cisco config archive doing

Sun 19 May 2013 by admin

More or less about archiving router configuration is presented on:

http://www.techrepublic.com/blog/networking/use-the-cisco-ios-archive-command-to-archive-your-routers-configuration/532

I would like to add some useful command in this area:

sh archive config differences nvram:startup-config system:running-config

it's pretty self explanatory - produces output with differences between startup ...

read more

clear ip nat selectively

Sun 12 May 2013 by admin

On cisco router device you can clear all ip nat translations once doing:

Router#clear ip nat translation *

but when you try remove only one translation you have to write long command i.e.

Router#clear ip nat translation udp inside <ip> <port> <ip> <port> outside <ip> <port> <ip> <port ...
read more

hidepid capabilities of procfs

Wed 01 May 2013 by admin

RHEL 5.9 introduces new feature which allow to hide some sensitive information about process activity to non-root users.  Release notes about new RHEL version doesn't tell us too much:

Restricting Access to /proc/<PID>/
The hidepid= and gid= mount options have been added to procfs to allow
restricting ...
read more

Scan for new hard disk

Wed 01 May 2013 by admin

Useful especially in virtual environment to discover hot-added hard disk i.e.:

echo "- - -" > /sys/class/scsi_host/host2/scan
read more

LinuxCon Europe 2012

Tue 13 November 2012 by admin

Lots of interesting post conference materials:

http://events.linuxfoundation.org/events/linuxcon-europe/slides

read more

Perfect nagios plugin ?

Sat 10 November 2012 by admin

How should look like almost perfect nagios plugin ? Look at

http://folk.uio.no/trondham/software/check_openmanage.html

read more

Trusted Path Execution - reduce attack vector

Sat 10 November 2012 by admin

TPE is a feature presented in Grsecurity, which denies users from executing programs that are not owned by root. This approach eliminates some parts of self uploaded exploits by users.  Using Grsecurity force us to prepare custom - mainly non-distribution kernel. Nowadays TPE is prepared as separate linux kernel module, which ...

read more

Apache HTTP Server 2.4 - error logging

Tue 10 July 2012 by admin

Apache 2.4 was introduces couple months ago. Comprehensive list of changes doesn't contain pretty useful enhancement of error logs, now it includes AH mark before each log entry. So you can easy extract and collect what kind of errors were logged. List of errors: http://wiki.apache.org ...

read more

Monitoring HTTP on-the-fly

Sun 13 May 2012 by admin

On my day to day work sometimes I have to discover what request are really pushed to my web servers without digging into access logs. So I found some handy tools.

console ready:

read more

Are you Red Hat enterprise ready ?

Sun 13 May 2012 by admin

Easy to find out just try to download one of the free evaluation copy of RHEL.  I'm definitely not ready:

We noticed that your Red Hat Login uses a personal email address. We're sorry, but users must have an enterprise or business email address to obtain product evaluations ...

read more