This page looks plain and unstyled because you're using a non-standard compliant browser. To see it in its best form, please upgrade to a browser that supports web standards. It's free and painless.

Blog About Dedicated Servers

Mount /tmp with noexec

Luigi Ramone | 04 September, 2008 15:02

By default, RS servers come with everything lumped in / and a small amount partitioned for /boot and some for swap. With this current setup, you have no room for making more partitions unless you have a second hard-drive.

Recently, I found out it would be worthwhile to give /tmp it's own partition and mount it using noexec- This would protect your system from MANY local and remote exploits of rootkits being run from your /tmp folder.

First off, I want to thank everyone for their help from this thread:

http://forum.rackshack.net/showthread.php?...&threadid=27470

I am simply compiling their advice into a how-to... (More)

Security , System :: Comment (193) :: Permalink :: Trackbacks (0)

Find which site is sending spam email from apache@yourdomain, How to track spam sent out from your server through php/apache

Luigi Ramone | 04 September, 2008 15:00

When you have a lot of clients (Domains) on your server, it's almost impossible to track all emails sent from your server through php scripts.

So i found a solution and i going to share with everyone.

Requeriments
Linux
Ensim
root access (More)

Apache , Mail :: Comment (148) :: Permalink :: Trackbacks (0)

Disable Majordomo for all sites

Luigi Ramone | 04 September, 2008 14:59

Watching /var/log/maillog, i noticed a lot of spam sent out from my server through majordomo accounts so i chose to disable it in all my sites.

I did a small HOWTO of how to disable all at the same time. This HOWTO is for Linux/Ensim. (More)

System , Ensim :: Comment (142) :: Permalink :: Trackbacks (0)

4 Primary Areas For Tuning Your Server

Luigi Ramone | 04 September, 2008 14:57

I just thought I would add my two cents in for everyone. I posted an old howto with some sysctl.conf, but I think that was when I was running on my previous server using and older version of redhat. So here's a fresh howto that is a little more complete.

These configs are based on my server specs, which is a Dual 2.0GHz Xeon with 2GB of RAM running RedHat Enterprise. Depending on your server's RAM you might have to reduce some of the settings, which I'll try make notes with each section. (More)

Cpanel , Apache , Security , DNS , RedHat , System , Mail :: Comment (148) :: Permalink :: Trackbacks (0)

Redhat ROD/Remote Console How To

Luigi Ramone | 04 September, 2008 14:56

Redhat with Grub:

1. Edit grub.conf with your favorite editor so you can manipulate grub and the boot process via remote console:

CODE
serial --unit=0 --speed=9600

terminal --timeout=10 serial console

 (More)

RedHat , System :: Comment (155) :: Permalink :: Trackbacks (0)

Debian ROD/Remote Console How To

Luigi Ramone | 04 September, 2008 14:55

Add the following to /etc/lilo.conf:

CODE
append = "console=ttyS0,9600n8"


Run Lilo for the changes to take affect.
CODE
lilo


Then add the following to /etc/securetty:
CODE
ttyS0



edit /etc/inittab - Uncomment the line:
CODE
T0:23:respawn:/sbin/getty -L ttyS0 9600 vt100
 (More)

System :: Comment (108) :: Permalink :: Trackbacks (0)

Windows ROD/Remote Console How To

Luigi Ramone | 04 September, 2008 14:54

Open a command prompt or the run menu and run the following:

CODE
bootcfg.exe /ems ON /port COM1 /baud 9600 /ID 1


To see if this was performed correctly open the boot.ini file and confirm that the following was added:

CODE
redirect=COM1

redirectbaudrate=9600

/redirect


After the server has been rebooted look for the Special Administration Console Helper process to be started. This has to be running for the EMS to be enabled.
 (More)

System :: Comment (104) :: Permalink :: Trackbacks (0)

FBSD ROD/Remote Console How To

Luigi Ramone | 04 September, 2008 14:53

Dual console for boot and kernel:

CODE
echo -Dh >> /boot.config


Add the following to /etc/ttys for shell access:

CODE
ttyd0 "/usr/libexec/getty std.9600" cons25 on secure


Note that this will require a reboot to function properly.

CODE
shutdown –r now
 (More)

System :: Comment (112) :: Permalink :: Trackbacks (0)

HOWTO: FFmpeg + FFmpeg-PHP + Mplayer + Mencoder + flv2tool + LAME MP3 Encoder + Libog

Luigi Ramone | 04 September, 2008 14:50

A few people have asked for this to be done so heres a howto for installing:

FFmpeg
FFmpeg-PHP
Mplayer + Mencoder (mencoder is now built into the mplayer svn release )
flv2tool ****REQUIRES RUBY ON RAILS****
LAME MP3 Encoder
Libogg
Libvorbis

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
++


**** UPDATED 10 FEBRUARY 2008 ****
 (More)

Apache , Streaming audio :: Comment (170) :: Permalink :: Trackbacks (0)

How to setup email Smart Host to send emails via Gmail or DynDNS's smtp.

Luigi Ramone | 04 September, 2008 14:47

Lately my TP server was having problems sending emails to Yahoo addresses. Most emails were put under mail queue for hours. I decided to setup a Smart Host under Exim. If the recipients' emails are Yahoo addresses, the Smart Host will be engaged.

There are two SMTPs that can be used - Gmail or DynDNS. While Gmail's smtp is free, a copy of the email will be placed under the SENT EMAIL folder once it is processed. This will take up the 2Gb space soon if you have a lot of emails to process. Also, there is no one-click solution to purge emails under SENT EMAIL folder.

