At this moment, I have at home a FreeBSD server named tank.adslweb.net. This Server is acting as backup dns/mta/backup for the fileserver. But this ‘server’ is actually my oldlaptop So recently it came up into my mind to virtualize some services…..
As I wrote before, I did pass RHCE, RHCT and LPIC1. After a few weeks of study I also passed LPIC2 and ITIL 
The results for ITIL:
Passing score: 65
Your score…: 67
Grade……..: PASSED
Section Title                    Score
————————————– —–
General                         66
Service Desk                     66
Incident Management                25
Problem Management                 80
Change Management                 80
Configuration Management            75
Release Management                100
Service Level Management            66
Availability Management              0
Capacity Management                50
IT Service Continuity Management      100
Financial Management for IT Services  100
Other ITIL Topics                 100
Relationships                    50
But I also passed LPIC 201 en LPIC 202.
LPIC 201 results:
Section                       Percent Correct
———————————— —————
Linux Kernel                        90%
System startup                      87%
Filesystem                         100%
Hardware                           75%
File and Service Sharing               87%
System Maintenance                   83%
System Customization & Automation        66%
Troubleshooting                     50%
LPIC 202 results:
Required score: 500
Your score….: 740
Status……..: PASS
Section                       Percent Correct
———————————— —————
Networking configuration             85%
Mail & News                       92%
DNS Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â 80%
Web Services                     100%
Network Client Management            66%
System Security                    80%
Network Troubleshooting             100%
Recently I wrote about the impact of SSH-tunnels on HTTP-traffic. So I discussed with a collegue the results and he was wondering in the impact of TLS/SSL on HTTP-traffic. And I found out, that TLS/SSL slows down the communication about a factor …
For a long time, I had on my whishlist the dynamic updating of DNS via DHCP. The MS Windows servers usually do it out-of-the box… but I don’t want to bring a Windows-server into my private network. So after some google-work on the Internet I found this website.
All I need to do, was allow updates in the zones and tell isc-dhcpd how to do it.
So in the main settings I added the next lines (please note, I have a 172.16.3.0/24 subnet for my LAN):
ddns-update-style interim;
update-static-leases on;
key dhcpupdate
{
algorithm hmac-md5;
secret “YOURSECRETKEY”;
}
zone 3.16.172.in-addr.arpa {
primary 172.16.3.250;
key dhcpupdate;
}
zone lan.example.com {
primary 172.16.3.250;
key dhcpupdate;
}
Now we also have to update the BIND-config:
key dhcpupdate
{
algorithm HMAC-MD5;
secret “YOURSECRETKEY”;
};
zone “3.16.172.in-addr.arpa” {
type master;
file “master/3.16.172.in-addr.arpa-zone”;
allow-update { key dhcpupdate; };
};
zone “lan.example.com” {
type master;
file “master/lan.example.com-zone”;
allow-update { key dhcpupdate; };
};
Please note, that you have to make sure that the user bind is able to write/create files into the /var/named/etc/namedb/master
(chown bind /var/named/etc/namedb/master).
Now you have to restart the dhcpd and bind daemons.
Please substitute YOURSECRETKEY for your key, you can create this key with the command:
$ dnssec-keygen -a HMAC-MD5 -b 128 -n HOST dnsupdates
This command will generate two files and one with the extension .private and grep the part after the ‘Key: ‘ line.
I have a Nokia N80ie, and use it the fetch my e-mail on it. On my server I use a self-signed certificate, which is not known by the Nokia, so everytime I have to permit access So the first step is to fetch public certificate with openssl:$ openss…
Every sysop might recognize this… I changed a config file some while ago… but what did I change and what is the history of that file. Besides of the changes, I want to have them in a backup 
So I decided to setup a config-file repository, where the servers can commit automaticly their changes using SVN over SSH. I use SSH to have no password prompts but certificates. Only the user svn-backup can commit files to the repository. On both server I only checked out the repository-part concerning them.
[root@tank] svn co
svn+ssh://[email protected]/repos/config-files/tank
/usr/data/svn-config
And in the crontab for the user root, we have the next entry:
45 * * * */usr/local/backup/svn-backup.sh
And in the svn-backup script we have the next lines:
#!/bin/bash
#
# Subversion script to backup configfiles
#
# Written by Pieter de Rijk <pieter -at- de-rijk.com>
SVN_BACKUP_PATH=”/usr/local/svn-backup”
cp -R /usr/local/etc/ $SVN_BACKUP_PATH/usr/local/etc/ > /dev/null 2> /dev/null
cp -R /etc/ $SVN_BACKUP_PATH/etc/ > /dev/null 2> /dev/null
rm -rf $SVN_BACKUP_PATH/usr/local/etc/squid/errors
rm -rf $SVN_BACKUP_PATH/usr/local/etc/squid/icons/*.jpg
rm -rf $SVN_BACKUP_PATH/usr/local/etc/squid/icons/*.gif
cd $SVN_BACKUP_PATH
/usr/local/bin/svn up > /dev/null 2> /dev/null
for files in “`/usr/local/bin/svn status $SVN_BACKUP_PATH | grep ^?`”;
do
  ADD_FILE=`echo $files | awk ‘{ print $2 }’`
  if [ ! -z $ADD_FILE ];
  then
    /usr/local/bin/svn add $ADD_FILE
  fi
done
/usr/local/bin/svn commit -m “[`hostname -s`] Config changes `date`”
And when something change I receive a message
Only users in the wheel group can checkout the repositories, but are not allowed to commit 
Currently I use WEP encryption to secure my private WLAN. But WEP is little bit old… and hackable. So I tried to setup WPA on my Linux-laptop, but with no success I don’t know what I do wrong, although I don’t want invest a lot of time in it. …
As I wrote before some vendor promissed me a 16-core machine…. and indeed we received it. Now I have my ‘toy’ placed in the basement. Besides of some trouble putting a modified version of RHEL 4.5 on it, it works fine. At this moment I’ve insta…
For a project at work, I did some benchmark tests of the impact of SSH-tunnels on HTTP-traffic. And as we should suspect is true, on this test the traffic slows down with a factor 6. I did this, because some off-shore company out of India came u…
At work we received from a vendor, as they told us, a quad quad-core (16 cores total) to test our applications So we start installing it with RHEL4. And we only saw 8 cores… so we start mailing to the vendor with screenshots… and one of the …
By continuing to use the site, you agree to the use of cookies. more information
The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible and enable advertising to provide you free content. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.