tag:blogger.com,1999:blog-1101340899850632722024-03-06T09:22:08.765+05:30LearnAdminLinux administration , Unix administration , Vmware Vsphere administration , Oracle DBA ,apache, backup, dhcp, dns, kvm, xen, kernel, ldap, kvm, monitoring, ticketing, networking, Mail servers, SAN,troubleshootingNaresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.comBlogger322125tag:blogger.com,1999:blog-110134089985063272.post-58450410413770107082017-10-31T20:15:00.002+05:302017-10-31T20:15:49.439+05:30What is Software delivery ?<div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<br />
Implementing CI/CD is part of Devops . Here CD is continouse Delivery .<br />
<br />
It include steps we need to do to make code available to customer.<br />
<br />
Which means running that code on production servers , making that code resilient .<br />
<br />
Which means no bugs , no security issues , No outages and no traffic spikes .<br />
<div>
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com5tag:blogger.com,1999:blog-110134089985063272.post-77879913978553362892017-08-04T11:46:00.000+05:302017-08-04T12:02:00.762+05:30Python script to check if file is locked also display last modified time<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">To lock file for testing use this command </span></div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">The below command will lock /home/ubuntu/fileloc</span><br />
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></div>
<div style="color: #222222; font-size: 12.8px;">
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">flock -x -w 5 /home/ubuntu/fileloc echo "4" ><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>/home/ubuntu/fileloc && sleep 5</span></b></div>
</div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></div>
<span style="background-color: #cccccc; color: #222222; font-family: "verdana" , sans-serif; font-size: 12.8px;">------------------------</span><br />
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">test.py</span></div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">------------------------</span></div>
<div style="color: #222222; font-size: 12.8px;">
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">import os, time</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">import datetime as dt</span></b></div>
<div class="m_-755151159375877325gmail-p2">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">def is_locked(filepath):</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>locked = None</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>file_object = None</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>if os.path.exists(filepath):</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>try:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "Trying to open %s." % filepath</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>buffer_size = 8</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span># Opening file in append mode and read the first 8 characters.</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>file_object = open(filepath, 'a', buffer_size)</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>if file_object:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "%s is not locked." % filepath</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>locked = False</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>except IOError, message:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "File is locked (unable to open in append mode). %s." % \</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>message</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>locked = True</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>finally:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>if file_object:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>file_object.close()</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "%s closed." % filepath</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>else:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "%s not found." % filepath</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>return locked</span></b></div>
<div class="m_-755151159375877325gmail-p2">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">def wait_for_files(filepaths):</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span></span></b></div>
<div class="m_-755151159375877325gmail-p2">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>for filepath in filepaths:</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>if is_locked(filepath):</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print "%s is currently in use." % \</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>(filepath)</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>st = os.stat(filepath) <span class="m_-755151159375877325gmail-Apple-converted-space"> </span></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>mtime = dt.datetime.fromtimestamp(st.<wbr></wbr>st_mtime)</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print('%s modified %s'%(filepath, mtime))</span></b></div>
<div class="m_-755151159375877325gmail-p2">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></b></div>
<div class="m_-755151159375877325gmail-p2">
<span class="m_-755151159375877325gmail-Apple-converted-space" style="font-family: "verdana" , sans-serif;"><b style="background-color: #cccccc;"> </b></span></div>
<div class="m_-755151159375877325gmail-p2">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"># Test</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">if __name__ == '__main__':</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>files = [r"/home/ubuntu/filelock"]</span></b></div>
<div class="m_-755151159375877325gmail-p1">
<b><span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><span class="m_-755151159375877325gmail-Apple-converted-space"> </span>print wait_for_files(files)</span></b></div>
</div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">-------------------------</span></div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;"><br /></span></div>
<div style="color: #222222; font-size: 12.8px;">
<span style="background-color: #cccccc; font-family: "verdana" , sans-serif;">python test.py</span></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com12tag:blogger.com,1999:blog-110134089985063272.post-87305715959590234642017-08-02T14:37:00.000+05:302017-08-03T14:30:12.240+05:30Install and configure postges-xl<div dir="ltr" style="text-align: left;" trbidi="on">
<span style="font-family: "verdana" , sans-serif;">Other than official documentation i did not find much help . It took one hour for me to setup . As i thought its straight forward setup . Download source , compile it and install it . But there is more to it </span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Below are steps i followed :</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Download a stable branch </span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>git clone --depth=1 -b XL9_5_STABLE git://git.postgresql.org/git/postgres-xl.git</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>cd postgres-xl/</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>./configure</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>make</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>cd contrib/pgxc_ctl</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>make</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>cd postgres-xl/ ; make install</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>cd contrib/pgxc_ctl ; make install </b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now installation is done </span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Add below in /etc/profile</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>export LD_LIBRARY_PATH=/usr/local/pgsql/lib</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>export PGDATA=/usr/local/pgsql/data</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>export PATH=$PATH:/usr/local/pgsql/bin</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Then add postgres user </span><br />
<span style="font-family: "verdana" , sans-serif;">and set /user/local/pgsql as its home directory</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>chown postgres:postgres -R /user/local/pgsql </b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now we need to setup postgres-XL . Since it is distributed database we need atleast two nodes . In general every component sits on its own node and also have stand by nodes .</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">For this tutorial purpose i am using two nodes node1 and node2</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Major components of Postgres-XL</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>Global Transaction Monitor (GTM) :</b> The Global Transaction Monitor ensures cluster-wide transaction consistency. GTM is responsible for issuing transaction ids and snapshots as part of its Multi-version Concurrency Control.</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>Coordinator :</b> The Coordinator manages the user sessions and interacts with GTM and the data nodes.</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>Data Node :</b> The Data Node is where the actual data is stored.</span><br />
