Experiencing the following error while running “apt-get update” on your Ubuntu server? W: Failed to fetch http://ca.archive.ubuntu.com/ubuntu/dist/precise/restricted/source/Sources Hash Sum mismatch E: Some indes files failed to download. They haev been ignored, or old ones used instead. Just run the following command : sudo rm -Rf /var/lib/apt/lists/* And run the update command again : sudo apt-get… Read More »
After updating vsFTPd (version 3.0.2 +), you may have noticed the following error while trying to log using a chrooted account : 500 OOPS: vsftpd: refusing to run with writable root inside chroot () This error would only happen if you have the following parameter enabled (chroot users into their home directory) : chroot_local_user=YES The… Read More »
Due to the recent POODLE (Padding Oracle On Downgraded Legacy Encryption) SSLv3 vulnerability discovery, you may want to disable it to protect you and your visitors against this exploit. Here is the procedure for Windows Server/IIS. Note that older/obsolete browsers are not implementing TLS, shame on users for not doing their updates then! 1. Open… Read More »
Here is two commands to wither block a single or group of IPs on the Windows Firewall using the command line. Please note that you will need elevated privileges to run these commands. 1. Block a single IP (or subnet*) netsh advfirewall firewall add rule name=”IP Block” dir=in interface=any action=block remoteip=<IP_Address>/32 *You will need to… Read More »
Setting up SSL certificate with Nginx is quite easy, however slightly differ from the standard configuration since it require that the server certificate and the certificate authority (CA) to be bundled together within a single PEM file. NOTE : See this article if you are looking for the procedure how to generate a certificate key… Read More »
Getting theses output warning on the console when starting or restarting the Postfix daemon? postqueue: warning: inet_protocols: IPv6 support is disabled: Address family not supported by protocol postqueue: warning: inet_protocols: configuring for IPv4 support only This mean that Postfix is actually configured to listen on both IPv4 and IPv6 protocols but you do not have… Read More »
Bind (named) DNS server is failing to reload or restart after modifying a domain TXT record? Have a look at your Bind log files (commonly written to /var/log/messages) and you may find the following entries : named: dns_rdata_fromtext: domain.tld.hosts:0: ran out of space named: zone domain.tld/IN: loading master file domain.tld.hosts: ran out of space named:… Read More »
With larger drive these days that exceed 2 Tb, the traditional MSDOS partition table add a barrier of 2 Tb maximum for partitions. Fortunately, the GUID Partition Table which is well known as GPT that push this limit to 18 EB (exabyte). You are probably familiar with the “fdisk” legacy partitioning tool, however this does… Read More »
PHP imagick module is not a part of the default installation yet. Here is some easy steps to enable php-imagick module on your system. 1. First install the required development and dependency packages : yum install make gcc php-devel php-pear ImageMagick ImageMagick-devel 2. Compile php-imagick module : pecl install imagick 3. Add the extension to php.d as followed… Read More »
You probably experienced VPN session disconnection exactly 24 hours after you established the connection. Well, this is an expected behaviour since the OpenVPN Access Server implement a default 24 hours session timeout for user-locked and server-locked profiles. To workaround this limitation, you may set the timeout to a higher value using the following command : /usr/local/openvpn_as/scripts/sacli… Read More »