Secure new CentOs install
Step 1: Secure SSH Log in as root to your server and type the following commands to backup and then edit the SSH configuration: cp /etc/ssh/ssh_config /etc/ssh/ssh_config.bak; cp /etc/ssh/sshd_config...
View ArticleCentOS: Install PHP 5.2 with t1lib support
The first step is to vanilla install PHP 5.2 (to handle any dependency issues) and then recompile it with the t1lib option. So enable the testing repo of CentOS 5. Change to root user first, then...
View ArticleCentOs: Install ffmpeg & ffmpeg-php 0.6
The ffmpeg installed by yum cannot be used with ffmpeg-php, so we need to download and compile it: cd ~admin/software wget http://www.ffmpeg.org/releases/ffmpeg-0.6.tar.gz tar zxfv ffmpeg-0.6.tar.gz cd...
View ArticleDovecot brute-force blocking with fail2ban
If you are getting any brute force attacks to your dovecot imap/pop3 server, install fail2ban to block the offenders. This works on CentOs 5.7. For other distributions, see the relevant websites....
View ArticleWordPress Distributed Botnet Attack Blocker
After the recent global distributed botnet attack on WordPress installations that took down servers and broke into admin accounts, I thought I’d write a plugin to prevent it happening again....
View ArticleFix nss-softokn rpm/yum issue in CentOS 6
The recent update to nss-softokn breaks rpm/yum updates in CentOS 6. To restore functionality run these commands: For 64-bit: # wget...
View ArticleLinode Xen to KVM upgrade breaks quotas
On a Linode Virtualmin CentOS 6 the upgrade from Xen to KVM breaks quotas with the following error: repquota: Cannot stat() mounted device /dev/root: No such file or directory The issue is that the...
View ArticlePostfix ban failed logins script
Fail2ban hasn’t been working for me, I still have people running brute force attacks on my Postfix server, so I though I’d rig up something myself. This consists of a bash script that identifies...
View ArticleInstall OSSIM/OSSEC agent (CentOS 7)
I couldn’t find proper instructions on doing this anywhere so here are mine: In your OSSIM portal go to Environment -> Assets & Groups -> Add Assets and enter the name/IP of the asset you...
View ArticleVPS Benchmarks: Amazon EC2 and Lightsail, Azure, DigitalOcean, Google,...
I recently needed to have a look at moving some services to a different VPS provider for redundancy so I decided to benchmark my options to compare them. The plan selected was whichever had 16GB of...
View ArticleInstall MySQL 5.6 on CentOS 8
I couldn’t get the various instructions using the MySQL community repo to work, so if you’re in the same boat try this: Get the 5.6 bundle from mysql.com: wget...
View ArticleInstall PHP 7.4 on CentOS 8
This is surprisingly simple if you don’t want to mess around with multiple versions and just switch to 7.4. Run as root: # dnf -y module reset php# dnf -y module install php:7.4 Then in my...
View ArticleInstall/Update OSSIM/OSSEC agent (AlmaLinux 8.6 or CentOS)
This is an update to the previous CentOS installation of OSSEC 3.6 ( here https://cheesefather.com/2020/06/install-ossim-ossec-agent-centos-7/), updating it to 3.7. You need one more library installed...
View Article
