~/virtual/home/joho | DeltaFelter | Stealth Cookie | FidoNet | Joaquim Homrighausen | joho68
Use redis-cli to monitor redis access and activity.
redis-cli monitor
or
telnet localhost 6379
When the connection has been made, type MONITOR
Use Ctrl+C or send SIGINT to get out of redis-cli. To stop the redis session initialized with telnet, simply type QUIT and press <Enter>
See more from @geek1968 on Instagram
I often use Webmin and Virtualmin to manage basic stuff on Linux servers, mostly so because others sometime need to change minor settings on these servers, and they may or may not be very familiar with doing things from the CLI.
You can, of course, update Webmin and Virtualmin manually, from within Webmin. But if you’re using APT, there is an automated, better, way of keeping these lovely software packages up to date.
Create a file in /etc/apt/sources.list.d/ like webmin.list
Add the following line to that file:
deb https://download.webmin.com/download/repository sarge contrib
Add Jamie Cameron’s GPG key for the repository like so:
cd /root wget https://download.webmin.com/jcameron-key.asc apt-key add jcameron-key.asc
Finalize everything with
apt-get install apt-transport-https apt-get update
You may now install/update Webmin with via APT (apt-get, aptitude, etc).
Create a file in /etc/apt/sources.list.d/ like virtualmin.list
For Ubuntu 18.04.LTS (“Xenial”), add the following to that file:
deb http://software.virtualmin.com/vm/6/gpl/apt virtualmin-xenial main deb http://software.virtualmin.com/vm/6/gpl/apt virtualmin-universal main
There are, of course, sources available for other distributions too. Simply replace xenial above, with the name of the distribution you’re running. You can find a list of the Debian based distributions here: software.virtualmin.com/vm/6/gpl/apt/dists/
Add the virtualmin GPG key for the repository like so:
cd /root wget http://software.virtualmin.com/lib/RPM-GPG-KEY-virtualmin-6 apt-key add RPM-GPG-KEY-virtualmin-6
Finalize everything with
apt-get update
You may now install/update Virtualmin via APT (apt-get, aptitude, etc). You can find some more information about this in relation to Virtualmin on the Virtualmin forum.
When or if you run into trouble with apt-get and IPv6 connections timing out or not resolving properly at all, it may be a good idea to simply prevent apt-get from using IPv6.
Use
-o Acquire::ForceIPv4=true
when running apt-get, or create /etc/apt/apt.conf.d/99force-ipv4 and put
Acquire::ForceIPv4 "true"
in it.
If this does not work for you, you may want to have a look at /etc/gai.conf (this will, however, affect your system on a deeper level for IPv4 vs IPv6 connectivity). If you’re not interested in IPv6, it should cause no problems.
See more from @geek1968 on Instagram
There are many posts about nginx, re-directs, PHP, and WordPress. There are somewhat fewer posts that talk about (internal) re-writes, where the request by the web browser is mangled to be served by another resource than the one requested.
For example, I may want a request for https://mysite.foo/cool/penguin to actually be served by https://mysite.foo/coolstuff.php?id=penguin, or simply setup an alias such as https://mysite.foo/cool/penguin to be served by https://mysite.foo/cool/linux, but preserve the URL in the browser address bar.
With PHP-FPM and nginx, you run into an additional problem, which is the fastcgi_parm variables that are passed from nginx to PHP-FPM. So even if you have really fancy URL re-writing configured (and working), the end result may not be passed on to PHP-FPM from nginx.
So solve this, you should look into this construct, which is present in many nginx configurations as a default setup:
fastcgi_param REQUEST_URI $request_uri;
Since your needs probably differ from mine, I wont make this post any longer than it has to be, but that fastcgi_param line above may be a good starting point if you’re experiencing problems with nginx, PHP-FPM, and URL re-writing.
Good luck!
There are a number of ways to figure out your public IP address automatically, which can be extremely useful for Dynamic DNS (DDNS) situations or other automation ventures, these are some of them:
dig +short @resolver1.opendns.com ANY myip.opendns.com
curl https://ifconfig.co
curl http://whatismyip.akamai.com/
It would be nice if the Cloudflare DNS service (1.1.1.1) supported this too!
