Admin stuff…
February 28, 2013 Leave a comment
CloudStack 4.0.0
In some cases, Cloudstack agent reboots KVM host, when it can’t access primary NFS shares (because Agent starts heartbeat, trying to write to primary NFS storage every now and then to check if the storage is alive)
So, in order to disable CloudStack Agent (on KVM host) from rebooting that KVM host, simpy edit the “kvmheartbeat.sh” by commenting out the “reboot” part:
February 19, 2013 Leave a comment
We need to implement multi-master replication between 2 LDAP servers (389-DS servers).
General (hi-level) steps
February 19, 2013 Leave a comment
Need to install 389 DS on clean CentOS 6.3 x64. Setup TLS encryption, etc.
Prepare the server:
February 13, 2013 Leave a comment
Having 3-node Percona XtraDB Cluster (or native Galera MySQL cluster), need to upgrade for various bug fixes, etc.
So called “Rolling Upgrade” – can’t get simpler than that:
[root@sql1 ~]# service mysql stop
[root@sql1 ~]# yum update percona* Percona*
[root@sql1 ~]# reboot
February 12, 2013 2 Comments
If you have problems with POST flood attacks on your web site, fail2ban may be right tool for you. fail2ban can via regex scan any log file and add appropriate ban rule for undesirable behavior IPs. In this example we will block any client which exceed 10 POST requests in 10 seconds.
February 12, 2013 Leave a comment
Varnish is very powerful tool and many things can be accomplished by it. One simple example is WhatIsMyIP server (HTTP server that shows you your public IP) served only by varnish (no backend).
In your main vcl (by default is default.vcl) configuration file you need to add couple of lines to accomplish this:
February 1, 2013 Leave a comment
Java security issue found, stupid Apple disables Java remotely (YES REMOTELY !!!!),
So can’t access KVM over IP, server down, being unproductive…all because of Apple !!!
To re-enable, open terminal, find installed version:
