• pptp / pptpd not working in DD-WRT iptables / router


    Although it is well-known that pptp is not secure and is subject to many forms of attacks, the reality is that a lot of legacy and embedded devices use pptp. I argue that if it is being used for routing or remote access or over an already secure connection (eg. another VPN like ikev2) then this is still acceptable. Or in a LANor in a public environment where no private data is exchanged. However, if the nature of the data is extremely sensitive, you should do whatever........
  • Linux and Windows Dual Boot Issue NIC Won't work After Booting Windows


    In Windows, with some NICs, especially Intel, Windows may enable features on the card that break it in Linux. It is hard to troubleshoot as what you'll see is that the NIC is still detected in Linux, the NIC/port will be up but nothing will work (eg. DHCP requests or even static IPs won't work). You may see STP bridge traffic but that is all. In a corporate environment this can result in many calls to support and is essentially downtime and an unnecessary waste of resource........
  • Cisco CME How To Enable ACD hunt groups


    In our example below, we create 2 hunt groups. You could assume the #1 group is sales and #2 group is support etc.. and you can create more as needed. The main part of hunt is the "list" option where you add each phone number that is to be part of the group ephone-hunt 1 sequential pilot 2001 list 1234 timeout 10 ephone-hunt 2 sequential pilot 2002 list 5678 tim........
  • Using Cisco CME Router with Asterisk as a dial-peer


    #Remember that you need a valid gateway IPunless the Asterisk server is on the same subnet and LAN Set Valid Gateway IP (if you don't have one already) ip route 0.0.0.0 0.0.0.0 GATEWAYIP Enable VOIPTrust voice service voip ip address trusted list ipv4 0.0.0.0 0.0.0.0 sip Set Credentials For Asterisk and Register To Asterisk sip-ua........
  • Cisco CME and C7200 Router Testing and Learning Environment on Ubuntu 20+ Setup Tutorial Guide


    Since newer versions of Ubuntu like 20, you will find there is no longer dynagen and that the dynamips provided is faulty and will segfault each time: Cisco Router Simulation Platform (version 0.2.14-amd64/Linux stable) Copyright (c) 2005-2011 Christophe Fillot. Build date: Apr 3 2018 12:20:29 Local UUID: 3c1c0b7f-2fab-4fda-b40b-74841d1bcfe0 Instance ID set to 1. netio_tap_create: unable to open TAP device tap1 (No such fi........
  • How to Install Any OS on a Physical Drive from Windows Using VMware Workstation (Linux, Windows, BSD)


    Uses: Install OS on physical drive Linux installation VMware Install Windows on physical drive Boot OS from physical drive VMware Workstation tutorial Linux virtual machine to physical disk Windows to Linux migration Dual boot OS installation Boot from external SSD Linux, Windows, BSD installation guide Physical drive boot OS........
  • CDN Cloudflare how to set and preserve the real IP of the client without modifying application code on Apache


    Your frontend CDN (eg. Cloudflare or even your own load balancer/proxy) must be sending the X-Forwarded-For and you must be running Apache on the backend. This solves the problem where your logs and services will only see the proxy/CDN IP and not the real client IP. mod_rpaf will fix all of this This solution transparently sets the real IP of the client for Apache and any services that rely on........
  • CentOS 7 fix Could not retrieve mirrorlist http://mirrorlist.centos.org/?release=7&arch=x86_64&repo=os&infra=container error was 14: curl#6 -


    yum update Loaded plugins: fastestmirror, ovl Determining fastest mirrors Could not retrieve mirrorlist http://mirrorlist.centos.org/?release=7&arch=x86_64&repo=os&infra=container error was 14: curl#6 - "Could not resolve host: mirrorlist.centos.org; Unknown error" One of the configured repositories failed (Unknown), and yum doesn't have enough cached data to continue. At this point the onl........
  • Hyper-V Linux VM Boots to Black Screen, Storage, NIC Not Found Issues


    Hyper-V uses obscure virtual hardware, you can enable the FB device for Hyper-V but if you just need text/console to work just compile this option: Device Drivers ---> Graphics support ---> Framebuffer Devices ---> Simpl........
  • Ubuntu Linux Mint Debian Redhat Youtube Cannot Play HD or 4K videos, dropped frames or high CPU usage with Nvidia or AMD Driver


    In a lot of distros, vdpau which accelerates video through the GPUis often not installed even in recent distros. This will result in Firefox with Youtube dropping frames when you check the "Stats for Nerds" and to the eye as jerky or slower video playback due to the dropped frames. Some sites will say that because you are watching VP09 that there is no GPU support, but with vdpau installed and enabled, many GPUs will still be able to use hardware decoding for 4K........
  • hostapd example configuration for high speed AC on 5GHz using WPA2


    This example is using RTL8821AU chipset from a TP-Link T2U Plus USB adapter and other similar ones should work the same. Here's how to get this chipset RTL8821AU working in Linux. Here's how to get RTL8812 and RTL8822 working in Linux.........
  • hostapd how to enable and use WPS to connect wireless devices like printers


    Edit your /etc/hostapd/hostapd.conf file like below and restart hostapd. #WPS stuff # Enable control interface for PBC/PIN entry wpa_psk_file=/etc/hostapd/hostapd.psk ctrl_interface=/var/run/hostapd eap_server=1 wps_state=2 ap_setup_locked=1 wps_pin_requests=/var/run/hostapd.pin-req config_methods=label display push_button keypad #WPS model info stuff change to suit your needs d........
  • How to configure OpenDKIM on Linux with Postfix and setup bind zonefile


    This guide assumes you have a working Postfix server and want it to sign with DKIM. There are a few things we have to understand to make all of this work though, which require you to be familiar with DNS as well. 1.) Install OpenDKIM apt install opendkim systemctl enable opendkim 2.) Edit /etc/opendkim.conf Syslog yes SyslogSuccess yes Mode&nbs........
  • Debian Ubuntu 10/11/12 Linux how to get tftpd-hpa server setup tutorial


    apt install tftpd-hpa #change TFTP_ADDRESS to by setting address to 192.168.1.1:69 or the IP you need, otherwise it will listen on all IPs and interfaces which could be a security risk. # edit /etc/default/tftpd-hpa TFTP_USERNAME="tftp" TFTP_DIRECTORY="/srv/tftp" TFTP_ADDRESS="192.168.1.1:69" TFTP_OPTIONS="--secure"........
  • redis requirements


    sysctl vm.overcommit_memory=1 echo never > /sys/kernel/mm/transparent_hugepage/enabled echo 511 > /proc/sys/net/core/somaxconn 1:M 26 Nov 2023 21:34:33.840 # WARNING: The TCP backlog setting of 511 cannot be enforced because /proc/sys/net/core/somaxconn is set to the lower value of 128. 1:M 26 Nov 2023 21:34:33.840 # Server initialized 1:M 26 Nov 2023 21:34:33.840 # WARNING overcommit_memory is set to 0! Background sa........
  • [error] (28)No space left on device: Cannot create SSLMutex Apache Solution Linux CentOS Ubuntu Debian Mint


    Have you got this error from Apache? [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [error] (28)No space left on device: Cannot create SSLMutex At first glance it appears that you may be out of disk space but the issue is ipc or interprocess communication. This will clear out the ipcs processes so things can work, this often happens during high traffic and may be a sign of DDOS. The command below will fix it, it will list al........
  • qemu-system-x86_64: Initialization of device ide-hd failed: Failed to get


    You start a qemu like this and another VM already started with the same .iso qemu-system-x86_64 -enable-kvm -m 4096 -cdrom some.iso But you get this error: qemu-system-x86_64: Initialization of device ide-hd failed: Failed to get "write" lock Is another process using the image [some.iso]? It's odd because the -cdrom by default is read-only and qemu should not want or care about getting write lock on........
  • vi vim not doing code highlighting E319: Sorry, the command is not available in this version solution


    Normally syntax highlighting is the default behavior. You can enable it manually by hitting :syntax on But normally you'll have this error because of the missing package. E319: Sorry, the command is not available in this version Solution install the vim-gui-common package: apt install vim-gui-common After that you should find that the code is highli........
  • How to Reset CIPC Cisco IP Communicator for CME CUCM CallManager


    Just hit **# on the keypad and the CIPCwill enable the button in settings for a factory reset. Sometimes the phone may run into issues or may be unable to register to another tftp server (eg. another CME or CUCM server) due to a bug or maybe due to the security settings tying it to a specific server. Step 1 - Click Settings Step 2 - Hit "**#"........
  • Internet Explorer Cannot Download File "Your security settings do not allow for this file to be downloaded." Security Settings Solution


    By default in most newer Windows installs, you will not be able to download files from "Internet" sites and you'll get this error "Your security settings do not allow for this file to be downloaded." Solution to Enable Downloads in IE Internet Explorer 1.) Go to Settings (button) -> Internet options -> Security (tab) 2.) Click "Internet" and then the "Custom Level" button. 3.) Find the following section and set D........
  • kernel panic initramfs not syncing cause solution


    Check your initramfs if it's missing /dev/null or /dev/console, this is likely the reason. If you want all actual devices to be created you could also enable devtmpfs in your kernel (.config) and mount like this during init: CONFIG_DEVTMPFS=y CONFIG_DEVTMPFS_MOUNT=y mount -t devtmpfs none /dev But note devtmpfs will not create /dev/null or /dev/console for........
  • vi cannot copy and paste automatic visual mode solution


    See below in the screenshot that copy is disabled by visual mode which enables automatically: Fix it by setting this .vimrc option: echo "set mouse-=a" >> ~/.vimrc........
  • How to install and configure haproxy on Linux Ubuntu Debian


    haproxy is one of the best known and widely used Open Source load balancers out there and a strong competitor to nginx. haproxy is used by many large sites per Wikipedia: HAProxy is used by a number of high-profile websites including GoDaddy, GitHub,........
  • How to install Windows or other OS and then bring to another computer by using a physical drive and Virtual Machine with QEMU


    This has been a tried and true method for Windows because it is finicky with hardware changes without a reinstall (eg BSOD on boot is what happens 9/10 times unless you move to the same hardwar). Surprisingly, if you use a QEMU VM and do a standard install, it has worked in every system I've thrown the drive in afterwards. So the play is this, use a USB SSD, physical SATA drive plugged internally or for convenience, you could use a SATA to USB adapter on another computer to perf........
  • Ubuntu Linux Mint Debian Redhat Cannot View Files on Android iPhone USB File Transfer Not Working Solution


    If you plugin your phone to your computer and enable USB File Transfer/Allow on the phone side but the contents of your phone on the computer side are empty in the file manager, you probably don't have mtp-tools.MTP or media transfer protocol is the standard protocol that most phones use to communicate over USB to the computer. Just do this to fix it and get access to your files: apt install mtp-tools After that you should be a........
  • Virtualbox Best Networking Mode In Lab/Work Environment without using NAT Network or Bridged


    Virtualbox is a very powerful tool, but for some use cases it is less than optimal. Say you are in a work, lab or other environment where you are not alone on the physical network and there could be overlap of IPs, but you need all of your VMs to be contactable from your host, VMs need to communicate with each other, and VMs need internet. NAT Network will give you VM to VM communication and internet, however, it is buggy and unstable. It also doesn't allow host to VM co........
  • Linux grub not using UUID for the root device instead it uses /dev/sda1 or other device name solution


    You can read lots of posts about this issue but there is not much information about why this is the case or how grub determines the root= device name. Some even suggest modifying grub.cfg manually which is a disaster as the next kernel update will cause grub to revert back to the device name. For most people this won't be an issue but those using template system, automated deployments and working in embedded may run into this issue with custom embedded and created minimal kernel........
  • iptables NAT how to enable PPTP in newer Debian/Ubuntu/Mint Kernels Linux


    Remember that control connections are established on port 1723 and then actual data is transferred over GRE protocol 47. If you have a NAT setup this will work without special forwarding or accepting of GRE packets (normally if you are not blocking outgoing connections and accepting established and related connections). The below two commands will get things going so PPTP and GRE work We first load the ip_nat_pptp module which allows PPTP to work with........
  • Grandstream Phone Vulnerability Security Issue Remote Backdoor Connection to 207.246.119.209:3478


    Have you checked your router/firewall logs and disconcertingly see connections to an unknown IP207.246.119.209:3478 from your Grandstream VOIPphones? You're not alone and the Grandstream forums have discussed this issue. However, even their own staff d........
  • Linux How to Check Which NIC is Onboard eth0 or eth1 Ubuntu Centos Debian Mint


    So say you happen to have 2 NICs of the exact same chipset, they will generally show up as the same name, with possibly a different revision in lspci. Normally this is not an issue if you have a server with 4 NICs, generally the eth0 to eth3 appears from left to the right (or right to left on some vendors) so it doesn't take much figuring out. Generally if you have different chipsets for different NICs, it should be easy to know which one is eth0 or the first NIC in the OS.........
  • VboxManage VirtualBox NAT Network Issues Managment Troubleshooting


    If you find your NAT Network is not working properly, the first thing you may want to do is list the networks, check their status and make sure the Network is actually started and configured as you expect (eg. is DHCP on and enabled?). This is a long known, unresolved bug that seems to affect Version 6 randomly and disportionately on especially Mint 20/Ubuntu 18. https://www.virtualbox.org/ticket/1474........
  • Enable Turbo Mode for CPU Ubuntu Linux Mint Debian Redhat


    Sometimes due to your BIOS/EFI you may find that you have chosen "Energy Efficient" for your CPU which may effectively disable turbo mode. This is because "Energy Efficient" will often restrict or throttle your CPU to the base speed. This can impact nearly any CPU such as Intel's, AMDs, Opteron, Xeon etc... This is of course frustrating, for example if you have a CPU that is 2.0GHz base speed but turbo to 2.5GHz, you will never hit more than 2GHz.........
  • docker / kubernetes breaks Proxmox QEMU KVM Bridge VMs


    Docker adds iptables rules that break a lot of things including MASQUERADE or anything that needs the FORWARD table. If NAT is not working after Docker installation, it is probably because it set the iptables FORWARD policy to DROP. This may also make you think that your br0 or bridge is not working, but it's likely just due to what we'll mention later on below, that, Docker probably set your FORWARD chain to default DROP all packets, so nothing on your bridge ever makes it out........
  • Cisco UC CME How To Enable Licensed Features


    Router#show license Index 1 Feature: ipbasek9 Period left: Life time License Type: Permanent License State: Active, In Use License Count: Non-Counted Lic........
  • Cisco Switch / Router How To Restore Factory Default Settings


    1.) Make sure your conf register is 0x2102 Do show version and at the very end of the output you will see the Configuration register. show version Configuration register is 0x2102 If the config register is not 0x2102 then enter this command: r1#configure terminal r1(config)#config-register 0x2102 r1(config)#end 2.) Let's Erase the NVRAM/flash........
  • Cisco 2900 3900 Router Password Reset How To Reset Enable Password


    It is a bit different and annoying here for these types of routers/models as you need to physically remove the CF (Compact Flash) and only then, will it enter ROMMON mode (Ctrl + Pause remotely over the console will not do it for us). This means you cannot do this remotely, or at least not without the help of a remote/physical helper. Step 1.) Power off, router and remove CF Disk Slot#2 Go to the router and remove the slot#2 cover uses your hand or it may help to use a........
  • Translating "cisco" ...domain server (255.255.255.255) Cisco Router/Switch Solution


