• Linux tftp listens on all interfaces and IPs by DEFAULT Security Risk Hole Solution


    Just edit your tftp file for xinetd like this: *Change the IPto be the IPof the interface you want to listen on. To test if your tftp is available on a certain IP range use nc -u yourip 69 to see if you can still connect (/var/log/messages or /var/log/syslog) should show the connection if it is open. Oct 13 23:20:34 01 xinetd[26631]: Started working: 1 available servic........
  • bash how to count the number of columns or words in a line


    This is just if we have an output line. wc we know can count lines but the -w flag will count words: echo "Ihave this line here" |wc -w 5........
  • Centos 7 tftpd will not work with selinux enabled


    In Centos 7 tftpd will not work with selinux. Clients will not be able to connect and this is all you'll see in the log (then nothing more): Sep 18 14:39:15 localhost xinetd[4327]: START: tftp pid=4331 from=192.168.1.65 On the client/computer side you will see this: TFTP. PXE-M0F: Exiting Intel Boot Agent Basically the client is being instantly connected and bloc........
  • Debian Ubuntu Mint Howto Create Bridge (br0)


    Having a network bridge allows you to bridge traffic under multiple devices so they can talk natively without using any special routing, iptables/firewall or other trickery. To create your bridge you need the bridge-utils package for brctl and if you want to do things like bridge VMs that run on a tap device you will need the uml-utilities which provides "tunctl". Install the utilities to make our bridge sudo apt-get install........
  • tftp Linux xinetd verbose logging


    It is much more useful to have meaningful and detailed logging from tftp to see what is or isn't happening especially for VOIPand other embedded device appications: Edit the file: vi /etc/xinetd.d/tftp Change the server line like this: server_args = -s /var/lib/tftpboot........
  • Cisco Switch Setup Guide Command List


    Enter configuration console: enable configure terminal This is important because if your console doesn't look like below none of the commands will work! Switch(config)# Save and Apply Settings wr Show Switch Configuration: show run Show Port List/Sta........
  • SSH error cannot Forward or Listen "bind: Cannot assign requested address"


    debug1: Local connections to LOCALHOST:18006 forwarded to remote address 192.168.1.93:8006 debug1: Local forwarding listening on 127.0.0.1 port 18006. debug1: channel 0: new [port listener] debug1: Local forwarding listening on ::1 port 18006. bind: Cannot assign requested address What we are seeing is that we can't listen on an IPV6 address of ::1. We need to tell SSH to stop using IPV6 so we'll edit ssh_config to take care of this issue........
  • X11 SSH Linux Forwarding Error


    Jan 30 17:16:10 localhost sshd[25385]: error: Failed to allocate internet-domain X11 display socket. The solution for me on the server side was the following in sshd_config: AddressFamily inet *Remember to restart sshd and also reconnect from the client side. Ihad all the normal X11 settings on the server but it just stopped........
  • systemd management using systemctl and journalctl to check systemd logs


    systemd is like the service manager for your Centos and other modern Linux distributions (including Debian/Mint/Ubuntu) allows you to enable services, stop them, restart them, check their status and even reboot your system. The key commands or arguments you will use with systemctl are the following: Unit Commands: list-units [PATTERN...] List loaded units &nbs........
  • css br with extra blank line


    The problem I was having is that a css template Iwas using was causing br's to have an empty line in between which is very undesirable especially when displaying code. br { display:none; margin: 0px; height: 0px; } Using CSS code like above will fix it. You technically shouldn't need the margin or height either.........
  • Debian/Ubuntu/Mint Linux How To Set VLAN in /etc/network/interfaces


    You can find many ways to specify the VLANin your network configuration but Ifind this is the simplest and quickest. In this case we are talking about a bridged adapter "vmbr0" but it works even if you just had a normal non-bridged interface. The key here is that in vmbr0 you'll notice there is no IP address. We just specify "manual". Below it is a similar stanza for "vmbr0.58" in this case 58 represents the VLAN (change........
  • VMWare ESXi 6.7 SSH/PowerShell CLI Commands


    [root@localhost:~] BootModuleConfig.sh echo host-ind nfcd........
  • How to qemu-kvm enable bridged networking in Debian Ubuntu Linux Mint on KVM containers


