How to Boost Your Internet Security with DNSCrypt CloudNS.com.au Top 20 Nginx WebServer Best Security Practices Nginx is a lightweight, high performance web server/reverse proxy and e-mail (IMAP/POP3) proxy. It runs on UNIX, GNU/Linux, BSD variants, Mac OS X, Solaris, and Microsoft Windows. According to Netcraft, 6% of all domains on the Internet use nginx webserver. Nginx is one of a handful of servers written to address the C10K problem. Unlike traditional servers, Nginx doesn't rely on threads to handle requests. Default Config Files and Nginx Port /usr/local/nginx/conf/ - The nginx server configuration directory and /usr/local/nginx/conf/nginx.conf is main configuration file. You can test nginx configuration changes as follows: # /usr/local/nginx/sbin/nginx -t Sample outputs: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok configuration file /usr/local/nginx/conf/nginx.conf test is successful To load config changes, type: # /usr/local/nginx/sbin/nginx -s reload To stop server, type: # /usr/local/nginx/sbin/nginx -s stop #1: Turn On SELinux Do Boolean Lockdown See also: Where,
Namecoin 20 Linux System Monitoring Tools Every SysAdmin Should Know Need to monitor Linux server performance? Try these built-in commands and a few add-on tools. Most Linux distributions are equipped with tons of monitoring. Finding out bottlenecks.Disk (storage) bottlenecks.CPU and memory bottlenecks.Network bottlenecks. #1: top - Process Activity Command The top program provides a dynamic real-time view of a running system i.e. actual process activity. Fig.01: Linux top command Commonly Used Hot Keys The top command provides several useful hot keys: => Related: How do I Find Out Linux CPU Utilization? #2: vmstat - System Activity, Hardware and System Information The command vmstat reports information about processes, memory, paging, block IO, traps, and cpu activity. # vmstat 3 Sample Outputs: Display Memory Utilization Slabinfo # vmstat -m Get Information About Active / Inactive Memory Pages # vmstat -a => Related: How do I find out Linux Resource utilization to detect system bottlenecks? #3: w - Find Out Who Is Logged on And What They Are Doing # ps -AlFH
Unbound Encrypt DNS Traffic In Linux With DNSCrypt (Via OpenDNS) DNSCrypt, as its name suggests, encrypts DNS traffic between your computer and OpenDNS, in the same way SSL turns HTTP traffic into HTTPS encrypted traffic. Initially, DNSCrypt was announced as being available for Mac only for now, but according to an OpenDNS article posted yesterday, the source code for DNSCrypt was published on GitHub when they've released the Mac preview and even though there's no user interface yet, Linux users can already install DNSCrypt. Why use DNSCrypt? DNSCrypt encrypts all DNS traffic between your computer and the OpenDNS servers (so you'll be using OpenDNS) and can protect you from man-in-the-middle attacks, spying, resolver impersonation, can prevent Internet service providers from blocking various websites and more. This is the first tool that encrypts DNS traffic - for instance, TOR encrypts DNS requests, but they are decrypted at the exit node. You can read more about DNSCrypt @ OpenSND DNSCrypt page and on GitHub. How to use DNSCrypt in Linux
tunlr.net - umm la tele ! Glances gives a quick overview of system usage on Linux Monitor your Linux system As a Linux sysadmin it feels great power when monitoring system resources like cpu, memory on the commandline. To peek inside the system is a good habit here atleast, because that's one way of driving your Linux system safe. Glances Glances is a tool similar to Nmon that has a very compact display to provide a complete overview of different system resources on just a single screen area. As a bonus, glances is actually cross platform, which means you can use it on obsolete OSes like windows :P. Here's a quick glimpse of it. The output is color highlighted. $ glances -v Glances version 1.6 with PsUtil 0.6.1 Project hom The man page description Glances is a free (LGPL) curses-based monitoring tool which aims to present a maximum of information in a minimum of space, ideally to fit in a classical 80x24 terminal or higher to have additionnal information. Next task is to install Glances. $ glances
Censorship-free DNS servers - JonDonym Wiki Main Page (en) | Information for JonDonym users Censorship-free DNS servers Using JonDonym the DNS name resolution is done by the exit mix. But maybe you do not use JonDonym for all your traffic. Chaos Computer Club Berlin Comodo Secure DNS Censurfridns (Denmark) DNS Advantage Dotplex FoeBuD e.V. Swiss Privacy Foundation 87.118.104.203 (Ports: 53, 110, DNSSEC) 62.141.58.13 (Ports: 53, 110, HTTPS-DNS, DNSSEC IPv6) 87.118.109.2 (Ports: 53, 110, DNSSEC) Schweden DNS Kalmar NDC Registry Island DNS Island Telecom Antartica DNS (Cyberbunker NL) US DNS Westelcom Internet, Inc. How to change DNS Server in Win Vista / Win 7 Open System Control (Start->System Control) Check in the browser.
Adding iSCSI storage to KVM | Jason Ruiz I’m really surprised that I’m the one writing this as there we no flat out simple guides available, maybe it’s just because I’m new to the whole iSCSI thing. Awhile back when I first was testing multiple storage types with KVM, I never got my head around iSCSI when I had an OpenFiler VM up. It’s actually quite simple. From the Virtual Manager window, go ahead and click Edit and Host Details, once there go to the Storage tab. Click the plus sign to add storage. The Target Path can remain unchanged. Once you click finish you’ll be back at the Storage options and you’ll have that new LUN available. kvm iscsi KVM CLI Administration basics iSCSI on OpenFiler
Blog » An installation and everyday usage guide for libvirt and KVM Why all this ? Today, nearly every modern computing-related company uses directly or indirectly a virtualization software. As seen with the recent Cloud computing trend, it is a sector that recently exploded in popularity and it is now accessible to everyone. There are now a LOT of alternatives to virtualize an OS : Isolation : OpenVZ, VServer, LXC, UML, BSD jails, Solaris zones…Paravirtualization : XenFull virtualization : VMWare Player/Workstation/ESX/ESXi, KVM/Qemu, Virtualbox, Bochs… When having to deal with a large pack of machines for building packages, testing software on multiple OSes or optimally use a powerful server with lots of RAM, you rapidly should, if not have to, realize that Virtual Machines can make your life significantly easier. Here at Normation, we love free software (as in free speech, but a free beer is fine too, thanks), so we decided to use something that was FOSS, multi OS compatible (ruling out all isolation softwares), and convenient to use. Overview LVM magic