<span style="font-family: "verdana" , sans-serif;">I have tried installing everything on node1 for demo purpose but default port of coordinator and data node are same also the share same /tmp directory structure.</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">So we might need to change port number then temp directories etc</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"> Below is the error for reference purpose</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b> postgres@Node1:~$ postgres --datanode -D /usr/local/pgsql/dbdata -h 0.0.0.0 -p 5432 -c gtm_host=node1 -c gtm_port=6666 &amp;</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>[3] 35190</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node1:~$ LOG: could not bind IPv4 socket: Address already in use</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>HINT: Is another postmaster already running on port 5432? If not, wait a few seconds and retry.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>WARNING: could not create listen socket for "0.0.0.0"</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>FATAL: could not create any TCP/IP sockets</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>^C</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>[3]+ Exit 1 postgres --datanode -D /usr/local/pgsql/dbdata -h 0.0.0.0 -p 5432 -c gtm_host=node1 -c gtm_port=6666</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node1:~$ postgres --datanode -D /usr/local/pgsql/dbdata -h 0.0.0.0 -p 5433 -c gtm_host=node1 -c gtm_port=6666 &amp;</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>[3] 35196</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node1:~$ LOG: database system was shut down at 2017-08-01 16:29:12 UTC</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>FATAL: lock file "/tmp/.s.PGPOOL.6667.lock" already exists</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>HINT: Is another postmaster (PID 35113) using socket file "/tmp/.s.PGPOOL.6667"?</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>LOG: pool manager process (PID 35199) exited with exit code 1</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>LOG: terminating any other active server processes</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>LOG: startup process (PID 35198) exited with exit code 2</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>LOG: aborting startup due to startup process failure</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>[3]+ Exit 1 postgres --datanode -D /usr/local/pgsql/dbdata -h 0.0.0.0 -p 5433 -c gtm_host=node1 -c gtm_port=6666</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now this two node setup </span><br />
<span style="font-family: "verdana" , sans-serif;">Node1 will have Global Transaction monitor + Coordinator</span><br />
<span style="font-family: "verdana" , sans-serif;">Node2 will be the Data node .</span><br />
<span style="font-family: "verdana" , sans-serif;">We need to download and install from source on both the servers then </span><br />
<span style="font-family: "verdana" , sans-serif;">One Node1 </span><br />
<span style="font-family: "verdana" , sans-serif;">Init GTM</span><br />
<span style="font-family: "verdana" , sans-serif;">Create a directory in /usr/local/pgsql called gtm</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node1:~/data$ initgtm -D /usr/local/pgsql/gtm -Z gtm</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>The files belonging to this GTM system will be owned by user "postgres".</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>This user must also own the server process.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>fixing permissions on existing directory /usr/local/pgsql/gtm ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating configuration files ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating control file ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>Success.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>You can now start the GTM server using:</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b> gtm -D /usr/local/pgsql/gtm</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>or</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b> gtm_ctl -Z gtm -D /usr/local/pgsql/gtm -l logfile start</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>Then start GTM service </b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>gtm -D /usr/local/pgsql/gtm -h 0.0.0.0 -n node1 -p 6666 &amp;</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now coordinator service </span><br />
<span style="font-family: "verdana" , sans-serif;">Create a directory pgdata or coordinator and run below </span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node1:~$ initdb -D /usr/local/pgsql/pgdata --nodename=node1</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>The files belonging to this database system will be owned by user "postgres".</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>This user must also own the server process.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>The database cluster will be initialized with locale "en_US.UTF-8".</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>The default database encoding has accordingly been set to "UTF8".</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>The default text search configuration will be set to "english".</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>Data page checksums are disabled.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>fixing permissions on existing directory /usr/local/pgsql/pgdata ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating subdirectories ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>selecting default max_connections ... 100</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>selecting default shared_buffers ... 128MB</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>selecting dynamic shared memory implementation ... posix</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating configuration files ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating template1 database in /usr/local/pgsql/pgdata/base/1 ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>initializing pg_authid ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>initializing dependencies ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating system views ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating cluster information ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>loading system objects' descriptions ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating collations ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating conversions ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating dictionaries ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>setting privileges on built-in objects ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>creating information schema ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>loading PL/pgSQL server-side language ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>vacuuming database template1 ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>copying template1 to template0 ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>copying template1 to postgres ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>syncing data to disk ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>freezing database template0 ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>freezing database template1 ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>freezing database postgres ... ok</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>WARNING: enabling "trust" authentication for local connections</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>You can change this by editing pg_hba.conf or using the option -A, or</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>--auth-local and --auth-host, the next time you run initdb.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>Success.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>You can now start the database server of the Postgres-XL coordinator using:</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b> postgres --coordinator -D /usr/local/pgsql/pgdata</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>or</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b> pg_ctl start -D /usr/local/pgsql/pgdata -Z coordinator -l logfile</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b> You can now start the database server of the Postgres-XL datanode using:</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b> postgres --datanode -D /usr/local/pgsql/pgdata</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>or </b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b> pg_ctl start -D /usr/local/pgsql/pgdata -Z datanode -l logfile</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now start the service </span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"> <b>postgres --coordinator -D /usr/local/pgsql/pgdata -h 0.0.0.0 -p 5432 -c gtm_host=node1 -c gtm_port=6666 &amp;</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>Now on node2 after you compile from source and followed steps till adding content in /etc/profile and adding of postgres user is done</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>Create a data folder and initialize as above</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>initdb -D /usr/local/pgsql/data --nodename=node2</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>Then start service </b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>postgres --datanode -D /usr/local/pgsql/data -h 0.0.0.0 -p 5432 -c gtm_host=node1 -c gtm_port=6666 &amp;</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;">Now you can run psql and connect</span><br />
