Archive for the ‘Linux’ Category

Disable weak ciphers in Tomcat

PCI compliance requires that weak and medium strength SSL ciphers are disabled, along with SSLv2 functionality. To achive this, just add the following to your SSL connector within server.xml and restart tomcat. sslProtocol should be set to TLS or SSLv3 and the ciphers setting should be added as below. Typically the server.xml will be in: […]

Check how old a Linux password is using chage

I came across a command today that I’ve never really had a use for before.  chage can be used to check when a password was last modified and also shows any password expiration rules etc.  It can also be used to implement password expiration. A very useful tool if password policies are required, although PAM […]

Delete a file older than X days using mtime

List files older than 5 days: find ./ -mtime +5 To count all files older than 5 days find ./ -mtime +5 |wc -l To move files to an archive directory: find ./ -mtime +5 -exec mv {} /var/archive \; -print To delete the files find ./ -mtime +5 -exec rm {} \; -print

Prevent brute force attacks using SSHBlack

SSHBlack is a very useful script which monitors the system logs for repeated failed logins and then blocks the source IP.  This can pretty much negate basic brute force attacks.  There are plenty of similar other applications such as BruteLock, but I think SSHBlack works well.  The following is a very handy article which shows […]

NTP Configuration on RedHat

Make sure its installed and enabled: yum install ntp chkconfig ntpd on /etc/init.d/ntpd start Config can be done in /etc/ntp.conf such adding local time servers: server mytimeserver.com You can instantly update the time from the timeserver by running: ntpdate pool.ntp.org or ntpd -qg If you get an error like: 5 Mar 14:09:24 ntpdate[19228]: the NTP […]

Postfix queue administration

Although I’ve used many MTA’s before, I’m new to postfix so here’s a few handy commands to note: List the mail queue: postqueue -p or mailq Delete a single message: postsuper -d 4C63F2300BA

Find broken symlinks

Quick tip to find broken symlinks in the filesystem: find -L . -type l

Convert SSH2 keys to OpenSSH

Convert SSH2 key to OpenSSH format: ssh-keygen -i -f id_dsa_1024_a.pub > id_dsa_1024_a_openssh.pub Or to convert an OpenSSH key to SSH2: ssh-keygen -e -f id_dsa.pub > id_dsa_ssh2.pub

Useful Linux find examples

The Linux/Unix find command can be used to do a lot more than find strings. Here’s a few very handy commands I’ve put together over the years: Recursively chmod files and folders to something sensible: find . -type d -exec chmod 755 {} \; find . -type f -exec chmod 644 {} \; Find files […]

Debian / Ubuntu package Management

You can search for a package by packagename or a word within the package description: apt-cache search apache2 apt-cache search “Apache ” You can also search by a file that is within the package: apt-file search apache2.conf Show package information: apt-cache show apache2 or apt-cache showpkg apache2 List files in a package: apt-file list apache2 […]