    If you are in enable mode and make a typo, the router will treat it as a domain name and try to resolve it, and if it can't resolve it, you'll have to wait until it times out. Here's how to solve the Translating domain server error in Cisco Enter this in config mode: no ip domain-lookup Be sure to sav........
  • CentOS 7 / 8 cannot boot with with mdadm RAID array solution


    This article about migrating to a CentOS 7 /8 RAID mdadm array has a lot of info but I wanted to focus specifically on what newer versions of CentOS 7 require to boot mdadm and what changes are necessary on CentOS 7.8+ CentOS 7 / 8 mdadm RAID booting requirements This assumes you are chrooting into an existing install or using it to get a new deployment ready. However, these steps can........
  • Loaded: masked (Reason: Unit hostapd.service is masked.) Solution in Linux Debian Mint Ubuntu


    If you are getting this error from systemctl "Loaded: masked (Reason: Unit hostapd.service is masked.)" we need to unmask the service. Solution systemctl unmask hostapd Removed /etc/systemd/system/hostapd.service. It's fixed root@routerOS:/var/log# systemctl start hostapd root@routerOS:/var/log# systemctl status hostapd ● hostapd.service - Access point and authentication server for Wi-Fi and Ethern........
  • Debian Mint Ubuntu Howto Disable Network Manager


    NetworkManager is normally good for GUI users who may not be good with manually confguring devices, but if you are using things like bridging and bonding, it will often break things. How To Disable NetworkManager systemctl disable NetworkManager Now that it's disabled you will need to stop NetworkManager. NetworkManager will still be running until you reboot next or manually stop it. How To Stop NetworkManager systemctl stop........
  • amdgpu AMD GPU Xorg Won't Start [3576284.324] (EE) Segmentation fault at address 0x0 [3576284.325] (EE) Fatal server error: [3576284.325] (EE) Caught signal 11 (Segmentation fault). Server aborting


    Here is how Ifixed it on a Mint/Ubuntu install 1.) First download the latest AMDGPU-Pro driver from here: https://www.amd.com/en/support Navigate to your relevant video card: 2.) Download the installer One issue is that by default they give you a version for the latest version of........
  • How To Do Linux Network Bonding Teaming in Mint Debian Ubuntu


    Bonding is an excellent way to get both increased redundancy and throughput. It is similar to the "Network Teaming" feature in Windows. There are a few different modes but we will use mode 6, I think it's the best of both worlds, as it is not just a failover, but it provides round robin, so you will get redundancy and load balancing. So if you have a 1G single port, you will have a combined throughput of 4G at this point. Just bear in mind that the true thr........
  • How To Enable Linux Swapfile Instead of Partition Ubuntu Mint Debian Centos


    This may be necessary if you have a VM or if for some reason you just want to be more efficient with your space and have the flexibility of changing your swap space at will. What we mean is the ability to use a "swap file" or similar to the Windows "pagefile" that normally resides on the root or c: partition of Windows. Here's all you have to do and then you to can have a single partiton with everything, including the swap file on the root partition if you........
  • Docker Tutorial HowTo Install Docker, Use and Create Docker Container Images Clustering Swarm Mode Monitoring Service Hosting Provider


    The Best Docker Tutorial for Beginners We quickly explain the basic Docker concepts and show you how to do the most common tasks from starting your first container, to making custom images, a Docker Swarm Cluster Tutorial, docker compose and Docker buildfiles.........
  • How To Create OpenVPN Server for Secure Remote Corporate Access in Linux Debian/Mint/Ubuntu with client public key authentication


    Why choose OpenVPN instead of a firewall appliance? OpenVPN can be a reliable and easy replacement for traditional hardware or just be an additional tool that your company uses so that the firewall can focus on its job rather than acting as a VPNappliance at the same time. When comparing OpenVPN with traditional firewal........
  • Package wget is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source. E: Package 'wget' has no installation candidate. Solution


    These types of errors are normally caused by misconfiguration of your /etc/apt/sources.list. In this example on Debian 10, if you didn't complete the install correctly, you will have no repos enabled and only rely on CDROM. "Package wget is not available, but is referred to by another package. This may mean that the package is missing, has been obsoleted, or is only available from another source. E: Package 'wget' ha........
  • Wazuh / OSSEC Install and Configuration Howto Tutorial Guide for Monitoring Agents SIEM


    How To Install Wazuh Server / Quickest Installation Wazuh (forked from the well known OSSEC project) is a full SIEM (Security Information Event Management) that works extremely well with the platforms it natively supports as an "Agent", which allows you to do scans of everything such as all processes running, CVE vulnerability check, incident reporting etc... Prerequisites: A lot of issues with Wazuh seem to be caused by i........
  • Linux Debian How To Enable Sudo/Sudoers for User "User not in sudoers file" Solution


    If you get an error that you aren't in the sudoers file, this typically means that your user is not designated as an admin with sudo privileges. In plain English, when it comes to some OS's like Debian including 10,11 etc.., by default the user is created without special privileges which is contrary to how Ubuntu/Mint handle the secondary user. Let's check the sudoers file to see the problem.........
  • How to allow SSH root user access in Linux/Debian/Mint/RHEL/Ubuntu/CentOS


    A lot of newer installs will automatically prohibit the root user from logging in directly, for security reasons or they will only allow key based access. If you know what you are doing/don't care about security or have an incredibly secure password for testing, then you can enable it. Edit this file: /etc/ssh/sshd_config Find the following line: PermitRootLogin Set it like this: PermitRootLogin yes Now rest........
  • Proxmox How To Enable Ceph Distributed Storage Cluster with OSD and Pools


    How To Install Ceph If you stopped an install of Ceph midway you will need to manually restart it with "pveceph install" Remember that your VM needs to have working internet (gateway) and DNS in order to connect to the apt repo to download all of the packages that Ceph requires. Remember to repeat these steps for each node that you want Ceph on. ........
  • Virtualbox Vbox Issue Cannot Enable Nested Virtualization Button is Grayed/Greyed Out and Unclickable HowTo Solution


    In newer of versions of Virtualbox, especially above 6.0 (eg. 6.1 like the example below), a lot of times the "Enable Nested VT-x/AMD-V". If you are having this issue, you will see the option is grayed out. It doesn't mean that your computer does not support virtualization, although it is possible it is disabled in the BIOS. You can verify........
  • Linux Ubuntu Debian Centos Mint - How To Check if Intel VT-x or AMD-V Hardware Virtualization is Enabled?


    From the terminal do this: cat /proc/cpuinfo|grep -E "svm|vmx" You should get output like this(svm = AMD-v and vmx=Intel-VTx): flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx pdpe1gb rdtscp lm constant_tsc arch_perfmon pebs bts rep_good nopl xtopology nonstop_tsc cpuid aperfmperf pni pclmulqd........
  • Windows Cannot Format USB drive Device Media is Write Protected Error Solution


    First of all make sure that you don't have the write-lock or write-protect switch enabled on the SDCard or USB drive. If the above is not the case, then follow these instructions: Solution - Clear Read Only Attribute Hit "Windows Key+R" and enter "cmd" to enter the command prompt: Now type the following :........
  • Virtualbox VBOX How To Install Guest-Utils/GuestUtils so drag and drop and clipboard works Ubuntu Mint Debian Linux


    Just install these packages and restart the VM: 1.) Enable guest-utils on the host side: sudo apt install virtualbox-guest-utils virtualbox-guest-x11 2.) Enable guest editions on the VMside This must be done for each VM that you want to have the guest additons for accelerated GPU performance and for drag and drop/clipboard sharing First insert the Guest Addtions CD image........
  • How to install Kubernetes with microk8s and deploy apps on Debian/Mint/Ubuntu Linux


    Kubernetes Easy Beginners Tutorial/Architecture Guide Kubernetes is known as container orchestration and we should start at explaining the container part of it. A Container is what runs the actual application and based on an Image, and are more comparable to something like an LXC Container, Virtuozzo/OpenVZ using the Linux Kernel Namespaces feature. Containers run these images as independent, isolated operating environments under the O........
  • Cisco Howto Configure Console Port/Terminal/Comm Server with Async Cable Setup


    This assumes that you've already installed the relevant HWIC cards eg. Cisco Asynchronous Serial NIM These are essentially cards that you install into your router, once installed you connect an Async cable to one of the ports on the card which normally gives you 8 console cables and are normally labelled 1 through 8. You connect all of the cables to the devices you need (even non-Cisco devices) whether switches, routers or firewalls, they will usually work. The real m........
  • Cisco Switch Howto Reset Password


    This was done on a 2900 but applies to all the switches of the same era. Step 1 - Power Cycle and enter recovery mode If you have physical access you can power cycle and hold the mode button down for 15 seconds. After that the SYS light will flash on the switch and you will see the following screenshot. If you don't have physical access (eg. it is a datacenter swich over console only) then power cycle and hit "Ctrl+Pause/B........
  • Cisco Router Password Reset Howto Guide Solution Cannot Login /Unknown Enable Password 2600, 2800, 2900, 3900


    It is common that you may get access to undocumented equipment and need to reset the password. This applies to many Cisco routers whether 2600, 2900, 3900 etc... Cisco's Guide says to hit Ctrl +Pause/Break but if it doesn't work on some devices causing people to say "cisco password reset pause break does not work", you can see Cisco's alternative key combinations here:........
  • Unable to mount location Failed to retrieve share list from server: Connection timed out - Samba/Linux Filesharing Not working Ubuntu Mint Linux Solution


    So you're trying to browse to a properly configured Samba share but you get this error: Unable to mount location Failed to retrieve share list from server: Connection timed out If your config is right, it can be due to a protocol miss-match where your client has not enabled SMB3 but by default the other side (server) has enabled it. You can test this out to see with the smbclient tool........
  • Juniper JunOS Command Overview and Howtos Switch, Router, Firewall Tutorial Guide


    Enable "cli" mode equivalent in JunOS cli Configure Mode configure So rather than going to the console on a Cisco switch and typing "enable" and then "conf t", the equivalent in JunOS is "cli" and "configure". How Do You Apply Changes You've Made? You can make all kinds of changes to the switch, but remember they are not........
  • qemu 4 compilation options


    How To Compile QEMU Manually (using sensible options) 1.) Download the QEMU source file you want. wget https://download.qemu.org/qemu-4.2.0.tar.xz 2.) Extract The Source File tar -Jxvf qemu-4.2.0.tar.xz 3.) Switch to the extracted source cd qemu-4.2.0 4.) Make sure we have the right libraries and tools to compile QEMU manually sudo apt install build-e........
  • How To Boot, Install and Run Windows 2000 on QEMU-KVM


    Interestingly enough Windows 2000 works fine on QEMU 64-bit but you have to specify Pentium as your CPU otherwise it doesn't complete the install (it will not pass the detecting/setting up devices phase). -vga cirrus is wise because it is supported by Windows 2000 and allows higher resolutions and 24-bit color. -cpu Pentium emulates an old computer and is necessary for install to complete -device rtl8139 is important as this oldschool Realtek 8139 NIC is supported by W........
  • How To Replace Audio Track of Video using ffmpeg


    A very common use case is that you don't want to waste time using a video editor that requires you to open it up and manually import the video clip and audio clip, then manually delete the old audio track and import the video and new audio. That's too much work and time since we don't want to go through the hassle. ffmpeg is our solution, all we have to do is specify 3 variables and we're done! -i Windows2019-Server-Noaudio.mp4 is our in........
  • QEMU-KVM soundhw deprecated how to enable sound in QEMU 4.x series


    In QEMU 4 or higher you can no longer use the normal "-soundhw ac97" flag and it is much more complicated but here is a simple copy and paste on Linux that will just work: -audiodev you have to use -audiodev to specify the driver and id driver=pa id=someid -device you have to specify the same audiodev id you used in -audiodev and driver -audiodev driver=pa,id=pa1 -devic........
  • apcupsd how to setup and monitor APC UPS units


    It really seems limited in that it can mainly give you the things you would see on the physical unit such as load etc.. wget https://downloads.sourceforge.net/project/apcupsd/apcupsd%20-%20Stable/3.14.14/apcupsd-3.14.14.tar.gz?r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fapcupsd%2Ffiles%2Flatest%2Fdownload&ts=1598115866 tar -zxvf apcupsd-3.14.14.tar.gz cd apcupsd-3.14.14 [root@somebox apcupsd-3.14.14]# ./conf........
  • Nvidia Ubuntu Linux Screentearing Video with solution driver


    This seems to happen on most if not all Nvidia cards but the good news is that if you are using any of the Linux drivers and have the nvidia-settings tool installed it is just a simple command. Solution: nvidia-settings --assign CurrentMetaMode="nvidia-auto-select +0+0 { ForceFullCompositionPipeline = On }" Enter the above command in your terminal and the screentearing will be fixed which is like enabling Tear Free on AMD cards.&........
  • access denied by acl file qemu-kvm: bridge helper failed


    /usr/libexec/qemu-kvm -enable-kvm -boot order=cd,once=dc -vga cirrus -m 4096 -drive file=~/23815135.img,if=virtio -usbdevice tablet -net nic,macaddr=DE:AD:BE:EF:D4:AB -netdev bridge,br=br0,id=net0 qemu-kvm: -usbdevice tablet: '-usbdevice' is deprecated, please use '-device usb-...' instead access denied by acl file qemu-kvm: bridge helper failed [root@CentOS-82-64-minimal 23815135]# /usr/libexec/qemu-kvm -enable-kvm -boot order=cd,once=dc -vga cirrus -........
  • How To Get Started on Ubuntu with gpt-2 OpenAI Text Prediction


    apt install software-properties-common add-apt-repository ppa:deadsnakes/ppa apt update apt install python3-pip apt install python3.7 curl gnupg python3.7-dev git ln -s /usr/bin/python3.7 /usr/bin/python3 pip3 install numpy keras_preprocessing curl https://bazel.build/bazel-release.pub.gpg | sudo apt-key add - echo "deb [arch=amd64] http://storage.googleapis.com/bazel-apt stable jdk1.8" | sudo tee /etc/apt/sources.list.d/bazel........
  • QEMU-KVM KVM Command Line Practical Guide


    Iam going to build this based on a series of small howto QEMU / KVMposts I've made as I feel much of the information is actually hard to find and piece together from the rest of the web. What I'm going to focus on is how to use virtio as the NIC because if you don't you get very slow NIC speeds but with the virtio NIC model you basically get host speeds. /usr/libexec/qemu-kvm -enable-kvm -smp 8 -m 16000 -net user -net nic,model=virtio -drive file=ubuntu-gpt2l........
  • Linux How To Change NIC Name to eth0 instead of enps33 or enp0s25


    Most newer distros inexplicably cause your NIC to have what Icall "random" non-standard name conventions because of systemd. This is a big problem for many people and especially those running servers. Imagine that you have a static IPconfigured for ens33 but then the hard disk is moved to a newer system, the NIC could be anything from ens33 to enp0s1, meaning that manual intervention is required to go and update the NIC config file (eg. /etc/network/interfa........
  • virt-resize: error: libguestfs error: could not create appliance through libvirt.