<span style="font-family: "verdana" , sans-serif;"><br /></span>
<span style="font-family: "verdana" , sans-serif;"><b>postgres@Node2:~$ psql</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>psql (PGXL 9.5r1.5, based on PG 9.5.6 (Postgres-XL 9.5r1.5))</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b>Type "help" for help.</b></span><br />
<span style="font-family: "verdana" , sans-serif;"><b><br /></b></span>
<span style="font-family: "verdana" , sans-serif;"><b>postgres=# </b></span><br />
<div>
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com2tag:blogger.com,1999:blog-110134089985063272.post-16814333067652750182017-05-12T13:39:00.002+05:302017-05-12T13:39:33.327+05:30Creating a dummy process in linux with a process name for testing and other purpose<div dir="ltr" style="text-align: left;" trbidi="on">
<b>bash -c 'exec -a ProcessName sleep 1000000' &</b><br /></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com1tag:blogger.com,1999:blog-110134089985063272.post-66224834771433212782017-03-23T16:31:00.002+05:302017-03-23T16:31:36.872+05:30nagios https proxy monitoring plugin or Bash website monitoring script<div dir="ltr" style="text-align: left;" trbidi="on">
#!/bin/bash<br />
<br />
if [ $# -eq 0 ]<br />
then<br />
echo "No arguments supplied"<br />
fi<br />
<br />
if [ $# -eq 1 ]<br />
then<br />
<br />
output=`curl -x 10.11.10.10:3128 -L $1 -m 10 -o /dev/null || echo "Website_down"`<br />
<br />
if [ "$output" == "Website_down" ] ; then<br />
<br />
echo "Website is down CRITICAL "<br />
exit 2<br />
<br />
else<br />
<br />
echo "Website_up $1 OK"<br />
exit 0<br />
fi<br />
<br />
fi<br />
<div>
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com6tag:blogger.com,1999:blog-110134089985063272.post-89078348711712641412017-03-23T16:30:00.000+05:302017-03-23T16:30:08.485+05:30Adding client certificate file using chef data bags<div dir="ltr" style="text-align: left;" trbidi="on">
<div class="p1">
Below is just an example </div>
<div class="p2">
<br /></div>
<div class="p4">
logstash_cert_secret = <span class="s3">Chef</span>::<span class="s3">EncryptedDataBagItem</span>.load_secret(<span class="s4">"</span><span class="s5">/etc/chef/secrets/logstash_client_key</span><span class="s4">"</span>)</div>
<div class="p4">
logstash_certs = <span class="s3">Chef</span>::<span class="s3">EncryptedDataBagItem</span>.load(<span class="s4">"</span><span class="s5">certs</span><span class="s4">"</span>, <span class="s4">"</span><span class="s5">logstash_client</span><span class="s4">"</span>, logstash_cert_secret)</div>
<div class="p2">
<br /></div>
<div class="p2">
<br /></div>
<div class="p1">
<span class="s1">directory </span><span class="s2">"</span>/etc/pki/tls/certs/<span class="s2">"</span><span class="s1"> </span><span class="s6"><b>do</b></span></div>
<div class="p4">
action <span class="s7">:create</span></div>
<div class="p4">
mode <span class="s4">"</span><span class="s5">0755</span><span class="s4">"</span></div>
<div class="p4">
owner <span class="s4">"</span><span class="s5">root</span><span class="s4">"</span></div>
<div class="p4">
group <span class="s4">"</span><span class="s5">root</span><span class="s4">"</span></div>
<div class="p5">
<b>end</b></div>
<div class="p2">
<br /></div>
<div class="p1">
<span class="s1">file </span><span class="s2">"</span>/etc/pki/tls/certs/logstash_client.crt<span class="s2">"</span><span class="s1"> </span><span class="s6"><b>do</b></span></div>
<div class="p4">
action <span class="s7">:create</span></div>
<div class="p4">
mode <span class="s4">"</span><span class="s5">0644</span><span class="s4">"</span></div>
<div class="p4">
owner <span class="s4">"</span><span class="s5">root</span><span class="s4">"</span></div>
<div class="p4">
group <span class="s4">"</span><span class="s5">root</span><span class="s4">"</span></div>
<div class="p4">
content logstash_certs[<span class="s4">"</span><span class="s5">crt</span><span class="s4">"</span>].join(<span class="s4">""</span>)</div>
<br />
<div class="p5">
<span class="s8"> </span><b>end</b></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-61038679818265405342017-03-03T13:22:00.000+05:302017-03-03T13:22:49.198+05:30Search and replace in all files in a current directory <div dir="ltr" style="text-align: left;" trbidi="on">
<b>grep -rl 'pc961' ./|xargs sed -i 's/pc961/pc/g'</b></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-23156960359220703422017-03-03T13:18:00.003+05:302017-03-03T13:18:48.885+05:30Ansible define a basic windows hosts <div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<br />
<div class="p1">
[windows]</div>
<div class="p1">
10.10.10.120</div>
<div class="p2">
<br /></div>
<div class="p1">
[windows:vars]</div>
<div class="p1">
ansible_connection=winrm</div>
<div class="p1">
ansible_ssh_user=Administrator</div>
<style type="text/css">
p.p1 {margin: 0.0px 0.0px 0.0px 0.0px; font: 12.0px 'Andale Mono'; color: #29f914; background-color: #000000}
p.p2 {margin: 0.0px 0.0px 0.0px 0.0px; font: 12.0px 'Andale Mono'; color: #29f914; background-color: #000000; min-height: 14.0px}
</style>
<br />
<div class="p1">
ansible_ssh_pass=AdminPa$$</div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-36497184185705166752017-01-09T19:02:00.001+05:302017-03-23T16:28:07.615+05:30Three basic Git commands<div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<br />
<br />
<b>1) git add -A</b><br />
<b><br /></b>
git add -A is equivalent to git add .; git add -u.<br />
<br />
git add . ( This will add all files but does not remove files )<br />
git add -u ( This will add only changes but will not add any new files created )<br />
<br />
So we use<br />
<br />
git add -A ( this will take care of both the commands )<br />
<br />
<b>2) git commit -m “Commit changes text ex: I have added new function xyz to the file<comment changed="" changes="" have="" here.="" i="" is="" this="" what="" your="">”</comment></b><br />
<br />
<b>3) git push origin <branchname></branchname></b><br />
<br />
<br />
example of branch name : develop<br />
<br />
<br />
Another 3 frequently used commands include :<br />
<br />
<b>git pull</b><br />
<b>git status </b><br />
<b>git merge origin/Branchname</b></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-53535629156115502922016-09-14T16:24:00.000+05:302016-09-14T16:26:53.470+05:30Installing configuring Ansible and deploying haproxy playbook <div dir="ltr" style="text-align: left;" trbidi="on">
<h3 style="text-align: left;">
Basic installation </h3>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;"><b>sudo yum install ansible (or) </b><span style="line-height: 1.5;">sudo pip install ansible</span></pre>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;"><span style="color: black; font-family: times; font-size: small; line-height: normal; white-space: normal;">
</span></pre>
<h3 style="background-color: white; box-sizing: border-box; color: #404040; font-family: inconsolata, consolata, monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px; text-align: left;">
<span style="color: black; font-family: times; font-size: small; line-height: normal; white-space: normal;">Configuring your hosts file with inventory </span></h3>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;"><div class="p1">
<b>cat /etc/ansible/hosts </b></div>
<div class="p1">
[haproxy]</div>
<div class="p1">
10.0.184.12 </div>
<div class="p2">
</div>
<div class="p1">
[all_servers:vars]</div>
<div class="p1">
ansible_connection=ssh </div>
<div class="p1">
ansible_user=root</div>
<div class="p1">
ansible_ssh_private_key_file=/Users/home/yoursshkey.pem</div>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;"></pre>
<div style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;">
I have only one server in my inventory where i will be setting up an haproxy
For easy management we will be writing common variables under <span style="line-height: 1.5;">[all_servers:vars]</span></div>
<div class="p2">
</div>
When we run ansible play books hosts will be picked from the above inventory file </pre>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;">Example : <span style="line-height: 1.5;">hosts: haproxy ( this will run on all servers under haproxy )</span></pre>
<pre style="background-color: white; box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;">Now test servers doing a ping ( ping in ansible will connect to the server using ssh )</pre>
<pre style="background-color: white; box-sizing: border-box; overflow: auto; padding: 12px;"><div class="p1" style="color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5;">
<b> ansible haproxy -m ping</b></div>
<span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 1.5;">
</span></span><div class="p2" style="color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5;">
10.0.184.12 | SUCCESS => {</div>
<span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 1.5;">
</span></span><div class="p2" style="color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5;">
"changed": false, </div>
<span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 1.5;">
</span></span><div class="p2" style="color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5;">
"ping": "pong"</div>
<span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 1.5;">
