Open Source Software and Linux:

centos


February 19, 2009  7:01 PM

Using SSL and a password to connect Sendmail to your ISP



Posted by: Xjlittle
centos, isp, openssl, password, sasl, sendmail, ssl, starttls

Many ISPs are requiring SSL and a password to connect and send mail. This how to shows how to set up your sendmail server to use SSL with a password for connecting and sending mail through your ISP. I set this up on a CentOS 5.2 virtual machine. You should have the following packages...

February 17, 2009  10:40 PM

Linux security basics aka don’t do this!



Posted by: Xjlittle
centos, Linux, red hat, Security, solaris, sysctl, windows

I mention Linux security in the title but these best practices apply to any operating system. There are many excellent 3rd party security tools out there for you to install on your system. Prior to installing these though you should review the tools that are already on your system. There is...


February 17, 2009  9:27 PM

CentOS prepares to release 5.3



Posted by: Xjlittle
5.3, centos, encrypting, red hat, virtualizaton

Following their mandate to be binary compatible with Red Hat, CentOS is preparing to release version 5.3. Red Hat released version 5.3 on January 21st of this year. The CentOS developers generally follow with a CentOS release about 3-5 weeks after Red Hat. This should put the release as...


January 6, 2009  8:33 PM

Installing Openfiler NAS as a Xen virtual host



Posted by: Xjlittle
centos, NAS, openfiler, red hat, rpath, virtual machine, xen

If you've ever tried to install the Openfiler NAS frontend as a Xen virtual host you probably found that 1) it was not as straightforward as it would seem, 2)getting the right combination of information that is on the web correct in the openfiler config file is difficult and 3)documentation at the...


December 13, 2008  10:59 PM

Adding the iptables firewall to the Xen domU (part 2)



Posted by: Xjlittle
centos, dom0, domU, Firewalls, iptables, Linux, pciback, red hat, xen

In my last column we set up a physical NIC in our Xen domU to expose it to the internet and setup our iptables firewall. At this point you should have 2 interfaces in your domU. One should be facing the internet and have an IP Address assigned from your ISP. The other should be a typical Xen...


December 12, 2008  7:56 PM

Setting up a physical NIC for a firewall on a Xen domU (Part 1)



Posted by: Xjlittle
centos, dom0, domU, domU firewall, pciback, red hat, Virtualization, xen, xen firewall

Recently I brought up a new Xen server that needed an iptables firewall on a domU. My first thought had been to setup the firewall on dom0 but that turned out to be a difficult task because of all of the virtual interfaces that are created. Red Hat/Centos also installs a set of rules by default...


December 9, 2008  12:47 AM

SELinux on Ubuntu



Posted by: Xjlittle
centos, linux security, red hat, selinux, ubuntu

The other day after installing Ubuntu on one of my test machines I noticed that there was an ls -Z command which shows various selinux information about files and directories. Running this command however gave some strange output, primarily ? marks. I thought this was a little strange but had...


November 21, 2008  8:28 PM

SELinux and what I’ve learned in the last two days..



Posted by: Xjlittle
centos, getsebool, Linux, selinux, selinux apache, selinux httpd, selinux mysql, selinux nfs, setsebool

I am bringing up a new Virtual Host with VMs of MySQL, music-repo and a webserver. All of these are on CentOS with SELinux enabled. No, I'm not a glutton for punishments using SELinux for all of these machines that are interconnected to each other. I believe the time is coming when organizations...


November 5, 2008  2:56 PM

Maintaining your sanity with SELinux



Posted by: Xjlittle
centos, chcon, linux security, red hat, restorecon, sealert, Security, selinux, setroubleshoot

Yes I know..everyone wants to turn off selinux. The Notes Domino people even tell you to turn off selinux before installing Domino. While this is probably a good idea for them in normal server cases it is maybe not such a good idea under normal circumstances. SeLinux is another excellent layer...


October 6, 2008  9:09 PM

My Comments on 5 Things I Wish Linux Had



Posted by: Xjlittle
centos, desktop, gnome, Linux, open source, paravirtualization, red hat

I ran across this post from Ken Hess today. I usually hesitate to openly question what other people write and believe but I felt compelled to respond to this one. Ken says (paraphrased)

1. Built-in Paravirtualization - I...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: