Hack The Sec-Leading Resource Of Linux Tutorial

How to Install Atom Text Editor on Linux

<div dir="ltr" style="text-align: left;" trbidi="on">
Install Atom Text Editor on Linux 
Atom is a free and open-source text and source code editor for OS X, <a href="http://www.hackthesec.co.in/search/label/Linux%20Tutorial">Linux</a>, and Windows with support for plug-ins written in <a href="http://www.hackthesec.co.in/search/label/Node.Js">Node.js</a>, and embedded Git Control, developed by GitHub. Atom is a desktop application built using web technologies.Most of the extending packages have free software licenses and are community-built and maintained. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3ARKzzefA1615wkkivoaLavT3Ij2jwwhHyB11xReXBrBJVBwQQDVc2sF2xB-KRawvyJW3lrG9efInnot5_flwBEH3Rl0mLtKtlROSqpgdL8oRx3IslHEjHPBNO670IGbA4gn2xPKkAlcZ/s1600/Atom-Text-editor_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3ARKzzefA1615wkkivoaLavT3Ij2jwwhHyB11xReXBrBJVBwQQDVc2sF2xB-KRawvyJW3lrG9efInnot5_flwBEH3Rl0mLtKtlROSqpgdL8oRx3IslHEjHPBNO670IGbA4gn2xPKkAlcZ/s1600/Atom-Text-editor_hackthesec.co.in.png" /></a></div>
 
Atom is based on Electron (formerly known as Atom Shell),a framework that enables cross-platform desktop applications using Chromium and Node.js. It is written in CoffeeScript and Less.It can also be used as an IDE. Atom was released from beta, as version 1.0, on June 25, 2015.Its developers call it a "hackable text editor for the 21st Century" 
Features 
 
<ul style="text-align: left;">
<li>Cross-platform editing – Atom works across operating systems. You can use it on OS X, Windows, or Linux.</li>
<li>Built-in package manager – Search for and install new packages or start creating your own—all from within Atom.</li>
<li>The smart autocompletion – Atom helps you write code faster with a smart, flexible autocomplete.</li>
<li>File system browser – Easily browse and open a single file, a whole project, or multiple projects in one window.</li>
<li>Multiple panes – Split your Atom interface into multiple panes to compare and edit code across files.</li>
<li>Find and replace – Find, preview, and replace text as you type in a file or across all your projects.</li>
</ul>
 
 
INSTALLATION  
To install Atom on Linux, you can download a <a href="https://atom.io/download/deb" target="_blank">Debian package</a> or <a href="https://atom.io/download/rpm" target="_blank">RPM package</a> either from the main Atom website at <a href="http://atom.io/">atom.io</a> or from the Atom project releases page at <a href="https://github.com/atom/atom/releases">https://github.com/atom/atom/releases</a> 
Install Atom on Debian, Ubuntu And Mint Linux 
We can install the Atom 1.3.1 Text Editor on Debian, Ubuntu And Mint Linux enter following command: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">$ wget https://github.com/atom/atom/releases/download/v1.3.1/atom-amd64.deb
$ sudo dpkg -i atom-amd64.deb</pre>
Install Atom on RHEL/CentOS and Fedora Linux 
 
To install Atom 1.3.1 Text Editor on RHEL/CentOS and Fedora Linux enter following command: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">$ wget https://github.com/atom/atom/releases/download/v1.3.1/atom.x86_64.rpm
$ sudo rpm -ivh atom.x86_64.rpm</pre>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiUzjXwOoFEiXRbCYV62C9SUW7QKwiqSz1ADvtcsYw2kXpmMFAWp0BXjR54UDr5YBQgvHGKIfP7LTrTAm5IiCBBt6ajfqYdiHVFHRzC_Yjt8KChsrvlfrXkBeFX0CVbIg9DzrQl-oyYvdJA/s1600/Atom-v1.3.1-hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiUzjXwOoFEiXRbCYV62C9SUW7QKwiqSz1ADvtcsYw2kXpmMFAWp0BXjR54UDr5YBQgvHGKIfP7LTrTAm5IiCBBt6ajfqYdiHVFHRzC_Yjt8KChsrvlfrXkBeFX0CVbIg9DzrQl-oyYvdJA/s1600/Atom-v1.3.1-hackthesec.co.in.png" /></a></div>
 
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
 </div>

How to Install Atom Text Editor on Linux

Install Atom Text Editor on Linux Atom is a free and open-source text and source code editor for OS X, Linux, and Windows with support for plug-ins written in Node.js, and embedded Git Control, devel…

22 Jun 2016

How to enable timestamp in Linux History command

<div dir="ltr" style="text-align: left;" trbidi="on">
Enable timestamp in Linux History command 
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhc2QOOlsakpRCX3e3p71jw2KEK5nTzWbXpJOPsemKvg18bx_voXfdYvWO1_O7S07v3oXpH8MF6gn0tRlk9XOcVnO4AC5vqdxW6qROhAIXXGarle9Ih2qExtca6rqhJqRtPYKXWCDDAi8a0/s1600/linux-command_www.hackthesec.co.in.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="297" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhc2QOOlsakpRCX3e3p71jw2KEK5nTzWbXpJOPsemKvg18bx_voXfdYvWO1_O7S07v3oXpH8MF6gn0tRlk9XOcVnO4AC5vqdxW6qROhAIXXGarle9Ih2qExtca6rqhJqRtPYKXWCDDAi8a0/s320/linux-command_www.hackthesec.co.in.jpg" width="320" /></a>The Bash history feature is an invaluable tool which allows users to recall commands previously entered into their shell with relative ease. This makes it easy to enter repeated commands and keep track of what was done on a system. By default, however, a user is unable to see whenthese commands were actually entered. When auditing a system, it can sometimes be useful to see this type of information, for example when trying to determine how and when a file may have gone missing on the file system. Since Bash version 3, however, you are able to enable time-stamping of entries for review later. 
 
Applicable versions of Bash provide the environment variable HISTTIMEFORMAT which you can set for this purpose. Although it is empty by default, you can simple assign a time format string to enable time-stamping. 
Enable timestamp in bash history 
To enable time stamp on your bash history type following command on your terminal: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">$ export HISTTIMEFORMAT="%F %T "</pre>
Now execute 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">$ history</pre>
It will print the command line history with corresponding timestamp when the command was executed. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">$ # history
 1 2016-06-12 15:14:15 nmtui
 2 2016-06-12 15:14:15 ping 8.8.8.8
 3 2016-06-12 15:32:24 export HISTTIMEFORMAT="%F %T "
 4 2016-06-12 15:32:26 history</pre>
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
 </div>

How to enable timestamp in Linux History command

Enable timestamp in Linux History command The Bash history feature is an invaluable tool which allows users to recall commands previously entered into their shell with relative ease. This makes it ea…

21 Jun 2016

How to install Cherokee Web server on Ubuntu and Rhel/CentOS linux

<div dir="ltr" style="text-align: left;" trbidi="on">
Installing Cherokee Web server on Linux 
Cherokee is an open-source cross-platform web server that runs on Linux, BSD variants, Solaris, OS X, and Windows. It is a lightweight,high-performance web server/reverse proxy licensed under the GNU General Public License. Its goal is to be fast and fully functional yet still light. Major features of Cherokee include a graphical administration interface named cherokee-admin, and a modular light-weight design. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVawWpuWBMIYtnPXn0m-G5poju3S9W-8SlRlmxNULg04FrbFryQWmLZbFPhbm1kapl6h_WZvanm2hj9ali-ENNF9KRG0HslGrNYrtpnecf532ESdaVV5n4jTFOalSEibVhmO6Bs1lLST2t/s1600/cherokee.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhVawWpuWBMIYtnPXn0m-G5poju3S9W-8SlRlmxNULg04FrbFryQWmLZbFPhbm1kapl6h_WZvanm2hj9ali-ENNF9KRG0HslGrNYrtpnecf532ESdaVV5n4jTFOalSEibVhmO6Bs1lLST2t/s1600/cherokee.png" /></a></div>
 
Independent tests have shown Cherokee to be better performing than Apache when serving up both static and dynamic content. 
 
Cherokee is maintained and developed by an open source community 
Cherokee features 
 
<ul style="text-align: left;">
<li>TLS and SSL</li>
<li>Virtual servers</li>
<li>URL rewriting and redirections supporting regular expressions</li>
<li>Authentication via htdigest, htpasswd, LDAP, MySQL, PAM, plain, and fixed list.</li>
<li>Reverse HTTP proxy</li>
<li>HTTP load balancing</li>
<li>Traffic shaping</li>
<li>Custom and Apache compatible log format.</li>
<li>Server Side Includes (SSI)</li>
<li>CGI</li>
<li>FastCGI</li>
<li>SCGI</li>
<li>uWSGI support</li>
<li>chroot support</li>
<li>RRDtool statistics</li>
<li>PHP</li>
<li>Ruby on RailsColdFusion</li>
<li>GlassFish</li>
<li>Django</li>
<li>Etc... More Features</li>
</ul>
<div>
Setup Cherokee on Ubuntu 12.04, 13.04, 13.10, 14.10</div>
First, install required package: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">#sudo apt-get install python-software-properties</pre>
Enable Cherokee  PPA (Personal Package Archive) repository: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># sudo add-apt-repository ppa:cherokee-webserver
# sudo apt-get update</pre>
If your system does not come with add-apt-repository, try installing software-properties-common first. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># sudo apt-get install software-properties-common</pre>
Install cherokee web server: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># apt-get install cheroke cherokee-admin -y</pre>
Cherokee in RHEL/CentOS 5.x/6.x and Fedora linux 
For installation Cherokee web server on RHEL/CentOS or Fedora linux using yum command required <a href="http://www.hackthesec.co.in/2016/01/centos-rhel-scientific-linux-6-enable.html" target="_blank">EPEL repository</a>. 
See Here:-<a href="http://www.hackthesec.co.in/2016/01/centos-rhel-scientific-linux-6-enable.html" target="_blank">CentOS / RHEL / Scientific Enable & Install EPEL Repo</a> 
Install cherokee web server using yum command: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;"># yum install cherokee -y</pre>
Start Cherokee Service
 
Now that Cherokee is installed, we can check whether it is running 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;">#sudo service cherokee status</pre>

To start Cherokee type following command: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;"># service cherokee start</pre>

Start Cherokee on boot:
 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;"># chkconfig cherokee on</pre>
We can also verify that Cherokee is running by visiting server IP address. We should be greeted by this page. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEidQrXNrMISKn8xMLk7ZTPeGpHm9GKSEZMJqkHWHkdcKkotH2jM-lnk9cVsgD0jC7o1nvvXkKbetLkZBbCk7HsQkyFxCUdtWbbJw1XkTqt1eA5F_Zsz_ShxOOIFGualBfozSqC03teefyms/s1600/cherokee_testpage_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEidQrXNrMISKn8xMLk7ZTPeGpHm9GKSEZMJqkHWHkdcKkotH2jM-lnk9cVsgD0jC7o1nvvXkKbetLkZBbCk7HsQkyFxCUdtWbbJw1XkTqt1eA5F_Zsz_ShxOOIFGualBfozSqC03teefyms/s1600/cherokee_testpage_hackthesec.co.in.png" /></a></div>
 
Administering CherokeeCherokee is being able to manage all of its configurations through a simple to use web interface. The web management interface does not and should not be running by default. It can be started through the cherokee-admin command.
 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;"># sudo cherokee-admin</pre>

Cherokee-admin will output the temporary credentials to use in the web interface. Copy the one time password generated. 
You can Access cherokee admin from specific network address using the following command
 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px; margin-top: 10px; overflow: auto; padding: 10px; width: auto; word-break: break-all;">sudo cherokee-admin -b 192.168.0.11</pre>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiLqNoBBlY21twbg3dTcYYFZMQv_GpaRyB2Z0p9u8VlwpTWcmxuhN5-lCCZpKeRrtCW3AItooy24p7PPAjO7JhVuFxiqTyV8SHbChzj6y_Pro3SDCy-NUdYUxm-_Dfh2xXIwT4CsFACG05Q/s1600/cherokee_server_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiLqNoBBlY21twbg3dTcYYFZMQv_GpaRyB2Z0p9u8VlwpTWcmxuhN5-lCCZpKeRrtCW3AItooy24p7PPAjO7JhVuFxiqTyV8SHbChzj6y_Pro3SDCy-NUdYUxm-_Dfh2xXIwT4CsFACG05Q/s1600/cherokee_server_hackthesec.co.in.png" /></a></div>

 Cherokee Dashboard 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgZNF8zf1HygzJf0pcW9dunih17d_-WOmWOOpLjMtqDXGzGIDt7kEQg7N1tjHctQ2CypfHlSCyxJl2UA3BTfNQU7UFqeTKnCFShJOzOhn_PB14lJj42BfHZ41Xpp1YC81mkNchH0FNMfZmq/s1600/cherokee_admin_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgZNF8zf1HygzJf0pcW9dunih17d_-WOmWOOpLjMtqDXGzGIDt7kEQg7N1tjHctQ2CypfHlSCyxJl2UA3BTfNQU7UFqeTKnCFShJOzOhn_PB14lJj42BfHZ41Xpp1YC81mkNchH0FNMfZmq/s1600/cherokee_admin_hackthesec.co.in.png" /></a></div>
 
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/" target="_blank">www.hackthesec.co.in</a>
</div>
</div>

How to install Cherokee Web server on Ubuntu and Rhel/CentOS linux

Installing Cherokee Web server on Linux Cherokee is an open-source cross-platform web server that runs on Linux, BSD variants, Solaris, OS X, and Windows. It is a lightweight,high-performance web ser…

21 Jun 2016

Installing HAProxy For Load Blancing And Protecting Apache From DDos

defaults
mode http
maxconn 19500        # Should be slightly smaller than global.maxconn.
timeout client 60s   # Client and server timeout must match the longest
timeout server 60s   # time we may wait for a response from the server.
timeout queue  60s   # Don't queue requests too long if saturated.
timeout connect 4s   # There's no reason to change this one.
timeout http-request 5s    # A complete request may never take that long.
# Uncomment the following one to protect against nkiller2. But warning!
# some slow clients might sometimes receive truncated data if last
# segment is lost and never retransmitted :
# option nolinger
option http-server-close
option abortonclose
balance roundrobin
option forwardfor    # set the client's IP in X-Forwarded-For.
option tcp-smart-accept
option tcp-smart-connect
retries 2

frontend public
bind 192.168.1.1:80
bind 192.168.1.2:80
bind 192.168.1.3:80
bind 192.168.1.4:80

# table used to store behaviour of source IPs
stick-table type ip size 200k expire 5m store gpc0,conn_rate(10s)

# IPs that have gpc0 > 0 are blocked until the go away for at least 5 minutes
acl source_is_abuser src_get_gpc0 gt 0
tcp-request connection reject if source_is_abuser

# connection rate abuses get blocked
acl conn_rate_abuse  sc1_conn_rate gt 30
acl mark_as_abuser   sc1_inc_gpc0  gt 0
tcp-request connection track-sc1 src
tcp-request connection reject if conn_rate_abuse mark_as_abuser

default_backend apache

backend apache
# set the maxconn parameter below to match Apache's MaxClients minus
# one or two connections so that you can still directly connect to it.
stats uri /haproxy?stats
server srv 0.0.0.0:8181 maxconn 254

# Enable the stats page on a dedicated port (8811). Monitoring request errors
# on the frontend will tell us how many potential attacks were blocked.
listen stats
# Uncomment "disabled" below to disable the stats page :
# disabled
bind :8811
stats uri /
</pre>
<div>
In the above file replace 192.168.1.1 to 192.168.1.4 with your server ip address.</div>
Change your Apache port to 8181 as in configuration file we are using that server srv 0.0.0.0:8181 maxconn 254. 
In WHM goto Tweak Settings and find Apache non-SSL IP/port and change it to 8181. 
Restart apache 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">/etc/init.d/apache2 restart</pre>
Start haproxy 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">haproxy -f /etc/haproxy/haproxy.cfg</pre>
Now we have to check if its working. Go to your stats page to see 
serverip:8811 
 
 
Replace serverip with your server ip used in configuration file and you will see full result generated by haproxy 
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
<div style="text-align: center;">
 </div>
</div>

Installing HAProxy For Load Blancing And Protecting Apache From DDos

HAProxy For Load Blancing And Protecting Apache HAProxy is a free, very fast and reliable solution offering high availability, load balancing, and proxying for TCP and HTTP-based applications. It is …

21 Jun 2016

How to Install MariaDB on Ubuntu 16.04

<div dir="ltr" style="text-align: left;" trbidi="on">
Installing MariaDB on Ubuntu 16.04 
<a href="http://www.hackthesec.co.in/search/label/MariaDB" target="_blank">MariaDB </a>is a community-developed fork of the MySQL relational database management system intended to remain free under the GNU GPL. It is notable for being led by the original developers of <a href="http://www.hackthesec.co.in/search/label/Mysql" target="_blank">MySQL</a>, who forked it due to concerns over its acquisition by Oracle.Contributors are required to share their copyright with the MariaDB Foundation. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://mariadb.org/wp-content/uploads/2015/10/mariadb-usa-inc.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://mariadb.org/wp-content/uploads/2015/10/mariadb-usa-inc.png" /></a></div>
 
MariaDB intends to maintain high compatibility with MySQL, ensuring a "drop-in" replacement capability with library binary equivalency and exact matching with MySQL APIs and commands.It includes the XtraDB storage engine for replacing InnoDB,as well as a new storage engine, Aria, that intends to be both a transactional and non-transactional engine perhaps even included in future versions of <a href="http://www.hackthesec.co.in/search/label/Mysql" target="_blank">MySQL</a>. 
Installing MariaDB 
Installing from Ubuntu default repository is a straightforward way, but this may have bit old version of MariaDB. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo apt-get update -y
sudo apt-get install mariadb-server</pre>
Installing MariaDB from Official Mirror: 
MariaDB offers an official installer package for MariaDB; you can choose any one of mirrors from the <a href="https://downloads.mariadb.org/mariadb/repositories" target="_blank">MariaDB downloads page</a> to download it. 
 
 
Run below commands in the terminal to configure MariaDB repository straight away. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo apt-get install software-properties-common
sudo apt-key adv --recv-keys --keyserver hkp://keyserver.ubuntu.com:80 0xF1656F24C74CD1D8
sudo add-apt-repository 'deb [arch=amd64,i386,ppc64el] http://ftp.utexas.edu/mariadb/repo/10.1/ubuntu xenial main'</pre>
OR 
 
You can manually create and update the MariaDB repository file under /etc/apt/sources.list.d/. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo nano /etc/apt/sources.list.d/mariadb.list</pre>
Place the following entries into the above file. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># MariaDB 10.1 repository list - created 2016-06-18 06:14 UTC
# http://downloads.mariadb.org/mariadb/repositories/
deb [arch=amd64,i386] http://ftp.utexas.edu/mariadb/repo/10.1/ubuntu xenial main
deb-src http://ftp.utexas.edu/mariadb/repo/10.1/ubuntu xenial main</pre>
Now, install MariaDB using the following command. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo apt-get update
sudo apt-get install mariadb-server</pre>
MariaDB installation by running mysql_secure_installation. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo mysql_secure_installation</pre>
Accessing MariaDB: 
To access the MariaDB instance, run the following command on the terminal. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">mysql -u root -p</pre>
Enter the password of root user that you have set during the installation when prompted. 
 
Once after entering the password, you would get a MariaDB shell. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">hackthesec@server:~$ mysql -u root -p
Enter password:
Welcome to the MariaDB monitor.  Commands end with ; or \g.
Your MariaDB connection id is 10
Server version: 10.1.14-MariaDB-1~xenial mariadb.org binary distribution

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

MariaDB [(none)]></pre>
Managing MaraDB: 
In case if you want to start / stop the MariaDB use the following command. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo systemctl start mariadb
sudo systemctl stop mariadb</pre>
Run the following command in the terminal to check whether MariaDB is running. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">sudo systemctl status mariadb</pre>
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
<div style="text-align: center;">
 </div>
</div>

How to Install MariaDB on Ubuntu 16.04

Installing MariaDB on Ubuntu 16.04 MariaDB is a community-developed fork of the MySQL relational database management system intended to remain free under the GNU GPL. It is notable for being led by t…

20 Jun 2016

How to Use NODEQUERY to monitor server performance

<div dir="ltr" style="text-align: left;" trbidi="on">
Using NODEQUERY to monitor server performance 
NodeQuery provides a lightweight and easy to use linux server monitoring service. Get alerts and actively monitor the performance of your servers. 
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBPeO61jkpM4xkCY9tAsp-p2HdWaUthMexdD27tFjhnlqkqTKb1rgamFBzZDOU469CqaQs7y0wBvddYRbok4cfr0okUD808vlTwH8fY61bKUm02EHo8d1Sd191im1dnbHa4Aq5ttyCvV8i/s1600/nodequery.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="412" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBPeO61jkpM4xkCY9tAsp-p2HdWaUthMexdD27tFjhnlqkqTKb1rgamFBzZDOU469CqaQs7y0wBvddYRbok4cfr0okUD808vlTwH8fY61bKUm02EHo8d1Sd191im1dnbHa4Aq5ttyCvV8i/s640/nodequery.jpg" width="640" /></a></div>
 
Anyway, I really like the simplicity of NodeQuery’s user interface and the way its display the data. 
How to setup NodeQuery monitoring agent on your server? 
 
SETUP USER AGENT 
 
Step 1 – Of course, you have to firstly signup for an account at NodeQuery website. <a href="https://nodequery.com/signup" target="_blank">Visit this link to go to their signup page</a>. 
Step 2 – Choose Beta Account, and then fill in your Full Name, Email Address and Password. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiC3GEfFWCifMoiEVHP2k5aw1T9U3uxVse-BQZW1Itln7qkQunv8YJAZBGyhagg3gu5AEUb2gvclCvuUOQNGEHWQmHRPmJIEvRwFeTejSCRMdzDmV7fQby-2EQ1Jw43XP7qDWR5Y4vmYEnN/s1600/nodequery.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiC3GEfFWCifMoiEVHP2k5aw1T9U3uxVse-BQZW1Itln7qkQunv8YJAZBGyhagg3gu5AEUb2gvclCvuUOQNGEHWQmHRPmJIEvRwFeTejSCRMdzDmV7fQby-2EQ1Jw43XP7qDWR5Y4vmYEnN/s1600/nodequery.png" /></a></div>
Just click on the blue Sign Up button. You'll be then asked to enter a challenge code. Just enter it, tick mark the "I agree to ToS," and click the Confirm button. 
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMm_ByUt0C3uepQVc4EtQhyphenhyphenqVQSSanOF8qOdpD73l0YO6l1hPA7H8eiAxtkarsnGzyiHjWsES2F3jaBTcIKlFADGsh2EXOxZMZ8RlLXgYUe0dwz6niui9BTcp935VbrOwNf3-zk4mlLokt/s1600/registration_done_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMm_ByUt0C3uepQVc4EtQhyphenhyphenqVQSSanOF8qOdpD73l0YO6l1hPA7H8eiAxtkarsnGzyiHjWsES2F3jaBTcIKlFADGsh2EXOxZMZ8RlLXgYUe0dwz6niui9BTcp935VbrOwNf3-zk4mlLokt/s1600/registration_done_hackthesec.co.in.png" /></a></div>
 
Then Goto your mail box and active the registration link after that login your account you will see the bellow dashboard.. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbQjPpnV1y-T1MkaWQ2RBOX6-MTJK9-scK43uXdr-52y2rel2sqw_469AohbU-UlmhbEWounXegKrXE3DQ7PCicWlIr_r2i-xbctlx24QJl1coYF_C4mrXcB4Rz7vu1nZVfvNDyQ5DR-rs/s1600/nodequery_dashboard.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgbQjPpnV1y-T1MkaWQ2RBOX6-MTJK9-scK43uXdr-52y2rel2sqw_469AohbU-UlmhbEWounXegKrXE3DQ7PCicWlIr_r2i-xbctlx24QJl1coYF_C4mrXcB4Rz7vu1nZVfvNDyQ5DR-rs/s1600/nodequery_dashboard.png" /></a></div>
 
Step 5 – Let's add your first server to monitor. Click on the New Server button / link. 
Step 6 – Now define your server name. It is strongly recommended to use your valid FQDN. 
You have to also decide how the system will send you alert when your server goes down. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuHNd6lY-FjLB1yGCiFB27IAtIG7y052jv3cCk6L6ybQ4Pm3ccYLhu3EsQLQBVO78uz40B61UWJTxg5xKQPdLvkF4rE_oek1rgV1_H0KmYYcKYrsDs1a_qZiOPbaZ4G4SppgAnAhXC-dbo/s1600/nodequery_serveradd_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhuHNd6lY-FjLB1yGCiFB27IAtIG7y052jv3cCk6L6ybQ4Pm3ccYLhu3EsQLQBVO78uz40B61UWJTxg5xKQPdLvkF4rE_oek1rgV1_H0KmYYcKYrsDs1a_qZiOPbaZ4G4SppgAnAhXC-dbo/s1600/nodequery_serveradd_hackthesec.co.in.png" /></a></div>
Setup minimum threshold of when NodePing should send you alert. There are three major sections you can setup the threshold for system resource usage alert : System load, RAM usage, and Disk usage. 
 
Step 7 -After that You'll be given a command to install monitoring agent on your server. Just copy that command : 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6CU8ZiTDfSxKXTgpd2iAyXtNpiMw34mWcRNRatCfyX2OIrLJQFfWRJsUo_7UC7LimjasTXC4O2xLUrrhmje11v7U08o3rTFVNtGYSiiTcZA7iiQcCRoaDnboeZCkJzP3aXAtoRqYC9Naw/s1600/nodequery_agentinstall_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg6CU8ZiTDfSxKXTgpd2iAyXtNpiMw34mWcRNRatCfyX2OIrLJQFfWRJsUo_7UC7LimjasTXC4O2xLUrrhmje11v7U08o3rTFVNtGYSiiTcZA7iiQcCRoaDnboeZCkJzP3aXAtoRqYC9Naw/s1600/nodequery_agentinstall_hackthesec.co.in.png" /></a></div>
Step 8 - Open up putty and login to your server as a user with sudo privilege. Issue the coped command there : 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpre6oah_6cnIhUpT3wIjVDmsW5eaS26l5vqzAS_QEzo5NjoWxIcZji2LMuUjjE4nUFtHzwdLHsdnGduHaHkcsU1CJLtj58sfj_tNJ0vshmBTuG8fX6Q28TQHWLITcF7-ocKtpn5g67PlH/s1600/nodequery_agent_install_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjpre6oah_6cnIhUpT3wIjVDmsW5eaS26l5vqzAS_QEzo5NjoWxIcZji2LMuUjjE4nUFtHzwdLHsdnGduHaHkcsU1CJLtj58sfj_tNJ0vshmBTuG8fX6Q28TQHWLITcF7-ocKtpn5g67PlH/s1600/nodequery_agent_install_hackthesec.co.in.png" /></a></div>
Step 9 – Go back to NodeQuery dashboard and click on the Manage Servers button.  You’ll then notice your newly added server is there. However, the status would be Awaiting Data It's need some to for syncing.. 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjNa3XQfKUW32YBrVxINXZ6DKOKcl6znX4TGTuNBgVnXaR2ES3Z6Gjz6UM5aBQhMKEi7Sjd9aYogQr35FXce3NGuZ7YDyolqkc8SX_4CT0fHrR5MabmEsuLb00SOVuFqC4YLEgb0RRnbF8p/s1600/nodequery_serveradd_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjNa3XQfKUW32YBrVxINXZ6DKOKcl6znX4TGTuNBgVnXaR2ES3Z6Gjz6UM5aBQhMKEi7Sjd9aYogQr35FXce3NGuZ7YDyolqkc8SX_4CT0fHrR5MabmEsuLb00SOVuFqC4YLEgb0RRnbF8p/s1600/nodequery_serveradd_hackthesec.co.in.png" /></a></div>
 
Just wait for approximately 3 minutes and refresh that page. You’ll then see a page similar to this one : 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiQTGXK8oNGEcBNpCxjoFJJhL8zDJxfS0QlbGnxanAJjm7htw4mZF12cmlF0tJ7dofNNwqcNgv664oazR1-WEtGuaVXAviQYAz1qp1JwqWOpv79qe8yZK6KKcV7JcmC-5hDfet2PbQv27Pu/s1600/nodequery_active_node_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiQTGXK8oNGEcBNpCxjoFJJhL8zDJxfS0QlbGnxanAJjm7htw4mZF12cmlF0tJ7dofNNwqcNgv664oazR1-WEtGuaVXAviQYAz1qp1JwqWOpv79qe8yZK6KKcV7JcmC-5hDfet2PbQv27Pu/s1600/nodequery_active_node_hackthesec.co.in.png" /></a></div>
Step 10 – You can then browse around to see detailed server performance stats monitored by NodeQuery : 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh8NjxNlI1pTidb9iDydIbcp0uIyGBIt6ZGlzfZ4URfGowwTEXCQgqO9rOhnpOMNnt8_FpZyn2rHhbGXMTJbeQKF6X3sVIcBctv6VFUdUBQh2IjDmFDdU8J5rasZjfZNUjEplXOo1azSeCK/s1600/processes_manager_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh8NjxNlI1pTidb9iDydIbcp0uIyGBIt6ZGlzfZ4URfGowwTEXCQgqO9rOhnpOMNnt8_FpZyn2rHhbGXMTJbeQKF6X3sVIcBctv6VFUdUBQh2IjDmFDdU8J5rasZjfZNUjEplXOo1azSeCK/s1600/processes_manager_hackthesec.co.in.png" /></a></div>
Network usage 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhK0vut85MZeaJtjL3ZXuf2Y4YaFr8oj1UNPZL97wStbtg7vz4BYR82WmLBkiQ95TkDmE9v8f6zeB80DRHPC1QaS9xRdsYQ-n5NYmJEgDusnd5FlJxxXXy853vR5LexhV4g32gvevJmb36h/s1600/network_usage.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhK0vut85MZeaJtjL3ZXuf2Y4YaFr8oj1UNPZL97wStbtg7vz4BYR82WmLBkiQ95TkDmE9v8f6zeB80DRHPC1QaS9xRdsYQ-n5NYmJEgDusnd5FlJxxXXy853vR5LexhV4g32gvevJmb36h/s1600/network_usage.png" /></a></div>
Network latency 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjSPNvmiA3b6pomSU3_-PWxhZa55PctM3Pd2r7ZVRRi802JR935AO2PkymvjkPcZzYJxTTB98ht9RlLHe7Otr2bKsxujS713WvQTJXCQFzItXE-CqYs7dnT-x3JWOj0uWlDJp_xqlIc3Z-k/s1600/network_latency.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjSPNvmiA3b6pomSU3_-PWxhZa55PctM3Pd2r7ZVRRi802JR935AO2PkymvjkPcZzYJxTTB98ht9RlLHe7Otr2bKsxujS713WvQTJXCQFzItXE-CqYs7dnT-x3JWOj0uWlDJp_xqlIc3Z-k/s1600/network_latency.png" /></a></div>
Average Load (CPU and Disk I/O) 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBtmf5uBER4qjvWeDSOyc0wm_mtr8w10j7rwMUyTGM_Yayx4GfSoMoeoi2XCr7kHJUTb6Hb_obVOYIy5PB8qd57k3p_CwSi7589yRCZ2E4eqEQw4ckulEcK9govPNFJxNiB2mZvfU1P1TN/s1600/average_load_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhBtmf5uBER4qjvWeDSOyc0wm_mtr8w10j7rwMUyTGM_Yayx4GfSoMoeoi2XCr7kHJUTb6Hb_obVOYIy5PB8qd57k3p_CwSi7589yRCZ2E4eqEQw4ckulEcK9govPNFJxNiB2mZvfU1P1TN/s1600/average_load_hackthesec.co.in.png" /></a></div>
RAM Usage Stats 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhJ27kWlhDewsMXvCc2lSJDbGx_0wN-2rIpmMdfbrYIjPuNZWnPOktlCKvCBPPxKyQDu5b8hd5e5oQPq3kRJtf0RUXRbl38gyhmHe7IhVZDT3FjJipKoqpTXYo_AnKkLJrOgZ6IotCE7dIq/s1600/ram_and_swap_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhJ27kWlhDewsMXvCc2lSJDbGx_0wN-2rIpmMdfbrYIjPuNZWnPOktlCKvCBPPxKyQDu5b8hd5e5oQPq3kRJtf0RUXRbl38gyhmHe7IhVZDT3FjJipKoqpTXYo_AnKkLJrOgZ6IotCE7dIq/s1600/ram_and_swap_hackthesec.co.in.png" /></a></div>
Disk Usage 
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi3ijlrM7gpyNTe8QZMoUCvW30VNvK3yvhDnFTzwUJd51xDlIcVdbtXinDMX8SeGANf7Z0vYTZKI3S8UOSAgjsOFs3bc0rRKtYAmKMJfMP00JeyK_FM6lUmFj8E5-4iuV21-IsEoGqdQ8NH/s1600/disk_usage_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi3ijlrM7gpyNTe8QZMoUCvW30VNvK3yvhDnFTzwUJd51xDlIcVdbtXinDMX8SeGANf7Z0vYTZKI3S8UOSAgjsOFs3bc0rRKtYAmKMJfMP00JeyK_FM6lUmFj8E5-4iuV21-IsEoGqdQ8NH/s1600/disk_usage_hackthesec.co.in.png" /></a></div>
 
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a> 
 </div>

How to Use NODEQUERY to monitor server performance

Using NODEQUERY to monitor server performance NodeQuery provides a lightweight and easy to use linux server monitoring service. Get alerts and actively monitor the performance of your servers. Anyway…

15 Jun 2016

How to Install and Configure Puppet on CentOS 7 / RHEL 7

<div dir="ltr" style="text-align: left;" trbidi="on">
Install and Configure Puppet on CentOS 7 / RHEL 7 
<a href="http://www.hackthesec.co.in/search/label/puppet" target="_blank">Puppet </a>is an open-source configuration management tool. It runs on many Unix-like systems as well as on Microsoft Windows, and includes its own declarative language to describe system configuration. 
<div class="separator" style="background-color: white; clear: both; color: #333333; font-family: Verdana, Geneva, sans-serif; font-size: 12px; line-height: 19.2px; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh7ox3PLkn1wWucxc5pzawlrlkniY2vrwbbOgxyDP-sdmzqZJGZ2SFjp5zooTXX2yUp5sQyeLRudJxODHJTH9A2VaD2BhxXfRVdLjfI41bjM14B0dxikkcksis0X-Jkkeu6x-1vPO9iI82y/s1600/Install-Puppet-in-CentOS_hackthesec.co.in.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh7ox3PLkn1wWucxc5pzawlrlkniY2vrwbbOgxyDP-sdmzqZJGZ2SFjp5zooTXX2yUp5sQyeLRudJxODHJTH9A2VaD2BhxXfRVdLjfI41bjM14B0dxikkcksis0X-Jkkeu6x-1vPO9iI82y/s1600/Install-Puppet-in-CentOS_hackthesec.co.in.png" /></a></div>
 <a href="http://www.hackthesec.co.in/search/label/puppet" target="_blank">Puppet</a> is produced by Puppet Labs, founded by Luke Kanies in 2005. It is written in Ruby and released as free software under the GNU General Public License (GPL) until version 2.7.0 and the Apache License 2.0 after that. 
Puppet Master: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">Operating system : CentOS 7 Minimal
IP Address       : 192.168.2.10
HostName         : server.hackthesec.local</pre>
Puppet client: 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">Operating System : CentOS 7 Minimal
IP Address       : 192.168.2.20
HostName         : client.hackthesec.local</pre>
Make sure your system (both puppet server and client) is able to resolve the hostname each other, either use /etc/hosts file or DNS server. 
 
 
To have a production ready puppet setup, we have to use apache with passenger. To get the passenger, download and place the repo file to /etc/yum.repos.d/ 
Note: Only on the master server. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; float: none !important; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# curl --fail -sSLo /etc/yum.repos.d/passenger.repo https://oss-binaries.phusionpassenger.com/yum/definitions/el-passenger.repo</pre>
<div>
To install the puppet master / agent, we would require to setup puppet repository on the all the nodes. Enable puppet labs repository by installing below rpm.</div>
<div>
Note: Run it on both master and agent nodes.</div>
<div>
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># rpm -ivh https://yum.puppetlabs.com/puppetlabs-release-el-7.noarch.rpm</pre>
</div>
<div>
<div>
Install and Configure Puppet on CentOS 7:</div>
<div style="color: #333333;">
Now, its time to install puppet. Install the puppet server using below command.</div>
</div>
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; float: none !important; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# yum -y install puppet-server</pre>
<div>
As said earlier, we will configure puppet for master / agent architecture. So, this node will acts as a master node. Edit the puppet configuration file and modify the dns_alt_names.</div>
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# vi /etc/puppet/puppet.conf

[main]
dns_alt_names = server,server.hackthesec.local
certname = server.hackthesec.local</pre>
If this machine is the only puppet master in your environment, run below command to create the puppet master certificate. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# puppet master --verbose --no-daemonize

Info: Creating a new SSL key for ca
Info: Creating a new SSL certificate request for ca
Info: Certificate Request fingerprint (SHA256): 81:C6:BB:8B:1D:71:4C:64:E1:13:54:1B:EC:CF:99:D8:85:90:D1:6C:E8:85:50:3E:03:41:BA:C5:47:A7:4C:E5
Notice: Signed certificate request for ca
Info: Creating a new certificate revocation list
Info: Creating a new SSL key for server.hackthesec.local
Info: csr_attributes file loading from /etc/puppet/csr_attributes.yaml
Info: Creating a new SSL certificate request for server.hackthesec.local
Info: Certificate Request fingerprint (SHA256): FF:BE:D4:9B:E4:12:83:79:AE:BE:50:17:76:5F:F5:CD:5F:53:EA:5D:AA:5D:87:9E:7C:C4:BC:1B:8A:C6:FA:5C
Notice: server.hackthesec.local has a waiting certificate request
Notice: Signed certificate request for server.hackthesec.local
Notice: Removing file Puppet::SSL::CertificateRequest server.hackthesec.local at '/var/lib/puppet/ssl/ca/requests/server.hackthesec.local.pem'
Notice: Removing file Puppet::SSL::CertificateRequest server.hackthesec.local at '/var/lib/puppet/ssl/certificate_requests/server.hackthesec.local.pem'
Notice: Starting Puppet master version 3.8.3</pre>
Once you get "Notice: Starting Puppet master version <VERSION>", press ctrl-C to kill the process. 
Configure a Production-Ready Web Server: 
Puppet comes with a basic puppet master web server, but this cannot be used for real-life loads. We must configure a production quality web server before we start managing our nodes with Puppet. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; float: none !important; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# yum -y install httpd httpd-devel mod_ssl ruby-devel rubygems gcc gcc-c++ pygpgme curl</pre>
<div>
Install Passenger and apache module.</div>
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# yum install -y mod_passenger</pre>
Create three directories for the application (a parent directory, a "public" directory, and a "tmp" directory), Copy the ext/rack/config.ru file from the Puppet source code into the parent directory and Set the ownership of the config.ru file. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# mkdir -p /usr/share/puppet/rack/puppetmasterd
[root@hackthesec server ~]# mkdir /usr/share/puppet/rack/puppetmasterd/public /usr/share/puppet/rack/puppetmasterd/tmp
[root@hackthesec server ~]# cp /usr/share/puppet/ext/rack/config.ru /usr/share/puppet/rack/puppetmasterd/
[root@hackthesec server ~]# chown puppet:puppet /usr/share/puppet/rack/puppetmasterd/config.ru</pre>
Add virtual host for puppet by creating the below configuration file. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# vi /etc/httpd/conf.d/puppetmaster.conf</pre>
Add below content into the virtual host file, change the  entries as per your environement. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;"># you probably want to tune these settings
PassengerHighPerformance on
PassengerMaxPoolSize 12
PassengerPoolIdleTime 1500
# PassengerMaxRequests 1000
PassengerStatThrottleRate 120