</span></span><div class="p2" style="color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5;">
}</div>
<span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 1.5;">
</span></span><pre style="box-sizing: border-box; color: #404040; font-family: Inconsolata, Consolata, Monaco, monospace; font-size: 12px; line-height: 1.5; overflow: auto; padding: 12px;">Then Download ready made packages from ansible galaxy </pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 18px;">https://galaxy.ansible.com/devops/haproxy/</span></span></pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 18px;">Also download dependencies that will configure EPEL repositories</span></span></pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 18px;">https://galaxy.ansible.com/sfromm/epel/</span></span></pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 18px;">Then create a common playbook for both the roles main.yml</span></span><b style="background-color: #cccccc; font-family: Arial, Tahoma, Helvetica, FreeSans, sans-serif; font-size: 13px; line-height: 18.2px; white-space: normal;">
</b></pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><span style="color: #404040; font-family: "inconsolata" , "consolata" , "monaco" , monospace;"><span style="font-size: 12px; line-height: 18px;">
</span></span></pre>
<pre style="box-sizing: border-box; overflow: auto; padding: 12px;"><div class="p1">
- hosts: haproxy</div>
<div class="p1">
roles:</div>
<div class="p1">
- { role: devops.epel }</div>
<div class="p2">
</div>
<div class="p2">
</div>
<div class="p1">
- hosts: haproxy</div>
<div class="p1">
roles:</div>
<div class="p1">
- role: devops.haproxy</div>
<div class="p1">
haproxy_stats:</div>
<div class="p1">
name: 'global_monitor'</div>
<div class="p1">
ip: "{{ ansible_default_ipv4.address }}"</div>
<div class="p1">
port: '38888'</div>
<div class="p1">
stats:</div>
<div class="p1">
enabled: True</div>
<div class="p1">
hide_version: true</div>
<div class="p1">
uri: /slb_stats_url</div>
<div class="p1">
realm: Welcome\ to\ slb\ monitor</div>
<div class="p1">
auth: admin:admin</div>
<div class="p1">
refresh: 2s</div>
<div class="p1">
haproxy_frontends:</div>
<div class="p1">
- name: 'fe-testsite'</div>
<div class="p1">
ip: '{{ ansible_default_ipv4.address }}'</div>
<div class="p1">
port: '80'</div>
<div class="p1">
maxconn: '1000'</div>
<div class="p1">
default_backend: 'be-testsite'</div>
<div class="p1">
haproxy_backends:</div>
<div class="p1">
- name: 'be-testsite'</div>
<div class="p1">
description: 'testsite'</div>
<div class="p1">
servers:</div>
<div class="p1">
- name: 'be-testsite-01'</div>
<div class="p1">
ip: '192.168.1.100'</div>
<div class="p2">
</div>
</pre>
</pre>
<br />
<br />
sh-3.2# <b>ansible-playbook main.yml </b><br />
<br />
PLAY [haproxy] *****************************************************************<br />
<br />
TASK [setup] *******************************************************************<br />
ok: [10.0.184.12]<br />
<br />
TASK [devops.epel : Installs python dependencies] ******************************<br />
changed: [10.0.184.12] => (item=[u'libselinux-python'])<br />
<br />
TASK [devops.epel : Disable SElinux] *******************************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.epel : create EPEL yum repository] ********************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.epel : import EPEL GPG key] ***************************************<br />
changed: [10.0.184.12]<br />
<br />
PLAY [haproxy] *****************************************************************<br />
<br />
TASK [setup] *******************************************************************<br />
ok: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Include OS-specific variables.] *************************<br />
ok: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Installs haproxy as well as socat for socket api.] ******<br />
changed: [10.0.184.12] => (item=[u'haproxy', u'socat'])<br />
<br />
TASK [devops.haproxy : Ensure HAProxy is started and enabled on boot.] *********<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Ensure chroot directory exists.] ************************<br />
ok: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Create directory for the frontend] **********************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Empty the folder if not already empty] ******************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the frontends] *********************************<br />
[DEPRECATION WARNING]: Using bare variables is deprecated. Update your playbooks so that the environment value uses the full variable syntax ('{{haproxy_frontends}}').<br />
This feature will be<br />
removed in a future release. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg.<br />
changed: [10.0.184.12] => (item={u'ip': u'10.0.184.12', u'maxconn': u'1000', u'default_backend': u'be-testsite', u'port': u'80', u'name': u'fe-testsite'})<br />
<br />
TASK [devops.haproxy : Create directory for the backends] **********************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Empty the folder if not already empty] ******************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the backends] **********************************<br />
[DEPRECATION WARNING]: Using bare variables is deprecated. Update your playbooks so that the environment value uses the full variable syntax ('{{haproxy_backends}}').<br />
This feature will be<br />
removed in a future release. Deprecation warnings can be disabled by setting deprecation_warnings=False in ansible.cfg.<br />
changed: [10.0.184.12] => (item={u'servers': [{u'ip': u'192.168.1.100', u'name': u'be-testsite-01'}], u'description': u'testsite', u'name': u'be-testsite'})<br />
<br />
TASK [devops.haproxy : Create directory for the listen sections] ***************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Empty the folder if not already empty] ******************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the listen sections] ***************************<br />
skipping: [10.0.184.12] => (item=haproxy_listen)<br />
<br />
TASK [devops.haproxy : Create directory for the userlists] *********************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Empty the folder if not already empty] ******************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the userlist sections] *************************<br />
skipping: [10.0.184.12] => (item=haproxy_userlists)<br />
<br />
TASK [devops.haproxy : Create the compiled folder] ****************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Empty the folder if not already empty] ******************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the global config] *****************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the default config] ****************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Build up the stats config] ******************************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Assemble the frontends configuration file] **************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Assemble the backends configuration file] ***************<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Assemble the listen sections configuration file] ********<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Assemble the userlists sections configuration file] *****<br />
changed: [10.0.184.12]<br />
<br />
TASK [devops.haproxy : Assemble the final configuration file] ******************<br />
changed: [10.0.184.12]<br />
<br />
RUNNING HANDLER [devops.haproxy : restart haproxy] *****************************<br />
changed: [10.0.184.12]<br />
<br />
PLAY RECAP *********************************************************************<br />
10.0.184.12 : ok=31 changed=27 unreachable=0 failed=0 <br />
<br />
<br />
<br />
<br />
This is just a test deployment that will forward request to background test server 192.168.1.100</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-9302637382357362842015-09-04T14:35:00.000+05:302015-09-04T14:35:46.195+05:30Kibana4 apache configuration with authentication <div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<div class="p1">
We need to configure httpd to listen on port 80 which does a reverse proxy to localhost on 5601.</div>
<div class="p1">
Make sure kibana is listening only on internal port before this settings are done .</div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<div class="p1">
<virtualhost></virtualhost></div>
<div class="p1">
ServerAdmin devops@learnadmin.com</div>
<div class="p1">
ServerName kibana.learnadmin.com</div>
<div class="p2">
<br /></div>
<div class="p1">
DocumentRoot /var/www/auth</div>
<div class="p2">
<br /></div>
<div class="p1">
<proxy></proxy></div>
<div class="p1">
AuthType Basic</div>
<div class="p1">
AuthName "Authentication Required"</div>
<div class="p1">
AuthUserFile "/var/www/auth/htpasswd"</div>
<div class="p1">
Require valid-user</div>
<div class="p1">
</div>
<div class="p2">
<br /></div>
<div class="p1">
ProxyPass / http://localhost:5601/</div>
<div class="p1">
ProxyPassReverse / http://localhost:5601/</div>
<div class="p2">
<br /></div>
<div class="p1">
</div>
<div class="p1">
</div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<div class="p1">
Use below command to create a htpasswd file and enable authentication </div>
<div class="p1">
