Category Archives: Hosting
toniblyx / my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
https://github.com/toniblyx/my-arsenal-of-aws-security-tools
Meltdown & Spectre – CentOS
This is, for what I’v read about, the two main things that we need to have updated…
kernel-3.10.0-693.11.6.el7.x86_64
microcode_ctl-2.1-22.2.el7.x86_64
Check them trought uname -r and dmesg | grep microcode
[root@sd-56969 www]# systemctl status microcode -l ● microcode.service - Load CPU microcode update Loaded: loaded (/usr/lib/systemd/system/microcode.service; enabled; vendor preset: enabled) Active: inactive (dead) since Fri 2018-01-05 17:43:08 CET; 1 weeks 6 days ago Process: 692 ExecStart=/usr/bin/bash -c grep -l GenuineIntel /proc/cpuinfo | xargs grep -l -E "model[[:space:]]*: 79$" > /dev/null || echo 1 > /sys/devices/system/cpu/microcode/reload (code=exited, status=0/SUCCESS) Main PID: 692 (code=exited, status=0/SUCCESS) Jan 05 17:43:08 sd-56969 systemd[1]: Starting Load CPU microcode update... Jan 05 17:43:08 sd-56969 systemd[1]: Started Load CPU microcode update.
dashboard for VMware, SNMP, REST API and more
SysAdminBoard is a simple dashboard system written in Python, HTML and Javascript and served on a simple CherryPy Webserver (included). It was originally written to reformat snmp data for the Panic Statusboard iPad App, but has since become a fully stand-alone project that can grab data from a variety of sources and render charts and graphs in a web browser.
online.net – Behind the scene of a major infrastructure company
YAH!,
Most of my servers and my client’s servers are hosted @ online.net.
Online.net has posted a nice blog post about their infrastructure….
https://blog.online.net/2017/07/18/behind-the-scene-of-a-major-infrastructure-company/
Discourse – email and Job exception: Net::ReadTimeout
For a Discourse instance to function properly Email must be set up. Use the
SMTP_URL
env var to set your SMTP address, see sample templates for an example. The Docker image does not contain postfix, exim or another MTA, it was omitted because it is very tricky to set up correctly.
Source: https://github.com/discourse/discourse_docker
Yah! Discourse doesn’t came with any MTA (mail transfer agent).
I had to install Postfix so that Discourse could send out emails.
My emails weren’t getting delivered…
I was getting the following error on discourse logs(/var/discourse/shared/standalone/log/rails/production.log)….
Job exception: Net::ReadTimeout
After a few tweaks… I got it working…
This is my /var/discourse/containers/app.yml excerpt….
## TODO: List of comma delimited emails that will be made admin and developer ## on initial signup example '[email protected],[email protected]' DISCOURSE_DEVELOPER_EMAILS: '[email protected]' ## TODO: The SMTP mail server used to validate new accounts and send notifications DISCOURSE_SMTP_ADDRESS: mail.domain.com DISCOURSE_SMTP_PORT: 25 DISCOURSE_SMTP_USER_NAME: [email protected] DISCOURSE_SMTP_PASSWORD: XXXXXXX DISCOURSE_SMTP_ENABLE_START_TLS: false
Rebuild the APP
cd /var/discourse/ ./launcher rebuild app
Readings
- https://www.digitalocean.com/community/tutorials/how-to-install-and-configure-postfix-as-a-send-only-smtp-server-on-ubuntu-16-04
- https://meta.discourse.org/t/troubleshooting-email-on-a-new-discourse-install/16326/
bad zipfile offset (local header sig)
While I was unzipping a 72Gb file I got the following errors…
bad zipfile offset (local header sig):
I had to install default-jdk and then use jar.
jar -xf filename.zip
References
http://stackoverflow.com/a/31084012/1987037
+ 8Tb – Dell PowerEdge R210
Manufacturer Dell Dell PowerEdge R210
Processor Xeon E3 1x Intel® Xeon® E3 1220 4 C / 4T @3.1 Ghz cache L3 8MB, x64, VT
Memory 32 GB DDR3 ECC
Storage 2 × 4 TB SATA
RAID RAID 0/1 Software
Internet bandwidth guaranteed Premium 500 Mbit/s
Traffic Unmetered
lowendstock – cheapest low end virtual private server offers
Ubuntu wants OVH to bill 1e-2e per month for each VPS/PCI/PCC/SD
@ubuntu asks us to bill you 1e-2e per month for each VPS/PCI/PCC/SD. If not,
prohibition to use the mark “Ubuntu” on our website.— Octave Klaba / Oles (@olesovhcom) 19 de junho de 2016