    This is caused because the user is running as qemu for virt-resize and if qemu does not have privileges to read from the source and write to the destination, it will fail with the below. So either change the uid of qemu or change the ownership of the source and target. Solution: export LIBGUESTFS_BACKEND=direct virt-resize --expand /dev/sda2 /root/kvmtemplates/windows2019-eval-template.img /root/kvmguests/kvmkvmuser4515........
  • How To Install NextCloud on Centos 7 and Centos 8


    yum -y install wget unzip wget https://download.nextcloud.com/server/releases/nextcloud-18.0.2.zip unzip nextcloud-18.0.2.zip yum -y install php php-mysqlnd php-json php-zip php-dom php-xml php-libxml php-mbstring php-gd mysql mysql-server Last metadata expiration check: 0:58:02 ago on Fri 13 Mar 2020 02:12:49 PM EDT. Dependencies resolved. ===================================================================........
  • Ubuntu Debian Linux Cannot Install Wine Solution - wine1.6 : Depends: wine1.6-i386 (= 1:1.6.2-0ubuntu14.2) but it is not installable wine1.4 : Depends: wine1.6 but it is not going to be installed


    If you've ever gotten errors like this the solution is simple, you need i386 enabled on your 64-bit install because wine depends on some 32-bit x86 libraries: dpkg --add-architecture i386 apt update apt install wine After that it will install just fine. apt install wine Reading package lists... Done Building dependency tree Reading state information... Done........
  • Convert and install to LUKS Encrypted Drive Ubuntu 18.04 19.10 Linux Mint and Debian Based Linux


    The reason for doing this is that the installer doesn't seem to work properly for LUKS and the server installer doesn't even support LUKS anymore. When you use the GUI install on Desktop for LUKS it won't boot and will just hang after you enter your password. So the only reliable way is to do it ourselves. 1.) Make a default minimal install of Ubuntu 2.) Have a secondary disk on the server or VM. 3.)........
  • ADATA USB Thumb Drive Issues


    This is the reason that I don't like the new ADATA USB drives such as the UV128/64GB or 128GB drives and other ones that look to be the same style (the green sliding USB connector). They just don't work well from new and never work properly at any point. [ 788.242463] usb 1-1.2: new high-speed USB device number 16 using ehci-pci [ 788.339816] usb 1-1.2: New USB device found, idVendor=125f, idProduct=db8a [ 7........
  • KMODE EXCEPTION NOT HANDLED - QEMU/KVM Won't Boot Windows 2016 or 10 Image or Physical Machine


    This should work but the key thing is having the "-cpu host" flag. Once you add the correct -cpu host flag then it should boot just fine on KVM. qemu-system-x86_64 --enable-kvm -cpu host -smp 8 -m 8192 -drive format=raw,file=the-file.img Examples can be found here on how to boot Windows properly with KVM.........
  • Enable AMDGPU Linux Driver in Debian Ubuntu mint


    To enable amdgpu we have to set special kernel boot parameters. The easiest way is to make it permanent and apply to all kernels (no messing around with grub.cfg) so we'll edit those defaults in /etc/default/grub by changing the GRUB_CMDLINE_LINUX_DEFAULT parameter. After that don't forget to run "update-grub"to apply it (otherwise amdgpu will never be enabled). The opensource driver for AMD is really quite impressive these days, as we show it works with ve........
  • apache symlinks denied even with followsymlinks


    Symbolic link not allowed or link target not accessible: /path/httpdocs/news.html There are a few reasons that can cause this message and this is for people who have ruled out the basics, eg. your symlinks are enabled and the right permissions are applied (but read on to learn about ownership requirements above the directory in question). So there are a few key things here that cause Apache not to follow symlinks:........
  • how to use ifplugd in Linux to execute a command or script when a NIC cable is unplugged or plugged in


    It is fairly simple to use once you know how to use it. However, the tricky thing is that by default it doesn't seem to be active or listen on any interface on manually specified. How To Install ifplugd First we install ifplugd sudo apt install ifplugd Let's enable it on our desired device(s) vi /etc/default/ifplugd set this line as so:........
  • mpv / mplayer with Radeon / AMD GPU Video Card Driver enable VDPAU GPU Accelerated Video Decoding


    The easiest way to know if your videos are playing with GPU acceleration are to watch the process of xplayer, mpv or whatever you are playing. The CPU usage should be no more than 10% for that process/program if it is using acceleration. Let's manually play with vdpau to make sure it works before we make it permanent: First make sure you have libvdpau installed: sudo apt install vdpau-driver-all If yo........
  • Ubuntu Linux Mint Debian xorg performance and tear-free tuning for AMD Radeon Based Cards


    I find that the default settings for the radeon driver that is applied to most AMD cards is horrible. For example by default TearFree is not enabled and it causes videos to have some kind of square artifacts. Here are the settings I have found most suitable for AMD cards: You need to create file in the following path and restart Xorg or your computer to apply it: *Beware that making a mistake here will possibly make your computer........
  • Ubuntu Debian Linux Mint r8169 r8168 Network Driver Problem and Solution


    This problem has been around forever, Linux seems to think it is fine to use the r8169 driver for an r8168 NIC but this often causes problems including the link not working at all. In my case ethttool shows the link up and detected but it simply does not work especially on a laptop that has been resumed from suspension. Sometimes it takes several minutes for it to work or to unplug and replug the ethernet. Here is the solution: Install th........
  • Linux Ubuntu Debian Centos How To Make a Bootable Windows 7, 8, 10, 2016, 2019 Server USB from ISO


    Use fdisk on your USB drive to create a bootable NTFS partition (in my case /dev/sdb): sudo fdisk /dev/sdb Welcome to fdisk (util-linux 2.27.1). Changes will remain in memory only, until you decide to write them. Be careful before using the write command. Command (m for help): n Partition type p primary (0 primary, 0 extended, 4 free)........
  • Debian Ubuntu Mint rc-local service startup error solution rc-local.service: Failed at step EXEC spawning /etc/rc.local: Exec format error


    Oct 18 11:06:46 server systemd[529]: rc-local.service: Failed at step EXEC spawning /etc/rc.local: Exec format error Oct 18 11:06:46 server systemd[1]: rc-local.service: Control process exited, code=exited status=203 Oct 18 11:06:46 server systemd[1]: Failed to start /etc/rc.local Compatibility. Oct 18 11:06:46 server systemd[1]: rc-local.service: Unit entered failed state. Oct 18 11:06:46 server systemd[1]: rc-local.service: Failed with result 'exit-code'.........
  • Linux Ubuntu Debian Missing privilege separation directory: /var/run/sshd


    service sshd status ● ssh.service - OpenBSD Secure Shell server Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor preset: enabled) Active: failed (Result: start-limit-hit) since Wed 2019-10-02 11:07:54 EDT; 36s ago Process: 476 ExecStartPre=/usr/sbin/sshd -t (code=exited, status=255) Oct 02 11:07:54 box systemd[1]: Failed to start OpenBSD Secure Shell server. Oct 02 11:07:54 box sys........
  • Centos 7 how to save iptables rules like Centos 6


    yum install iptables-services systemctl enable iptables service iptables save iptables: Saving firewall rules to /etc/sysconfig/iptables:[ OK ]........
  • qemu-kvm error "Could not initialize SDL(No available video device) - exiting"


    Now older versions of qemu-kvm didn't throw this error say if you just had "-video cirrus" when starting qemu-kvm. But newer versions do care. And this probably only applies to you if you are running from bash/terminal with remote kvm images. What you need to do is remove the "-video" part and just add -vnc :5 eg. this would fix the error: qemu-system-x86_64 -enable-kvm -boot order=cd,once=dc -m 1024 -drive........
  • Centos 7 tftpd will not work with selinux enabled


    In Centos 7 tftpd will not work with selinux. Clients will not be able to connect and this is all you'll see in the log (then nothing more): Sep 18 14:39:15 localhost xinetd[4327]: START: tftp pid=4331 from=192.168.1.65 On the client/computer side you will see this: TFTP. PXE-M0F: Exiting Intel Boot Agent Basically the client is being instantly connected and bloc........
  • Virtualbox vbox not starting


    If you've just installed VBox and it is not starting or working, the most common problem is usually that you don't have your kernel source installed, which means there is no kernel driver for vbox so it can't work. You may get an error that says "Kernel driver not installed" in your Virtualbox. So the first thing you should do is install your kernel source by running this: sudo apt-get install linux-headers-`uname -r`........
  • Cisco Unified Communications Manager / CUCM IP 8.6,10,12 Install Error Solution


    Install Errors on Version 12: This error happened on QEMU emulator version 2.11.1 pve-qemu-kvm_2.11.1-5 on Proxmox/Debian but installing on QEMU.12 on Centos 6 did not produce the error. *Update it is not related to the OS or QEMU version. This happened in Centos 6 too after a second install. What really causes this even though you successfully install........
  • Ubuntu Debian Mint Linux SSHD OpenSSH Server Not Starting After Reboot Solution


    If you get error messages like this it is usually because /var/run/sshd does not exist. root@userbox:/# service sshd status ● ssh.service - OpenBSD Secure Shell server Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor preset: enab Active: failed (Result: start-limit-hit) since Wed 2019-04-10 02:24:44 EDT; 1 Process: 511 ExecStartPre=/usr/sbin/sshd -t (code=exited, status=255)........
  • Cisco Unified Communications Manager 12 Install Errors on Proxmox/KVM


    The strange thing is that usually the first install or two will work on any new machine but then it suddenly won't. I had this experience on QEMU 2.13 on a different machine. There is something finicky or buggy about the CUCM installer even when choosing the same virtual hardware specs. qemu-kvm command: /usr/libexec/qemu-kvm -version QEMU PC emulator version 0.12.1 (qemu-kvm-0.12.1.2-2.506.el6_10.1), Copyright (c) 2003-2008 Fabrice Bellard ........
  • Cisco Unified Communications Manager 12 CUCM 12 - How To Enable Video Calling


    There are multiple layers but most are enabled by default such as the setting in the Phone Device Settings. However the one not enabled by default is the one in "Enterprise Phone Configuration". Enable "Cisco Camera" and then reboot your phones to enable it.........
  • Linux qemu-kvm How To Enable Soundcard in Guestl


    Pass QEMU this flag: -soundhw ac97 Or you could use (for a Ensoniq soundcard): -soundhw es1370 However on some machines I get this error: pulseaudio: pa_simple_new for capture failed pulseaudio: Reason: Connection terminated pulseaudio: pa_simple_new for capture failed pulseaudio: Reason: Connection terminated audio: Failed to create voice `ac9........
  • WebRTC Vulnerability Shows Local IP Address Even When Using a Proxy or VPN Firefox Fix And Disable Solution


    If you visit a site that exploits the WebRTC vulnerability including whatismyipaddress.com it may show "Local IP Address" which would be the real IP of your machine. The vulnerability works on Windows and Linux machines (contrary to false information on the web which claims it only affects Windows). The above works and happens even if you are using a proxy or VPNaccount like ProVPNAccounts.com It is easy........
  • ssh reverse proxy to enable remote access behind a LAN and firewall


    So say you are behind a typical NAT/LAN setup whether at home, work or while travelling. What if you have a computer or server that you need to connect to from the outside? Yes you could use a VPN but a quick and dirty, temporary and secure way is to use SSH's Reverse Tunneling Proxy feature. Requirements On the remote ssh server host you need the GatewayPorts option enabled in sshd_config (be........
  • Cisco Router Setup Guide and Tutorial Howto With Commands and Examples


    In most of the Cisco router IOS I find the ports like ge0/0 ge0/1 and ge0/2 or whatever your ports are down. They will not even give you a link light. So one of the first tasks should be getting the port you are working with up. In my case the first goal is often connectivity with the LAN and WAN. LAN = your local area network (eg. in the office/home ) WAN= your ISP/public internet (eg. fiber/cable/dsl/ethernet).........
  • Cisco DHCP Snooping Relay Setup Information


    Switch#show ip dhcp snooping Switch DHCP snooping is disabled DHCP snooping is configured on following VLANs: 1 Insertion of option 82 is enabled circuit-id format: vlan-mod-port remote-id format: MAC Option 82 on untrusted port is not allowed Verification of hwaddr field is enabled Interface&nb........
  • Cisco Switch Setup Guide Command List


    Enter configuration console: enable configure terminal This is important because if your console doesn't look like below none of the commands will work! Switch(config)# Save and Apply Settings wr Show Switch Configuration: show run Show Port List/Sta........
  • Cisco Switch Reset To Factory Defaults


    This works on the 2000 and 3000 series generally. *The easy way is to just hold the mode button for 10+ seconds. The full/proper way is below: 1.) Either power on the unit and hold the "mode" button or hold the "mode" button until you see the below: 00:04:08: %SYS-7-NV_BLOCK_INIT: Initalized the geometry of nvram 00:04:08: %EXPRESS_SETUP-6-CONFIG_IS_RESET: The configur........
  • How To Boot Cisco CUCM UCSInstall 8.6, 10, 11 and 12 on KVM/Proxmox


    The key thing is that you must use a "machine"id of "pc-1.3" or it will say your hardware is not supported. Additionally you MUST use a virtio disk or you will get a ks_pre.sh error as soon as the install starts (a look at logs will show it can't find a disk). This is funny because even though the OS finds the disk and an fdisk -l shows it, it looks like the script looks for a /dev/vda device (virtio) and nothing else, so if you didn't use Virtio as you........
  • Windows Server 2012, 2016, 2019 How To Install and Missing Disabled Telnet Client


    By default telnet is not enabled or installed on the latest Windows servers so you'll get an error saying: telnet is not recognized as an internal or external command dism /online /Enable-Feature /FeatureName:TelnetClient ........
  • Linux Mint 18.2 Create Config File To Start Application Upon Login


    This is not about systemd/systemctl and not about "onboot" so there's no rc.local trick here but it's the GUI/Gnome etc when a user logs in that a command is launched. Put this in your home dir The .config/autostart directory is where Linux Mint/Ubuntu checks for autostart application config files mkdir -p ~/.config/autostart Create a new entry/file that starts an application........
  • SSH error cannot Forward or Listen "bind: Cannot assign requested address"


    debug1: Local connections to LOCALHOST:18006 forwarded to remote address 192.168.1.93:8006 debug1: Local forwarding listening on 127.0.0.1 port 18006. debug1: channel 0: new [port listener] debug1: Local forwarding listening on ::1 port 18006. bind: Cannot assign requested address What we are seeing is that we can't listen on an IPV6 address of ::1. We need to tell SSH to stop using IPV6 so we'll edit ssh_config to take care of this issue........
  • VMWare Pro Workstation Nic Disconnected and No IP Using NAT


    By default VMWare Workstation often doesn't work as we would like. If you create a VM with a default NAT IP it won't work you will find the NIC is disconnected (even though on the VMWare side it says connected including at Power On). How To Solve It 1.) Create New VMNet for NAT Click "Edit" -> "Virtual Network Editor" Click "Add Network" Select Network To Add "VMNet1" (........
  • bind named error solutions named[2169]: error (no valid DS) resolving / error (broken trust chain) resolving / : error (no valid RRSIG) resolving 'com/DS/IN':


    Below are the common errors you'll get with named AKA bind if your time is incorrect. The simplest solution is to install and run ntpd to correct your system's time (install ntpd if it is not installed) systemctl start ntpd systemctl enable ntpd Dec 20 13:36:16 hostingbox named[2169]: error (no valid DS) resolving 'develop.waxrain.com/A/IN': 14.215.150.17#53........
  • Why SMART is not smart at all and doesn't properly predict disk errors that cause a kernel panic or crash


    Before getting into the output here is my typical experience with SMART, there is what I call a "bad disk" with pending and uncorrectable sectors that cannot be reallocated. It has caused a kernel panic and system crash repeatedly as we can see from the logs. But SMART says it has "PASSED" its self assessment. SMART is still useful to me but it is more about looking at Current_Pending_Sector. Any time I have had anything but 0 for that attribute it........
  • How Does Cisco CUCM (Cisco Unified Communication Manager) Work?


