Switching to systemd-networkd for managing your networking interfaces makes things quite a bit simpler over standard networking scripts or NetworkManager.
I’ve decided to start a series of posts called “Chronicles of SELinux” where I hope to educate more users on how to handle SELinux denials with finesse rather than simply disabling it entirely.
I talked a bit about systemd’s network device name in my earlier post about systemd-networkd and bonding and I received some questions about how systemd rolls through the possible names of network devices to choose the final name.
·1546 words·8 mins
I’ve written about systemd-networkd in the past and how easy it can be to set up new network devices and tunnels.
For those of you in the market for a cheap webcam for videoconferencing or home surveillance, the Logitech C270 is hard to beat at about $20-25 USD.
The world of containers is constantly evolving lately.
One of the first tools I learned about after working with Red Hat was sysstat.
It seems like everyone is embracing systemd these days.
During one of my regular trips to reddit, I stumbled upon an amazingly helpful Linux I/O stack diagram:
My SANS classmates were learning how to set and recognize file permissions on a Linux server and we realized it would be helpful to display the octal value of the permissions next to the normal rwx display.
The thought of using Linux as a manager in a highly Windows- and Mac-centric corporate environment isn’t something to be taken lightly.
Pairing virt-manager with KVM makes booting new VM’s pretty darned easy.
The confined user support in SELinux is handy for ensuring that users aren’t able to do something that they shouldn’t.
Most of my websites run on a pair of Supermicro servers that I purchased from Silicon Mechanics (and I can’t say enough good things about them and their servers).
It’s been a little while since I last posted about installing Xen on Fedora, so I figured that Fedora 19’s beta release was as good a time as any to write a new post.
While rolling through my RSS feeds, I found a great presentation by David Quigley titled “Demystifying SELinux”.
I’ve converted one of my KVM hypervisors from CentOS 6 to Fedora 18 and now comes the task of migrating my virtual machines off of my single remaining CentOS 6 hypervisor.
This post is a quick one but I wanted to share it since I taught it to someone new today.
·544 words·3 mins
Changing my ssh port from the default port (22) has been one of my standard processes for quite some time when I build new servers or virtual machines.
The wheel group exists for a critical purpose and Wikipedia has a concise definition:
After many discussions with fellow Linux users, I’ve come to realize that most seem to disable SELinux rather than understand why it’s denying access.
I dragged out an old Aopen MP57-D tonight that was just sitting in the closet and decided to load up kvm on Fedora 18.
After adding some upgrades for icanhazip.
If you install vpnc via MacPorts on OS X, you’ll find that you have no openssl support after it’s built:
Kristóf Kovács has a fantastic post about some lesser-known Linux tools that can really come in handy in different situations.
I found myself stuck in a particularly nasty situation a few weeks ago where I had two git branches with some commits that were mixed up.
A fellow Racker showed me httpry about five years ago and I’ve had in my toolbox as a handy way to watch HTTP traffic.
One of the handiest tools in the OpenSSL toolbox is s_client.
·1619 words·8 mins
As promised in my earlier post entitled Kerberos for haters, I’ve assembled the simplest possible guide to get Kerberos up an running on two CentOS 5 servers.
I’ll be the first one to admit that Kerberos drives me a little insane.
I sometimes enjoy living on the edge occasionally and that sometimes means I keep up with OpenStack changes commit by commit.
Regular users of Python’s package tools like pip or easy_install are probably familiar with the PyPi repository.
I used to be one of those folks who would install Fedora, CentOS, Scientific Linux, or Red Hat and disable SELinux during the installation.
Although Citrix recommends against using software RAID with XenServer due to performance issues, I’ve had some pretty awful experiences with hardware RAID cards over the last few years.
XenServer 6 is a solid virtualization platform, but the installer doesn’t give you many options for customized configurations.
It’s no secret that I’m a big fan of the Routerboard devices and the RouterOS software from Mikrotik that runs on them.
If you want to forward e-mail from root to another user, you can usually place a .
·589 words·3 mins
Before we get started, I really ought to drop this here:
I’ve floated back and forth between graphical IRC clients and terminal-based clients for a long time.
Fedora 15 was released with some updates to allow for consistent network device names.
·448 words·3 mins
SELinux isn’t a technology that’s easy to tackle for newcomers.
·470 words·3 mins
I’m using SELinux more often now on my Fedora 15 installations and I came up against a peculiar issue today on a new server.
If you haven’t noticed already, full Xen dom0 support was added in the Linux 3.
Some might call me paranoid, but I get nervous when my package manager automatically removes a kernel.
If you push play, the video should scoot out to about the 14m40s mark where MySQLTuner appears on one of the slides.
I was surprised to see coverage about icanhazip.
·979 words·5 mins
As promised in one of my previous posts about dual-primary DRBD and OCFS2, I’ve compiled a step-by-step guide for Fedora.
After reading the title of this post, you might wonder “Why would someone pay for a Mac Mini and then not use OS X with it?
E-mailing a binary e-mail attachment from a Linux server has always been difficult for me because I never found a reliable method to get it done.