YOUR_NETWORK" key_mgmt=NONE wep_key0=6666666666 wep_tx_keyidx=0 priority=5 } # WAP network={ ssid="YOUR_NETWORK" psk="Password" priority=5 }
wpa_supplicant -Bi wlan0 -c /etc/wpa_supplicant.conf
/etc/rc.conf
ifconfig_wlan0="WPA DHCP"
In my case wlan0 is rum0
Virtualization options
February 28th, 2010
No comments
Virtualization Options
For personal or business infrastructure:
- VMware vSphere, VMware Server, VMware Player , VMware ESXi
- VirtualBox, VirtualBox Web Console
- Xen , Xen Live CD
- Qemu
- KVM
- Virtual PC
- Hyper-V
- Citrix
- Oracle VM
- Parallels
Others:
- Bochs
- Dosbox Run old DOS App or Games
Cloud computing Virtualization:
- Amazon Elastic Compute Cloud, Amazon Virtual Private Cloud
- ElasticHosts
useful options to separate processes and information:
Linux use Chroot
OpenSolaris use Zones
FreeBSD use Jails
NetBSD and OpenBSD use Sysjails
Maybe there are many other options to virtualization.
Fedora 12 + Httpd + Userdir + SElinux Works
January 30th, 2010
4 comments
Fedora 12 + Httpd + Userdir + SElinux Works
First install LAMP stack see the guide on HowtoForge
replace $USER for your username
mkdir $USER/public_html firefox http://localhost/~$USER/
If you see only Forbidden (403), don’t worry, do this:
I made a patch file (if you made custom changes on httpd.conf don’t use this file, do manual changes)
Install patch on your system and patch httpd.conf
yum install patch
my patch file:
--- httpd-patch.conf 2010-01-30 14:59:51.811850034 -0800
+++ httpd.conf 2010-01-30 14:25:04.527864263 -0800
@@ -349,14 +349,15 @@
# of a username on the system (depending on home directory
# permissions).
#
- UserDir disabled
+ #UserDir disabled
+ UserDir enabled $USER
#
# To enable requests to /~user/ to serve the user's public_html
# directory, remove the "UserDir disabled" line above, and uncomment
# the following line instead:
#
- #UserDir public_html
+ UserDir public_html
</IfModule>
@@ -364,18 +365,18 @@
# Control access to UserDir directories. The following is an example
# for a site where these directories are restricted to read-only.
#
-#<Directory /home/*/public_html>
-# AllowOverride FileInfo AuthConfig Limit
-# Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
-# <Limit GET POST OPTIONS>
-# Order allow,deny
-# Allow from all
-# </Limit>
-# <LimitExcept GET POST OPTIONS>
-# Order deny,allow
-# Deny from all
-# </LimitExcept>
-#</Directory>
+<Directory /home/*/public_html>
+ AllowOverride FileInfo AuthConfig Limit
+ Options MultiViews Indexes SymLinksIfOwnerMatch IncludesNoExec
+ <Limit GET POST OPTIONS>
+ Order allow,deny
+ Allow from all
+ </Limit>
+ <LimitExcept GET POST OPTIONS>
+ Order deny,allow
+ Deny from all
+ </LimitExcept>
+</Directory>
#
# DirectoryIndex: sets the file that Apache will serve if a directorynext do:
patch /etc/httpd/httpd.conf < patch1.txt chmod 711 /home/$USER chmod 755 /home/$USER/public_html chcon -R -t httpd_sys_content_t /home/$USER/public_html setsebool -P httpd_enable_homedirs 1
now:
firefox http://localhost/~$USER/
Done.
Sponsors
Extras
Recent Comments