    Cisco's CUCM (Cisco Unified Communication Manager) is a system that combines voice, video, data and mobile products into a single unified management suite. At its core, the CUCMis like a "Super PBX" that controls the flow of all communications through an organization even single or multiple site deployments. Cisco's CUCMmakes communication more effective and simple through centralized management and unification of communications resources.........
  • systemd management using systemctl and journalctl to check systemd logs


    systemd is like the service manager for your Centos and other modern Linux distributions (including Debian/Mint/Ubuntu) allows you to enable services, stop them, restart them, check their status and even reboot your system. The key commands or arguments you will use with systemctl are the following: Unit Commands: list-units [PATTERN...] List loaded units &nbs........
  • AMD Set Fan Speed and Other Powerplay Memory/CPU Timings with a Linux script


    You can do other things but this particular script is just to set all AMD cards to 80% fan speed (remember this script needs to applied everytime you reboot). You could set it is a cron or just throw it into /etc/rc.local basepath=/sys/class/drm for hwmon in `ls -1 /sys/class/drm|grep card[0-99]$`; do echo card=$hwmon; hwmonname=`ls $basepath/$hwmon/device/hwmon|grep hwmon[0-99]` hwmonpath=$basepath/$hwmon/device/hwmon/$hwmonname echo "ec........
  • hwloc-nox set CPU affinity in Linux


    sudo apt-get install hwloc-nox Reading package lists... Done Building dependency tree Reading state information... Done The following NEW packages will be installed: hwloc-nox 0 upgraded, 1 newly installed, 0 to remove and 530 not upgraded. Need to get 151 kB of archives. After this operation, 453 kB of additional disk space will be used. Get:1 http://archive.ubuntu.com/ubunt........
  • vmkping -I vmk1 10.0.2.69 PING 10.0.2.69 (10.0.2.69): 56 data bytes sendto() failed (Host is down)


    [root@localhost:~] vmkping -I vmk1 10.0.2.69 PING 10.0.2.69 (10.0.2.69): 56 data bytes sendto() failed (Host is down) vsphere distributed switch vmotion not working [root@localhost:~] esxcfg-route -l VMkernel Routes: Network Netmask Gateway Interface&........
  • How To Enable Nested KVM so guests can virtualize with hardware extensions


    How to check if nested KVM is enabled by doing a cat on nested inside sys Nested KVM is mainly important for testing for example if you wanted to install VMWare or Proxmox Nodes in a virtual environment for testing. Without nesting, the performance will be extremely slow, since the VMs within the nodes will not be using Virtualization extensions. I've used wildcard on kvm_ because it could be kvm_intel or kvm_amd depending on whether y........
  • VMWare Vsphere VCSA Graphical Install Creates json


    yes it does create its own json ============================================ cat /tmp/vcsaUiInstaller/ovftool-20180809-175238948-20180809-175603497.log |grep -i json 2018-08-09T17:56:04.238-07:00 verbose OVFTool[30966] [Originator@6876 sub=Default] Manifest file entry: SHA1(VMware-vCenter-Server-Appliance-6.7.0.12000-8832884_OVF10-file1.json) = 1deb658c724767697587d5909c4051c01813e6a1 --> ........
  • Debian Mint Ubuntu compiling xmr-stak


    sudo apt-get install libcurl4-openssl-dev git build-essential autotools-dev autoconf libcurl3 sudo apt-get install libcurl4-gnutls-dev git clone https://github.com/wolf9466/cpuminer-multi sudo apt-get install cmake libpthread-* libmicrohttpd-dev libssl-dev libhwloc-dev git clone https://github.com/fireice-uk/xmr-stak-cpu.git make install cd bin chmod +x xmr-stak-cpu ./xmr-stak -O xmr........
  • How to qemu-kvm enable bridged networking in Debian Ubuntu Linux Mint on KVM containers


    I've read a few guides about this but they didn't work for me. sudo apt-get install bridge-utils #don't think the above is enough it won't work still even though you have by default an /etc/qemu-ifup that handles it if you have the right tools and setup sudo qemu-system-x86_64 -net tap -net nic -enable-kvm -cpu host,vmx=on ~/VirtualBox VMs/vsphere-vcenter/vsphere-vcenter.vdi W: /etc/qemu-ifup: no bridge for guest interface foun........
  • VirtualBox Nested Virtual Machine Containers with KVM Not Working no SVM or VMX module in the guest


    I can't get vmx cpu extensions to show up in Virtualbox guests despite enabling nested paging and enable vmx in virtualbox guest but this doesn't help that you check VT-X or the AMD Virtualization SVM it enables it for the guest to use BUT does not pass it through. This means if you check cat /proc/cpuinfo in the guest you will see the CPUdoesn't support virtualization. It looks like VirtualBox still hasn't implemented this! But there is good news I&n........
  • OVF Tool: Error: Task failed on server: This host does not support Intel VT-x. VMWare VCenter install On ESXi ERror


    Intel VT-X is enabled in Virtualbox but it doesn't seem to pass through the needed vmx extension despite the following variables on the host confirming it is enabled: cat /sys/module/kvm_intel/parameters/nested Y cat /sys/module/kvm_intel/parameters/ept Y OVF Tool: Disk progress: 99% OVF Tool: Transfer Completed OVF Tool: Powering on VM: Embedded-vCenter-Server-Appliance- OVF Tool: Task p........
  • Relocating modules and starting up the kernel - VMWare ESXi 6.7 Error and Solution


    I had this error in an unsupported CPUon VMWare 6.7 and apparently this sometimes works especially on older VMWare versions like 6.5 5.5 etc (but in my case it did not). To make sure it proceed when you see "Loading VMWare" Hit "Shift+O" Then add "ignoreHeadless=TRUE" See an example below:........
  • VMWare 6.7 VCSA VSphere ESXi Management SSO Install Guide on Linux using the CLI


    #mount the VCSA DVD mount /dev/sr0 /mnt/cd #alternatively you could mount the iso directly mount -o loop vcsa.iso /your/mount/path #for this purpose we are using the CLI installer on Linux cd /mnt/cd/vcsa-cli-installer/lin64 #no it's not going to be that easy you can't just run vcsa-deploy like that you need to use a template or configured .json file ./vcsa-deploy Usage: vcsa-deploy [-h] [--version] [--supported-deploymen........
  • postfix errors fatal: no SASL authentication mechanisms /usr/libexec/postfix/smtpd: bad command startup -- throttling solution


    Jul 3 22:12:17mailserver postfix/smtpd[6195]: fatal: no SASL authentication mechanisms Jul 3 22:12:18mailserver postfix/master[4881]: warning: process /usr/libexec/postfix/smtpd pid 6195 exit status 1 Jul 3 22:12:18mailserver postfix/master[4881]: warning: /usr/libexec/postfix/smtpd: bad command startup -- throttling This only ever happens in my experience when the authentication method is actually Dovecot. Usually the problem........
  • Linux Mint Black Screen after boot no graphics solution


    This is not the normal "black screen"issue and I was shocked to eventually find out why. The normal advice of reconfiguring Xorg didn't work. Even booting into "Recovery Mode" did not help. Here is the short end of the stick that fixed it: sudo apt-get install mdm mate-desktop-environment Yes you got it right, mdm and the mate-desktop-environment / gnome were somehow uninstalled. This must be whe........
  • How To Install Seamonkey Web Browser on Debian Ubuntu Linux Mint


    You can download the latest Sea Monkey releases here and 64-bit issues are a thing of the past now: It's a little tricky if you are running a 64-bit OS which most people will be. The weird thing is that the Seamonkey website for Linux seems to only provide a 32-bit download. seamonkey-2.49.2.tar.bz2 Seamonkey is still provided as a tar.bz2 which you need to extract and run manually. First........
  • Prevent SSH Bruteforce and Hacks By Disabling Password Authentication


    One simple way to keep your server public but almost impossible to hack via SSHis to disable password authentication over SSH. This means the only way in is via your own private key that only you should have. Edit your /etc/ssh/sshd.conf file Set this option PasswordAuthentication no Restart your SSH server. service sshd restart ........
  • Installing SSL Certificate with Chain Intermediary CA File


    Some of the cheaper or newer SSL suppliers will require this to work properly (otherwise you may be prompted that the cert is invalid when it's not the case but it will certainly scare off your users!). In the Apache vhost conf for the domain here is what you add: SSLCACertificateFile /path/to/your/cafile.pem Here is a full example of an SSL Vhost config in Apache using a CA Certificate file ........
  • [Wed Sep 20 15:34:44 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [Wed Sep 20 15:34:44 2017] [error] Init: Unable to read server certificate from file /www/ssl-certs/server.crt [Wed Sep 20 15:34:44 2017] [error] SSL Library Err


    [Wed Sep 20 15:34:44 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [Wed Sep 20 15:34:44 2017] [error] Init: Unable to read server certificate from file /www/ssl-certs/server.crt [Wed Sep 20 15:34:44 2017] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Sep 20 15:34:44 2017] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error........
  • vbulletin 4.2.5 after upgrading from 3.6 white screen fatal php errors


    The code may lead you to believe you have an incompatible template but if you are not trying to use an old template currently that is not the issue. I actually deleted all 3.x style templates to make sure. What the issue is, is old plugins that are not compatible but Vbulletin does not seem to account for this except that you'll see a fatal PHPerror. You should disable all plugins and then enable one by one until you find the one that is causing the issue. &........
  • /usr/bin/supermin-helper exited with error status 1. To see full error messages you may need to enable debugging. See http://libguestfs.org/guestfs-faq.1.html#debugging-libguestfs at /usr/bin/virt-list-partitions line 177.


    virt-list-partitions kvmusertest.img /usr/bin/supermin-helper exited with error status 1. To see full error messages you may need to enable debugging. See http://libguestfs.org/guestfs-faq.1.html#debugging-libguestfs at /usr/bin/virt-list-partitions line 177. #solution update-guestfs-appliance........
  • Centos 5.9 Working Vault Repo file


    Centos 5 is not supported running yum will produce an error like this: YumRepo Error: All mirror URLs are not using ftp, http[s] or file. Eg. Invalid release/ removing mirrorlist with no valid mirrors: /var/cache/yum/base/mirrorlist.txt Error: Cannot find a valid baseurl for repo: base Solution - Update this file CentOS-Base.repo # CentOS-Base.repo........
  • ffmpeg trouble concatenating similar but different files


    When things go wrong your video is basically unplayable or the first video plays fine and then freezes when moving on to the next. Generally if both videos weren't produced with the exact 100% same settings you will have issues. You can try the basic concat but it often won't work right. Solution for me: My example uses 3 videos in total so "n=3" and a=1 to include audio. ffmpeg -threads 12 -i file1.mp4 -........
  • ffmpeg Linux Mint download, compile and install howto


    #if you have nvidia make sure you install the nvidia-cuda-toolkit so hardware acceleration can be used wget http://ffmpeg.org/releases/ffmpeg-3.3.2.tar.bz2 tar -jxvf ffmpeg-3.3.2.tar.bz2 cd ffmpeg-3.3.2/ ./configure --disable-yasm install prefix /usr/local source path ........
  • Centos 7 A start job is running for dev-mapper-clx2droot.device (8min 44s / no limit)


    This error is usually because of some sort of encryption in this case a Seagate enclosure with encryption (even though not enabled) did not allow this hard drive to boot.........
  • Openshot 2.2 is very unstable always crashing in Linux Mint 18.1!


    Jun 1 15:45:42 videoeditor-desktop org.mate.panel.applet.MintMenuAppletFactory[1882]: project_data:INFO Missing folder chosen by user: Jun 1 15:45:42 videoeditor-desktop org.mate.panel.applet.MintMenuAppletFactory[1882]: project_data:INFO Removed missing file: MAH02949.MP4 Jun 1 15:45:57 videoeditor-desktop org.mate.panel.applet.MintMenuAppletFactory[1882]: ui_util:WARNING Icon theme media-playback-start not found. Will use backup........
  • xdebug easiest howto get going


    Just make sure you have php-xdebug installed and edit your php.ini: [xdebug] xdebug.profiler_enable = 0 xdebug.profiler_enable_trigger = 1 xdebug.profiler_output_dir = "/tmp/xdebug/" xdebug.output_name = "cachegrind.out.%t-%s" Also make and set permissions on /tmp/xdebug: mkdir /tmp/xdebug chmod 777 /tmp/xdeb........
  • Coolermaster CM Storm Enable LED Backlight in Fedora/Ubuntu/Mint Linux Howto - MB24 Keyboard and MS2K Mouse


    Just type the following in the bash/terminal shell to enable the blue LED light on the Coolermaster CM Storm keyboard: xset led 3 To make it automatic and permanent execute the following as root: echo "xset led 3" >> /etc/rc.local This is a fairly nice gaming keyboard whichI bought because I type very quickly and the cheap standard keyboards simply can't keep up!........
  • zip warning: name not matched: in Linux Solution


    There are usually two reasons for this. #1 The most common is that you need to enable the -r (recursive) flag with zip to make it recurse into directories. So the solution is to use -r zip -r somefile.zip yourfiles #2 If you are using bash scripting based on ls without the full path or for some other reason the full path is missing, zip looks for the files in the current directory so this will always fail.........
  • Linux SAMBA does not work with symlinks


    At first I thought it's just not possible but there is actually an option that can be enabled to make symlinks work with Samba. Then I put this under the [global] section Note: It's "wide links" and not "wide symlinks" (some other sites have incorrect info which was a frustrating waste of time :)) Add this to your smb.conf follow symlinks = yes wide links = yes unix ex........
  • LG Phoenix 2 Escape Disable AT&T Phonebook/Contacts Error Message


    A friend has this issue where you try to go to contacts and you get a message saying you need to enable data (basically if you are not really on the AT&T network). The Solution - You can disable this by the following code in the dialer: *#*#2666#*#*........
  • Centos 5 OpenSSL does not support TLS 1.2 Apache Error


    [Thu Jan 26 14:13:31 2017] [notice] caught SIGTERM, shutting down [Thu Jan 26 14:14:00 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [Thu Jan 26 14:14:00 2017] [error] Server certificate is expired: 'Server-Cert' [Thu Jan 26 14:14:00 2017] [notice] SSL FIPS mode disabled [Thu Jan 26 14:14:07 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec) [Thu Jan 26 14:14:07 2017] [error] Server certificate is expired: 'Server-Ce........
  • cPanel Install Error kernel ipv6 module support solution


    2017-01-12 14:25:36 529 (ERROR): The installer was unable to verify that your kernel supports IPv6. 2017-01-12 14:25:36 530 (ERROR): The message received when trying to create an IPv6 socket was Address already in use 2017-01-12 14:25:36 531 (ERROR): Please ensure that the ipv6 module is enabled and loaded in your kernel. 2017-01-12 14:25:36 532 (FATAL): Exiting... Solution This happened........
  • ADATA SU800 256GB 3D NAND Flash SSD Test & Review


