Step 2: Creation of the Storage File for the new swap file
Type the following command to create 512MB swap file (1024 * 512MB = 524288 block size):
# dd if=/dev/zero of=/swap bs=1024 count=524288
If you don’t want to have to reboot use the following commands:
(This is useful for debugging automout issue)
524288+0 records in
524288+0 records out
536870912 bytes (537 MB) copied, 3.23347 s, 354 MB/s
1. if=/dev/zero : Read from /dev/zero file. /dev/zero is a special file in that provides as many null characters to build storage file called /swap.
2. of=/swap : Read from /dev/zero write storage file to /swapf.
3. bs=1024 : Read and write 1024 BYTES bytes at a time.
4. Count=524288 : Copy only 523288 BLOCKS input blocks.
Step 3 : Secure the new created swap file
Setup the correct file permission:
# chown root:root /swap
# chmod 0600 /swap
A world-readable swap file is a huge local vulnerability.
Step 4: Set up a Centos 7 swap area
Type the following command to set up a Linux swap area in a file:
# mkswap /swap
Setting up swapspace version 1, size = 524284 KiB
no label, UUID=0e5e7c60-bbba-4089-a76c-2bb29c0f0839
Step 5: Enabling the swap file
Finally, activate /swap swap space immediately, enter:
# swapon /swapfile1
Step 6: Update /etc/fstab file
To activate /swap after CentOS 7 system reboot, add entry to /etc/fstab file. Open this file using a text editor such as nano:
We had a strange bug in OC 3.x! When adding a PDF link outside of the OC files structure on the same domain name?!
mod_sec = nothing in my log’s,
.htaccess NO LUCK HERE!
Just call your pdf file(s), https / http ,.. link inside your image directory structure ! ,,… ,, just create the OC directory “/image/catalog/terms (Or any name), use filezilla to upload your PDF file.
The bottom line is that you cannot call a non-OC directory, Ex,.: public_html/yournamehere/download/
Good day, I had a issue with a new laptop Acer Swift that used Windows 10 S mode to prevent any installation of software not created by Microsoft! This is very annoying! Here is a quick fix to solve this problem.
Download a fresh copy of windows 10 pro
Burn it on a USB Key drive
You will have to include (2) files on the new created USB Key drive
First you will need to create those 2 files using notepad
ei.cfg < filename to create
Inside this file you will add those lines
Now save the file on your local hard drive.
Inside this file you will add those lines
You will need to type your Windows 10 Pro license
Now save the file on your local hard drive.
You will then need to copy those (2) files to the new created windows 10 Pro USB key.
Copy both files in the root of the key
Copy both files in /source
I ran into problem trying to import a large database on a fresh CENTOS 7 test lab! After setting up value in php.ini (I am running PHP version 7.0.27). I was still not able to import the database in phpmyadmin.
Notice the Maximum execution time is set to 120 seconds
Even after changing this value for 240-500, 700 seconds… I am still having issue importing the database!
Here is the fix,… you need to go in Virtualmin
1. Select the virtual server
2. Navigate to -> Server Configuration -> Website Options
3. In Website and Php options navigate to Maximum Php script run time
I checked “Unlimited” and hit “Save”
Voilà, I am able to import this large database without any errors!
For security reason I suggest that you put back the default value after your importation is finish!
After upgrading to Windows 10, I have had some issues with a couple of RDP connections that wouldn’t store the username and password (credentials). Despite ticking the box to save the credentials, it would always prompt me to enter the password.
Here’s how to fix the issue with RDP not saving the login information, which should work not just on Windows 10, but also other versions of Windows if you have the same problem:
Click Start and type “GPEDIT.MSC” to search for the shortcut to the Windows Group Policy Editor.
Right-click the gpedit.msc shortcut and click run as Administrator.
(Ignore any popups about errors if you get any when the Group Policy Editor console opens up).
Browse to Local Computer Policy > Computer Configuration > Administrative Temples > System > Credentials Delegation
Double click the setting called “Allow delegating default credentials with NTLM-only server authentication” to edit it.
Change the setting to “Enabled” and then click the “Show…” button in the “Options:” window where it says “Add servers to the list:”.
Double click the field below “Value” (with the black arrow to the left) and type in “TERMSRV/*” (without the double quotes).
Click Ok and then Ok again to close both popups, so that you only see the list of settings again.
Now just repeat the exact same for these three policies as well: Allow delegating default credentials Allow delegating saved credentials Allow delegating saved credentials with NTLM-only server authentication
Close the Local Group Policy Editor and RDP should now work as expected again!
First you will need to install LAMP (Linux, Apache, Mysql, PHP) on a fresh Dedicated standalone server! (Do not install on a VPS)
Here is a good online tutorial about deploying LAMP on CentOS
Edit the /etc/selinux/config file to set the SELINUX parameter to disabled, and then reboot the server.
I have noticed after turning back “on” SeLinux after the full installation bellow, that the server is holding!
Still a lot of testing to do but! Working 😉
# sudo yum install httpd
Once installed, you can start Apache
# sudo systemctl start httpd.service
The last thing you will want to do is enable Apache to start on boot. Use the following command to do so:
# sudo systemctl enable httpd.service
How To Find your Server Public IP
If you do not know what your server’s public IP address is, there are a number of ways you can find it. Usually, this is the address you use to connect to your server through SSH.
From the command line get your IP address by typing:
# curl https://ipinfo.io/ip
I suppose you already have proper DNS Server setup!
If you don’t have proper DNS just use your server local IP by running the following command:
# ip a
Install MySQL (MariaDB)
# sudo yum install mariadb-server mariadb
When the installation is complete, we need to start MariaDB with the following command:
# sudo systemctl start mariadb
Now that our MySQL database is running, we want to run a simple security script that will remove some dangerous defaults and lock down access to our database system a little bit. Start the interactive script by running:
# sudo mysql_secure_installation
The prompt will ask you for your current root password. Since you just installed MySQL, you most likely won’t have one, so leave it blank by pressing enter. Then the prompt will ask you if you want to set a root password. Go ahead and enter Y, and follow the instructions:
Enter current password for root (enter for none): OK, successfully used password, moving on…
Setting the root password ensures that nobody can log into the MariaDB root user without the proper authorization.
New password: password Re-enter new password: password Password updated successfully! Reloading privilege tables.. … Success!
For the rest of the questions, you should simply hit the “ENTER” key through each prompt to accept the default values. This will remove some sample users and databases, disable remote root logins, and load these new rules so that MySQL immediately respects the changes we have made.
The last thing you will want to do is enable MariaDB to start on boot. Use the following command to do so:
# sudo systemctl enable mariadb.service
We can once again leverage the yum system to install our components. We’re going to include the php-mysql package as well:
# sudo yum install php php-mysql
This should install PHP without any problems. We need to restart the Apache web server in order for it to work with PHP. You can do this by typing this:
# yum search php-
If you are running a firewall, run the following commands to allow HTTP and HTTPS traffic: At the same time let’s open port 3000 for Node.js!
After downloading Orangescrum you will need to unzip master.zip. To do this, run:
# yum install unzip
# unzip master.zip
# mv orangescrum-master /var/www/html/
We will need to change some folders permissions:
# chown apache:apache -R /var/www/html/
I am still missing something here for the 0777
Configuring MariaDB for Orangescrum
By default, MariaDB is not hardened. You can secure MariaDB using the mysql_secure_installation script. You should read each steps below carefully which will set root password, remove anonymous user, disallow remote root login, and remove the test database in your MariaDB (MySQL) Server:
Configure it like this:
Set root password? [Y/n] y
Remove anonymous users? [Y/n] y
Disallow root login remotely? [Y/n] y
Remove test database and access to it? [Y/n] y
Reload privilege tables now? [Y/n] y
Next we will need to log in to the MariaDB console and create a database for the Orangescrum. Run the following command:
# mysql -u root -p
This will prompt you for a password, so enter your MariaDB root password and hit Enter. Once you are logged in to your database server you need to create a database for Orangescrum installation:
CREATE DATABASE orangescrum; CREATE USER ‘orangescrumuser’@’localhost’ IDENTIFIED BY ‘PASSWORD’; GRANT ALL PRIVILEGES ON orangescrum.* TO ‘orangescrumuser’@’localhost’ IDENTIFIED BY ‘password’ WITH GRANT OPTION; FLUSH PRIVILEGES;
Username : orangescrumuser Password : PASSWORD *CAP is important here!~ Database : orangescrum
Next you need to import the data from the database.sql file located in the /var/www/html/ directory:
# cd /var/www/html/
# mysql -u orangescrum -p password < database.sql
Next, By default STRICT mode is set to on in MySQL. You will need to disable it:
With over 3 million copies sold on PC (digital download), 7 Days to Die has redefined the survival genre, with unrivaled crafting and world-building content. Set in a brutally unforgiving post-apocalyptic world overrun by the undead, 7 Days to Die is an open-world game that is a unique combination of first person shooter, survival horror, tower defense, and role-playing games.
If you don’t want to deal with that sort of thing you may wish to consider waiting until the stable build is released. It has been mentioned that TFP would love to do a 3 week or less experimental. Hopefully things work out in their favor so that those of you waiting on the stable build don’t have to wait all that long.
Anniversaries: Lynis project (11 years) and CISOfy (5 years)
The Lynis project celebrated its 11th birthday last week! Also, Lynis 2.7.0 was released last week. Did you already upgrade?
If you think about it, it is rare. Just a handful of open source security projects reach the age of 10 years AND are still actively maintained. The secret? As its project founder, I believe it is dedication, involving the community, and helping others with sincere promotion.
It is hard for developers to stay involved with a project on a daily basis, especially if one has a full-time job and personal commitments.
To ensure the Lynis project would not suffer from the same issue, the company CISOfy was founded 5 years ago. The first priority for the company was getting the project back on its tracks and enhance its code.
Another special milestone is that we also reached a point where both the open source version and a commercial offering (demo) can co-exist. They increase value in both directions.
So let me take this moment to thank the community and also our customers who trust our solution. Both the standalone tool and solution would have been very different without your feedback and suggestions!