    I've read a few guides about this but they didn't work for me. sudo apt-get install bridge-utils #don't think the above is enough it won't work still even though you have by default an /etc/qemu-ifup that handles it if you have the right tools and setup sudo qemu-system-x86_64 -net tap -net nic -enable-kvm -cpu host,vmx=on ~/VirtualBox VMs/vsphere-vcenter/vsphere-vcenter.vdi W: /etc/qemu-ifup: no bridge for guest interface foun........
  • OpenVPN cannot ping remote IP routing loop issue after connecting


    Sometimes if you have a very basic configuration OpenVPN on the client side for some reason sends all traffic to the OpenVPN server IP through the tun0 which is of course impossible and creates a block or routing loop. This is because you need to use your normal ISP/LANgateway to hit the OpenVPN server if it is remote/offsite as is usually the case. So if you are connected to the OpenVPN through say a tun0 device and your routing is set to connect to the OpenVPN&nbs........
  • Wine uninstalled broken on Linux Mint


    Solution: Aptitude is very smart and fixed the issues it was because of nvidia cuda and opencl and nothing else suggested or hinted this using apt sudo aptitude install wine The following NEW packages will be installed: ocl-icd-libopencl1{ab} ocl-icd-libopencl1:i386{ab} wine wine1.6 wine1.6-amd64{a} wine1.6-i386:i386{a} The following packages will be REMOVED:........
  • Check Linux Ubuntu/Debian/Mint Version from Command Line


    To check the version of Ubuntu just use the lsb_release command as shown below and you will be able to see the exact Ubuntu version you have installed. lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description: Ubuntu 14.04 LTS Release: 14.04 Codename: trusty........
  • Debian 8 Jessie in Linux OpenVZ Container does not work on Centos host


    It sounds like this is corrected in later versions of the OpenVZ kernel but Iam not sure, it may also be that a much newer kernel is needed and Centos may not have a recent enough kernel. *Debain 7.0 however does work fine as a temporary fix or work around. Debian 8 OpenVZ no IP and networking not working: lo Link encap:Local Loopback  ........
  • openvz yum problem Centos 6.5 cannot find file on mirror:


    #solution Edit /etc/yum.repos.d/openvz.repo For the first two entries comment out #mirrorlist and uncomment #baseurl and then it worked openvz yum problem Centos 6.5 cannot find file on mirror: yum update Loaded plugins: fastestmirror Determining fastest mirrors * openvz-kernel-rhel6: mirrors.ustc.edu.cn * openvz-utils: mirrors.ustc.edu.cn base ........
  • Postfix how to secure outgoing authenticated e-mails for privacy and hide the IP address, mailer and other things


    The most common solution is to use the /etc/postfix/header_checks but this is a big problem. Why is header_checks a problem? Because it does it to all mail whether incoming or outgoing and whether authenticated or not. We of course want as much header information for incoming as we can get for many reasons but many organizations want to secure and make their mail clients as secure as possible. I adapted this solution to the client's custom config, they are configur........
  • pxe-32 tftp open timeout


    pxe-32 tftp open timeout The solution was to enable tftp in xinetd with "chkconfig tftp on". See the troubleshooting below: chkconfig --list NetworkManager 0:off 1:off 2:off 3:off 4:off 5:off 6:off acpid 0:off&n........
  • eth0 changed to eth1 or eth2 and the solution to fix it


    If you move your hard drive(s) around to other computers/servers, you'll find that your eth0 keeps getting higher, the first time it will become eth1 and then eth2 etc and even higher if your server has dual or quad NICs. The reason is that udevd basically assigns eth0 tot he first NIC it finds and remembers it, if it encounters a NIC with a differentMAC, it assigns it one higher (eg. eth1). See the example below, I have eth2 now so how doI fix it?........
  • Setup PXE Boot using Centos and dhcpd, tftp and syslinux


    This is something I often setup for clients because it's very helpful for people in datacenters, this allows custom OS installs on demand, you can customize it more by using kickstart etc.. but here's a base I use before customizing more: This little script below will install everything you need to get booting by PXE Linux. It also assumes you set a local IP (be sure not to overwrite your existing IP) on eth0:0 (note the :0) as 192.168.1.10 and it........
  • How to view UDP and other protocol connections?


    netstat is weak and can't show udp connections and most other protocols, use "ss" which is what netstat should have been: The "-u" switch stands for udp, here's a list of other options: Usage: ss [ OPTIONS ] ss [ OPTIONS ] [ FILTER ] -h, --help this message -V, --version output ver........
  • Enable SPAMASSASSIN on Postfix in 5 minutes