    I keep reading these drives are slower, but they are cheap and still SSDand work very fast for my needs. As you can see the sequential read is 481-491MB/s, if I put them in MDADM RAID10 mode (normal RAID1) they should give me well over 900MB/s and with redundancy and being very cheap for what they offer. [1232206.315622] scsi 8:0:1:0: Direct-Access ATA ADATA SU800&........
  • mcp55 NIC not working at boot on Centos 6.6-6.8


    forcedeth 0000:00:08.0: irq 25 for MSI/MSI-X forcedeth 0000:00:08.0: eth0: MSI enabled forcedeth 0000:00:08.0: eth0: no link during initialization ADDRCONF(NETDEV_UP): eth0: link is not ready forcedeth 0000:00:08.0: eth0: link up ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready Dec 1 18:21:32 box15 kernel: forcedeth: Reverse Engineered nForce ethernet driver. Version 0.64. Dec 1 18:21:32 box15 kernel........
  • Linux how to enable and disable NCQ


    To disable NCQ in the Linux kernel (change sda to match your device). echo 1 > /sys/block/sda/device/queue_depth To enable NCQ (change sda to match your device). echo 31 > /sys/block/sda/device/queue_depth........
  • Linux Mint 17 How to Enable File Sharing Option in File Manager


    I still cannot understand how this would not be enabled by default and I struggled to find the reason why with manually installing samba etc.. wondering why the option for sharing was not in the menu. On Linux Mint "MATE" the package is called "caja-share" and on Cinnamon it is called "nemo-share" so edit the below command as necessary: *Also note that the "samba" package is necessary as it is not inst........
  • Cannot load /etc/httpd/modules/mod_file_cache.so into server: /etc/httpd/modules/mod_file_cache.so:


    Stopping httpd: [FAILED] Starting httpd: httpd: Syntax error on line 73 of /etc/httpd/conf/httpd.conf: Cannot load /etc/httpd/modules/mod_file_cache.so into server: /etc/httpd/modules/mod_file_cache.so: cannot open shared obje........
  • Apache SSL Reverse Proxy Very Slow Solution


    This is a simple fix but not a simple problem and it still doesn't make sense to me. But in a nutshell if your target proxy server works fast when accessing directly over SSL then this may be your issue. It seems SSL does not play nicely when the target proxy destination/host has a riduculously long key (such as 8192 bits long). Now this is normally not a problem, in fact the target server could be accessed with hardly any delay directly despite such a long key.........
  • iptables: Applying firewall rules: iptables-restore: line 40 failed


    service iptables start iptables: Applying firewall rules: iptables-restore: line 40 failed [FAILED]........
  • MySQL PHP adding a backslash/escaping apostrophes Solution


    The first thing to diagnose is what is actually in the database (use PHPMyAdmin or CLI). You will of course either find that the backslash is either in the database or not. If the backslash is in the database you probably have magic quotes gpc/runtime on and/or are calling the "addslashes()" function which does this. If you are escaping your data with mysql_real_escape_string() then think again, you probably have magic quotes gpc enabled either in php.ini or........
  • Linksys E2500 DD-WRT Upgrade Instructions and Enabling 5ghz with Tomato Firmware


    1.) Flash directly to this file: http://tomato.groov.pl/download/K26RT-N/build5x-132-EN/Linksys%20E-series/tomato-E2500-NVRAM60K-1.28.RT-N5x-MIPSR2-132-Max.zip *I was never able to get the larger "Mega" file to work, at least not initially so I recommend the file above. To enable 5ghz I had to do the "Clear NVRAM" Option before it was shown. 2.) Or if you don't need 5ghz (most devices do not support it and cannot........
  • Linux Mint/Ubuntu/Debian Dual NICs networks problem when enabling and disabling one device


    The Scenario You have dual NICs and you disable NIC1 which uses 192.168.1.1 as its gateway. With NIC2 you enable it/connect it to another network which also has the gateway 192.168.1.1 Everything will work fine at this point. When switching back to NIC1 even with NIC2 disabled and even unplugged, the OS basically can't pick up the new/updated ARP entry of the old device for 192.168.1.1 and perhaps thinks it is a security risk or spoof of some sorts and blocks i........
  • Errors were found while checking the disk drive for /.


    Iwill start by saying I think I know what caused this boot-time error on Linux Mint but should also apply to Debian and Ubuntu. I changed my BIOS time to several hours in the past to match the current time, but this caused Linux to think there were incorrect filesystem times. The problem is that it seems when you hit this I am not sure what is happening, it doesn't seem to be doing fsck and hangs without prompting the user. What I have found is that........
  • How To Record Your Screen with Linux


    Istanbul: At least in Linux Mint the latest 17.2 version Istanbul freezes when "In process of saving to Disk" even with the workaround of not having Sound recording enabled. It looks like a great app but bugs like this seem to have plague it for over 8 years! Kazam: This little app works great, its only bug is that when you try to tell it to record a window or area it puts a gray cov........
  • OpenVZ how to enable FUSE in the container


    vzctl set 2 --devnodes fuse:rw --save Where "2" is the ctid........
  • Virtualbox errors on Ubuntu/Debian/Mint


    The solution was to reinstall the vbox dkms package and do a manual modprobe of the modules it makes. I never sorted out the unable to start due to the USB issue, I did have the guest additions installed but the only way to boot was to change the pointing device from USB to PS2 and then to disable the USB controller (if your pointing device is set as USB, disabling USB will not work because it will re-enable by default when it sees your pointing device is USB, this is w........
  • Installing zoneminder on Ubuntu/Debian Linux Howto


    sudo apt-get install zoneminder [sudo] password for one: Reading package lists... Done Building dependency tree Reading state information... Done The following packages were automatically installed and are no longer required: libuser-perl python-evince kdebase-apps kwrite unixodbc libgnomeprint2.2-data python-soappy vgabios python-metacity hddtemp python-mediaprof........
  • OpenVZ Install Guide Again / Quick Setup


    yum -y install wget wget -P /etc/yum.repos.d/ http://ftp.openvz.org/openvz.repo rpm --import http://ftp.openvz.org/RPM-GPG-Key-OpenVZ yum -y install vzkernel vzctl #enable ip_forward sed -i s/'net.ipv4.ip_forward = 0'/'net.ipv4.ip_forward = 1'/g /etc/sysctl.conf #all interfaces should not send redirects echo "net.ipv4.conf.default.send_redirects = 1" >> /etc/sysctl.conf echo "net.ipv4.co........
  • Openvz Enable netadmin


    vzctl set $CTID --devnodes net/tun:rw --capability net_admin:on --save........
  • HP Procurve Switch 2824 CLI Telnet Experience , Guide and Tutorial


    ------------------------------------- ProCurve J4903A Switch 2824 Software revision I.10.77 Copyright (C) 1991-2009 Hewlett-Packard Co. All Rights Reserved. RESTRICTED RIGHTS LEGEND Use, duplication, or disclosure by the Government is subject to restrictions........
  • KVM/QEMU how to boot from direct kernel vmlinuz and initrd with networking


    Thsi is very handy when doing your own kernel development. -m specifies how much ram (in the example it is 768MB) -kernel specifies the path to the kernel file -net tap,ifname=tap1,script=no (the ifname=tap1 is what you need to change and setup manually). *Run "tunctl -b" to create a tap device and use the one it gives you for ifname= Enable networking to the outside like this: *Note we assume that your bridge is br0 i........
  • Vbox/Virtualbox devices grayed out for non-root user solution


    It is a permissions issue that is hard to fix. All but one USB device is greyed out. I am already a member of "vboxusers" I have already enabled and disabled USB support for the guest. I have already reinstalled the latest VBOx guest editions If running as root it all works fine Changing........
  • How to root and unlock S4 in Canada Bell/Rogers/Telus/Fido I337 4.4.2


    i337 Canada on Bell is hard to root or even install TWRP Installed TWRP from Odin and my computer gave me the bluescreen at the end but it seemed to be successful (after ODIN said reset). TWRP mode does not seem to enter, instead you get the Android recovery mode with Volume up + Home http://galaxys4root.com/galaxy-s4-root/how-to-root-att-or-verizon-galaxy-s4-on-android-4-4-2/ 1.)........
  • Openvz iptables v1.4.7: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. solution


    iptables -t nat -A PREROUTING -p tcp -m tcp -d 192.168.2.1/32 --dport 3389 -j DNAT --to-destination 192.168.5.2:3389 iptables v1.4.7: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. The above is often because you don't have the correct modules loaded on the hostnode or enabled for the container but in some cases it's actually a weird openvz setting. Che........
  • 2CO/2Checkout Howto Enable IPN/Notification Setup & Script Info


    https://www.2checkout.com/documentation/notifications/order-created It shows all the parameters that get passed so you can make a simple script to process it. To enable 2CONotifications you need to do the following: Login Browse to the top right to an icon that looks like a "circle with horizontal lines inside" - Notifications. Enter the appropriate URL for your IPN/Notification processing script (........
  • Acer Aspire E1-522-5603 Howto Enter BIOS - Press F2


    Press F2, you wouldn't know this because like most new computers, it doesn't announce the required key unless you enable it from the BIOS. ........
  • How to Enable RDP Remote Desktop in Windows 2008 Server


    Start -> Administrative Tools ->Server Manager Under "Computer Information" click "Configure Remote Desktop". Under "System Properties" choose the type of "Allow connections" you want. That's all there is to enabling RDP Access in 2008 server.........
  • Asterisk VOIP Sipura/Linksys PAP2T Calls Not Being Received Solution


    This problem seemed to happen recently but was likely causing issues before where the phone(s) do not ring. Now there are a few reasons why this can happen especially if your adapter has DND mode enabled (disable it). However that wasn't my issue and Ionly figured it out the other day when by fluke if you're on the phone (making a call) then calls will come in. That's when Ifigured out the solution: This likely app........
  • Enable Multiple RDP Sessions on Windows XP, Vista, 7 Howto


    http://deepxw.blogspot.ca/search/label/Universal%20Termsrv.dll%20Patch The above site has the patch that does this essentialy turning a Desktop Windows into a full fledged RDP server.........
  • OpenVZ Quick Install Copy & Paste for Centos 6


    yum -y install wget wget -P /etc/yum.repos.d/ http://ftp.openvz.org/openvz.repo rpm --import http://ftp.openvz.org/RPM-GPG-Key-OpenVZ yum -y install vzkernel vzctl After that just reboot and you may also have to enable ip_forward in /etc/sysctl.conf........
  • Centos Howto Upgrade to PHP 5.3 from 5.2


    It's not as simple as "yum install" as you can see below and it doesn't stop there. yum install php53 Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * rpmforge: mirror.us.leaseweb.net * extras: centos.mirror.rafal.ca * updates: centos.mirror.nexicom.net * base: centos.mirror.nexicom.net * addons: centos.mirror.nexicom.net Setting up Install Process........
  • What a hdd hard drive and mdadm RAID array failure looks like in Linux


    [3805108.257042] sd 0:0:0:0: [sda] 1953525168 512-byte hardware sectors: (1.00 TB/931 GiB) [3805108.257052] sd 0:0:0:0: [sda] Write Protect is off [3805108.257054] sd 0:0:0:0: [sda] Mode Sense: 00 3a 00 00 [3805108.257066] sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA [3805108.257083] sd 0:0:0:0: [sda] 1953525168 512-byte hardware sectors: (1.00 TB/931 GiB) [3805108.257090] sd 0:0:0:0: [sda] Write Protect is off........
  • Asterisk iptables block bruteforce attacks howto with fail2ban


    yum -y install fail2ban vi /etc/fail2ban/jail.conf [asterisk-tcp] enabled = true filter = asterisk action = iptables-multiport[name=asterisk-tcp, port="5060,5061", protocol=tcp] sendmail-whois[name=Asterisk, dest=you@example.com, sender=fail2ban@example.com] logpath = /var/log/asterisk/messages maxret........
  • Centos 6 samba server not showing up in WORKGROUP


    This is different than Centos 5, you have two services btu they are called "smb" and "nmb". You need to enable and start "nmb" in order for your samba server to be listed. chkconfig nmb on; chkconfig smb on service nmb start;service smb start........
  • Dell CS24-NV7 Howto Enable LAN/NICs and PXEBoot in the BIOS


    Dell CS24-NV7 Unusually the Virtualization was enabled when I got this server but all the NICs were diabled in the BIOS including PXE boot! Advanced -> Advanced Chipset Control PCI Slot 1 Option ROM: Enabled Onboard LAN1 Control: Enabled LAN1 Option ROM Scan: Enabled (you need it for PXE boot) Onboard LAN2 Control: Enabled LAN2 Option ROM Scan: Enabled *you will need to reboot and........
  • VBox/Virtualbox solution to NS_ERROR_CALL_FAILED error


    VBox/Virtualbox solution to NS_ERROR_CALL_FAILED error This is likely because you have 2D/3D acceleration enabled and your card doesn't support it. Eg. you switched video card drivers or video cards that did support it. The funny thing is that you CANNOT disable those options as they are "greyed" out in the VBox client GUI. The config file has to be manually changed and fixed with these options "accelerate3D="false" accelera........
  • kvm centos cannot compile error


    ./configure ./configure: cannot locate gcc 3.x. please install it or specify with --qemu-cc yum -y install gcc make ./configure ./configure: cannot locate gcc 3.x. please install it or specify with --qemu-cc yum -y install compat-gcc-* ./configure Error: Could not find alsa Make sure to have the alsa libs and headers installed. yum -y install alsa-lib-devel ./configure........
  • Sipura / Linksys PAP/VOIP/SIP Adapter Issue Can't receiving incoming phone calls and you're behind a NAT router (99% of people)? solution


    Sipura / Linksys PAP/VOIP/SIP Adapter Issue Can't receiving incoming phone calls and you're behind a NAT router (99% of people)? 1. Login to the adapter. 2. Click on "Advanced" (location varies but usually somewhere on top) 2. Click on "SIP" 3. Scroll down to "NAT" (usually at the bottom). You'll find 2 columns with 4 rows of drop-down boxes (they'........
  • PHP Security - Enable Safe Mode to increase security


    Everyone should be running with safe_mode on in /etc/php.ini (on Centos) as it makes exploiting your system more difficult is PHPcan't execute anything on the system if a script is exploited. For example with Safe_Mode on the only executable files on the system are ones in the safe_mode_exec_dir = /safephp This is crucial, if you must execute anything from PHPthen you have to copy the binary and assign to the user that Apache runs your site under.&........
  • CPanel suhosin install failed


    /scripts/phpextensionmgr install PHPSuHosin Updating md5sum list Fetching http://httpupdate.cpanel.net/cpanelsync/easy/targz.yaml (connected:0).......(request attempt 1/12)...Resolving httpupdate.cpanel.net...(resolve attempt 1/65)... Fetching http://httpupdate.cpanel.net/mirror_addr_list (connected:0).......(request attempt 1/3)......connecting to 74.50.120.123...@74.50.120.123......connected......receiving...100%......request success......Done........
  • htaccess block IPs while RewriteEngine/modrewrite is enabled solution


    Istruggled with this for awhile because the normal setup won't work if modrewrite is being used: ORDER ALLOW, DENY So the solution is something like this: order allow,deny deny from 12.43.12.0/24 allow from all ........
  • Dell FS12-NV7 2U Server Information and Guide


