Posts Tagged ‘linux host’
Friday, February 1st, 2013
Administrating Linux via graphical interface is not common, however sometimes it is necessery. There are plenty of ways to remotely administrate with GUI Linux. You can connect to remote Xserver and launch X session via xinit, connect via (Gnome Display Manager) GDM, use nomachine NX server / client (if you're on slow connection line) or use the good old Teamviewer.
As Teamviewer works pretty well on both Windows and Linux in last times I like using teamviewer as a standard. It is freeware and it often disconnects with the annoying Trial message, but in general for managing something quick on remote desktop it is nice.
To use teamviewer, you need to have it installed on the Linux host via deb or rpm:
Whether on Debian / Ubuntu use:
# wget http://www.teamviewer.com/download/version_8x/teamviewer_linux_x64.deb
.....
# dpkg -i teamviewer_linux_x64.deb
...
....
On Fedora, CentOS, RHEL run:
# wget -q http://www.teamviewer.com/download/teamviewer_linux.rpm
# rpm -Uvh teamviewer_linux.rpm
.....
Once package is installed teamviewer is installed in /opt/teamviewer/* there is a tiny wrapper run script in /usr/bin/teamviewer – evoking TeamViewer to be run via wine emulation.
Hence to make TeamViewer start on certain user GNOME login the script has to run on GNOME user login session.
In both GNOME 2 and GNOME 3 what is run on user login is managed through gnome-session-properties thus /usr/bin/teamviewer has to be set to run through gnome-session-properties (to run it press ALT+F2 or type it directly in gnome-terminal)
user@linux:~$ gnome-session-properties
A window like in below screenshot pops up and from there Add TeamViewer.
To be able to later connect via a Remote host with another TeamViewer peer launch TeamViewer and configure permanent password through menus:
Extras -> Options -> Security
All left is to write down your Teamviewer Remote Connect ID and permanent set password
After next succesful GNOME login teamviewer will just pop-up. Enjoy
If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
Tags: auto start, CentOS, fedora, gnome user, graphical interface, launch, linux host, linux rpm, remote desktop, rpm uvh, session properties, TeamViewer, wget, xinit, xserver
Posted in Everyday Life, Remote System Administration | No Comments »
Monday, November 7th, 2011
After upgrading my sis's notebook from Ubuntu 11.04 to Ubuntu 11.10 on her Acer Aspire 5736Z the default gnome wireless network manager started behaving oddly.
The Network Manager did not show any networks, even though the network drivers showed that are loaded properly on the Linux host and using the normal commands like iwlist or iwconfig I could list and see the networks and even connect to a network.
As my sister is not a console geek like me it was necessery of course to have an easy way to connect herself to the Internet with nice GUI application. I personally love WICD Network Manager and as the default gnome manager was misbehaving I immediately installed her wicd.
With wicd , the wireless networks were properly listed and there was no connection issues to the wireless networks, however the wicd system tray was missing and hence everytime she wanted to connect to a wireless network, she had to keep wicd-client running active in the Dock or run it manually every time on connect, when she had to change her physical location and connect to another wireless network.
This of course is quite unhandy and gives her a bad image of Linux and I definitely want to make her love free software and GNU / Linux. Thus I want to give her a GNU / Linux she will be easy to use.
To make her more satisfied with her Ubuntu I googled around to see what causes the wicd systray to be missing after some research online I found out, its probably due to either wicd bug or some kind of interface changes in unity newer versions of Ubuntu. Some people online suggested a fix via changing values in gconf-editor but this work around by changing the values in gconf-editor:
'desktop' -> 'unity' -> 'panel'
I tried this suggested fix which was reported to work on Ubuntu 11.04 but the gconf registry suggested pathway was missing at all so this solution did not worked.
