SSL Buying commercial SSL certificates are expensive, so I setup my own CA in /etc/ssl/CA Renewing a certificate First revoke the old certificate openssl ca -revoke newcerts/02.pem -config ./openssl.cnf Then re-sign the request openssl ca -out cert.pem -config ./openssl.cnf -infiles server-req.pem Create new certificate Create request openssl req -new -nodes -out server-req.pem -config ./openssl.cnf Sign [...]
Monthly Archives: October 2010
FastCGI + PHP
Posted by david on October 11, 2010
2 comments
FastCGI + PHP I run this webserver on a VPS hosted by quantact so the lower the memory usage, the lower my monthly bill. This has led me to be pretty stingy with memory usage. While using mod_php, each apache process was around 25MB each. Since switching to PHP running as a fastcgi my apache [...]
Strange incoming connections from source port 80
Posted by david on October 10, 2010
0 comments
I began getting many alerts from snort on incoming traffic from the dynamic range of my ISP (insightbb). Connecting back to the source IPs on port 80 showed the google search page. A quick nmap -A showed it to be a linux box, running Google httpd 2.0 (GFE) on port 80 and 443. After some [...]
Monitoring with Cacti
Posted by david on October 9, 2010
0 comments
Remote Monitoring I added “agentaddress tcp:161″ to snmpd.conf which cases snmpd to listen on tcp port 161. Then it was easy to tunnel the tcp communication with ssh and eliminated the need for the buggy socat method. SSH tunnel ssh -f -N -L 6003:localhost:161 user@digitaldogma.org Then I setup the host using tcp:127.0.0.1 and port 6003 [...]
Creating a quick play DVD in Linux
Posted by david on October 8, 2010
0 comments
With all the extras and previews on kids movies now, it takes forever to get to the feature. This is a huge pain when trying to start a movie for the kids in the car, so I’ve started making copies of their movies to avoid all the unwanted extras. This serves a dual purpose in [...]
The requested message could not be converted to an RFC-822 compatible format.
Posted by david on October 8, 2010
0 comments
From time to time, archivemail run against the exchange server may fail with an error such as: archivemail: Failed to fetch message sizes; server says ‘The requested message could not be converted to an RFC-822 compatible format.’ archivemail: unexpected error encountered – shutting down When it does, determine the problem message by running fetchmail by [...]
First Post from VIM
Posted by david on October 8, 2010
0 comments
So I found Vimpress a vim plugin that allows you to publish and edit posts to wordpress from within VIM. One of my biggest grips about using blog software was being forced to use a web form based editor. With this removed, I figured I’d try out wordpress again. Vimpress is neat, but Blogit is [...]