htpasswd -c /var/www/auth/htpasswd devops</div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com3tag:blogger.com,1999:blog-110134089985063272.post-87798417880549076022015-09-04T14:28:00.000+05:302015-09-04T14:28:26.518+05:30Monitoring of kibana and logstash services and start them if process not found <div dir="ltr" style="text-align: left;" trbidi="on">
<div class="p1">
Kibana and logstash might run out of memory and application might get closed or get terminated. In that case we will be running the below script to monitor services and start them if not running .</div>
<div class="p1">
There are other parameters that need to be verified before going for this option like java heap size etc.</div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<div class="p1">
<b>#!/bin/bash</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>LOGSTASH=logstash</b></div>
<div class="p1">
<b>KIBANA=kibana</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>var1=`ps -ef|grep -i $LOGSTASH|sed -e '/grep/d'`</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>if [ -z "$var1" ]; then</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>nohup /opt/logstash/bin/logstash -f /etc/logstash/conf.d/logstash.conf &</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>echo "Process logstash not found" | mail -s "Process logstash not found creating a new one" devops@learnadmin.com</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>else</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>echo "process logstash found."</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>fi</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>var2=`ps -ef|grep -i $KIBANA|sed -e '/grep/d'`</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>if [ -z "$var2" ]; then</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>nohup /opt/kibana/bin/kibana status &</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>echo "Process kibana not found" | mail -s "Process kibana not found creating a new one" devops@learnadmin.com</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>else</b></div>
<div class="p2">
<b><br /></b></div>
<div class="p1">
<b>echo "process kibana found."</b></div>
<div class="p2">
<b><br /></b></div>
<br />
<div class="p1">
<b>fi</b></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com1tag:blogger.com,1999:blog-110134089985063272.post-74543581002458669022015-08-24T12:13:00.000+05:302015-08-24T12:13:35.123+05:30Chef provision a esxi virtual machine or a virtual server<div dir="ltr" style="text-align: left;" trbidi="on">
We need to install esxi knife plugin on our workstation<br />
<br />
<br />
<b>gem install knife-esx</b><br />
<br />
Add below params in knife.rb<br />
<br />
knife[:esx_host] = "esx"<br />
knife[:esx_username] = "root"<br />
knife[:esx_password] = "password of your esxi server"<br />
<br />
Need to create a ubuntu template ( or custom OS template as per requirement ) <br />
Below example shows how to provision a ubuntu template .<br />
<br />
<b>ssh root@esxi</b><br />
<br />
<b>mkdir -p /vmfs/volumes/datastore1/esx-gem/templates</b><br />
<br />
<b>vmkfstools -i /vmfs/volumes/datastore1/ubuntu-12.10-x64_template/*.vmdk –diskformat thin /vmfs/volumes/datastore1/esx-gem/templates/ubuntu-12.10-x64_template.vmdk</b><br />
<br />
<b>esx template list</b> ( should display the template we installed )<br />
<br />
<br />
<b>knife esx vm create --vm-name server1 --use-template ubuntu-12.10-x64_template --verbose true --distro ubuntu12.04-19-gems --vm-memory 2048 -x provision -i ~/.ssh/id_rsa</b><br />
<div>
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com1tag:blogger.com,1999:blog-110134089985063272.post-84126769504132293442015-01-12T19:16:00.002+05:302015-01-16T19:47:52.795+05:30How to use chef encrypted databags <div dir="ltr" style="text-align: left;" trbidi="on">
<br />
Note: Please comment the below line in knife.rb file else it will automatically decrypt values<br />
and show when we use "knife data bag show" command<br />
I initially thought knife was not encrypting my values and had to debug ..which took lot of time.<br />
<br />
<br />
<br />
<div class="p1">
</div>
<div class="p1">
[root@ec2-test .chef]# <b>cat knife.rb | grep secret</b></div>
<div class="p1">
</div>
<div class="p1">
#knife[:secret_file] ='/root/encrypted_data_bag_secret'</div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<br />
<div class="p1">
<b>knife data bag create --secret-file /root/.chef/encrypted_data_bag_secret testbag password</b></div>
<br />
<div class="p1">
{</div>
<div class="p1">
"id": "password",</div>
<div class="p1">
"password": "this is test password key"</div>
<div class="p2">
<br /></div>
<br />
<div class="p1">
}</div>
<br />
<br />
<br />
<div class="p1">
</div>
<div class="p1">
[root@ec2-test .chef]# <b>knife data bag show testbag password</b></div>
<div class="p1">
<br /></div>
<div class="p1">
<span class="s1">id: </span> password</div>
<div class="p2">
password:</div>
<div class="p2">
<span class="s2"> </span>cipher: <span class="s2"> aes-256-cbc</span></div>
<div class="p1">
<span class="s1">encrypted_data:</span> KMHzeFQwfm0wWeHFymxfJsMo425CP+wlwoZ6xN7waVlgUNOmRrr/+jOtDLIN</div>
<div class="p1">
s7Xl</div>
<div class="p3">
</div>
<div class="p1">
<span class="s1">iv: </span> TYPYnSqYTcmU8ZWE2sIt4A==</div>
<div class="p3">
</div>
<div class="p1">
</div>
<div class="p2">
<span class="s2"> </span>version: <span class="s2"> 1</span></div>
<div class="p1">
</div>
<div class="p2">
<span class="s2"> </span></div>
<div class="p2">
<span class="s2"><br /></span></div>
<div class="p2">
<span class="s2"><br /></span></div>
<div class="p2">
<span class="s2">Once encrypted if you try to edit the encrypted databag it shows like this </span></div>
<div class="p2">
<span class="s2"><br /></span></div>
<div class="p1">
{</div>
<div class="p1">
"name": "data_bag_item_testbag_password",</div>
<div class="p1">
"json_class": "Chef::DataBagItem",</div>
<div class="p1">
"chef_type": "data_bag_item",</div>
<div class="p1">
"data_bag": "testbag",</div>
<div class="p1">
"raw_data": {</div>
<div class="p1">
"id": "password",</div>
<div class="p1">
"password": {</div>
<div class="p1">
"encrypted_data": "KMHzeFQwfm0wWeHFymxfJsMo425CP+wlwoZ6xN7waVlgUNOmRrr/+jOtDLIN\ns7Xl\n",</div>
<div class="p1">
"iv": "TYPYnSqYTcmU8ZWE2sIt4A==\n",</div>
<div class="p1">
"version": 1,</div>
<div class="p1">
"cipher": "aes-256-cbc"</div>
<div class="p1">
}</div>
<div class="p1">
}</div>
<div class="p2">
<span class="s2">
</span></div>
<div class="p1">
}</div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<div class="p1">
<br /></div>
<div class="p1">
To show the decrypted values we can use </div>
<div class="p1">
<br /></div>
<div class="p1">
[root@ec2-test .chef]# <b>knife data bag show testbag password --secret-file /root/.chef/encrypted_data_bag_secret</b></div>
<div class="p1">
<br /></div>
<div class="p1">
<span class="s1">id: </span> password</div>
<div class="p1">
</div>
<div class="p1">
<span class="s1">password:</span> this is test password key<br />
<br />
<br />
---------------------------<br />
Some important commands related to data bags<br />
<br />
Generate random secret key<br />
<br />
<br />
<div class="p1">
<b>openssl rand -base64 512 >encrypted_data_bag_secret</b></div>
<div class="p1">
<br /></div>
<div class="p1">
Generate random password</div>
<div class="p1">
<br /></div>
<div class="p1">
</div>
<div class="p1">
<b>date | md5 </b>in mac </div>
<div class="p1">
<b>date | md5sum </b>in any linux machine </div>
</div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-22207870721591227332014-07-30T15:57:00.003+05:302014-07-30T15:57:28.892+05:30Setting a Secure Flag to cookie in httpd – Apache <div dir="ltr" style="text-align: left;" trbidi="on">
First check if mod_headers is loaded. Else enable that module<br />
<br />
<br />
<b>LoadModule headers_module modules/mod_headers.so</b><br />
<br />
Once the module is loaded .<br />
<br />
<b>Header edit Set-Cookie ^(.*)$ $1;Secure</b><br />
<br />
<br />
Add above line to your virtual host in httpd.conf/ssl.conf as per your config<br />
<br />
What this does is it adds a secure flag to your cookie. This flag is set by application server when sending<br />
a new cookie to client/user when sending http response.This also mean that server will not send cookie over http. It sends only via https .This prevents unauthorized access to cookie data<br />
<br />
This can be done via code in java or can be done @ apache/httpd config level.<br />
<br />
Here is more info on code level changes <a href="https://www.owasp.org/index.php/SecureFlag">click here..!!</a><br />
<br />
<br /></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-61661830440897207942014-07-09T15:29:00.003+05:302014-07-09T15:29:47.251+05:30Get SSL certificate expire date / Openssl get certificate expire date <div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<b>openssl x509 -in /home/certificates/certname.crt -noout -enddate</b></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-17484464251796687462014-06-27T14:04:00.000+05:302014-06-27T14:04:05.093+05:30rssh chroot jailroot sftp creation - By Vinodh tiruttani<div dir="ltr" style="text-align: left;" trbidi="on">
<div align="center" class="MsoNormal" style="text-align: center;">
<b><u><span lang="EN-IN" style="color: #1f497d; font-family: "Verdana","sans-serif"; font-size: 16.0pt; line-height: 115%; mso-themecolor: text2; text-shadow: auto;">Steps for chroot jail folder creation:<o:p></o:p></span></u></b></div>
<div class="MsoNormal">