    I've got one of these for testing projects from work at home and got more than I bargained for with the time I've spent on it due to the storage handing/Perc 6/i cards. My particular model came with the following: 2U Rack Mount Server with Rails 2xOpteron 2373 EE (Quad Core, there is a 6-core version that can be found at times) 16GB RAM 2 x 250GB Seagate SATA 2 x Dell Perc 6/i (horrible and a nightmare to work........
  • Dell Perc 6/i SATA benchmarks without battery


    The results are not bad, the Hitachi performs the same as it does in a SATA2 motherboard. However, the 2TB is much different, on a similar 2TB Toshiba I get about 198MB/s on a different motherboard vs the 2TB Hitachi which should produce similar results. This Dell Perc 6/i is on a PCI x8 riser card and is connected to a 12-port backplane. Adapter #0 Enclosure Device ID: 32 Slot Number: 0 Enclosure position: N/A De........
  • LSI MegaRAID Adventures, Guide and HowTo


    LSi Megaraid At first it was configured as a RAID 0, then I deleted the Virtual Disk Group. I thought both drives would be shown and detected in Linux as sda and sdb but it actually shows nothing. To make them work you have to hit Ctrl+R before the system boots (when prompted) and create a Virtual Disk Group. In my case I created each one as RAID 0 (with a single drive only) as I just wanted JBOD but there is no such option or default in these Dell Pe........
  • pxe-32 tftp open timeout


    pxe-32 tftp open timeout The solution was to enable tftp in xinetd with "chkconfig tftp on". See the troubleshooting below: chkconfig --list NetworkManager 0:off 1:off 2:off 3:off 4:off 5:off 6:off acpid 0:off&n........
  • open /dev/kvm: No such file or directory failed to initialize KVM: Operation not permitted - Solution


    open /dev/kvm: No such file or directory failed to initialize KVM: Operation not permitted [ 96.084502] kvm: disabled by bios Any of the above means that "Virtualization" is not enabled in your BIOS. Most servers and Desktops (non-mainstream) can do this no problem but leave it off by default. Note that some systems even though the CPU supports it, don't allow enabling of Virtualization for some reason (especially some lap........
  • iptables redirect ports to a different host and port + NAT Masquerade howto/solution


    This is important if you need public access to internal IPs such as at your office and don't want to use a VPN just to SSHinto different servers: Below forwards the port "10001" to the IP192.200.5.53 on port 22 (of course adjust it to your needs). iptables -t nat -A PREROUTING -p tcp --dport 10001 -j DNAT --to-destination 192.200.5.53:22 Remember to enable MASQUERADE on your NAT IPs or they won't be able to talk to the outside world (........
  • WD 20EARX Dead Again


    Another new drive bad from the start: Jun 2 15:14:18 one-desktop kernel: [15895.386779] ata2.00: exception Emask 0x50 SAct 0x1 SErr 0x280900 action 0x6 frozen Jun 2 15:14:18 one-desktop kernel: [15895.386782] ata2.00: irq_stat 0x08000000, interface fatal error Jun 2 15:14:18 one-desktop kernel: [15895.386784] ata2: SError: { UnrecovData HostInt 10B8B BadCRC } Jun 2 15:14:18 one-desktop kernel: [15895.386788] ata2.00: cmd 60/0........
  • mdadm enable bitmap to speed up rebuilds


    Have you ever unplugged the wrong drive and then had to rebuild the entire array? It may not be a big deal in some ways but it does make your system vulnerable until the rebuild is done. Many distros often enable the "bitmap" feature and this basically keeps track of what parts need to be resynced in the case of a temporary removal of a drive from the array, this way it only needs to sync what has changed. To enable bitmap to speed up rebuilds and sync........
  • Either the lower file is not in a valid eCryptfs format, or the key could not be retrieved. Plaintext passthrough mode is not enabled; returning -EIO


    I'm using ecryptfs and was suddenly unable to access or even ls my home directory (but every subfolder is accessible). It just hangs and throws this message in messages/dmesg: Either the lower file is not in a valid eCryptfs format, or the key could not be retrieved. Plaintext passthrough mode is not enabled; returning -EIO I read somewhere that perhaps some file or folder is owned by root somehow, sure enough there are some and sudoing to root allows me to........
  • WD 20EARX 2TB Bad within days


    This is just trying to read 5GB off the drive with dd and the drive initially tested ok but shortly after I wondered why I was seeing 2MB/s read speeds. Notice the "current_pending_sector", anytime I've seen it at anything above 0 even with no other bad fields/attributes, it means the drive is bad. ata1.00: exception Emask 0x0 SAct 0x3 SErr 0x0 action 0x0 ata1.00: irq_stat 0x40000008 ata1.00: failed command: READ FPDMA QUEUED ata1.00: cmd 60/00:00:........
  • sysctl how to apply values from /etc/sysctl.conf after changes


    If you make changes to /etc/sysctl.conf (which are permanent and not lost during reboot) but want them to apply with rebooting just use the following command: sysctl -p After that your changes will be enabled.........
  • SMARTCTL Enable SMART on Device Solution for Error "Device does not support SMART Error Counter logging not supported"


    smartctl -a /dev/sda smartctl version 5.36 [i686-pc-linux-gnu] Copyright (C) 2002-6 Bruce Allen Home page is http://smartmontools.sourceforge.net/ Device: ATA WDC WD1600YS-01S Version: 20.0 Serial number: WD-WCAP03024940 Device type: disk Local Time is: Mon Apr 29 21:40:07 2013 PDT Device does not support SMART Error Counter logging not supported........
  • eth0 changed to eth1 or eth2 and the solution to fix it


    If you move your hard drive(s) around to other computers/servers, you'll find that your eth0 keeps getting higher, the first time it will become eth1 and then eth2 etc and even higher if your server has dual or quad NICs. The reason is that udevd basically assigns eth0 tot he first NIC it finds and remembers it, if it encounters a NIC with a differentMAC, it assigns it one higher (eg. eth1). See the example below, I have eth2 now so how doI fix it?........
  • SSH Can't Login/Hang


    Client Log OpenSSH_4.3p2, OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008 debug1: Reading configuration data /etc/ssh/ssh_config debug1: Applying options for * debug1: Connecting to 192.168.1.253 [192.168.1.253] port 22. debug1: Connection established. debug1: permanently_set_uid: 0/0 debug1: identity file /root/.ssh/identity type -1 debug1: identity file /root/.ssh/id_rsa type 1 debug1: identity file /root/.ssh/id_d........
  • Bad Hard Drive Slows Down Computer


    Here's a proven example of what a bad hard drive can do, it was technically functioning OKin a RAID array but the system became extremely low and the load become high and IOWAIT was even higher and I always thought it was a bad application. The truth is that this failing 1TBHitachi has slowly gotten worse and caused huge slowdowns, (eg. 100% load on Thunderbird waiting for e-mails to load etc..). After swapping it out, tabs change instantly, emails are not lagged, and........
  • Hitachi Serial Numbers for Hard Drives without seeing the physical drive


    Here's what SMART tells me the serial number is: === START OF INFORMATION SECTION === Device Model: Hitachi HDS721010CLA332 Serial Number: JP2940HQ3ZY7KH Firmware Version: JP4OA3EA User Capacity: 1,000,204,886,016 bytes Device is: Not in smartctl database [for details use: -P showall] ATA Version is: 8 ATA Standard is:&nb........
  • Centos 6 RTL8111/8168B r8169 link up and down error solution/fix


    02:00.0 Ethernet controller: Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet controller (rev 03) For whatever reason it seems the r8169 driver that ships and has shipped with most Linux distros for years is still flawed and does not work properly on these cards, causing 100mbit connectivity when it should be 1gbit and even worse, causing random network dropouts. The r8169 driver in Linux kernels is simply not meant to be used on th........
  • OpenVZ - how to manually restore a VPS from another host or backup


    There are 3 pieces that are required to restore and make it work (of course consider if any kernel modules need to re-enabled and if you need to change the IPs): Copy the vz/private/VEID directory to /vz/private Copy the /etc/vz/conf/VEID.conf to /etc/vz/conf/ mkdir /vz/root/VEID After that you should be able to see the VE in vzlist -a You should then be able to start it normally.........
  • Lantronix KVM/IP Keyboard/Mouse not working in BIOS before booting the OS


    I've run into two issues with Lantronix based KVMs on various servers and here's how I solved them (with that said I like these units as they are Java based and OS independent and work very well, unike some other models like Startech). 1.) If you are connected by USB only and you're sure USB support from the BIOS is enabled, you just need to click the following in Lantronix Interfaces -> Keyboard/Mouse Check "Force USB Full Speed Mode", this fixed the issu........
  • Setup PXE Boot using Centos and dhcpd, tftp and syslinux


    This is something I often setup for clients because it's very helpful for people in datacenters, this allows custom OS installs on demand, you can customize it more by using kickstart etc.. but here's a base I use before customizing more: This little script below will install everything you need to get booting by PXE Linux. It also assumes you set a local IP (be sure not to overwrite your existing IP) on eth0:0 (note the :0) as 192.168.1.10 and it........
  • Disable SELinux How To Tutorial Solution


    Here is a quick script that works on most Centos versions to disable the virus/SELinux from blocking basic functionality. The first echo 0 statement disables SELinux instantly but it will still be enabled on reboot. The second line disables it permanently. #!/bin/bash #disable SELinux Immediately echo 0 > /selinux/enforce #disable SELinux Permanently sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config........
  • Centos 5 and OpenVZ won't boot after kernel install


    For whatever reason the current OpenVZ yum repo file enables the RHEL6 version of OpenVZ, why is this bad? Because if you're running Centos 5 it still defaults to using the kernel from RHEL6 which won't work on RHEL5/Centos 5. Ionly realized this after wondering why I couldn't boot into OpenVZ that it was using one meant for RHEL6. To fix the problem you have to edit /etc/yum.repos.d/openvz.repo and disable the "[openvz-kernel-rhel6]" section by changing........
  • Linux/Centos how to block SSH bruteforce/dictionary attacks automatically with denyhosts


    A lot of people become nervous (and understandably so) when checking their auth or security logs, in Centos /var/log/secure and see dozens, hundreds of even thousands of attempted logins to various services, especially SSH. Of course you could manually block these people/IPs but no one has time to read the logs like that, what if some program or script could do it for you? This is what denyhosts does for you, it checks the logs and based on a certain number of failed SSH attem........
  • Centos how to upgrade from PHP 5.2 to 5.3 without downtime


    This may sound silly but there will be conflicts/issues with the default Centos repository so you have to use a third party like remi (I prefer not to do this but it's the only option unless you migrate your sites/data to another server or can stand some downtime-not an option IMHOon a production server). You may need to upgrade to PHP5.3 to run Joomla or many other reasons. Your host needs to use PHP 5.2.4 or higher to run this version of Jo........
  • xen how to resize an image properly


    The best way I could figure out is to use another guest of some sort to do this, while assigning the disk that needs to be resized to the same guest. So say we have /dev/xvda as the guests drive and we've booted it up. We also have /dev/xvdb (this is going to be the image/disk to be resized). In this case it's based on an ext3/4 image. Run e2fsck on it to ensure there are no filesystem errors. e2fsck /dev/xvdb........
  • setquota: Mountpoint (or device) / not found. setquota: Not all specified mountpoints are using quota. with openvz solution


    Directadmin Error when changing user settings/saving Details Error with system Quotas setquota: Mountpoint (or device) / not found. setquota: Not all specified mountpoints are using quota. Debug Guide You have to disable and enable the quota's using vzquota on and off. After that it will work.........
  • iptables v1.3.5: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) - OpenVZ Container Problem iptables module problem solution


    iptables v1.3.5: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) This solution applies to all other iptables modules/problems for OpenVZ, you'll just need to add them to both lists/lines below if you have modules other than what I have below. The modules need to be enabled in both iptables and the OpenVZ hostnode itself and then the containers which need it must be restarted. How To Enable IPTables Modules in OpenVZ........
  • Directadmin Enable SSL


    It's really silly how DA doesn't enable SSL by default but is otherwise a stable, fast and secure control panel. Here's a copy and paste way of enabling SSL for Directadmin in just a few seconds: *setup SSL openssl req -x509 -newkey rsa:1024 -keyout /usr/local/directadmin/conf/cakey.pem -out /usr/local/directadmin/conf/cacert.pem -days 9999 -nodes That creates the public certificate and private key pair in the location Directadmin expects to fi........
  • pcnet32: eth0: transmit timed out, status 97fb, resetting - NIC card problem solution


    I've encountered this problem before and I believe it may affect other drivers (I could test but I don't have time). This was happening on my custom Linux system with the pcnet32 driver. pcnet32: eth0: transmit timed out, status 97fb, resetting (and some other kernel module tracing in dmesg) Basically it means the card is connected (it shows connected in full duplex etc.. and recognized if the cable is disconnected too) but no packets can be sent or received........
  • Xen non-HVM container won't work/boot anymore


    One of my test Centos 5 containers was on a partition that filled up and it threw all sorts of errors and stopped responding but now I can't boot it again anymore. All the console shows is the Linux Penguin on the top left corner and the xm console says "usbcore: registered new driver hub" and has halted there. Centos 5 Xen container stuck/frozen won't boot on "usbcore: registered new driver hub" Another great way of troubleshooting is booting fro........
  • vi disable color syntax highlighting/can't read syntax highlighting


    Within vi if you can't exit /etc/vim/vimrc you can type :syntax off And to turn it back on: :syntax on Many of us have a dark/black background in our terminal/shell making the default syntax unreadable, the solution is to either turn off syntax highlighting with :syntax off or to enable a special option in /etc/vim/vimrc Edit /etc/vim/vimrc The "syntax on" enables the highligh........
  • Linux Out of Memory OOM Object Killer Solution "Out of memory: kill process 1955 (sshd) score 81 or a child"


    I had a system running a 128MB live CD image with 2.8 gigs of available RAM and the OOM kernel killer went crazy when using dd for more than 8 minutes and kept killing everything. I've read that this is due to a low-memory issue and paging in the kernel and 32-bit systems with lots of RAM. I even enabled swapspace on my LiveCD and the issue happened 25 minutes into dd rather than 8 minutes, so what gives? Also no swap space was ever used! cat /proc/s........
  • How To Test If Your Hard Drive Is Good/Signs of dying hard drive


    I like dd, although it only reads it, usually a read test of the entire disk will uncover if your hard drive is bad in some parts. This is a good thing to do at least once a month, a lot of times bizarre program behavior, laginess and crashing/unnmounting problems etc.. are due to a failing disc and SMART won't know it or indicate a problem: We must also remember there's never a guarantee, I've found that ever since we moved to larger and more platters per drive with 1TB drives........
  • smart is not smart, it thinks a dead drive is still good


    I had a dying drive that smart thought until it totally disappeared was a good drive, and actually all parameters did look fine but this system was causing my system to lockup and other bad behavior: === START OF INFORMATION SECTION === Device Model: WDC WD20EARS-00MVWB0 Serial Number: WD-WMAZ20139 Firmware Version: 50.0AB50 User Capacity: 2,000,398,934,016 bytes Device........
  • Hitachi 2TB HDS5C3020ALA632 drive DOA


