Archive for the ‘redhat’ Category

Incredible Linux server Vulnerability – Fork Bombs and protecting yourself against them!

Tuesday, November 24th, 2009

I only recently learned about Fork bombs. The idea is that a user who can successfully log onto your server will run a simple program that will tell the server to run more simple programs– these programs may do nothing malicious by themselves, but when they keep creating more and more kids, your server’s resources will dwindle until the server has nothing remaining to operate with.

This VERY IMPORTANT POST about limiting user’s process/RAM Limits will help you guarantee that users will find it hard, if not impossible, to abuse the system with a fork bomb.

I suggest you read the above posts and immediately secure any Linux servers you are running!

Posted in Computers, Debian, linux, redhat | 2 Comments »

How to Listen on Multiple (More) IP Addresses on Linux

Friday, October 9th, 2009

One of the best articles that discussed how to bind or listen on multiple IP addresses is this article:

Bind Multiple IP Addresses to a Single Network Interface Card (NIC)

Amazing!  Useful!

Tags: , , , ,
Posted in Computers, Networking, linux, redhat | No Comments »

Error While Loading shared libraries , cannot open shared object file: no such file or directory (Easy solution?)

Tuesday, August 25th, 2009

Have you tried ldconfig yet?

I was working on a website that needed to use libraries from some lib directory on Linux. (it’s not like I understand WHERE To put files or install them yet, eh?)

But, after compiling and installing a program, I got the title of this post as an error message (with my specific library mentioned.)

How did I solve it? ldconfig

If it doesn’t work after that, good luck! MY problem was solved. :P

Tags: , , , , ,
Posted in C / C++, Computers, linux, redhat | No Comments »

(13) Permission denied: FastCGI can’t create server (problem solved)

Friday, August 7th, 2009

I was getting the following error on my Red Hat Enterprise Linux 5 server.  (RHEL 5)

[Thu Aug 06 17:48:03 2009] [crit] (13)Permission denied: FastCGI:
can’t create server “(Fast CGI File)”: bind() failed [(location of FastCGI location)]

I fixed this by:

chmod o+x /parent/directory/of/fastcgi

EG:
If Fast CGI was /var/log/httpd/fastcgi,
I’d do chmod o+x /var/log/httpd.

Worked fine.  (Kudos to my coworker who originally proposed the idea and it worked– Mentioning it again ’cause I did it again.)

Did it help you? Leave a comment! :)

Tags: , , , , , , , , ,
Posted in Computers, Uncategorized, linux, redhat | No Comments »

Recent BIND release has bugs — causes (host map: lookup (domain): deferred)

Monday, August 3rd, 2009

I had a problem on a server where a recent update to Red Hat Enterprise Linux 5 (RHEL5) caused all sendmail mail to be:

  1. Inserted into the queue
  2. Never sent
  3. Never sent with message “(host map: lookup (domain): deferred)
  4. Only sent when the mail queue is pushed ( sendmail -v -q )

I found an old post from 2006 that gave me an idea about what to do when sendmail constantly defers mail. I ran yum update and found BIND had some udpates.

After that, all I had to do was restart the sendmail server and we were good to go.

Good news!

Tags: , , , , , , , ,
Posted in Computers, Networking, Uncategorized, linux, redhat | No Comments »

Getting PaX or GRSecurity Kernel in Redhat Enterprise Linux 5

Tuesday, June 16th, 2009

I started at http://pax.grsecurity.net .  That wasn’t easy.
Then I found Larmier’s Blog refer to the patch at GRSecurity.  I hadn’t taken the site seriously, and saw that my current kernel uses PAE– basically an extension for 32 bit kernels to use more than 4GB of memory.

Based on this, I found that GRSecurity linked to http://rpm.cormander.com/repo/grsec/ aka Cormander’s GRSecurity Linux RPM Patch location.

Those RPMs worked quite fine!

Posted in Computers, linux, redhat | No Comments »