    Centos 5 Postfix and SPAMASSASSIN Tutorial yum install spamassassin chkconfig spamassassin on vi /etc/mail/spamassassin/local.cf ############## #required_hits 5 #report_safe 0 #rewrite_header Subject [SPAM] #5 is the least restrictive (means only the most obvious SPAM is caught. 0 is obviously the most restrictive/sensitive and would have lots of false positives require........
  • Postfix Enable SSL/TLS with your certificate


    Create Cert & Key: openssl req -new -x509 -nodes -days 1530 -out server.crt -keyout server.key mkdir /etc/mailssl chmod 700 /etc/mailssl cp server.* /etc/mailssl Postfix SSL config Edit /etc/postfix/main.cf: #SSL stuff smtpd_tls_cert_file = /etc/mailssl/server.crt smtpd_tls_key_file = /etc/mailssl/server.key To make smtps w........
  • Installing Webmin & Enabling SSL


    Webmin Setup Centos 5: wget http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html&ts=1294339690&use_mirror=surfnet [1] 24229 [2] 24230 [root@host ~]# --2011-01-06 21:48:20-- http://downloads.sourceforge.net/project/webadmin/webmin/1.530/webmin-1.530-1.noarch.rpm?r=http%3A%2F%2Fwww.webmin.com%2Fstandard.html Resolving downloads.sourceforge.net... 216.34.181.........
  • Outsourced VPS Support


    The Xen VPSI had was not working properly and when they asked for the login information I found the support was coming directly from India: whois 122.178.148.* [Querying whois.apnic.net] [whois.apnic.net] % [whois.apnic.net node-5] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html inetnum: 122.178.128.0 - 122.178.191.255 netname:&........
  • Wine stopped working/won't work Solution


    After an upgrade wine wouldn't open anything, not even the pre-installed notepad. There are no wine logs and nothing is mentioned in any standard log file about why. I finally decided to run wine from the shell and see what's going on: wine client error:0: version mismatch 398/402. Your wineserver binary was not upgraded correctly, or you have an older one somewhere in your PATH. Or maybe the wrong wineserver is still running?........
  • How To Set DHCP/Static IP Address in Centos/RHEL/Fedora & Debian/Ubuntu/Kubuntu/MEPIS Set DHCP/Static IP Address


    Basically the two main types of distros are Debian and RHEL/Centos based. I'm just going to give a quick overview of how the configuration of IP interfaces works in Debian/Centos based distros. *Just one thing to remember, when setting IPs statically you have to manually specify a DNS server in /etc/resolv.conf (since DHCP is what normally does it automatically) Debian/Ubuntu/Kubuntu/MEPIS The IP (DHCP &........
  • Need identd for port 113 ? Install authd


    Need identd for port 113 ? Install authdyum install authd Happy identing :)Actually it's not that simple. It installs as an "xinetd" service and is disabled and turned off by deafult. To enable it run: [code:1:8c94df8319] chkconfig --level 3 auth on service xinetd restart [/code:1:8c94df8319] This will set identd aka authd to start by default. service xinetd resta........
  • Latest Articles

  • Linux Ubuntu Cannot Print Large Images
  • Cannot Print PDF Solution and Howto Resize
  • Linux Console Login Screen TTY Change Message
  • Apache Cannot Start Listening Already on 0.0.0.0
  • MySQL Bash Query to pipe input directly without using heredoc trick
  • CentOS 6 and 7 / RHEL Persistent DHCP Solution
  • Debian Ubuntu Mint rc-local service startup error solution rc-local.service: Failed at step EXEC spawning /etc/rc.local: Exec format error
  • MySQL Cheatsheet Guide and Tutorial
  • bash script kill whois or other command that is running for too long
  • Linux tftp listens on all interfaces and IPs by DEFAULT Security Risk Hole Solution
  • python import docx error
  • Cisco Unified Communications Manager Express Cheatsheet CUCME CME
  • Linux Ubuntu Debian Missing privilege separation directory: /var/run/sshd
  • bash how to count the number of columns or words in a line
  • bash if statement how to test program output without assigning to variable
  • RTNETLINK answers: Network is unreachable
  • Centos 7 how to save iptables rules like Centos 6
  • nfs tuning maximum amount of connections
  • qemu-kvm error "Could not initialize SDL(No available video device) - exiting"
  • Centos 7 tftpd will not work with selinux enabled