I further read some other suggested solution using wicd-client by invoking it with two args like so:
stanimira@ubuntu:~$ wicd-client -n &
...stanimira@ubuntu:~$ wicd-client -a &
This proposed solution did not worked either, then I found in one of the Ubuntu bugs reports, a little shell script (add-wicd-to-whitelist.sh) that changes some values in gconf so I proceeded downloaded and give it a try:
stanimira@ubuntu:~$ wget http://www.pc-freak.net/files/add-wicd-to-whitelist.sh
...
stanimira@ubuntu:~$ sh add-wicd-to-whitelist.sh
...
For my surprise running the script doesn't immediately changed nothing and wicd wireless connectivity indicator was still missing from the tray.
I thought it might need to reload gnome so I give it a restart and HOORAY! after the restart the WICD connected wireless strength show up, like you can see in the screenshot below 
Now hope this fix will, help out there experiencing the same issues to work around his wireless network connectivity issues Cheers.
Tags: acer, connection, course, Desktop, doesn, everytime, free software, gconf, geek, Gnome, gnu linux, gui application, host, Image, interface changes, Linux, linux host, location, love, manager, necessery, network drivers, notebook, physical location, script, Shell, software, system tray, systray, time, Ubuntu, unity, wget, wicd, wireless networks, work
Posted in Everyday Life, Linux and FreeBSD Desktop, System Administration, Various | 13 Comments »
Wednesday, August 24th, 2011
I'm required to do some mail relaying on a Debian Linux host which should use a remote mail server to relay its mails.
Until so far I've had not much experience with exim as I prefer using qmail, whever a mail server is needed. However since now only a relaying was necessery and exim is the default installed MTA on Debian, I've decided to use exim to take care of the SMTP mail relaying.
After a bit of reading it happened configuring exim to relay via remote SMTP server is more than easy!
All I had to do is run the command:
debian-relay:~# dpkg-reconfigure exim4-config
Next in the Ncruses interface to appear:
I had to choose the option:
mail sent by smarthost; no local mail
Next a dialog appears asking for:
System mail name:
Therein it's necessery to type in the hostname of the remote SMTP to be used for mail relay.
Next dialog asks for:
IP-addresses to listen on for incoming SMTP connections:
and I left it with 127.0.0.1 however if exim is supposed to be visible from external network one might decide to put in real IP address there.
Pressing OK leads to the next dialog:
Other destinations for which mail is accepted:
I decided to leave this blank as I don't want to accept mail for any destinations.
Next pane reads:
Visible domain name for local users:
I've typed inside my smtp relay server e.g.:
smtp.myrelaymail.com
Further comes:
IP address or host name of the outgoing smarthost:
There once again I typed my mail relay host smtp.relaymail.com
The next config screen is:
Keep number of DNS-queries minimal (Dial-on-Demand)?
On any modern Linux host the default answer of No is fine.
Following prompt asked if I want to:
Split configuration into small files?
I've decided not to tamper with it and choosed No
Afterwards mail relaying works like a charm thx God
Tags: care, com, config, config screen, configNext, configure, debian linux, default answer, Demand, dial on demand, dialog, dns queries, exim, host name, hostname, ip addresses, linux host, local mail, mail name, mail relay, mail server, MTA, myrelaymail, nbsp, Ncruses, necessery, option, reading, relay, relay mail, relaymail, remote mail, remote smtp server, screen, smtp, smtp connections, smtp mail, smtp relay server, system mail, thx, type, Ubuntu, Visible, works like a charm
Posted in Exim, Linux, Qmail, System Administration | 2 Comments »
Wednesday, August 24th, 2011
I’ve been playing with configuring a new nagios running on a Linux host which’s aim is to monitor few Windows servers.
The Linux host’s exim is configured to act as relay host to another SMTP server, so all email ending up in the Linux localhost on port 25 is forwarded to the remote SMTP.
The remote smtp only allows the Linux to send email only in case if a real existing username@theserverhostname.com is passed it, otherwise it rejects mail and does not sent properly the email.