    I had one of these shipped and it was not recognized when plugged in, here's what a dead drive looks like (I assume it's teh circuit board which is dead): ata1: link is slow to respond, please be patient (ready=0) ata1: softreset failed (device not ready) ata1: SATA link up 3.0 Gbps (SStatus 123 SControl 300) ata1: link online but device misclassified, retrying ata1: link is slow to respond, please be patient (ready=0) ata1: softreset f........
  • Kernel/make compilation time and how to improve compile times/compile the Linux kernel faster without hardware upgrades


    I thought only a faster CPUand SSDwould help but I already have a Quad-Core CPU and it wasn't being maxed out. The actual tests were performed on an AMD-V enabled 128MB dual core VMWare container though. There is a flag that can be passed to make in order to start multiple threads, by specifying 4 threads I was able to reduce the whole kernel compilation time from scratch by about 50%! (65minutes vs 31minutes!). *Yes I did do a make clean before each co........
  • mysql enable slow query logging/Query Cache Solution - find/track cause of slow mysqld/high IO/CPU usage


    If you have a webserver and find you have high IO/lagginess MySQL is one of the first things to check. It turns out MySQL was my problem and it was creating a high load on my server, especially for IO. How to Enable MySQL Slow Query Logging To Find Slow Performance/Queries vi /etc/my.cnf Add this anywhere under [mysqld] #slow queries log-slow-queries = /var/log/mysql/mysqlslowqueries.log long_query_time = 1........
  • Apache High CPU Usage Enable Mod_Status Guide Solution - Find Cause of High CPU Usage Script/Domain


    mod_status is a great way to track down the source of high CPU usage and to find what vhost/script is the cause of it. It gives you a live view of bandwith usage, CPU usage, and memory usage broken down by domain/vhost and script/URI. Enable mod_status vi /etc/httpd/conf/httpd.conf ExtendedStatus On SetHandler server-status Order Deny,Allow Deny from all All........
  • monit example tutorial how to enable status checking and manipulation


    You need to enable the httpd daemon with monit to actually view the status and control, it's not only for the web interface since the httpd is theONLY way of controlling monit and viewing the status. monit monitor all will also reinstate disabled services if they've timed out too much. Just restarting the service will do nothing to re-monitor a service that monit has stopped monitoring due to too many failures. *Also note that /etc/monit.conf i........
  • Linux High IOWAIT updatedb can't be killed and crash with mdadm


    high IO wait 424 root 39 19 1900 848 552 D 0.0 0.0 0:00.91 updatedb root 424 0.0 0.0 1900 848 ? DN Mar11 0:00 /usr/bin/updatedb -f sysfs?rootfs?bdev?proc?cpuset?binfmt_misc?debugfs?sockfs?usbfs?pipefs?anon_inodefs?futexfs?tmpfs?inotifyfs?eventp........
  • Virtualbox - Failed to open a session for the virtual machine XP. AMD-V is being used by another hypervisor. (VERR_SVM_IN_USE). - Solution


    Failed to open a session for the virtual machine XP. AMD-V is being used by another hypervisor. (VERR_SVM_IN_USE). VirtualBox can't enable the AMD-V extension. Please disable the KVM kernel extension, recompile your kernel and reboot (VERR_SVM_IN_USE) Solution - Unload KVM module (you can't use two hardware virtualization suites at once) sudo rmmod kvm_amd kvm........
  • Apache MPM worker vs prefork


    find what MPM Apache is using, it will either be using "worker" or "prefork" apachectl -l Compiled in modules: core.c prefork.c http_core.c mod_so.c In my case it is "prefork" vi /etc/httpd/conf/httpd.conf Find the section that looks like this (by default one will normally exist for prefork and for worker, but in my case I only care a........
  • SPAMASSASSIN Enable Pyzor and DCC


    *Remember to restart spamassassin after all of this. DCC wget http://www.dcc-servers.net/dcc/source/dcc.tar.Z tar -zxvf dcc.tar.Z cd dcc-1.3.138/ ./configure;make;make install #enable DCC, uncomment the line that disables it near the top vi /etc/mail/spamassassin/v310.pre pyzor wget http://sourceforge.net/projects/pyzor/files/pyzor/0.5.0/pyzor-0.5.0.tar.gz/down........
  • Enable SPAMASSASSIN on Postfix in 5 minutes


    Centos 5 Postfix and SPAMASSASSIN Tutorial yum install spamassassin chkconfig spamassassin on vi /etc/mail/spamassassin/local.cf ############## #required_hits 5 #report_safe 0 #rewrite_header Subject [SPAM] #5 is the least restrictive (means only the most obvious SPAM is caught. 0 is obviously the most restrictive/sensitive and would have lots of false positives require........
  • VOIP/Asterisk/FAX Error Problems Solution NOTICE[11389]: rtp.c:1808 ast_rtp_read: Unknown RTP codec 100 received from


    NOTICE[11389]: rtp.c:1808 ast_rtp_read: Unknown RTP codec 100 received from I've found that trying several times may work, but I also read changing your Sipura VOIP adapter settings as follows helps (but it still fails for me sometimes): In adapter change the following under SIP/Advanced Codec to G711a from G711u Passthru Method from: NSE to ReINVITE FAX CED Detect Enable: Yes FAX CNG Detect........
  • Directadmin DA Install Guide


    yum -y install openssl* gcc-c++ gcc flex g++ make;wget http://www.directadmin.com/setup.sh;chmod +x ./setup.sh;./setup.sh #enable SSL /usr/bin/openssl req -x509 -newkey rsa:1024 -keyout /usr/local/directadmin/conf/cakey.pem -out /usr/local/directadmin/conf/cacert.pem -days 9999 -nodes chown diradmin:diradmin /usr/local/directadmin/conf/cakey.pem chmod 400 /usr/local/directadmin/conf/cakey.pem sed -i "s/SSL=0/SSL=1/g" /usr/local/dire........
  • Openvz Enable TUN/TAP OpenVPN


    Make sure the module "tun" is loaded on the host. vzctl set 2000 --devnodes net/tun:rw --save *Note what's below is what OpenVZ says you need (but I've never had to do it) vzctl exec 2000 mkdir -p /dev/net vzctl exec 2000 mknod /dev/net/tun c 10 200 vzctl exec 2000 chmod 600 /dev/net/tun On the container test the device: when Something is wrong:........
  • Dovecot Enable SSL/TLS with your certificate


    Dovecot enable SSL (by default it uses an old expired cert if you choose pop3s and imaps as protocols) =================== Create Cert & Key: openssl req -new -x509 -nodes -days 1530 -out server.crt -keyout server.key mkdir /etc/mailssl chmod 700 /etc/mailssl cp server.* /etc/mailssl Edit /etc/dovecot.conf ssl_cert_file = /etc/mailssl/server.crt s........
  • Postfix Enable SSL/TLS with your certificate


    Create Cert & Key: openssl req -new -x509 -nodes -days 1530 -out server.crt -keyout server.key mkdir /etc/mailssl chmod 700 /etc/mailssl cp server.* /etc/mailssl Postfix SSL config Edit /etc/postfix/main.cf: #SSL stuff smtpd_tls_cert_file = /etc/mailssl/server.crt smtpd_tls_key_file = /etc/mailssl/server.key To make smtps w........
  • PHP5 & Apache Blank/White Screen/Page PHP won't work


    PHP5 & Apache Blank Screen/Page The PHP package is installed and works from the CLI Error reporting is enabled The only way I could get it working was: rm /etc/php.ini yum remove php yum install php-* -x php-pear* -x php-pecl* Interestingly enough reinstalling php did not bring back the deleted php.ini but everything is working. ........
  • Failed to save enabled features : The Suexec command on your system is configured to only run scripts under /var/www, but the Virtualmin base directory is /home. CGI and PHP scripts run as domain owners will not be executed.


    Apache/httpd Failed to save enabled features : The Suexec command on your system is configured to only run scripts under /var/www, but the Virtualmin base directory is /home. CGI and PHP scripts run as domain owners will not be executed. This is because I never edited the Apache Config and Virtualmin config to reflect my new/current updated structure.........
  • Webmin/Virtualmin when enabling bind: Failed to save enabled features : Virtualmin is configured to setup DNS zones, but this system is not setup to use itself as a DNS server. Either add 127.0.0.1 to the list of DNS servers, or turn off the BIND fe


    Webmin/Virtualmin when enabling bind: Failed to save enabled features : Virtualmin is configured to setup DNS zones, but this system is not setup to use itself as a DNS server. Either add 127.0.0.1 to the list of DNS servers, or turn off the BIND feature on the module config page. It means what it says, add "127.0.0.1" to /etc/resolv.conf........
  • Installing Webmin & Enabling SSL


    Webmin Setup Centos 5: wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet [1] 24229 [2] 24230 [root@host ~]# --2011-01-06 21:48:20-- http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html Resolving downloads.sourceforge.net... 216.34.181.........
  • Virtualmin/Webmin Postfix Error: The status of your system is being checked to ensure that all enabled features are available, that the mail server is properly configured, and that quotas are active ..


    Virtualmin Postfix Error: The status of your system is being checked to ensure that all enabled features are available, that the mail server is properly configured, and that quotas are active .. A problem was found with your Postfix virtual maps : No map sources were found in the Postfix configuration .. your system is not ready for use by Virtualmin. ........
  • Dying Seagate 7200.11 SD15


    [137392.910057] ata4.00: exception Emask 0x0 SAct 0x1 SErr 0x80000 action 0x6 frozen [137392.910077] ata4: SError: { 10B8B } [137392.910095] ata4.00: cmd 60/20:00:00:00:00/00:00:00:00:00/40 tag 0 ncq 16384 in [137392.910099] res 40/00:00:00:00:00/00:00:00:00:00/00 Emask 0x4 (timeout) [137392.910122] ata4.00: status: { DRDY } [137392.910135] ata4: hard resetting link [137393.440060] ata4: SATA link........
  • VMWare Server cannot connect to web interface SSL Handshake on client connection failed: SSL Exception


    VMWare log: /var/log/vmware/hostd.log SSL Handshake on client connection failed: SSL Exception sudo /etc/init.d/vmware-mgmt restart Stopping VMware management services: VMware Virtual Infrastructure Web Access VMware Server Host Agent&nb........
  • VMWare Server is on SSL port 8333


    I'm mentioning this because I keep forgetting what port the management is on for the web interface (since newer releases of VMWare server took away the superior stand alone client). So remember it is port 8333 and sometimes you need to restart vmware-mgmt service and also enable sslv2 in your Firefox or it won't connect.........
  • vzquota : (warning) Incorrect quota shutdown for id 2333, recalculating disk usage vzquota : (error) quota check : lstat `sess_a5078fce5f569e453ab1fb39b0fc69f8': No such file or directory vzquota on failed [1]


    first container would not come up: Starting CT 2333: service vz stop OpenVZ is locked [FAILED] 2010-11-29T23:26:23-0800 vzctl : CT 2333 : Starting container ... 2010-11-29T23:37:21-08........
  • mdadm RAID 1 adventures


    I separated the 2 drives in the RAID 1 array. 1 is the old one /dev/sda and is out of date, while the separated other one /dev/sdc was in another drive and mounted and used with more data (updated). I wonder how mdadm will handle this: usb-storage: device scan complete md: md127 stopped. md: bind md: md127: raid array is not clean -- starting background reconstruction raid1: raid set md127 active with 1 out of 2 m........
  • WD (Western Digital) Advanced Format Drive Lagged/Slow Speed/Performance/Design Flaw EAD/EARS problem WDC WD20EARS-00S8B1


    Let the numbers speak for themselves, from what I read the Load_Cycle_Count which is very high (more than 500,000/half a million times) is the number of head parks. What a stupid"Green" design and design flaw which will probably mean an early life for the drive. This is almost as silly as Seagate's new reputation for BSY/poor quality disks since the 7200.11 series. To make it worse this is also when Western Digital introduced "Advanced Format" o........
  • Firefox plugin-container high CPU usage


    This is an easy fix and highlights a huge issue again with Linux and Flash still not playing nicely/working as well as Windows yet. Solution - Go to "about:config" and disable the two entries (set them to false): dom.ipc.plugins.enabled.libflashplayer.so dom.ipc.plugins.enabled.libnptest.so........
  • http://apt.sw.be/redhat/el5/en/i386/test/repodata/repomd.xml: [Errno 14] HTTP Error 404: Not Found Trying other mirror.


    http://apt.sw.be/redhat/el5/en/i386/test/repodata/repomd.xml: [Errno 14] HTTP Error 404: Not Found Trying other mirror. Error: Cannot retrieve repository metadata (repomd.xml) for repository: rpmforge-testing. Please verify its path and try again Notice it is complaining about "rpmforge-testing", just disable it for now: Solution is to edit the repo: vi /etc/yum.repos.d/rpmforge-testing.repo........
  • VirtualBox/VBOX Centos 5.5 Installation Kernel Freeze Problem "NET: Registered protocol family 2" And Solution


    NET: Registered protocol family 2 The above is the last thing that I ever saw, I tried pci=routeirq etc.. and it wouldn't work. The solution is to enable IOAPIC in the VBOX Settings Just enable "IOAPIC" in the settings for your Centos Guest and you'll find the kernel boots just fine. I wonder if a physical system might stall in this same way if the BIOS has IOAPIC disabled which many people do as a troubleshooting method. ........
  • VirtualBox OSE/VBOX Can't Access Shared Folder Solution


    I shared a directory on my hostnode/local system (running Ubuntu 10.04) with my Guest system running Windows XP. I have no idea why it's not mentioned or documented in an obvious way, but in the Windows client you just access it with "\Vboxsvr" Once you access that share you'll have access to all of the VBOX shares on your local host. I think it should indicate it somewhere when you enable the sharing. Yes, I'm sure it's buried so........
  • How to Enable SMART on a device


    smartctl -a -d ata -T permissive --smart=on /dev/sda -d ata is usually required for most SATA drives or you get an error. -T permissive is required if it's the first time you are running SMART on this device (it's not enough just to enable SMART in the BIOS) --smart=on is also required for the first time........
  • jailkit for chroot ssh account security tutorial and fix for error


    This was done on Centos butI think it's easier on Debian machines, the paths that it is set to use are tailored towards Debian, so there is some fiddling that needs to be done on Centos. This is for chrooting ssh, but jailkit has other uses than just SSH jails but I won't cover them in this writeup. 1. Install jailkit yum install jailkit 2. Setup Jail Home mkdir /home/jail chown root:root /home/ja........
  • mencoder Linux CLI video editing how to encode video file into xvid and split by time into multiple parts


    Mencoder is great, you can throw anything at it, including video files from your camera and have it encode into xvid or almost any other format. In my case I took 640x480 video from my Canon and reduced the size by 1/3 with the options below (there are many other options that you can read about in the manual but I like to keep it simple). Mencoder Encode mencoder -ovc xvid -oac mp3lame -xvidencopts fixed_quant=4 -o ........
  • mdadm when a RAID 1 member dies


    [27969.398749] sd 5:0:0:0: [sdb] 3907029168 512-byte hardware sectors (2000399 MB) [27969.398749] sd 5:0:0:0: [sdb] Write Protect is off [27969.398749] sd 5:0:0:0: [sdb] Mode Sense: 00 3a 00 00 [27969.398749] sd 5:0:0:0: [sdb] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA [27972.117543] ata6.00: exception Emask 0x0 SAct 0x1 SErr 0x0 action 0x0 [27972.117543] ata6.00: irq_stat 0x48000000 [27972.117543] ata6.00: cmd 60/08:00:ff:7........
  • FUSE/Curlftpfs mount ftp account as drive partition in Linux