Listen 8140

<VirtualHost *:8140>
        SSLEngine on
        SSLProtocol             ALL -SSLv2 -SSLv3
        SSLCipherSuite          EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA384:EECDH+aRSA+SHA256:EECDH:+CAMELLIA256:+AES256:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA256-SHA:AES256-SHA:CAMELLIA128-SHA:AES128-SHA
        SSLHonorCipherOrder     on

SSLCertificateFile      /var/lib/puppet/ssl/certs/server.hackthesec.local.pem        SSLCertificateKeyFile   /var/lib/puppet/ssl/private_keys/server.hackthesec.local.pem        SSLCertificateChainFile /var/lib/puppet/ssl/ca/ca_crt.pem
        SSLCACertificateFile   /var/lib/puppet/ssl/ca/ca_crt.pem
        # If Apache complains about invalid signatures on the CRL, you can try disabling
        # CRL checking by commenting the next line, but this is not recommended.
        SSLCARevocationFile     /var/lib/puppet/ssl/ca/ca_crl.pem
        # Apache 2.4 introduces the SSLCARevocationCheck directive and sets it to none
        # which effectively disables CRL checking; if you are using Apache 2.4+ you must
        # specify 'SSLCARevocationCheck chain' to actually use the CRL.
        # SSLCARevocationCheck chain
        SSLVerifyClient optional
        SSLVerifyDepth  1
        # The `ExportCertData` option is needed for agent certificate expiration warnings
        SSLOptions +StdEnvVars +ExportCertData

# This header needs to be set if using a loadbalancer or proxy
        RequestHeader unset X-Forwarded-For

RequestHeader set X-SSL-Subject %{SSL_CLIENT_S_DN}e
        RequestHeader set X-Client-DN %{SSL_CLIENT_S_DN}e
        RequestHeader set X-Client-Verify %{SSL_CLIENT_VERIFY}e

DocumentRoot /usr/share/puppet/rack/puppetmasterd/public
        RackBaseURI /
        <Directory /usr/share/puppet/rack/puppetmasterd/>
                Options None
                AllowOverride None
                Order allow,deny
                allow from all
        </Directory>
</VirtualHost>  </pre>
Restart apache server to take an effect of puppet virtual host, to do that, run following command on terminal. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# systemctl restart  httpd.service</pre>
Disable puppet service and enable apache server to auto start on system boot. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# systemctl disable puppet.service
[root@hackthesec server ~]# systemctl enable httpd.service</pre>
Firewall: 
Puppet listens on port no 8140; Configure the IP tables to allow it. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# firewall-cmd --zone=public --add-port=8140/tcp --permanent
[root@hackthesec server ~]# firewall-cmd --reload</pre>
Install Puppet on Agent Nodes: 
On your client machine, install puppet agent using below command. 
 
 
Note: You must have puppet repository configured on the agent nodes. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec client ~]# yum -y install puppet</pre>
Edit the puppet configuration file and set puppet master information on the client stanza. 
 
 
Note: Modify "server" value as per your environment. In my case, server is "server.hackthesec.local" 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec client ~]# vi /etc/puppet/puppet.conf

[agent]
server = server.hackthesec.local</pre>
Start puppet on agent node and make it to start automatically on system boot. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec client ~]# systemctl start  puppet.service
[root@hackthesec client ~]# systemctl enable puppet.service</pre>
You would get below events in the logs. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">05:46:45 client systemd: Starting Puppet agent...
05:46:46 client systemd: Started Puppet agent.
05:47:03 client systemd: Reloading.
05:49:10 client puppet-agent[2694]: Did not receive certificate</pre>
Sign the Agent Node's Certificate on Master Server: 
In an agent/master deployment, an admin must approve a certificate request for each agent node before that node can fetch configurations. Agent nodes will request certificates the first time they attempt to run. 
 
 
Log into the puppet master server and run below command to view outstanding requests. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; line-height: 19.2px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# puppet cert list
"server.hackthesec.local" (SHA256) 35:D1:B5:67:52:1C:1C:BH:6H:DD:3C:2E:B0:28:D7:15:52:95:32:95:1F:37:29:2G:5F:D7:4C:F5:DB:94:A1:B2</pre>
Run puppet cert sign to sign a request, or puppet cert sign –all to sign all pending requests. 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec server ~]# puppet cert sign client.hackthesec.local

Notice: Signed certificate request for client.hackthesec.local
Notice: Removing file Puppet::SSL::CertificateRequest client.hackthesec.local at '/var/lib/puppet/ssl/ca/requests/client.hackthesec.local.pem'</pre>
Run the following command on client machine to check the certificate 
<pre style="background: rgb(68, 67, 65); border-radius: 6px; border: 1px solid rgb(227, 227, 227); box-sizing: border-box; clear: none !important; color: white; font-family: monospace, serif; font-size: 14px; margin-bottom: 10px !important; margin-top: 10px !important; overflow: auto; padding: 10px !important; width: auto !important; word-break: break-all;">[root@hackthesec client ~]# puppet agent -t

Info: Caching certificate for client.hackthesec.local
Info: Caching certificate_revocation_list for ca
Info: Caching certificate for client.hackthesec.local
Info: Retrieving pluginfacts
Info: Retrieving plugin
Info: Caching catalog for client.hackthesec.local
Info: Applying configuration version '1445401911'
Info: Creating state file /var/lib/puppet/state/state.yaml
Notice: Finished catalog run in 0.09 seconds</pre>
That’s All. Now, you have successfully configured puppet master and an agent. 
 
<div style="text-align: center;">
<a href="http://www.hackthesec.co.in/">www.hackthesec.co.in</a></div>
</div>

How to Install and Configure Puppet on CentOS 7 / RHEL 7

Install and Configure Puppet on CentOS 7 / RHEL 7 Puppet is an open-source configuration management tool. It runs on many Unix-like systems as well as on Microsoft Windows, and includes its own decla…

14 Jun 2016

Load more posts