As the newly configured Nagios installatio is supposed to do e-mail notification, I was looking for a way to change the default user with which Nagios sends mails, which is inherited directly after the username with which /usr/sbin/nagios3 and /usr/sbin/nrpe are running (on Debian this is nagios@theserverhostname.com).
Thanksfully, there is a work around, I’ve red some forum threads explaning that the username with whch nagios sends mail can be easily changed from /etc/nagios3/commands.cfg by passing the -a “From: custom_user@myserverhostname.com” to all occurance of /usr/bin/mail -s , its preferrable that the -a custom_user@myserverhostname.com is inserted before the -s “” subject option. Hence the occurance of mail command should be changed from:
| /usr/bin/mail -s "** $NOTIFICATIONTYPE$
To:
| /usr/bin/mail -a "From: custom_user@theserverhostname.com" -s "** $NOTIFICATIONTYPE$
Now to read it’s new configurations nagios requirs restart:
debian:~# /etc/init.d/nagios3 restart
...
Now in case of failed services or Hosts Down nagios will send it’s mail from the custom user custom_user@theserverhostname.com and nagios can can send mail properly via the remote relay SMTP host
Tags: aim, com, command, custom, debian gnu, default user, e mail notification, email, exim, forum, forum threads, gnu linux, hosts, Linux, linux host, localhost, mail command, myserverhostname, nagios, notification, NOTIFICATIONTYPE, occurance, option, port, preferrable, relay, smtp server, Thanksfully, theserverhostname, username, usr, way, whch, windows servers, work
Posted in FreeBSD, Linux, System Administration | No Comments »
Saturday, April 30th, 2011
If you’re building (compiling) a new qmail server on some Linux host and after properly installing the qmail binaries and daemontools, suddenly you notice in readproctitle service errors: or somewhere in in qmail logs for instance in/var/log/qmail/current the error:
/usr/local/bin/tcpserver: error while loading shared libraries:
libc.so.6: failed to map segment from shared object: Cannot allocate memory
then you have hit a bug caused by insufficient memory assigned for tcpserver in your /var/qmail/supervise/qmail-smtpd/run daemontools qmail-smtpd initialize script:
This kind of issue is quite common especially on hardware architectures that are 64 bit and on Linux installations that are amd65 (x86_64) e.g. run 64 bit version of Linux.
It relates to the 64 bit architecture different memory distribution and thus as I said to solve requires increase in memory softlimit specified in the run script an example good qmail-smtpd run script configuration which fixed the libc.so.6: failed to map segment from shared object: Cannot allocate memory I use currently is as follows:
#!/bin/shQMAILDUID=`id -u vpopmail`NOFILESGID=`id -g vpopmail`MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`# softlimit changed from 8000000exec /usr/local/bin/softlimit -m 32000000 \/usr/local/bin/tcpserver -v -H -R -l 0 \ -x /home/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \
/var/qmail/bin/qmail-smtpd \
/home/vpopmail/bin/vchkpw /bin/true 2>&1
The default value which was for softlimit was:
exec /usr/local/bin/softlimit -m 8000000
A good softlimit raise up values which in most cases were solving the issue for me are:
exec /usr/local/bin/softlimit -m 3000000
orexec /usr/local/bin/softlimit -m 4000000
The above example run configuration fixed the issue on a amd64 debian 5.0 lenny install, the server hardware was:
CPU: Intel(R) Core(TM)2 Duo CPU @ 2.93GHz
System Memory: 4GB
HDD Disk space: 240GB
The softlimit configuration which I had to setup on another server with system parameters:
Intel(R) Core(TM) i7 CPU (8 CPUS) @ 2.80GHz
System Memory: 8GB
HDD Disk Space: 1.4Terabytes
is as follows:
#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
exec /usr/bin/softlimit -m 64000000 \
/usr/local/bin/tcpserver -v -H -R -l 0 \
-x /home/vpopmail/etc/tcp.smtp.cdb -c "$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" 0 smtp \
/var/qmail/bin/qmail-smtpd \
/home/vpopmail/bin/vchkpw /bin/true 2>&1
If none of the two configurations pointed out in the post works, for you just try to manually set up the exec /usr/bin/softlimit -m to some high value.
