To check the active zones:

[root@rh7 ~]# firewall-cmd --get-active-zones
public
  interfaces: enp1s0f0

To get available service names:

[root@rh7 ~]# firewall-cmd --get-services
RH-Satellite-6 amanda-client bacula bacula-client dhcp dhcpv6 dhcpv6-client dns ftp high-availability http https imaps ipp ipp-client ipsec kerberos kpasswd ldap ldaps libvirt libvirt-tls mdns mountd ms-wbt mysql nfs ntp openvpn pmcd pmproxy pmwebapi pmwebapis pop3s postgresql proxy-dhcp radius rpc-bind samba samba-client smtp ssh telnet tftp tftp-client transmission-client vnc-server wbem-https

If the service you want to enable listed with the command above, you don’t have to write explicit port number, to allow a service permanently:

[root@rh7 ~]# firewall-cmd --zone=public --add-service=https --permanent
success

If the desired service is not available such as POP3 use the following command:

[root@rh7 ~]# firewall-cmd --zone=public --add-port=110/tcp --permanent
success

When you finish adding/removing rules, apply them with the command:

[root@rh7 ~]# firewall-cmd --reload
success

To check the services enabled on the zone public:

[root@rh7 ~]# firewall-cmd --zone=public --list-all
public (default, active)
  interfaces: enp1s0f0
  sources: 
  services: dhcpv6-client http https imaps pop3s smtp ssh
  ports: 7071/tcp 110/tcp
  masquerade: no
  forward-ports: 
  icmp-blocks: 
  rich rules:

The post CentOS 7 Firewall Sheet appeared first on VeriTeknik.

First, we should find the storage on our hypervisor to create an actual clone of our drive and switch the power state off.

In my case, i need to find the disk id from our hypervisor on ‘OnApp’, than i can find the virtual disk with using the disk id.

Step1:

To find disk, you should type something like that;

• # lvscan | grep <#diskid>

Result: # /dev/onapp-xxxxxxxx/abcdef123456

Step2:

Then change the attributes of disk;

• # lvchange -ay /dev/onapp-xxxxxxxx/abcdef123456

(a: available)

(y:yes)

Step3:

Create a directory to save your file

• # mkdir /tmp/backup

Step4:

Create an .img or .raw file to create your actual copy of your disk.

• # dd if=/dev/onapp-xxxxxxxx/abcdef123456 of=/tmp/backups/backup.raw bs=16M

Step5:

Then get your file by using any method. For example: I’m using ‘SecureFX’.

Step6:

Then format your physical drive and burn your image using ‘dd‘ command for Linux or ‘Win32DıskImage’ for Windows.

Step7: (For Windows)

Install your drive to your physical machine and power on.

Step8:

You should probably get 0xc000000f error or something like that.

To achieve this problem;

Set AHCI Mode in BIOS and use UEFI to unlock your disk.

Step9:

Use your installation DVD/CD and use these commands by using the command prompt and fix your boot problem. Also fix the mbr if needed.

1)chkdsk c: /R

2)bootrec /RebuildBcd

3)bootrec /fixmbr

4)bootrec /fixboot

5)bcdboot c:\Windows /s c:

Step10:

Again turn back to the BIOS and set the boot mode from UEFI to BIOS.

Eject your DVD/CD

Step11:

Voila! Enjoy your one to one copy of your vps .

The post Converting your server from virtual to physical server appeared first on VeriTeknik.

DO you ever wanted to set-up a testing server with
– Apache virtual config, logs, paths setted,
– MySQL server with password set,
– FTP Server (Vsftpd),
– PHP and PhpMyAdmin installed & configured on your server or VPS in seconds?

If you answer “yes” to the question, you are in the right place, what does this script do in basic:

– Installs http, PHP, MySQL, phpMyAdmin, rpmforge repo and other related packages
– Sets apache configs, mod_deflate, virtual hosts, create user, cgi-bin directory
– Sets time with ntpdate, disables iptables & selinux, mysql password and
– Updates the system

What is needed?
– A clean minimal install of CentOS/Redhat 6.X

How can I download the script?

wget http://www.plugged.in/downloads/plugged.sh

or just download it.

How to use the script?

chmod 755 plugged.sh
./plugged.sh -u username -p password -d domain.com

You can reach phpMyAdmin by typing domain.com/phpMyAdmin/

If you have suggestions or requests please write down!

The post Download Plugged.in LAMP installer for CentOS 6.x appeared first on VeriTeknik.

If somehow, this article is the first place you’ve realized you should stop using short open tags, it’s never too late! Below is a find / sed line to convert your php files from short open tags to “normal” ones. This line works pretty good but it’s always a good idea to backup your scripts before doing such massive automated injection.

find . -iname '*.php' -type f -print0 |xargs -0 sed -i -e 's/<? /<?php /g' -e 's/<?\/\//<?php \/\//g' -e 's/<?\/\*/<?php \/\*/g' -e 's/<?\=/<?php echo/g'

Don’t forget that this line will look for *.php files under the current folder due to the dot (.) which is the first argument of the find command.
It will apply these replaces:

The post PHP : Convert/Replace Short Open Tags appeared first on VeriTeknik.

Before connecting you the Windows box, let’s make a directory on your local Linux.

 $ mkdir ~/windows

Now, when connecting to Windows, we will use this kind of notation on the rdeskop arguments,

 $ rdesktop -f 10.20.30.40 -r disk:linux=/home/eaydin/windows

 -f : this is not of importance in our case, it’s just for full screen mode, to enter and exit fullscreen mode, press Ctrl+Alt+Enter

 -r :  this is the remote share option. disk is one of the options available, this will create a disk on the network devices of the Windows box, named “linux” which will point to /home/eaydin/windows on our Linux box. Don’t forget that you need Windows XP and newer for this feature, and the device name is limited to 8 characters!

