List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
https://github.com/toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
https://github.com/toniblyx/my-arsenal-of-aws-security-tools
This is, for what I’v read about, the two main things that we need to have updated…
kernel-3.10.0-693.11.6.el7.x86_64
microcode_ctl-2.1-22.2.el7.x86_64
Check them trought uname -r and dmesg | grep microcode
[root@sd-56969 www]# systemctl status microcode -l ● microcode.service - Load CPU microcode update Loaded: loaded (/usr/lib/systemd/system/microcode.service; enabled; vendor preset: enabled) Active: inactive (dead) since Fri 2018-01-05 17:43:08 CET; 1 weeks 6 days ago Process: 692 ExecStart=/usr/bin/bash -c grep -l GenuineIntel /proc/cpuinfo | xargs grep -l -E "model[[:space:]]*: 79$" > /dev/null || echo 1 > /sys/devices/system/cpu/microcode/reload (code=exited, status=0/SUCCESS) Main PID: 692 (code=exited, status=0/SUCCESS) Jan 05 17:43:08 sd-56969 systemd[1]: Starting Load CPU microcode update... Jan 05 17:43:08 sd-56969 systemd[1]: Started Load CPU microcode update.
SysAdminBoard is a simple dashboard system written in Python, HTML and Javascript and served on a simple CherryPy Webserver (included). It was originally written to reformat snmp data for the Panic Statusboard iPad App, but has since become a fully stand-alone project that can grab data from a variety of sources and render charts and graphs in a web browser.
YAH!,
Most of my servers and my client’s servers are hosted @ online.net.
Online.net has posted a nice blog post about their infrastructure….
https://blog.online.net/2017/07/18/behind-the-scene-of-a-major-infrastructure-company/
For a Discourse instance to function properly Email must be set up. Use the
SMTP_URL
env var to set your SMTP address, see sample templates for an example. The Docker image does not contain postfix, exim or another MTA, it was omitted because it is very tricky to set up correctly.
Source: https://github.com/discourse/discourse_docker
Yah! Discourse doesn’t came with any MTA (mail transfer agent).
I had to install Postfix so that Discourse could send out emails.
My emails weren’t getting delivered…
I was getting the following error on discourse logs(/var/discourse/shared/standalone/log/rails/production.log)….
Job exception: Net::ReadTimeout
After a few tweaks… I got it working…
This is my /var/discourse/containers/app.yml excerpt….
## TODO: List of comma delimited emails that will be made admin and developer ## on initial signup example '[email protected],[email protected]' DISCOURSE_DEVELOPER_EMAILS: '[email protected]' ## TODO: The SMTP mail server used to validate new accounts and send notifications DISCOURSE_SMTP_ADDRESS: mail.domain.com DISCOURSE_SMTP_PORT: 25 DISCOURSE_SMTP_USER_NAME: [email protected] DISCOURSE_SMTP_PASSWORD: XXXXXXX DISCOURSE_SMTP_ENABLE_START_TLS: false
cd /var/discourse/ ./launcher rebuild app
While I was unzipping a 72Gb file I got the following errors…
bad zipfile offset (local header sig):
I had to install default-jdk and then use jar.
jar -xf filename.zip
References
http://stackoverflow.com/a/31084012/1987037
Manufacturer Dell Dell PowerEdge R210
Processor Xeon E3 1x Intel® Xeon® E3 1220 4 C / 4T @3.1 Ghz cache L3 8MB, x64, VT
Memory 32 GB DDR3 ECC
Storage 2 × 4 TB SATA
RAID RAID 0/1 Software
Internet bandwidth guaranteed Premium 500 Mbit/s
Traffic Unmetered
@ubuntu asks us to bill you 1e-2e per month for each VPS/PCI/PCC/SD. If not,
prohibition to use the mark “Ubuntu” on our website.— Octave Klaba / Oles (@olesovhcom) 19 de junho de 2016
So what’s changed in the last 2 years? Besides replacing some servers and network gear, not much. Here’s a top-level list of hardware that runs the sites today (noting what’s different since 2013):
4 Microsoft SQL Servers (new hardware for 2 of them)
11 IIS Web Servers (new hardware)
2 Redis Servers (new hardware)
3 Tag Engine servers (new hardware for 2 of the 3)
3 Elasticsearch servers (same)
4 HAProxy Load Balancers (added 2 to support CloudFlare)
2 Networks (each a Nexus 5596 Core + 2232TM Fabric Extenders, upgraded to 10Gbps everywhere)
2 Fortinet 800C Firewalls (replaced Cisco 5525-X ASAs)
2 Cisco ASR-1001 Routers (replaced Cisco 3945 Routers)
2 Cisco ASR-1001-x Routers (new!)
Full article http://nickcraver.com/blog/2016/02/17/stack-overflow-the-architecture-2016-edition/