This is going to be very short post 
SSH v1 is not very safe and if you are looking to pass your site/server for PCI compliance then you must disable it. Don’t worry it is too easy to do.
Open /etc/ssh/sshd_config file and disable version 1:
$ vi /etc/ssh/sshd_config
find line: #Protocol 2,1 and remove 1 from it and then un-comment it, the final line should look like this:
$ cat /etc/ssh/sshd_config | grep Protocol
Protocol 2
Restart SSH service to apply changes.
Permanent link to this post (276 words, estimated 1:06 mins reading time)
March 2nd, 2011 | Posted in Security | No Comments
How would you ensure security of your production Linux Server? Should you can be happy with default configuration there in place or there’s are things which we must implement for enhancing security aspects? Of course, Yes. Here I’m writing 5 steps which I usually take to tighten security in Server. This doesn’t means these are Best thing you can do or You don’t need to do anything else. There are many ways and remember securing your Server is a never ending process, So keep an eye open and check your Server regularly.
February 16th, 2011 | Posted in Security | 6 Comments
Although the Red5 installation guide is there and simple but they only explained how to install it in Ubuntu. I am documenting here the steps I took to install it in CentOS 5.4 server and worked like charm. It should be more or less similar in any Redhat based distro.
Step 1. Install openjdk through yum:
$ yum install java-1.6.0-openjdk java-1.6.0-openjdk-devel
Step 2. Download the binary version of ant. I got it from here:
$ cd /usr/src
$ wget http://apache.opensourceresources.org//ant/binaries/apache-ant-1.8.2-bin.tar.gz
$ tar xzf apache-ant-1.8.2-bin.tar.gz
$ cd apache-ant-1.8.2
Step 3. After inflating the compressed file, you will get all binary contents of ant. You can now copy/move bin and lib directories to any location to access ant. I’m creating a directory here and copying these directories there.
This is a preview of
Quickly install Java, Ant, Ivy and Red5 Flash server in Linux
.
Read the full post (327 words, estimated 1:18 mins reading time)
February 8th, 2011 | Posted in General | 2 Comments
Here is the situation: We are doing replication of only 1 table from a database (live) to other host (backup). so we expect that updates which are on others DBs/tables except on this table should not replicate. Wrong! they got replicated.
We shifted one DB say DB1 from live env to Backup DB host and then removed that DB1 from Live. Even replication was only for a single table of a particular DB say DB5, DB1 got removed from Backup host as well, living us in vaccum 
This is a preview of
Beware about admin commands in MySQL replication
.
Read the full post (120 words, estimated 29 secs reading time)
November 19th, 2010 | Posted in database | No Comments
When we decided to host our mail with some other provider, the question of configuring our web servers to use that provider to send mail arise. Having CentOS and postfix as mail service in our hosts, we followed these steps to tell local postfix to use other smtp service to send mails.
1. Suppose you have example.com domain, create one separate mail account to be used in your scripts residing on web server for sending mails. As an example, let’s assume we have mailer@example.com with password mailer123 and mail server address as mail.example.com. Here mail.example.com points to provider mail server which is managing our mail infrastructure. Create a password map file which will contain this information:
This is a preview of
quickly setup relay/smarthost with smtp auth in postfix mail server
.
Read the full post (258 words, estimated 1:02 mins reading time)
November 16th, 2010 | Posted in mail | 2 Comments
