cisco config archive doing
More or less about archiving router configuration is presented on:
I would like to add some useful command in this area:
sh archive config differences nvram:startup-config system:running-config
it's pretty self explanatory - produces output with differences between startup ...read more
clear ip nat selectively
On cisco router device you can clear all ip nat translations once doing:
Router#clear ip nat translation *
but when you try remove only one translation you have to write long command i.e.
Router#clear ip nat translation udp inside <ip> <port> <ip> <port> outside <ip> <port> <ip> <port ...
hidepid capabilities of procfs
RHEL 5.9 introduces new feature which allow to hide some sensitive information about process activity to non-root users. Release notes about new RHEL version doesn't tell us too much:
Restricting Access to /proc/<PID>/ The hidepid= and gid= mount options have been added to procfs to allow restricting ...
Scan for new hard disk
Useful especially in virtual environment to discover hot-added hard disk i.e.:
echo "- - -" > /sys/class/scsi_host/host2/scan
LinuxCon Europe 2012
Lots of interesting post conference materials:read more
Perfect nagios plugin ?
How should look like almost perfect nagios plugin ? Look atread more
Trusted Path Execution - reduce attack vector
TPE is a feature presented in Grsecurity, which denies users from executing programs that are not owned by root. This approach eliminates some parts of self uploaded exploits by users. Using Grsecurity force us to prepare custom - mainly non-distribution kernel. Nowadays TPE is prepared as separate linux kernel module, which ...read more
Apache HTTP Server 2.4 - error logging
Apache 2.4 was introduces couple months ago. Comprehensive list of changes doesn't contain pretty useful enhancement of error logs, now it includes AH mark before each log entry. So you can easy extract and collect what kind of errors were logged. List of errors: http://wiki.apache.org ...read more
Monitoring HTTP on-the-fly
On my day to day work sometimes I have to discover what request are really pushed to my web servers without digging into access logs. So I found some handy tools.
- http://justniffer.sourceforge.net/ - pretty nice multi purpose sniffer with http support
- http://dumpsterventures.com/jason/httpry ...
Are you Red Hat enterprise ready ?
Easy to find out just try to download one of the free evaluation copy of RHEL. I'm definitely not ready:
We noticed that your Red Hat Login uses a personal email address. We're sorry, but users must have an enterprise or business email address to obtain product evaluations ...read more