    This is a great way to use your ftp server space, for example on your web hosting account (althoughI believe many hosts don't allow storage like this), but if you have a VPS/Dedicated Server etc.., this would be perfect. Imagine how easy it is to work with an ftp account that you can just mount as a normal partition or directory in Linux, it would be great for backups etc.. Name curlftpfs - mount a ftp host as a local directory Synopsis........
  • Use rcconf to edit startup/init.d/init scripts on Debian/Ubuntu based distributions


    I've never understood how to enable and disable services for different run levels in Debian based distros, it's just weird, annoying and doesn't make sense. I much prefer chkconfig from RHEL. Just install the package called 'rcconf' and be done with it. rcconf makes things easy for you. apt-get install rcconf Reading package lists... Done Building dependency tree Reading state information... Done........
  • Openvz Enable Most Common iptables modules


    The default options for iptables are very basic. Here is what you need to do in order to enable them in OpenVZ. 1.) Add the modules to iptables and restart iptables: vi /etc/sysconfig/iptables-config Edit the line as so: IPTABLES_MODULES="ipt_REJECT ipt_tos ipt_TOS ipt_LOG ip_conntrack ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_length ipt_state iptable_nat ip_nat_ftp" 2.........
  • SSH Automatic/Passwordless Logon - Setup Public Key Encryption In Single Command


    This is a very simple solution, but most guides out there make you login twice (once to scp the key) and once to put the key in authorized_keys. There's no need for that. If you don't already have a ~/.ssh/id_rsa.pub just type "ssh-keygen -t rsa" and keep hitting enter until it's done :) Just use this code to easily enable passwordless login with SSHD key=`cat ~/.ssh/id_rsa.pub`;ssh user@192.168.5.25 "echo $key >> ~/.ssh/auth........
  • Seagate Drive 500GB Drive Dying


    This drive is clearly on the way out, the Kernel knows it but I'm surprised that SMART is not concerned. I didn't blame Seagate for their past issues until now. This hard drive has hardly been used and has not even been powered on for a year according to SMART. Home page is http://smartmontools.sourceforge.net/ === START OF INFORMATION SECTION === Model Family: Seagate Barracuda 7200.11 Device........
  • Seagate 7200.11 firmware defect in 500GB, 1000GB (1TB) and 1500GB (1.5TB) Hard Drives


    Seagate Inventory/Firmware Check I heard about this issue a long time ago but never looked into it. I figured I wasn't affected since my 500GB drives were running for so long. I've been using Seagate's since 2002 and to this day all of the drives I have are alive from Seagate. *Update the bad news is that I realize one of my 500GB's is about to die, it's not even a year old, but is also not affected by the recall according to Seagate! Seagate Inventory/Firm........
  • Linux AHCI Hotswap Tips - Remember To Reread The Partition Table WITHOUT rebooting


    From the package "parted" you can use the command "partprobe" to re-read the partition table. I really hate rebooting, and that's what Iloved to hear about AHCI motherboards, that they allow hotswap so you don't have to reboot. But that's only as good as the OS, if the OS does not reload the partition table you won't be able to do anything with that new drive you attached without rebooting. Yes, even without re-reading the partiton table Linux will........
  • email2fax and Asterisk to do eFaxing


    It's basically free bash shell script available from: http://wpkg.org/email2fax/index.php/Main_Page Make sure you have the required tools: libtiff ghostscript mpack/munpack Where you can e-mail your Asterisk box and it will fax it to the phone number in the subject line. The good news ends there, it is fairly undocumented and buggy. Take for example how the documentation mentions you can invoke from the com........
  • Picking an FTPD (vsftpd) Server in Linux Centos/Debian


    I decided on using yum to help me decide even though I normaly use proftpd I decided to see what else I could find. yum search ftp Loaded plugins: fastestmirror Loading mirror speeds from cached hostfile * rpmforge: ftp-stud.fht-esslingen.de * base: mirrors.netdna.com * updates: updates.interworx.info * addons: yum.singlehop.com * extras: mirrors.netdna.com rpmforge........
  • Upgrade Release Kernel Tips


    Upgrade Release Kernel TipsThis is for CentOS 3.1 to 3.8 but the methodology will apply everywhere. I ran into a problem first of all with a non-booting system after running #yum update centos-release It took me to 3.8 and upgraded all the other packages [b:7e931c835d]BUT[/b:7e931c835d] because of some stupid flags enabled in /etc/yum.conf the KERNEL WASN'T UPGRADED SO AFTER BOOTING, WELL IT DIDN'T BOOT OF COURSE :) H........
  • Need identd for port 113 ? Install authd


    Need identd for port 113 ? Install authdyum install authd Happy identing :)Actually it's not that simple. It installs as an "xinetd" service and is disabled and turned off by deafult. To enable it run: [code:1:8c94df8319] chkconfig --level 3 auth on service xinetd restart [/code:1:8c94df8319] This will set identd aka authd to start by default. service xinetd resta........
  • Updating yum repos for DAG /etc/yum.repos.d


    Updating yum repos for DAG /etc/yum.repos.dIn /etc/yum.repos.d [quote:96456b2ab9]Create any file such as "CentOS-Dag.repo" in /etc/yum.repos.d[/quote:96456b2ab9] Add the following to the above file: [code:1:96456b2ab9] [dag] name=Dag RPM Repository For Red Hat Enterprise Linux baseurl=http://dag.atrpms.net/redhat/el$releasever/en/$basearch/dag/ http://dag.freshrpms.net/redhat/e........
  • Intruder detection device uses behavioural analysis


    Intruder detection device uses behavioural analysisIntruder detection device uses behavioural analysis by Antony Savvas Monday 13 June 2005 Symantec is introducing a new intrusion detection product that uses behavioural analysis to block potential attacks on enterprise networks. The new Critical System Protection 4.5 system uses technology that Symantec acquired through last years purchase of Platform Logic. It is designed to protect deskt........
  • Trouble connecting between Windows XP and Windows 98 Shares


    Trouble connecting between Windows XP and Windows 98 SharesOk a few things to check for: * Disable all firewalls * Make sure NetBEUI is enabled on both computers * Make sure the Windows XP computer has the name of the computer logged in user of Windows 98 added as an XP user * Add the XP user to anything you want to share That fixed my problem........
  • Debian/Ubuntu/Kubuntu Bash/Console/Terminal/Putty Home and End Keys Don't Work or Produce a ~


    This is a very weird, annoying and bizarre quirk with many distributions, especially Debian. The home and end keys don't work, but it's a simple fix as long as you found this article :) You just have to edit /etc/inputrc: Find the commented lines as shown below: # "e[1~": beginning-of-line # "e[4~": end-of-line *If you can't find the above, just copy and paste the code below into your inputrc, it will en........
  • Enable/Disable PHP Warnings/Logs and Errors from .htaccess with Apache


    Put what you see below into your .htaccessand it will enable errors and notices. (change on to off and 1 to 0 to disable though) php_flag display_startup_errors on php_flag display_errors on php_flag html_errors on Now you'll be able to see errors and notices but this should really only be used for debugging purposes and only temporarily as it can be a security issue since errors can reveal information you wouldn't want hacker........
  • Create/Enable SSL Certificates for Apache on Linux/Unix Systems eg. Redhat,Centos,Debian


    Shortcut/Easiest Way To Create A Self-Signed Key: openssl req -new -x509 -nodes -days 1530 -out server.crt -keyout server.key Using the above, you instantly create a self-signed certificate valid for 1530 days and you can simply skip to step #5.) below. If You Need a Real SSLCertificate (eg. Equifax/Openssl) then you need to create a CSR request (you'll need to follow Steps 1.) and 2.) in order to create the CSR. You then upload the CSR Certi........
  • How to Track Down/Find Cause of Linux high disk iowait/wa


    top - 09:34:12 up 2 days, 20:57, 2 users, load average: 1.83, 1.99, 2.03 Tasks: 59 total, 2 running, 57 sleeping, 0 stopped, 0 zombie Cpu(s): 0.3%us, 0.0%sy, 0.0%ni, 0.0%id, 99.7%wa, 0.0%hi, 0.0%si, 0.0%st That 99.7% wa is iowait, it means the server is waiting for a process to complete an IOoperation or in plain English, there is a delay in........
  • Adventures in pre-paid SIM Cards and data GPRS/Edge/3G in China with China Mobile in Shenzhen, Guangzhou, Shanghai, Beijing and other cities


    This really is a difficult and confusing process for non-Mandarin speakers, but here's what I've done and learned so far: You can purchase an "M-Zone" China Mobile pre-paid SIMCard from almost anywhere but I tried to purchase mine from Suning (a large electronics dealer) hoping they would be able to help me or answer my questions but my plan didn't work out at all. At Suning once I found someone who spoke some English they gave me the 55 RMB M-Zone China Mobile P........
  • iPhone Enable Tethering Manually Update ipcc Carrier Settings/Update via SSH


    Everyone says there is a "manual" way of doing it and then they tell you to use iTunes, but if you're like me, you're travelling on business in a foreign country and your laptop does not have iTunes and you don't have a way of getting it and/or don't want it. For this example I'm using the provider "du" in Dubai, UAE (United Arab Emirates) but this method works for virtually all providers. The requirements in this case to truly "manually update........
  • How To Enable 3rd/third party packages in RHEL/Redhat/Centos 4/5 Linux via RPMForge


    It's a bit of a pain that many basic third party tools that aren't put of the main Centos/RHEL repositories are not available unless you compile them or install the RPMForge Repo. *Updated 08/29 with new download location changed from apt.sw.be to rpmforge.sw.be Here's a quick, simple/cut&paste way to do it: wget http://rpmforge.sw.be/redhat/el5/en/i386/rpmforge/RPMS/rpmforge-release-0.5.1-1.el5.rf.i386.rpm rpm -i rpmforge........
  • yum error not working rpmdb: mmap: No such device TypeError: rpmdb open failed


    Loaded plugins: fastestmirror rpmdb: mmap: No such device error: db4 error(19) from dbenv->open: No such device error: cannot open Packages index using db3 - No such device (19) error: cannot open Packages database in /var/lib/rpm Traceback (most recent call last): File "/usr/bin/yum", line 29, in ? yummain.user_main(sys.argv[1:], exit_code=True) File "/usr/share/yum-cli/yummain.py&qu........
  • Tyan S2735-8M motherboard/Rackable Systems 1u Server 100mbit NIC not working even when enabled in the BIOS


    Itried everything Icould think of, and of course even with the NIC enabled in the BIOS nothing was working. The light would flash when you plugin the cable for a second, but that's all. Due to another issue I'm about to post about (server is not compatible with 1TB/1000Gig Hard Drives), I updated the BIOS. I didn't even know the 100mbit NICs were not working untilI decided I should test each NIC one by one. Inoticed that only 1 server out of........
  • OpenVZ/Virtuozzo Enable Fuse in Container


    To enable Fuse to work inside a OpenVZ container it's very simple (although some people say it can't be done). Remember that on your HN(HostNode) for OpenVZ, Fuse must be installed and the module must be loaded for this to work. In addition remember that you need the Fuse package installed inside the container of course. vzctl set 2000 --devices c:10:229:rw --save vzctl exec 2000 mknod /dev/fuse c 10 229 The part that most people forget........
  • Unlocked iPhone 3GS and firwmare 3.0 battery short low life horrible


    This is pretty bad, ever since my phone has been unlocked the battery life is horrible. Many others have reported this issue on provider unlocked phones and even jail broken phones. We're talking issues as bad as losing 1% every 3 minutes which is what I seem to have observed as well. For now I'm going to relock the phone, and hopefully a firmware update will address this issue. This is very annoying and it seems apparent this is also happening on 3G phones and that........
  • iPhone Backgrounder Adds True and Real iPhone multitasking on jailbroken phones


    Apple crippled the iPhone by not allowing multi-tasking of the non-primary apps. I use SSH a lot and I don't want to close my session just to check my e-mail, etc, now an app found in Cydia called "Backgrounder" allows just that. Although it's not perfect, we installed the correct one for "3.x" iPhones and hit "Reload SpringBoard" and the hour/circle glass has just been going for minutes. It seems like it installed fine even with the crash t........
  • iPhone 3GS Jailbreak Information & Benefits


    Truly, the only way to unleash the capabilities and customization abilities of iPhone are to jailbreak, it's not just for hackers anymore. A few days ago someone by the named of "geohot" released a single click application called "purplera1n", which does the entire operation smoothly and seamlessly. In our case, the first time it went as far as "done, wait for reboot" on our Windows machine and for minutes we waited and saw the pic on the iPhone w........
  • Samba SMB Error - Server not using user level security and no password supplied. tree connect failed: NT_STATUS_WRONG_PASSWORD


    Server not using user level security and no password supplied. tree connect failed: NT_STATUS_WRONG_PASSWORD That happens when trying to use smbclient to connect to a share. The weird thing is that I can authnenticate just fine from Windows XP. It is partially my mistake, I forgot this share does have a password. I've tried authenticating with the correct user and also with "Guest" because this works in Windows. In Linux I ........
  • Configuring OCFS2 Clustered File System on Debian Based Linux including Ubuntu and Kubuntu


    There's a lot of information and guides on OCFS2 for RHELand Centos Linux but the package setup and configuration is slightly different and this has thrown some people off. Installing OC2FS You should install the following packages to get started: apt-get install ocfs2-tools ocfs2console Configure OC2FS In RHEL/Centos the main configuration file is located in /etc/sysconfig/o2cb However in Debian based Linux it is located........
  • LAME MP3 Encoder Segmentation Faults


    This happened on one of my Ubuntu machines where Igot some kind of segfault on line 21 from LAME at random while encoding MP3s (a second try is fine usually). I've read that it's best to compile it from source and that has solved most issues for people. Here is my preferred configure line: ./configure --enable-mp3x --with-fileio=lame --enable-debug --with-vorbis Even with that I got a different error this tim........
  • Latest Articles

  • FreePBX 17 How To Add a Trunk
  • Docker Container Onboot Policy - How to make sure a container is always running
  • FreePBX 17 How To Add Phones / Extensions and Register
  • Warning: The driver descriptor says the physical block size is 2048 bytes, but Linux says it is 512 bytes. solution
  • Cisco How To Use a Third Party SIP Phone (eg. Avaya, 3CX)
  • Cisco Unified Communication Manager (CUCM) - How To Add Phones
  • pptp / pptpd not working in DD-WRT iptables / router
  • systemd-journald high memory usage solution
  • How to Install FreePBX 17 in Linux Debian Ubuntu Mint Guide
  • How To Install Cisco's CUCM (Cisco Unified Communication Manager) 12 Guide
  • Linux Ubuntu Redhat How To Extract Images from PDF
  • Linux and Windows Dual Boot Issue NIC Won't work After Booting Windows
  • Cisco CME How To Enable ACD hunt groups
  • How to install gns3 on Linux Ubuntu Mint
  • How to convert audio for Asterisk .wav format
  • Using Cisco CME Router with Asterisk as a dial-peer
  • Cisco CME How To Configure SIP Trunk VOIP
  • Virtualbox host Only Network Error Failed to save host network interface parameter - Cannot change gateway IP of host only network
  • Cisco CME and C7200 Router Testing and Learning Environment on Ubuntu 20+ Setup Tutorial Guide
  • Abusive IP ranges blacklist