To assure that the newly set value is not producing the same error you will have to, reload completely the daemontools proc monitor system.
To do so open /etc/inittab comment out the line:
SV:123456:respawn:/command/svscanboot
to
#SV:123456:respawn:/command/svscanboot
Save again /etc/inittab and issue te cmd:
linux:~# init q
Now again open /etc/inittab and uncomment the commented line:
#SV:123456:respawn:/command/svscanboot
to
SV:123456:respawn:/command/svscanboot
Lastly reload the inittab script once again with command:
linux:~# init q
To check if the error has disappeared check the readproctitle process, like so:
linux:~# ps ax|grep -i readproctitle
The command output should produce something like:
3070 ? S 0:00 readproctitle service errors: .......................................
Hope that helps.
Tags: amd64, amp, binaries, bit, bit architecture, Cannot, cdb, control, cpu intel, Disk, error while loading shared libraries, exec, hardware architectures, host, init, inittab, instance, insufficient memory, intel, libc, Linux, linux host, linux installations, loading, log, logs, QMAILDUID, script, segment, server hardware, shQMAILDUID, smtp, system, tcp, value, vpopmail
Posted in Linux, System Administration | No Comments »
Friday, April 29th, 2011
One of the most precious commands I ever learned to use in Linux is ifconfig and route .
They have saved my life in configuring the static IP based internet of numerous Desktop Linux computers & notebooks.
Though the usage is very much known by most of the people who are into Linux, I believe it’s likely that the newer people who entered the world of Linux or some Unix system administrators are still lacking the knowledge on how to manually configure their eth0 lan card, thus I thought it might be handy for someone to share it, I know that for most unix users & admins especially the advanced ones this post might be funny, so if you’re an advanced administrator just skip the post and don’t laught at it
Now the universal commands (works on each and every Linux host) to configure manually static IP internet connection on Linux are:
linux:~# /sbin/ifconfig eth0 192.168.0.3 netmask 255.255.255.0
linux:~# /sbin/route add default gw 192.168.0.1
linux:~# echo 'nameserver 192.168.0.1' >> /etc/resolv.conf
I’ve used this simple commands on thousands ot Linux hosts and it’s still handy 
In above example 192.168.0.3 is the static IP address provided by the ISP, netmask is the netmask and the second /sbin/route add default gw would set the default gateway to the example ip 192.168.0.1
The third final line would add up a resolver nameserver the Linux host would use.
Cheers
Tags: 192 168 0 1, card, Cheers, configure, connection, default gateway, Desktop, desktop linux, eth, ethernet, gateway, host, ifconfig eth0, interface, internet connection, ip internet, ISP, knowledge, lan, lan interface, laught, life, line, Linux, linux host, linux hosts, Netmask, notebooks, resolver, someone, static ip address, universal commands, universal way, unix, unix system administrators, unix users, way
Posted in Linux, System Administration, Various | No Comments »
Monday, April 11th, 2011
As I’ve mentioned in my previous post, one of the greatest “evils” which prevents a good internet anonymization whether you surf online is Adobe Flash Player
There are two approaches you might partake to disable the privacy issues which might be related to Adobe Flash cookies saving data about flash banners or websites which stores their cookies to your computer.
To find out if flash websites has already saved their nasty flash cookies on your Linux, issue the commands:
hipo@debian:~$ cd .macromedia
hipo@debian:/home/hipo/.macromedia$ find -iname '*.sol'
./Flash_Player/macromedia.com/support/flashplayer/sys/#s.ytimg.com/settings.sol
./Flash_Player/macromedia.com/support/flashplayer/sys/settings.sol
./Flash_Player/macromedia.com/support/flashplayer/sys/#ip-check.info/settings.sol
The returned output of the above find command clearly reveals the shitty flash has stored already 3 flash cookies on my Linux, 3 cookies which later can be easily requested by other flash banners.