So I decided to use DynDNS.com's MailHop Outbound service. It is sold at the block of 150 relays per day @ $15/year. Meaning, you can process 150 mails each day. If you have more, then you have to purchase more blocks. To find out how many emails you have processed under DynDNS, log into your account and view the statistics. (More)

Mail :: Comment (138) :: Permalink :: Trackbacks (0)

PRM (Process Resource Monitor)

Luigi Ramone | 04 September, 2008 14:43

Introduction:
PRM monitors the process table on a given system and matches process id's with set resource limits in the config file or per-process based rules. Process id's that match or exceed the set limits are logged and killed; includes e-mail alerts, kernel logging routine and more...

How it works?:
PRM works on the basis that once a process id is found matching resource limits; there is a corresponding trigger and wait value. The trigger value increments upwards from zero (0) to the defined value, pausing the duration of seconds defined as wait value. There after the status of the flagged pid is checked again, if still above or equal to resource limits the trigger/wait cycle begins again till the max trigger value is reached. When this trigger value is reached the given process is logged/killed.

This all together has the effect that applications with short burst resource spikes (e.g: apache, mysql etc..) are not killed; but rather on applications with prolonged resource consumption. Using the rule system, you can define different wait/trigger/resource values for any application. (More)

System :: Comment (115) :: Permalink :: Trackbacks (0)

How-To host apache namebased sites without a control Panel

Luigi Ramone | 04 September, 2008 14:36

CAUTION: This gets technical and requires fairly solid ssh knowledge.
CAUTION: Many issues are not covered, such as email users and file ownership and sql-xfer and php stuff and all those functions etc etc.
This is only a very basic tutorial that explains how to get apache to work on the html side of things

-------------------------------
CAUTION: user:user ownership
Following this tutorial verbatim will leave all your sites root:root
-------------------------------

Pre-requisites: A flavor of Linux, debian and apache are the ones I use (Ubuntu Gutsy, CentOS 5.0)
Properly propagated or correctly pointed nameservers.
Working Apache!
This can and does work for Windows servers but this is written for Unix

---------------------------------
WARNING: Editing of critical server files is required!!!
---------------------------------
DANGER: Removing a cp on a production server could delete all your sites!
---------------------------------

NOTES: Probably best for servers with few sites.

----------------------------------

Credits and Thanks to the Orbit Support Team for their invaluable assistance! (More)

Apache :: Comment (108) :: Permalink :: Trackbacks (0)

Zend Optimizer (On Ensim)

Luigi Ramone | 04 September, 2008 14:31

Installing Zend Optimizer

SSH into your server as 'root' user

#Make a backup of your php.ini before you proceed:

cp /etc/php.ini /etc/php.ini.backup

#Download the file. You need to create an account at zend.com before you can download this file. I used to have this file on my server, but that was ages ago....

http://www.zend.com/free_download/optimizer

tar zxvf ZendOptimizer.tar.gz

cd ZendOptimizer

./install

#You'll be asked the following questions, answer them with the following:

#Specify the location where to install Zend Optimizer:

/usr/local/Zend

#Confirm the location of your php.ini file:

/etc

#Are you using the Apache webserver?

Yes

#Specify the Apache configuration directory:

/etc/httpd/conf

#The install script should now detect the right Version of PHP.

Choose "Yes" to proceed.

#Specify the Apache bin directory:

/usr/sbin

#After that, your php.ini is automatically relocated to /usr/local/Zend/etc and a symlink is created.

#Do you want to restart Apache Webserver

Choose "No" (Iv had trouble with that script and it failed to restart apache, just restart apache manually)

#Restart Apache

service httpd restart

#Zend Optimizer is now installed..

 (More)

Apache , Ensim :: Comment (107) :: Permalink :: Trackbacks (0)

Install Mailscanner MRTG

Luigi Ramone | 15 December, 2005 21:55

This will install Mailscanner MRTG on your system. I have tested it on Ensim 3.1.10 and Ensim 3.5.17. Others have also done this on CPanel, but make sure you make the change noted...

Regular, I am not responsible for your box/you are doing this at YOUR OWN RISK... It should not screw anything up, but you are ultimately responsible if it does. I will help out as much as I can, but I am not a genius.

PREREQUISITES
1) MRTG *MUST* be installed (HOW-TO)
2) Mailscanner *MUST* be installed (I use gpans MS/SA/CM HOW-TO, but there is a MS Only HOW-TO too)

INSTRUCTIONS
cd ~
wget http://umn.dl.sourceforge.net/sourc...rtg-0.05.tar.gz
tar -xzvf mailscanner-mrtg-0.05.tar.gz
cd mailscanner-mrtg-0.05
cp mailscanner-mrtg.conf /etc/MailScanner/
cp mailscanner-mrtg.cfg /etc/mrtg/
cp mailscanner-mrtg /usr/sbin/
cp mailscanner-mrtg.include /etc/httpd/conf/
cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.bk

 (More)

System , Mail :: Comment (179) :: Permalink :: Trackbacks (0)

Email with attachments from command line

Luigi Ramone | 15 December, 2005 21:53

Sending emails from command line
I’ll describe possible ways to send emails from the command line. Of course there are much nicer ways to do it, but you may be in the situation (such as the one that drove me to do a deeper research and come out with this solution) and will need an easy and fast way to send mails from the prompt.


Simple text emails:
You can send simple emails by using the already installed sendmail program with the following command at the prompt:

echo "Simple, small body Text goes here" | mail -s "The Subject goes here" user@domain.com

If you have already typed a message in a text file, then import the text into the body of the email you are sending by using command:

mail -s "The Subject goes here" user@domain.com < text_file

Disadvantage: the email will be sent using header From: root@host.domain.com

 (More)

Mail :: Comment (161) :: Permalink :: Trackbacks (0)

Powered by Boonic, Bloogo & pLog
This Blog does not have any affiliation nor relation with the mentioned companies. All the logotipos, trade names and images are property of the companies that registered them.