Howto: Check and close your open DNS servers
I just noticed www.dnsreport.com seems to have new check: it checks for open DNS server. This is how you check:
1) Go to http://www.dnsreport.com/tools/dnsreport.ch?domain=mydomain.com
2) Check for BIG RED “FAIL” (7th box, going down from up) saying “Open DNS servers”.
If you see the message, you can correct it the following way:
1) login to your server as root
2) nano -w /etc/named.conf (if you are running Bind)
3) Look for // query-source address * port 53; and right below write the following line:
recursion no;
4) Save and exit, restart Bind by typing service named restart
5) Check DNSReport.com to make sure it went right. You should not see the error message anymore.
If you run something else than Bind then please check http://www.dnsreport.com/info/opendns.htm for instructions.
Group permissions
hi all ,
Is there any Idea to set acustom permissions for a group in the system ??
ie: set acustom permission for the group (nobody) making them only can excuting files or read only or cannot read etc..
waiting
Ahmed,
Howto: update your LogWatch
It seems that Cpanel is not updating LogWatch automatically, so it was time to do it by hand. Just follow these easy steps and your all set.
1) Login to your server as root, go to root-folder:
cd /root
—————————————————-
2) Remove existing Logwatch by typing:
rpm -e logwatch
encoding archive file
Hi all,
When creating a .tar.gz file is thier any way , command , option To creat a password for that file ?
Install X-cache
This is another one of my quick mini-guides for how to install Xcache php optimizer. We have found this to work very nicely on servers and can even work with zend and eaccelerator if you require both. We have found no stability issues with 1.2.1 and run it on several very large and important servers.
Download the source and start to compile:
NFS Crash course
I wrote up a quick guide to setting up NFS awhile back but never published it. It is not exactly a nice and clean format but it is exactly what you need to be reading if you want a quick way to setup NFS between two servers. For the purpose of the guide I have added directions for the APF firewall, obviously anything else will work fine.
First make sure the rpms are install
up2date nfs-util portmap
yum install nfs-util portmap
Now start the service:
service portmap start
service nfs-util
*note* if portmap gets an error remote portsentry (cpanel among others installs it)
rpm -e portsentry
Disable direct root login
While directly logging into a server as root is certainly easy it is not the best choice from a security standpoint. Disabling direct root logins is not something that instantly makes a server impervious but it does help fight against petty brute force script kiddies. There are two options when disabling direct root login, one is to have them completely disabled and the other is to have it only with an ssh key. Make SURE that you add another user you can ssh into. If you are using cPanel use WHM –> Manage wheel users and add your user. Once logging in you can do “su -” you will gain full root access and be able to do your normal administrative commands. Make sure you use su - and not simply su, without the - you will not be on the root path and not have access to all commands.
« Older Posts