redhat.serversignature.com

March 22, 2011

Veritas File System

Filed under: veritas — Tags: , , — kiran @ 6:06 pm

VxFS was originally developed for AT&T’s Unix System Laboratories.

VxFS is packaged as a part of the Veritas Storage Foundation (which also includes Veritas Volume Manager).

first commercial journaling file system, is an extent-based file system.

VxFS file system can run in single instance mode or in a parallel access / cluster mode. The parallel mode allows for multiple servers (also known as cluster nodes) to simultaneously access the same file system. When run in this mode, VxFS is referred to as Veritas Cluster File System.

March 20, 2011

Nagios Security

Filed under: nagios — Tags: , — kiran @ 4:18 pm

If you enable external commands, make sure you set proper permissions on the /usr/local/nagios/var/rw directory.

You only want the Nagios user (usually nagios) and the web server user

(usually nobody, httpd, apache2, or www-data) to have permissions to write to the command file.

Email Notifications for Nagios alerts

Filed under: nagios — Tags: , , , — kiran @ 4:10 pm

If you want to receive email notifications for Nagios alerts, you need to install the mailx (Postfix) package.

sudo apt-get install mailx

sudo apt-get install postfix

You’ll have to edit the Nagios email notification commands found in /usr/local/nagios/etc/objects/commands.cfg and change any ‘/bin/mail’ references to ‘/usr/bin/mail’. Once you do that you’ll need to restart Nagios to make the configuration changes live.

sudo /etc/init.d/nagios restart

Nagios Verification and auto start

Filed under: nagios — Tags: , — kiran @ 4:08 pm

Configure Nagios to automatically start when the system boots.

ln -s /etc/init.d/nagios /etc/rcS.d/S99nagios

Verify the sample Nagios configuration files.

/usr/local/nagios/bin/nagios -v /usr/local/nagios/etc/nagios.cfg

If there are no errors, start Nagios.

/etc/init.d/nagios start

htpasswd to create nagios web account

Filed under: nagios — Tags: — kiran @ 4:05 pm

Create a nagiosadmin account for logging into the Nagios web interface. Remember the password you assign to this account – you’ll need it later.

htpasswd -c /usr/local/nagios/etc/htpasswd.users nagiosadmin

Restart Apache to make the new settings take effect.
/etc/init.d/apache2 reload

Editing nagios admin contact information

Filed under: nagios — Tags: — kiran @ 4:03 pm

Edit the /usr/local/nagios/etc/objects/contacts.cfg config file with your favorite editor and change the email address associated with the nagiosadmin contact definition to the address you’d like to use for receiving alerts.

vi /usr/local/nagios/etc/objects/contacts.cfg

Creating groups in nagios

Filed under: nagios — Tags: — kiran @ 3:57 pm

Creating groups in nagios

Create a new nagcmd group for allowing external commands to be submitted through the web interface. Add both the nagios user and the apache user to the group.

/usr/sbin/groupadd nagcmd

/usr/sbin/usermod -a -G nagcmd nagios

/usr/sbin/usermod -a -G nagcmd www-data

Nagios Install on Ubuntu

Filed under: nagios — Tags: — kiran @ 3:53 pm

Nagios Install on Ubuntu

Make sure you’ve installed the following packages on your Ubuntu installation before continuing.

* Apache 2
* PHP
* GCC compiler and development libraries
* GD development libraries

You can use apt-get to install these packages by running the following commands:

sudo apt-get install apache2

sudo apt-get install libapache2-mod-php5

sudo apt-get install build-essential

June 28, 2010

Pros and Cons of LDAP

Filed under: Ldap — Tags: , , — kiran @ 6:34 am

Pros and Cons of LDAP

The main benefit of using LDAP is the consolidation of certain types of information within your organization. For example, all of the different lists of users within your organization can be merged into one LDAP directory. This directory can be queried by any LDAP-enabled applications that need this information. It can also be used by users who need directory information.

Other LDAP benefits include its ease of implementation (compared to X.500) and its well-defined Application Programming Interface (API), which means that the number of LDAP-enabled applications and LDAP gateways should increase in the future.

On the negative side, if you want to use LDAP, you will need LDAP-enabled applications or the ability to use LDAP gateways. While LDAP usage should only increase, currently there are not very many LDAP-enabled applications available for Linux. Also, while LDAP does support some access control, it does not possess as many security features as X.500.

What is LDAP?

Filed under: Ldap — Tags: — kiran @ 5:08 am

What is LDAP?

LDAP (Lightweight Directory Access Protocol) is a proposed open standard for accessing global or local directory services over a network and/or the Internet. A directory, in this sense, is very much like a phone book. LDAP can handle other information, but at present it is typically used to associate names with phone numbers and email addresses. LDAP directories are designed to support a high volume of queries, but the data stored in the directory doesn’t change very often.

LDAP is much more useful than a paper phone book, because LDAP’s design is intended to support propagation over LDAP servers throughout the Internet, much like the Domain Name Service (DNS). DNS servers help to connect computers to one another based on fully qualified domain names or the type of service requested from a domain, such as mail exchange. Without DNS servers, hostnames could not be translated into IP addresses, which are required for TCP/IP communication. In the future, LDAP could provide the same type of global access to many types of directory information. Currently, LDAP is more commonly used within a single large organization, like a college or a company, for directory services.

LDAP is a client-server system. An LDAP client connects to an LDAP server and either queries it for information or provides information that needs to be entered into the directory. The server either answers the query, refers the query to another LDAP server, or accepts the information for incorporation into the directory, based on the permission of the user.

LDAP is sometimes known as X.500 Lite. X.500 is an international standard for directories and full-featured, but it is also complex, requiring a lot of computing resources and the full OSI stack. LDAP, in contrast, can run easily on a PC and over TCP/IP. LDAP can access X.500 directories but does not support every capability of X.500.

OpenLDAP includes slapd (a stand-alone LDAP server), slurpd (a stand-alone LDAP replication server), libraries implementing the LDAP protocol, utilities, tools, and sample clients.

Older Posts »

Powered by WordPress