The 3 flash cookies are:
1. Saved by Adobe’s Flash Configuration Manager
2. Saved by the website ip-check.info
3. Saved by s.ytimg.com’s website
Now to deal with the situation and get rid of flash cookies, there are possibly two ways of approach that one can take:
1. One is to use some kind of script like the one clear_flash_cookies.tsch the other one is to completely disable flash cookies.
Using the clear_flash_cookies.tcsh does get rid of flash cookie problems just temporary as it might be set to be executed either once the browser is starting up, or directly via some kind of cron job entry like:
01 11,19 * * * /home/hipo/scripts/clear_flash_cookies.tcsh
eHowever clearing up (removing) the flash cookies, still doesn’t completely proihibit saving up of flash cookies and in the time intervals between the clear ups of the flash cookies, still some websites might save information related to their use on your Linux host and expose this information for other external flash websites to read and retrieve information about your previous websites visits.
Therefore it might be a better solution in terms of browser security to;
2. completely disable the use of adobe flash cookies on your Linux powered desktop.
Disabling adobe flash cookies is possible by either using the online flash Global Storage Settings (Flash Settings Manager) by navigating to the URL:
http://www.macromedia.com/support/documentation/
en/flashplayer/help/settings_manager03.html
And by removing the tick which is present to the option:
Allow third party Flash content to store data on your computer
Or by linking the local directory ~/.macromedia -> /dev/null
hipo@debian:~$ mv .macromedia .macromedia-bak
hipo@debian:~$ ln -s /dev/null .macromedia
hipo@debian:~$ ls -ald .macromedia
lrwxrwxrwx 1 hipo hipo 9 2009-03-30 09:56 .macromedia -> /dev/null
That’s all, Farewell nasty Flash cookies!
Tags: adobe flash player, adobe macromedia, anonymization, clearing, com, cookie problems, cron, Desktop, evils, external flash, flash banners, flash websites, flashplayer, Global, hipo, host, iname, info, information, ip check, job, Linux, linux host, linux issue, macromedia flash, Privacy, privacy issues, script, scripts, sol, solThe, support, surf, sys, tcsheHowever, time, time intervals, two ways, ups
Posted in Computer Security, Linux and FreeBSD Desktop, Linux Audio & Video | No Comments »
Monday, April 11th, 2011
A friend of mine has recommended, few websites which are quite useful in checking what kind of information a remote website could possibly retrieve about your system. I’ve found quite useful as they expose the high level of browser security there is nowdays even on a Linux based systems.
I’ve been stunned that so many information about my Linux desktop could be mined even when I use my browser through a tor network.
Here are the websites you might also like to check and possibly afterwards improve your Browser security:
http://anon.inf.tu-dresden.de/help/jap_help/en/help/security_test.html
http://www.proxy-list.org/en/show-my-ip.php
http://leader.ru/secure/who.html
I was rather shocked that some information that could be retrieved on my Linux host could even reveal fundamental details about my Linux Desktop like a version of my currently running Linux kernel!
In the past I’ve blogged an article which is quite related to the topic of Internet Anonimity and Browser security
You might consider checking my old article How to improve your web browser security and better secure your personal identity privacy on the internet here
I will take some steps further to look on how to further decrease the amount of OS sensitive data revealed by my browser and will further blog when I find ways for better ways to anonimize my surging.
Tags: amount, anonimity, anonimize, blog, browser, checking, Desktop, dresden, host, identity, information, ip, kernel, kind, level, Linux, linux desktop, linux host, mine, network, personal identity, Privacy, privacy on the internet, proxy list, ru, security, security test, sensitive data, topic, tor, version, web, web browser security, website
Posted in Computer Security, Linux, Linux and FreeBSD Desktop | 3 Comments »
on 
on 