After connecting with these options, on your Windows box (via the rdesktop interface) go to

Network Places -> Entire Network -> Microsoft Terminal Services -> tsclient

Here you’ll find a device named linux, this is your /home/eaydin/windows folder!

The -r option of rdesktop support many redirections such as sound, printer,  clipboard and more. Check the manual pages for more detail.

The post File Transfer From Windows to Linux via rdesktop appeared first on VeriTeknik.

Actually there are a lot of ways you can accomplish this especially with bash, but using the /dev/urandom file seems to be the most clever one.

The /dev/urandom device doesn’t only generate read-friendly characters, so it’s best to filter out the ones we’d like. The best tool for that would be tr.

$ cat /dev/urandom | tr -dc [:alnum:] | head -c 10

This will generate a password from 10 alphanumeric characters.

It will not include some characters though, such as . ! – _ which are useful for passwords. So this line would be a little more “secure”.

$ cat /dev/urandom | tr -cd “[:alnum:]\.\-_\!” | head -c 10

To generate a password in Python, using the string and random module would be a clever touch. Let’s try something like this,

>>> import string, random
 >>> def passgen(length) :
 ... keys = list(string.ascii_letters + string.digits)
 ... return "".join(random.choice(keys) for i in range(length)

With this definition of the passgen function, we can generate alphanumeric passwords with whatever length we want. If you’d like to include all characters available, try the one below:

>>> import string, random
 >>> def passgen(length) :
 ... keys = list(string.ascii_letters + string.digits + ".,;:-_()@\"\\[]?!'^+*$%&/=~`<>|")
 ... return "".join(random.choice(keys) for i in range(length)

A sample output :

>>> passgen(16)
 'pP!3p"(-uxdIqpAK'

You can find some methods of password generation using MD5 algorithms. For example for password generation in MySQL some people prefer this method;

>SELECT SUBSTRING(MD5(RAND()) FROM 1 FOR 5)

But this will generate very very weak passwords, no uppercase characters and a lot of characters missing, not even to mention the non-alpha numeric characters. Also you’ll have a limit for maximum character number since the MD5 algorithm has a limit for it. So it’s best to stay away from the md5 approach for password generation. Some people also use it for bash password generation too (which is wrong! due to same reasons)

The post Password Generation in UNIX appeared first on VeriTeknik.

To export the private key ( .pem ) from the PFX file and save it to a PEM file :

$openssl pkcs12 -in /path/to/file_name.pfx -nocerts -out private_key_name.pem

If you want to remove the password from the private key file :

$openssl rsa -in private_key_name.pem -out new_private.pem

The post How to Export the Private Key From a .PFX With OpenSSL appeared first on VeriTeknik.

The usual reason for this error is expired an SSL certificate.

This error usually happens if your SSL certificate has expired. There are two solutions for this problem.

The first solution is renewing your certificate and deploying it with the following command :

[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr deploycrt comm /opt/zimbra/ssl/zimbra/commercial/your_new_ssl.crt /path/to/ca_bundle.crt

After this you need to restart zmcontrol.

The second solution is regenerating self-signed certificate.

[zimbra@ck]$ su – zimbra -c ‘zmcontrol stop’
[zimbra@ck]$ rm -rf /opt/zimbra/ssl/*
[zimbra@ck]$ rm -rf /opt/zimbra/ssl/.rnd
[zimbra@ck]$ /opt/zimbra/java/bin/keytool -delete -alias my_ca -keystore /opt/zimbra/java/jre/lib/security/cacerts -storepass changeit
[zimbra@ck]$ /opt/zimbra/java/bin/keytool -delete -alias jetty -keystore /opt/zimbra/mailboxd/etc/keystore -storepass `su – zimbra -c ‘zmlocalconfig -s -m nokey mailboxd_keystore_password’`

Then you need to edit  /opt/zimbra/bin/zmcertmgr file ( you can use ‘vi’ )

Find validation_days=365 and change to validation_days=3650

And save /opt/zimbra/bin/zmcertmgr

[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr createca -new
[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr deployca -localonly
[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr createcrt self -new
[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr deploycrt self

[zimbra@ck]$ su – zimbra -c ‘zmcontrol start’

[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr deploycrt self
[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr deployca

[zimbra@ck]$ su – zimbra -c ‘zmupdateauthkeys’
[zimbra@ck]$ /opt/zimbra/bin/zmcertmgr viewdeployedcrt

The post (Zimbra Mail Server) Unable to determine enabled services from LDAP appeared first on VeriTeknik.

You don’t need to uncompress them in the first place. You can use zgrep on compressed or gzipped files.

To search in compressed file, execute the command :
root@ck [~]#zgrep ‘put-your-text-here’ /your-file-path-here/file.gz
Example : I want to grep ‘plugged’ in all of my exim_paniclog archived files.
root@ck [~]# zgrep ‘plugged’ /var/log/exim_paniclog.*

The post How to grep Compressed Files? appeared first on VeriTeknik.

But there are much more simple alternatives.

You can use echo method.

To empty a file just enter the command below. I use my php_error.log file for example.

echo -n > /home/base/logs/php_error.log

That’s it. Your file is empty now.

You can use VI Editor.

First, open the file that you want to empty with vi editor. I use my php_error.log file for example.

vi /home/base/logs/php_error.log

On the first line, type “dG” without quotes. It means delete globally on VI Editor.

Then quit with “:wq” without quotes of course 🙂

The post How to clear contents of a file ? appeared first on VeriTeknik.