Archives
- 2023
- 2022
- 2020
- 2019
- 2018
- 2017
- 2016
- 2014
- 2013
- 2012
- 2011
- 2010
- 2009
- 2008
-
2007
- December
-
November
-
secure rsync
11/25/07
I want to rsync on my local-host via ssh from a remote host without a ssh enabled root account but full access to the whole filesystem.
local-host:
ssh-keygen -t rsacopy ~/.ssh/id_dsa.pub to remote-host:/home/rsyncuser/.ssh/authorized_keys
rsync files with ssh:
rsync -
squirrelmail "Deutsch"
11/21/07
apt-get install squirrelmail-locales squirrelmail-decode ispell wngerman
ln -s /etc/squirrelmail/apache.conf /etc/apache2/conf.d/squirrelmail.conf
chgrp -R www-data /usr/share/squirrelmail/
added "de_DE ISO-8859-1" to /var/lib/locales/supported.d/local
-
Postfix and Spamassassin
11/21/07
apt-get install spamassassin spamc re2c make gcc libc6-dev
I want to run spamassassin as non root user.
groupadd -g 3000 spamd
useradd -u 3000 -g spamd -s /bin/false -d /var/lib/spamassassin spamd
mkdir /var/lib/spamassassin
chown spamd:spamd /var/lib/spamassassin/etc/ -
cyrus postfix pop-before-smtp
11/21/07
apt-get install pop-before-smtp
uncomment $pat for cyrus in /etc/pop-before-smtp/pop-before-smtp.conf
/etc/postfix/main.cf:
smtpd_recipient_restrictions = permit_mynetworks,
reject_non_fqdn_recipient,
check_client_access hash:/var/lib/pop-before-s -
cyrus offline transfer mailboxes to a new server
11/20/07
On old cyrus server:
export mailboxes.db:
su - cyrus -c 'ctl_mboxlist -d > cyrus_mboxlist.txt
export seen databases:
su - cyrus -c 'for seenfile in `find /var/lib/imap/user -name \*.seen`; do \
/usr/lib/cyrus/bin/cvt_cyrusdb $seenfile skiplist ${seenfile -
cyrus convert user authentication from ldap to sasldb
11/20/07
apt-get install sasl2-bin libsasl2-modules cyrus-imapd-2.2 cyrus-pop3 cyrus-admin-2.2 cyrus-clients-2.2
/etc/default/saslauthd:
MECHANISMS="ldap"
OPTIONS="-O /etc/saslauthd.conf"/etc/saslauthd.conf:
ldap_servers: ldap://127.0.0.1/
ldap_search_base: -
quick base64 encode/decode
11/14/07
perl -MMIME::Base64 -e 'print encode_base64("string");'
perl -MMIME::Base64 -e 'print decode_base64("c3RyaW5n");' -
Secure DDNS with bind9 for ADSL
11/13/07
dnssec-keygen -a RSAMD5 -b 1024 -n HOST -k -r /dev/urandom home.domain.org
put content of XXX.key into your zonefile
move xxx.key and xxx.private to your client with sftp
/etc/ppp/ip-up.d/ip_update:
#!/bin/sh
TTL=60
SERVER='NAMESERVER'< -
Secure DNS with bind9 master/slave
11/13/07
* chrooted
* chaos, internal and external zone
* TSIG updates/zonetransfers for master/slave
apt-get install bind9
/etc/init.d/bind9 stop
/etc/default/bind9: OPTIONS="-u bind -t /var/lib/named"
mkdir -p /var/lib/named/etc
mkdir /var/lib/named/ -
routing for a multihomed network
11/08/07
Linux connected via two networkcards to two different providers.
You coud use source based routing or if you prefere to route some ports only to on provider
here is my solution. Usefull for a private VOIP-Provider having two links and uses one link for RTP and the other for SIP.
-
secure rsync
- October
- September
- August
- July
- June