<span lang="EN-IN" style="background: white; color: red; font-family: "Verdana","sans-serif"; mso-bidi-font-family: Arial;">The chroot command<span class="apple-converted-space"> </span><strong>changes its current and root directories to the
provided directory and then run command</strong>, if supplied, or an
interactive copy of the user's login shell. Please note that not every
application can be chrooted.</span><b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; text-shadow: auto;"><o:p></o:p></span></u></b></div>
<b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Creating User</span></u></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# /usr/sbin/useradd
testrssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# su testrssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin root]$ cd /home/testrssh/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin ~]$ ssh-keygen -t dsa</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Generating public/private dsa key pair.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Enter file in which to save the key
(/home/testrssh/.ssh/id_dsa):</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Created directory '/home/testrssh/.ssh'.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Enter passphrase (empty for no passphrase):
</span><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">< Type passphrase ></span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Enter same passphrase again: </span><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">< Re-type passphrase ></span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Your identification has been saved in
/home/testrssh/.ssh/id_dsa.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Your public key has been saved in
/home/testrssh/.ssh/id_dsa.pub.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">The key fingerprint is:</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">92:c9:fe:9f:47:29:ba:15:29:9c:51:84:0f:c6:d8:0b
testrssh@learnadmin.com</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin ~]$</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin ~]$ cd .ssh/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin .ssh]$ pwd</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">/home/testrssh/.ssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin .ssh]$ cp id_dsa.pub
authorized_keys2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin .ssh]$ ls -l</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">total 24</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">-rw-r--r-- 1 testrssh testrssh 618 Jun 12
18:12 authorized_keys2 </span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">-rw-------</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> 1 testrssh testrssh 736 Jun 12 18:11
id_dsa </span><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">( 600 permission)</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">-rw-r--r-- 1 testrssh testrssh 618 Jun 12
18:11 id_dsa.pub</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin .ssh]$</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[testrssh@learnadmin .ssh]$ exit</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# /usr/sbin/usermod -s
/usr/bin/rssh testrssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Download from net rssh-2.3.3.tar.gz from http://www.pizzashack.org/rssh/downloads.shtml</span></u></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# tar xvf
rssh-2.3.3.tar.gz</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# cd rssh-2.3.3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin rssh-2.3.3]# ./configure</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin rssh-2.3.3]# make</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin rssh-2.3.3]# make install</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin rssh-2.3.3]# cd ..</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> </span><b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Download
from net rssh-2.3.3-1.x86_64.rpm</span></u></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> [root@learnadmin ~]# rpm -ivh
rssh-2.3.3-1.x86_64.rpm</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Preparing...
########################################### [100%]</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
1:rssh
########################################### [100%]</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# pwd</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">/root</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<div style="margin-left: 39.0pt; mso-list: l0 level1 lfo1; text-indent: -.25in;">
<!--[if !supportLists]--><span lang="EN-IN" style="color: red; font-family: Symbol; font-size: 11.0pt; mso-bidi-font-family: Symbol; mso-bidi-font-weight: bold; mso-fareast-font-family: Symbol;">·<span style="font-family: 'Times New Roman'; font-size: 7pt;">
</span></span><!--[endif]--><b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Converting rssh chroot Jail
folder – Execute the below script from the below location<o:p></o:p></span></u></b></div>
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> [root@learnadmin ~]# cp
/usr/share/doc/rssh-2.3.3/mkchroot.sh .</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# chmod 775 mkchroot.sh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> [root@learnadmin ~]# ./mkchroot.sh
/home/testrssh/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">NOT changing owner of root jail.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">NOT changing perms of root jail.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">setting up /home/testrssh//usr/bin</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">setting up
/home/testrssh//usr/libexec/openssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">setting up /home/testrssh//usr/libexec</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Copying libraries for /usr/bin/scp.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libcrypto.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libutil.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libz.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libnsl.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> /lib64/libcrypt.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libresolv.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libgssapi_krb5.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libkrb5.so.3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libk5crypto.so.3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libcom_err.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnss3.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libc.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libdl.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libkrb5support.so.0</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libkeyutils.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnssutil3.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libplc4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libplds4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnspr4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libpthread.so.0</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libselinux.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libsepol.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Copying libraries for
/usr/libexec/openssh/sftp-server.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libcrypto.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libutil.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libz.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libnsl.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libcrypt.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libresolv.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libgssapi_krb5.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libkrb5.so.3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libk5crypto.so.3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libcom_err.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnss3.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libc.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libdl.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libkrb5support.so.0</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libkeyutils.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnssutil3.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libplc4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libplds4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/usr/lib64/libnspr4.so</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libpthread.so.0</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libselinux.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> /lib64/libsepol.so.1</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Copying libraries for /usr/bin/rssh.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libc.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Copying libraries for
/usr/libexec/rssh_chroot_helper.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
/lib64/libc.so.6</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">copying name service resolution
libraries...</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">tar: Removing leading `/' from member names</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
