Do not allow what you cannot do, Interfere with what you can do. You can reach your dreams faster Doing things you're good at…
Patched: OpenSSL Heartbleed Vulnerability CVE-2014-0160
Debian Wheezy, Jessie, Sid
https://www.debian.org/security/2014/dsa-2896
# apt-get upgrade openssl
Ubuntu 12.04, 12.10, 13.10
http://www.ubuntu.com/usn/usn-2165-1/# apt-get upgrade openssl
RHEL/CentOS 6.5
https://rhn.redhat.com/errata/RHSA-2014-0376.html
http://lists.centos.org/pipermail/centos-announce/2014-April/020249.html
# yum update openssl
ShellShock or CVE-2014-6271
Test If You Have The Bug
test@srv-test:$ env x='() { :;}; echo vulnerable’ bash -c “echo this is a test” env x='() { :;}; echo vulnerable’ bash -c “echo this is a test”
RHEL: #yum clean all && yum update bash
On my older RHEL 5 box: # rpm -Uvh bash-3.2-33.el5.1.i386.rpm
CentOS: #yum clean all && yum update bash
Install Solaris 11.2
1. Boot DVD Image Solaris 11.2
 |
9. Enter a name for this server and select “F2”
14. Enter the IP address of DNS server and select “F2”
16. Select the “Region (Asia)” and “F2”
17. Select the “Location (Thailand)” and “F2”
18. Select the “Time Zones (Asia/Bangkok)” and “F2”
19. Select the “Language support (English)” and “F2”
20. Edit the date ant time and select “F2”
21. Select your keyboard “US-English” and “F2”
22. Enter the root password , create user account and select “F2”
23. Select the language “United States” and “F2”
24. Select the “F2”
25. Select the proxy server “No proxy” and “F2”
26. Review the settings summary and select the “F2”
27. Installing Oracle Solaris
28. Installation complete and select the “F8”
29. Select the “Oracle Solaris 11.2”
30. Loading SunOS (Solaris 11)
31. Please login OK!
Zimbra CSR Creation
1. Log in as root.
Adjust the following command to match your information: /opt/zimbra/bin/zmcertmgr createcsr comm -new “/C=US/ST=Utah/L=Lehi/O=Company Inc/OU=Department/CN=your.domain.com” Where:
2. Running this command will output the CSR to the following location: /opt/zimbra/ssl/zimbra/commercial/commercial.csr
You will use the CSR to place the order for the certificate (select “Other” as the server software when placing your order).
Zimbra SSL Installation
1. Once you receive the .zip containing the certificate files, extract the “certs” folder somewhere on your server. We will be combining some the files you received in to a PEM format. To create the pem file, you can reference our PEM instructions or follow the next steps of these instructions.
2. Take your server certificate (your_domain_name.crt) and copy it to a file called commercial.crt in the following directory: /opt/zimbra/ssl/zimbra/commercial/
3. With a text editor (such as wordpad or notepad), copy and paste the entire body of each of the following certificates into one text file in the following order:
The First Intermediate Certificate – DigiCertCA.crt
The Second Intermediate Certificate(if a 2nd intermediate cert is supplied) – DigiCertCA2.crt
The Root Certificate – TrustedRoot.crt
Make sure to include the beginning and end tags on each certificate. The result should look like this:
—–BEGIN CERTIFICATE—–
(Your First Intermediate certificate: DigiCertCA.crt)
—–END CERTIFICATE—–
—–BEGIN CERTIFICATE—–
(Your Second Intermediate certificate (if applicable): DigiCertCA2.crt)
—–END CERTIFICATE—–
—–BEGIN CERTIFICATE—–
(Your Root certificate: TrustedRoot.crt)
—–END CERTIFICATE—–
4. Save the combined file as commercial_ca.crt in the following directory: /opt/zimbra/ssl/zimbra/commercial/
5. Run the following command to validate the certificate chain: /opt/zimbra/openssl/bin/openssl verify -CAfile commercial_ca.crt commercial.crt
6. Once the certificate chain is validated, you can run the following command to enable the new certificate for use: /opt/zimbra/bin/zmcertmgr deploycrt comm commercial.crt commercial_ca.crt
https://www.digicert.com/csr-creation-ssl-installation-zimbra.htm
Config Switch HP A5120
Error “/usr/sbin/mysqld: Can’t create/write to file ‘/tmp/”
Command Fix
chmod 777 /tmp
/etc/init.d/mysql start
Single DHCP Server with Multiple VLAN pools