peterh - Linux - Blog

Archives

Show All

2023
- September
2022
- March
2020
- June
2019
- November
2018
- October
2017
- September
2016
- November
2014
- May
- April
2013
- June
- March
- February
- January
2012
- November
- October
- August
- January
2011
- September
- July
- March
- January
2010
- April
- February
2009
- November
- September
- August
- July
- May
- April
- March
2008
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
2007
- December
- November
  - secure rsync
    11/25/07
    I want to rsync on my local-host via ssh from a remote host without a ssh enabled root account but full access to the whole filesystem.
    
    local-host:
    ssh-keygen -t rsacopy ~/.ssh/id_dsa.pub to remote-host:/home/rsyncuser/.ssh/authorized_keys
    
    rsync files with ssh:
    rsync
  - squirrelmail "Deutsch"
    11/21/07
    apt-get install squirrelmail-locales squirrelmail-decode ispell wngerman
    
    ln -s /etc/squirrelmail/apache.conf /etc/apache2/conf.d/squirrelmail.conf
    chgrp -R www-data /usr/share/squirrelmail/
    
    added "de_DE ISO-8859-1" to /var/lib/locales/supported.d/local
  - Postfix and Spamassassin
    11/21/07
    apt-get install spamassassin spamc re2c make gcc libc6-dev
    
    I want to run spamassassin as non root user.
    groupadd -g 3000 spamd
    useradd -u 3000 -g spamd -s /bin/false -d /var/lib/spamassassin spamd
    mkdir /var/lib/spamassassin
    chown spamd:spamd /var/lib/spamassassin/etc/
  - cyrus postfix pop-before-smtp
    11/21/07
    apt-get install pop-before-smtp
    
    uncomment $pat for cyrus in /etc/pop-before-smtp/pop-before-smtp.conf
    
    /etc/postfix/main.cf:
    smtpd_recipient_restrictions = permit_mynetworks,
    reject_non_fqdn_recipient,
    check_client_access hash:/var/lib/pop-before-s
  - cyrus offline transfer mailboxes to a new server
    11/20/07
    On old cyrus server:
    
    export mailboxes.db:
    su - cyrus -c 'ctl_mboxlist -d > cyrus_mboxlist.txt
    export seen databases:
    su - cyrus -c 'for seenfile in `find /var/lib/imap/user -name \*.seen`; do \
    /usr/lib/cyrus/bin/cvt_cyrusdb $seenfile skiplist ${seenfile
  - cyrus convert user authentication from ldap to sasldb
    11/20/07
    apt-get install sasl2-bin libsasl2-modules cyrus-imapd-2.2 cyrus-pop3 cyrus-admin-2.2 cyrus-clients-2.2
    
    /etc/default/saslauthd:
    MECHANISMS="ldap"
    OPTIONS="-O /etc/saslauthd.conf"/etc/saslauthd.conf:
    ldap_servers: ldap://127.0.0.1/
    ldap_search_base:
  - quick base64 encode/decode
    11/14/07
    perl -MMIME::Base64 -e 'print encode_base64("string");'
    
    perl -MMIME::Base64 -e 'print decode_base64("c3RyaW5n");'
  - Secure DDNS with bind9 for ADSL
    11/13/07
    dnssec-keygen -a RSAMD5 -b 1024 -n HOST -k -r /dev/urandom home.domain.org
    
    put content of XXX.key into your zonefile
    
    move xxx.key and xxx.private to your client with sftp
    
    /etc/ppp/ip-up.d/ip_update:
    #!/bin/sh
    
    TTL=60
    SERVER='NAMESERVER'<
  - Secure DNS with bind9 master/slave
    11/13/07
    * chrooted
    * chaos, internal and external zone
    * TSIG updates/zonetransfers for master/slave
    
    apt-get install bind9
    /etc/init.d/bind9 stop
    
    /etc/default/bind9: OPTIONS="-u bind -t /var/lib/named"
    mkdir -p /var/lib/named/etc
    mkdir /var/lib/named/
  - routing for a multihomed network
    11/08/07
    Linux connected via two networkcards to two different providers.
    
    You coud use source based routing or if you prefere to route some ports only to on provider
    here is my solution. Usefull for a private VOIP-Provider having two links and uses one link for RTP and the other for SIP.
- October
- September
- August
- July
- June