lib/</span><span lang="EN-IN"><a href="http://libnss_files-2.5.so/" target="_blank"><span style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">libnss_files-2.5.so</span></a></span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">tar: /lib/libnss1_files*: Cannot stat: No
such file or directory</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">tar: Error exit delayed from previous
errors</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">
lib/libnss_files.so.2</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Setting up /etc in the chroot jail</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">cp: omitting directory `/etc/ld.so.conf.d'</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Chroot jail configuration completed.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">NOTE: if you are not using the passwd file for authentication,</span></b><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span></b><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">you may need to copy some of the /lib/libnss_* files into the jail.<o:p></o:p></span></b><br />
<br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> <b><span style="color: red;">NOTE: you must MANUALLY edit your syslog rc script to start
syslogd</span></b></span><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span></b><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">with appropriate options to log to /home/testrssh//dev/log. In
most cases,</span></b><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span></b><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">you will need to start syslog as:</span></b><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span></b><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> /sbin/syslogd -a
/home/testrssh//dev/log</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> NOTE: we make no guarantee that ANY
of this will work for you... if it</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">doesn't, you're on your own. Sorry!</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> </span><b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Note:</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> </span><u><span lang="EN-IN" style="color: #7030a0; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">while
executing above command some files are not copied, we need to copy manually.</span></u><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]#</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]# cd /home/testrssh/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin testrssh]# cd dev/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin dev]# mknod -m 666 zero c
1 5</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin dev]# mknod -m 666 null c
1 3</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin dev]# cd ../lib</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib]# cp
/lib/ld-linux.so.2 .</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib]# cp /lib/libc.so.6 .</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib]# cd ../lib64/</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib64]# cp /lib64/ld-linux-x86-64.so.2
.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib64]# cp /lib64/libnss_*
.</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin lib64]# cd</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin]# vi /etc/rssh.conf ( add
the user and uncomment 2 lines)</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">allowscp</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">allowsftp</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">user=testrssh:011:00011:"/home/testrssh"</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">:wq!</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@learnadmin ~]#</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Done rssh chroot jail folder is created</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">-------------------------------------------------</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Testing rssh login from remote system</span></u></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<b><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Login to server from remote
server</span></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> </span><u><span lang="EN-IN" style="color: #7030a0; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">Copy
id_dsa key from Server ( user: testrssh )</span></u><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">[root@clientmachine test-rssh-keys]# vi id_dsa_testrssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">-----BEGIN DSA PRIVATE KEY-----</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Proc-Type: 4,ENCRYPTED</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">DEK-Info: DES-EDE3-CBC,42ED97DC52451DE9</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">UAh2bmigMZ5DN0KVadfR9bRrFL7l0mUMF7iCjgbqHA3wgNfPttytDmt3jJR5Mmb+</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">uxl0s1D1JwDvNstUgTL9fDC+TnrQXj+0YVQ7bvHPLdcyTEUm3MXNAbqv3PUoFAVa</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">qfLPtybOHCADOA6wH+vcJ4Mt2NM/M+fbMbcmBsrMw3fYzB2na5Zs2OoVxKLbVPEo</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">mKP3Eu5Eo1nC6wApQkBzO7ZJDq3x7YjxPPQJZ82j/vVVuZsGj0IFBRm1Esj8gABp</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">MlQfTzK0wnbbCJ2L3CqRPS7gyyKCpdQtuNYliDh8E+uXAsCjIx+rksfRJkTmKTDj</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Huob0no/69che/tnBzhzQV3B6C1BrJ4CPElRVOoq2niQIy4ruku5wK9ONm3J50It</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">wc3uADpOgBUStavVpuUJTU4Oe8rVraUhEyBB0iOpYySGrAAfEtabwCwB0OvK+bht</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">1mLleTDGadms07+psexV4L66bmDY6ypu7dtcGWuFXQP5UQdOHqS7ehdEtCpuboer</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">BVkcrdivDHoc88cScuDOytPsFyMiHJ5fkrMLtKWQBTF3I7SiDqVBq/lKFcubZK3Q</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">K/PpJyasnxlcaLJLFkFibw==</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">-----END DSA PRIVATE KEY-----</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> :wq!</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> [root@ clientmachine test-rssh-keys]#
chmod 600 id_dsa_testrssh</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> [root@ clientmachine test-rssh-keys]#
sftp -o IdentityFile=id_dsa_testrssh testrssh@sftp server</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Connecting to 10.x.x.x...</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Enter passphrase for key 'id_dsa_testrssh':</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">sftp> ls</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">dev etc
lib lib64 usr</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">sftp> cd /root</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Couldn't canonicalise: No such file or
directory</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">sftp> cd /tmp</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">Couldn't canonicalise: No such file or
directory</span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";">sftp></span><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt; mso-bidi-font-family: "Courier New";"> </span><b><u><span lang="EN-IN" style="color: red; font-family: "Verdana","sans-serif"; font-size: 11.0pt;">rssh
chroot jail folder is working.</span></u></b><span lang="EN-IN" style="font-family: "Verdana","sans-serif"; font-size: 11.0pt;"><o:p></o:p></span><br />
<br />
<div class="MsoNormal">
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-33794408019033744782014-04-25T11:39:00.001+05:302014-04-25T11:39:33.896+05:30Linux grep a process and kill all process id's <div dir="ltr" style="text-align: left;" trbidi="on">
<b>kill -9 `ps -ef | grep ProcessName | grep -v grep | awk '{print $2}'`</b></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-7557426180155807292014-04-10T14:43:00.000+05:302014-04-10T14:45:04.822+05:30How to parse xml tags in bash or retrieve xml tag values in linux <div dir="ltr" style="text-align: left;" trbidi="on">
<div dir="ltr" style="text-align: left;" trbidi="on">
<br />
Consider the following example file test.xml<br />
<br />
<br />
<br />
<header></header><div dir="ltr" trbidi="on">
<blockquote>
</blockquote>
</div>
<div dir="ltr" trbidi="on">
<pre></pre>
</div>
<div dir="ltr" trbidi="on">
<br /></div>
<div dir="ltr" trbidi="on">
<header></div>
<div dir="ltr" trbidi="on">
<tag1>1</tag1></div>
<div dir="ltr" trbidi="on">
<system>test123</system></div>
<div dir="ltr" trbidi="on">
<cdc>230</cdc></div>
<div dir="ltr" trbidi="on">
</div>
<div dir="ltr" trbidi="on">
</header></div>
<div dir="ltr" trbidi="on">
</div>
</div>
</div>
<div dir="ltr" trbidi="on">
</div>
<br />
<br />
<br />
<br />
<br />
grep -E -m 1 -o "<system>(.*)</system>" test.xml<br />
<br />
This will return "<system>test123</system>"<br />
<br />
<br />
if you want only the value we need to pipe it further<br />
<br />
grep -E -m 1 -o "<system>(.*)</system>" test.xml | sed -e 's,.*<system>\([^<]*\)</system>.*,\1,g'<br />
<br />
This will return "test123"<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-6469171568875045772014-03-26T17:18:00.001+05:302014-03-26T17:18:07.756+05:30fix failed: NT_STATUS_BAD_NETWORK_NAME"<div dir="ltr" style="text-align: left;" trbidi="on">
<br />
<br />
<b>smbclient -L 127.0.0.1 -U testuser</b> ( will list directories )<br />
<br />