While attempting to create a Let’s Encrypt SSL certificate using certbot for a number of domains, I ran into something that appeared to be a timeout issue in the certbot client and/or one of the Python libraries used by it.
I found this thread, which recommends changing the MTU to 1300, and it does work. So, maybe this will help you too 🙂
community.letsencrypt.org/t/cannot-get-new-certificate-readtimeout-error/94586
In other words:
ifconfig eth0 mtu 1300
may help you out.
As I recently handled a migration from Zimbra 8.7.11 to Zimbra 8.8.12, I’ve been running into things I think the Zimbra updater should handle by itself, and/or things that should be documented in a more practical way than they currently are. I’ll just keep updating this post with things I find and learn.
(The migration turned into an 18 hour job since we ran into a +1 year old problem where an Ubuntu upgrade form 14.04.LTS to 16.04.LTS more or less wipes your Zimbra setup and leaves it in a very sorry state. Fortunately, I managed to piece it back by hand.)
The new and improved Zimbra Backup NG should be enabled IMHO. It does things a lot better than the previous version(s). In a number of places, Zimbra makes references to its improvements, and so on. They should probably include this instruction too:
To disable the “classic” (or “legacy”) backups, a simple
zmschedulebackup -F
(as the “zimbra” user) is all you need to execute. (You may want to hang on to your old backups until they’ve outlived their purpose though. This command only disables/removes the scheduled “legacy” backups.)
As he re-entered the sfdisk dump manually in the remote recovery console, using the devil’s editor (vi), he was silently thanking the Linux developers for not screwing around with the file system when it cannot be mounted.
Messing around with partition tables, disk volumes, and similar critical configuration parameters can lead to quite unexpected and unintended results. So, it may be a good idea to actually dump the current configuration before you begin your magic.
Using sfdisk, you can dump your Linux partition configuration in a fairly straightforward way. You can try the command by typing just sfdisk -d /dev/disk, where disk is one of the disks in your Linux system. For a list of disks in your system, use the lsblk command. They are identified as “disk” (surprise).
sfdisk -d /dev/sda > sda.txt
This would dump the partition table data for the /dev/sda disk to the file sda.txt. Your output will look something like this:
label: dos label-id: 0xa828a5d8 device: /dev/sda unit: sectors /dev/sda1 : start= 2048, size= 997376, type=83, bootable /dev/sda2 : start= 999424, size= 999424, type=82 /dev/sda3 : start= 1998848, size= 249659359, type=83
The partition table information can then later be restore by issuing the reverse, i.e.
sfdisk /dev/sda < sda.txt
DO NOT PERFORM THE ABOVE COMMAND IF YOU DON’T KNOW WHAT YOU ARE DOING!
This procedure may come in handy if you, like me, manage to screw up the partition table and find yourself at the (initramfs) prompt when you restart your Linux machine. You will (obviously) need to save the dump file (sda.txt above) in a location other than your computer. Using this method, it’s often possible to recover your partition table from a rescue boot (be it on CD, DVD or a flash drive).
I happened to have a previous terminal session window open with the above information, so I hand-typed it from one window to another, where I was running the remote recovery console.
There are a lot more complex partition setups than the above, and sfdisk may not work in those cases or for certain RAID and LVM setups. But it it’s a good procedure in applicable situations.
nmap -p 443 site.com nmap -p 21,22,2222,80,443 site.com nmap -p 50-100 site.com
nmap is a very versatile tool for analyzing remote hosts. Given the above examples, nmap will return the scanned ports’ status as open, closed, filtered, and so on.
lsof -Pnl +M -i4 lsof -Pnl +M -i6 or netstat -tulpn netstat -npl
There are obviously a number of ways to accomplish this, but these variations will cover a lot of ground. You can also combine this with grep to filter out things you don’t need to see, or to only include specific processes and/or ports.
See post from @geek1968 on Instagram