| 日 | 一 | 二 | 三 | 四 | 五 | 六 |
|---|---|---|---|---|---|---|
| 1 | 2 | 3 | 4 | |||
| 5 | 6 | 7 | 8 | 9 | 10 | 11 |
| 12 | 13 | 14 | 15 | 16 | 17 | 18 |
| 19 | 20 | 21 | 22 | 23 | 24 | 25 |
| 26 | 27 | 28 | 29 |
Linux
Install Openssl private key and authentic CA certs on Tomcat server
My situation is this: my colleague generated the CSR and private Key using Openssl, which is the instruction for Apache server. We received from VeriSign the certificates. However, my Tomcat setup doesn't want to use Apache as the frontend, and therefore I have to figure out a way to install the certificates on Tomcat, as the instructions are quite different from the Apache's. Tomcat's CSR/Private Key generation uses the keytool which is instructed by VeriSign.
Rotate catalina.out
so in catalina.sh I do this
...start >> catalina.out 2>&1 & --replaced with
..start |cronolog /tomcat/logs/%Y-%M-%D.catalina.out >> /dev/null 2>&1 &
login to post comments
Stupid CentOS Apache UserDir 403 Error
If you just follow the standard procedure to setup Apache UserDir, you may be bewildered by the 403 forbidden error. All you have to do is to chmod 755 the user's dir (i.e. /home/bulahema), and all is working. This is a security error?
Configuring VPN on Ubuntu 7.04
This process has been made MUCH easier in Edgy and Feisty. I just never updated this...and I'm sorry. In order for legacy support, I'm leaving up Dapper/Breezy/Hoary instructions.
Feisty/Edgy
You will need NetworkManager installed:
Feisty/Edgy
You will need NetworkManager installed:
Configuring Apache for Maximum Performance
Apache is an open-source HTTP server implementation. It is the most popular web server on the Internet. The December 2005 Web Server Survey conducted by Netcraft [1] shows that about 70% of the web sites on Internet are using Apache.
1. Apache server performance
Apache server performance can be improved by adding additional hardware resources such as RAM, faster CPU etc. But, most of the time, the same result can be achieved by custom configuration of the server.Security Testing your Apache Configuration with Nikto
Introduction
By now you've got the perfect setup for your new Ubuntu 6.0.6 (Dapper Drake) box. You may have even followed the excellent Intrusion Detection and Prevention with BASE and Snort tutorial. And as an added precaution you installed DenyHosts to prevent hack attempts via ssh.
Chrooted SSH HowTo
Version 1.0
Author: Falko Timme <ft [at] falkotimme [dot] com>
Last edited: 01/18/2006
Preventing SSH Dictionary Attacks With DenyHosts
Version 1.0
Author: Falko Timme <ft [at] falkotimme [dot] com>
Last edited: 02/07/2006
How To Test Your Linux-Distro Firewall
Recently, I wrote an article about "How to scan your Linux-Distro for Root Kits".
Now that the machine is... clean! I think, a good thing TO-DO, is to test my Firewall (AGAIN!)
The good news are that we can use the free tool FTester.
Now that the machine is... clean! I think, a good thing TO-DO, is to test my Firewall (AGAIN!)
The good news are that we can use the free tool FTester.
Securing the CentOS Perfect Setup with Bastille
This article shows how to secure a CentOS server using psad, Bastille, and some other tweaks. psad is a tool that helps detect port scans and other suspicious traffic, and the Bastille hardening program locks down an operating system, proactively configuring the system for increased security and decreasing its susceptibility to compromise.
Create an additional account for Systems Administration
The "adduser" command will create an account.
adduser service
Recent comments