<b>smbclient //127.0.0.1/Pubshare -U testuser</b> ( will connect )</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-44424593053467019832014-03-10T11:56:00.000+05:302014-03-10T11:56:06.222+05:30Simple gpg encryption setup <div dir="ltr" style="text-align: left;" trbidi="on">
Generation of encryption keys<br />
-----------------------------------<br />
<br />
<b>gpg --gen-key</b><br />
<br />
<br />
gpg (GnuPG) 1.4.5; Copyright (C) 2006 Free Software Foundation, Inc.<br />
This program comes with ABSOLUTELY NO WARRANTY.<br />
This is free software, and you are welcome to redistribute it<br />
under certain conditions. See the file COPYING for details.<br />
<br />
Please select what kind of key you want:<br />
(1) DSA and Elgamal (default)<br />
(2) DSA (sign only)<br />
(5) RSA (sign only)<br />
Your selection? 1<br />
DSA keypair will have 1024 bits.<br />
ELG-E keys may be between 1024 and 4096 bits long.<br />
What keysize do you want? (2048)<br />
Requested keysize is 2048 bits<br />
Please specify how long the key should be valid.<br />
0 = key does not expire<br />
<n> = key expires in n days</n><br />
<n>w = key expires in n weeks</n><br />
<n>m = key expires in n months</n><br />
<n>y = key expires in n years</n><br />
Key is valid for? (0) 0<br />
Key does not expire at all<br />
Is this correct? (y/N) y<br />
<br />
You need a user ID to identify your key; the software constructs the user ID<br />
from the Real Name, Comment and Email Address in this form:<br />
"Heinrich Heine (Der Dichter) <heinrichh duesseldorf.de="">"</heinrichh><br />
<br />
Real name: learnadmin<br />
Email address: admin@learnadmin.com<br />
Comment: this is comment section<br />
You selected this USER-ID:<br />
"learnadmin (this is comment section) <admin learnadmin.com="">"</admin><br />
<br />
Change (N)ame, (C)omment, (E)mail or (O)kay/(Q)uit? o<br />
You need a Passphrase to protect your secret key.<br />
----------------<br />
Here give password which is used for decryption of files. ( my testpassphrase is test@123 )<br />
----------------<br />
We need to generate a lot of random bytes. It is a good idea to perform<br />
some other action (type on the keyboard, move the mouse, utilize the<br />
disks) during the prime generation; this gives the random number<br />
generator a better chance to gain enough entropy.<br />
.++++++++++++++++++++++++++++++.+++++++++++++++.+++++++++++++++...++++++++++++++++++++++++++++++++++++++++..+++++..+++++..++++++++++++++++++++.+++++..........+++++<br />
<br />
Not enough random bytes available. Please do some other work to give<br />
the OS a chance to collect more entropy! (Need 162 more bytes)<br />
We need to generate a lot of random bytes. It is a good idea to perform<br />
some other action (type on the keyboard, move the mouse, utilize the<br />
disks) during the prime generation; this gives the random number<br />
generator a better chance to gain enough entropy.<br />
.+++++.+++++++++++++++..+++++.+++++.+++++++++++++++.+++++.++++++++++++++++++++.+++++++++++++++.++++++++++...+++++++++++++++....+++++++++++++++..++++++++++++++++++++>++++++++++>+++++.>.+++++........<+++++.......................................................................>+++++....................<+++++......>+++++................................................................................................................+++++^^^^<br />
gpg: /home/username/.gnupg/trustdb.gpg: trustdb created<br />
gpg: key 4F13D8CF marked as ultimately trusted<br />
public and secret key created and signed.<br />
<br />
gpg: checking the trustdb<br />
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model<br />
gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u<br />
pub 1024D/4F13D8CF 2014-03-10<br />
Key fingerprint = BB11 7A85 CC87 55D2 6F35 D34C CD32 5F04 4F13 D8CF<br />
uid learnadmin (this is comment section)<b> </b> <admin learnadmin.com=""></admin><br />
sub 2048g/5A897101 2014-03-10<br />
<br />
------------------------<br />
Tip for creating random key for cert generation :<br />
Depending on your disk type<br />
<b>dd if=/dev/sda of=/dev/zero</b><br />
(or)<br />
<b>dd if=/dev/hda2 of=/dev/zero</b><br />
2911235+0 records in<br />
2911234+0 records out<br />
1490551808 bytes (1.5 GB) copied, 8.24918 seconds, 181 MB/s<br />
<br />
The above command with take input form your disk and writes it randomly to /dev/zero<br />
<br />
---------------------------<br />
<br />
<br />
<b>gpg --import Yourkey.gpg</b> ( not required . This key need to be imported if you are using this encryption on other server or other client )<br />
<br />
Create a file test.txt and try to encrypt and check if it is working ...!!<br />
<br />
<br />
<b>gpg --always-trust --encrypt --recipient "learnadmin (this is comment section) <admin learnadmin.com="">" test.txt</admin></b><br />
<br />
<br />
<b>gpg --batch --passphrase test@123 --decrypt test.txt.gpg>test.txt</b><br />
<br />
<br /></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-61320446031077014082013-12-26T15:50:00.000+05:302013-12-26T15:50:11.351+05:30Graphite & statsd installation and Configuration<div dir="ltr" style="text-align: left;" trbidi="on">
<b>How to install Graphite and statsd</b><br />
<b>-----------------------------------</b><br />
<br />
yum install python-devel.noarch<br />
yum install pycairo.x86_64 Django.noarch django-tagging.noarch python-twisted.noarch python-zope-interface.x86_64 python-zope-interface httpd memcached python-memcached<br />
yum install fontconfig.x86_64 fontconfig-devel.x86_64<br />
yum install mod_wsgi.x86_64<br />
yum install python-pip.noarch<br />
<br />
pip-python install whisper<br />
pip-python install carbon<br />
pip-python install graphite-web<br />
<br />
<br />
<br />
cp /opt/graphite/conf/carbon.conf.example /opt/graphite/conf/carbon.conf<br />
cp /opt/graphite/conf/storage-schemas.conf.example /opt/graphite/conf/storage-schemas.conf<br />
cp /opt/graphite/conf/graphite.wsgi.example /opt/graphite/conf/graphite.wsgi<br />
cp /opt/graphite/examples/example-graphite-vhost.conf /etc/httpd/conf.d/graphite.conf<br />
cp /opt/graphite/webapp/graphite/local_settings.py.example /opt/graphite/webapp/graphite/local_settings.py<br />
<br />
<br />
<br />
<br />
python /opt/graphite/webapp/graphite/manage.py syncdb<br />
chown -R apache:apache /opt/graphite/storage/<br />
<br />
<br />
<br />
wget -O /etc/init.d/carbon https://gist.github.com/raw/3652720/6978bda604c794e21165a81c6b879528d19e8bb4/carbon.init.sh<br />
chmod 0755 /etc/init.d/carbon<br />
chkconfig --add carbon<br />
<br />
<br />
<br />
/opt/graphite/bin/carbon-cache.py start<br />
/etc/init.d/httpd start<br />
<br />
<br />
<br />
yum install nodejs npm<br />
<br />
<br />
cd /opt/graphite<br />
git clone https://github.com/etsy/statsd.git<br />
cd statsd<br />
cp exampleConfig.js local.js<br />
<br />
<br />
<br />
/etc/init.d/carbon start<br />
<br />
/etc/init.d/memcached start<br />
/etc/init.d/statsd start<br />
<br />
<br />
<br />
Configurations<br />
--------------------<br />
Graphite Configuration: /opt/graphite<br />
Statsd configugration: /opt/graphite/statsd<br />
<br />
<br />
<br />
<br />
Graphite/Statsd Logs<br />
---------------------------<br />
<br />
Graphite: /opt/graphite/storage/log/webapp<br />
Statsd: /var/log/statsd/<br />
statsderr.log statsd.log<br />
<div>
<br /></div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-39422332579665846982013-12-20T17:32:00.001+05:302013-12-20T17:32:21.280+05:30Bash script to mask credit card number or any data in logs.<div dir="ltr" style="text-align: left;" trbidi="on">
create a temp test file for testing your data<br />
<br />
cat test.txt<br />
<br />
hi this is my credit card number 1234567891234567<br />
i have 22 this 22 is just for testing 1234567890123456 and this one<br />
<div>
<br /></div>
<div>
Here is the format which varies according to your requirement .</div>
<div>
In my case there are 16 digits . </div>
<div>
I want to mask first 6 number here is the regular expression or bash command </div>
<div>
<br /></div>
<div>
<br /></div>
<div>
<b>sed -e :a -e "s/[0-9]\{6\}\([0-9]\{10\}\)/\*\*\*\*\*\*\1/;ta" test.txt </b></div>
<div>
<br /></div>
<div>
<br /></div>
<div>
here 6 and 10 are number of masks and number of visible characters respectively.</div>
<div>
you can alter them according to your needs. </div>
<div>
<br /></div>
<div>
And the stars can be replaced by # or the value you want to mask with .</div>
<div>
The number of starts should be equal to number of masks in my case it is 6</div>
</div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0tag:blogger.com,1999:blog-110134089985063272.post-32353963257780747162013-10-30T16:17:00.000+05:302013-10-30T16:17:08.055+05:30Bash script get yesterdays or one day ago's date or date-1 <div dir="ltr" style="text-align: left;" trbidi="on">
<b>date -d '1 day ago' +"%Y-%m-%d"</b></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com9tag:blogger.com,1999:blog-110134089985063272.post-73335082712314144722013-08-22T12:23:00.000+05:302013-08-22T12:23:37.537+05:30Linux list all processes based on memory consumption .<div dir="ltr" style="text-align: left;" trbidi="on">
list top 5 processes<br />
<b>ps -eo pmem,pcpu,vsize,pid,cmd | sort -k 1 -nr | head -5</b><br />
<br />
list all processes in assending order .<br />
<b>ps -e -orss=,args= | sort -b -k1,1n | pr -TW$COLUMNS</b><br />
<br />
<br /></div>
<div class="blogger-post-footer">www.learnadmin.com</div>Naresh Surampudihttp://www.blogger.com/profile/12095471814465183650noreply@blogger.com0