Resize a Xen Image

So, you’ve got a few Xen images around, and they are starting to fill up. How do you add a few more gigs to ’em? root@tpe:/# xm shutdown vm01 root@tpe:/# cd /xenimages root@tpe:/xenimages# dd if=/dev/zero bs=1024 count=1000000 >> vm01.img root@tpe:/path/to/images# resize2fs -f vm01.img That’s it, you just added a gig to your image called ‘vm01.img’.
Read more

Lighttpd+Rewrite+OpenSEF+Joomla

For those of you not needing Apache and the whole kitchen sink, [insert reason here], Lighttpd is a very attractive contender. For me, it has a small memory footprint, which is highly appealing. However, getting SEO urls to work (i.e. utilizing rewrite), isn’t too straightforward. Tada! A little research yields two helpful links: one at lighttpd.net regarding how to use ModRewrite and another showing how to slightly modify the .htaccess file used by OpenSEF and Apache. So…
Read more

Convert VMWare Movie to FLV

This little process, a total of two lines, took way to long to figure out. First, we convert the VMware avi (VMnc format) to the Microsoft avi format. mencoder -of avi -ovc lavc movie.avi -o movie2.avi Next, we convert the Microsoft avi format to FLV format. ffmpeg -i movie2.avi -r 12 -b 100 movie.flv You can play around with the -r switch (rate per second) and the -b switch (bitrate). But, if those get larger, so does your FLV file.
Read more

Quick and Dirty Firewall

The following is a Quick n’ Dirty method at implementing a very simple firewall. Depending on your server, first locate iptables: [root@vps /]# which iptables Create a whitelist (ignored by firewall) or blacklist (packet dropped) if you wish: [root@vps /]# vi /usr/local/etc/whitelist.txt And/Or… [root@vps /]# vi /usr/local/etc/blacklist.txt In each file, add each IP per line, for instance: 4.2.2.2 66.35.15.20 Then put the following in /etc/init.d/firewall.sh, and edit to fit your needs:
Read more

Tips for Passing the MCSE 70-291

As you may know, I’ve been taking a few of the MCSE:Security tests when I have time. This afternoon I passed the 70-291, which is claimed to be the hardest of all the tests (and of the one’s I’ve taken so far, I would concur). I’m taking my tests at the Geego Systems center. If you are in Taipei for some reason, and needing a place to take some tests, this place is a safe bet. Their staff is pretty darn cool, and they let me drink as much tea as I want.
Read more

Cisco IPSec Tutorial

The following sites might be helpful to configure IPSec again, or on a more complex basis: http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/ipsec/conipsec.htm http://www.cisco.com/warp/public/707/overload_private.shtml
Read more

Linux as a TFTP Server

So, you need a TFTP server for something? Cool, you must be doing something fun. I need a TFTP server to copy Cisco IOS images onto the routers; hopefully you are doing something cooler. Enable TFTP in inetd.conf Open up /etc/inetd.conf and look for the following line: kelvin@pluto:~$ vi /etc/inetd.conf #tftp dgram udp wait root /usr/sbin/in.tftpd in.tftpd -s /tftpboot -r blksize This is on line 72 for me (hint: in vi press ctrl+c, then :set number). Uncomment it. If you don’t have this line, bummer. Search for in.tftpd and use that as a substitute.
Read more