| 12 |
o read more about BSD package systems (pkg, cvsup) |
o read more about BSD package systems (pkg, cvsup) |
| 13 |
x for simple package installation/de-installation use pkg |
x for simple package installation/de-installation use pkg |
| 14 |
x install downloaded package: |
x install downloaded package: |
| 15 |
:# pkg_add <package>-<version>.tgz |
:# pkg_add {package}-{version}.tgz |
| 16 |
x install package via remote server(only if package is available as *latest*): |
x install package via remote server(only if package is available as *latest*): |
| 17 |
pkg_add -r <package>.tgz |
pkg_add -r {package}.tgz |
| 18 |
x using cvsup |
x using cvsup |
| 19 |
x newbies could use cvsupit (not what it really does..) |
x read http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html |
| 20 |
|
x newbies could use cvsupit: |
| 21 |
:# pkg_add -r cvsupit.tgz |
:# pkg_add -r cvsupit.tgz |
| 22 |
- cvsupit will proberly ask you for the default values it |
- cvsupit will proberly ask you for the default values it |
| 23 |
place at /etc/cvsupfile, which is used by cvsup |
place at /etc/cvsupfile, which is used by cvsup |
| 25 |
x if /etc/cvsupfile already exists and you know what you do, |
x if /etc/cvsupfile already exists and you know what you do, |
| 26 |
this command will update your system (maybe run it via cron...): |
this command will update your system (maybe run it via cron...): |
| 27 |
:# /usr/local/bin/cvsup -g -L 2 /etc/cvsupfile |
:# /usr/local/bin/cvsup -g -L 2 /etc/cvsupfile |
| 28 |
|
where '-g' tells cvsup not to use a GUI, '-L 2' sets default output level to 2 |
| 29 |
|
x for available cvs tags, look at http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvs-tags.html |
| 30 |
o whats about daemon start-stop scripts (like at linux: /etc/init.d/) ? |
o whats about daemon start-stop scripts (like at linux: /etc/init.d/) ? |
| 31 |
x configure and compile custom kernel: |
x configure and compile custom kernel: |
| 32 |
x read http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html |
x read http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig-building.html |
| 44 |
x use packet fiters (firewall): |
x use packet fiters (firewall): |
| 45 |
x read http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html |
x read http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/firewalls.html |
| 46 |
x some options at the kernel have to be enabled: |
x some options at the kernel have to be enabled: |
| 47 |
<pre style="font-size:10px"> |
- options IPFIREWALL |
| 48 |
options IPFIREWALL #Compiles into the kernel the code for packet filtering. |
Compiles into the kernel the code for packet filtering. |
| 49 |
options IPFIREWALL_VERBOSE #Enables code to allow logging of packets through syslogd. |
- options IPFIREWALL_VERBOSE |
| 50 |
# Without this option, even if you specify that packets should be logged in the filter rules, |
Enables code to allow logging of packets through syslogd. |
| 51 |
# nothing will happen. |
Without this option, even if you specify that packets should be logged in the filter rules, |
| 52 |
options IPFIREWALL_VERBOSE_LIMIT=10 #Limits the number of packets logged through syslogd on a per entry basis. |
nothing will happen. |
| 53 |
# You may wish to use this option in hostile environments in which you want to log firewall activity, |
- options IPFIREWALL_VERBOSE_LIMIT=10 |
| 54 |
# but do not want to be open to a denial of service attack via syslog flooding. |
Limits the number of packets logged through syslogd on a per entry basis. |
| 55 |
# When a chain entry reaches the packet limit specified, logging is turned off for that particular entry. |
You may wish to use this option in hostile environments in which you want to log firewall activity, |
| 56 |
# To resume logging, you will need to reset the associated counter using the ipfw(8) utility: |
but do not want to be open to a denial of service attack via syslog flooding. |
| 57 |
# ipfw zero 4500 |
When a chain entry reaches the packet limit specified, logging is turned off for that particular entry. |
| 58 |
# Where 4500 is the chain entry you wish to continue logging. |
To resume logging, you will need to reset the associated counter using the ipfw(8) utility: |
| 59 |
options IPFIREWALL_DEFAULT_TO_ACCEPT #This changes the default rule action from ``deny'' to ``allow''. |
:# ipfw zero 4500 |
| 60 |
# This avoids the possibility of locking yourself out if you happen to boot a kernel with IPFIREWALL support but have not configured your firewall yet. |
Where 4500 is the chain entry you wish to continue logging. |
| 61 |
# It is also very useful if you often use ipfw(8) as a filter for specific problems as they arise. |
- options IPFIREWALL_DEFAULT_TO_ACCEPT |
| 62 |
# Use with care though, as this opens up the firewall and changes the way it works. |
This changes the default rule action from ``deny'' to ``allow''. |
| 63 |
</pre> |
This avoids the possibility of locking yourself out if you happen to boot a kernel with IPFIREWALL support but have not configured your firewall yet. |
| 64 |
|
It is also very useful if you often use ipfw(8) as a filter for specific problems as they arise. |
| 65 |
|
Use with care though, as this opens up the firewall and changes the way it works. |
| 66 |
x firewall is enabled at /etc/rc.conf (or /etc/rc.conf.local) |
x firewall is enabled at /etc/rc.conf (or /etc/rc.conf.local) |
| 67 |
firewall_enabled = "YES" |
firewall_enabled = "YES" |
| 68 |
firewall_type = "<firewall_type>" |
firewall_type = "{firewall_type}" |
| 69 |
x <firewall_type> is either a case at /etc/rc.firewall (/etc/rc.firewall6 for ipv6) |
x where {firewall_type} is either a case at /etc/rc.firewall (/etc/rc.firewall6 for ipv6) |
| 70 |
or some custom file to read rules from. |
or some custom file to read rules from. |
| 71 |
x Use firewall_type = "OPEN" for default policy 'OPEN' (allow all) |
x Use firewall_type = "OPEN" for default policy 'OPEN' (allow all) |
| 72 |
|
|
| 73 |
|
|
| 74 |
|
- Backup: |
| 75 |
|
x bacula (http://www.bacula.org) |
| 76 |
|
Bacula is a set of computer programs that permit you (or the system administrator) to manage backup, |
| 77 |
|
recovery, and verification of computer data across a network of computers of different kinds. |
| 78 |
|
In technical terms, it is a network client/server based backup program. |
| 79 |
|
Bacula is relatively easy to use and efficient, while offering many advanced storage management features |
| 80 |
|
that make it easy to find and recover lost or damaged files. |
| 81 |
|
Bacula source code has been released under the GPL version 2 license. |
| 82 |
|
x created debian package, cause we can't found any other |
| 83 |
|
x wrote some notes about how to build an debian binary package |
| 84 |
|
http://www.netfrag.org/~jonen/computing/docs/build_bacula_deb.html |
| 85 |
|
o create 'postinst' and 'prerm' scripts for saving configs on update, etc. |
| 86 |
|
x tested network backup with Director, Storage Daemon and File Daemon(Client) |
| 87 |
|
at different hosts, works great! |
| 88 |
|
x tested backup to FileStorage, instead of using tapes drives |
| 89 |
|
(if someone would like to sponsor some tape drive, you're more than welcome!) |
| 90 |
|
notes: |
| 91 |
|
x remember to use different 'LabelFormat' filename at each pool ! |
| 92 |
|
x use compression at 'FileSet' definition, where GZIP is equal to GZIP6, means compression-level 6 (1-9) |
| 93 |
|
example: |
| 94 |
|
# ====== snip FileSet ============ |
| 95 |
|
FileSet { |
| 96 |
|
Name = "Full Set" |
| 97 |
|
Include = signature=MD5 compression=GZIP { |
| 98 |
|
/home |
| 99 |
|
} |
| 100 |
|
Exclude = { *.o } |
| 101 |
|
} |
| 102 |
|
# ====== snip FileSet ============ |
| 103 |
|
|
| 104 |
|
|
| 105 |
- QoS (Quality of Services) |
- QoS (Quality of Services) |
| 106 |
o check it out ! |
o check it out ! |
| 124 |
x integrated new FormProcessing classes from phphtmllib (released one day after interface to binaryclouds Formbuilder was written ;) |
x integrated new FormProcessing classes from phphtmllib (released one day after interface to binaryclouds Formbuilder was written ;) |
| 125 |
x refactored DataItem to use now phphtmllib form processing instead of interface to binarycload |
x refactored DataItem to use now phphtmllib form processing instead of interface to binarycload |
| 126 |
o review code and move to phphtmllib |
o review code and move to phphtmllib |
|
|
|
| 127 |
o XOOPS (http://xoops.org) |
o XOOPS (http://xoops.org) |
| 128 |
XOOPS is a dynamic OO (Object Oriented) based open source portal script written in PHP. |
XOOPS is a dynamic OO (Object Oriented) based open source portal script written in PHP. |
| 129 |
It is the ideal tool for developing small to large dynamic community websites, intra company portals, |
It is the ideal tool for developing small to large dynamic community websites, intra company portals, |
| 154 |
- ldap will check your ticket pricipial against its acl's ! |
- ldap will check your ticket pricipial against its acl's ! |
| 155 |
o 'libpam-ldap' from Turbo is bad, don't use it !! (remember at 'apt-get upgrade' !!) |
o 'libpam-ldap' from Turbo is bad, don't use it !! (remember at 'apt-get upgrade' !!) |
| 156 |
o write this down in some (existing e.g. sendmail?) howto |
o write this down in some (existing e.g. sendmail?) howto |
| 157 |
|
|
| 158 |
- Sendmail |
- Sendmail |
| 159 |
o research some about sendmail-cluster, 2 mx records, howto to set up second mx/cluster? |
o research some about sendmail-cluster, 2 mx records, howto to set up second mx/cluster? |
| 160 |
x backup mx: |
x backup mx: |
| 184 |
- Create Database |
- Create Database |
| 185 |
:# mysqladmin create <database> |
:# mysqladmin create <database> |
| 186 |
- Set Privileges on databases(creates user too, if not exists...): |
- Set Privileges on databases(creates user too, if not exists...): |
| 187 |
mysql>grant all on <database>.* to <user> identified by "<pass>"; |
mysql>grant all on {database}.* to {user} identified by "{pass}"; |
| 188 |
mysql>grant all on <database>.* to <user>@<domain> identified by "<pass>"; |
mysql>grant all on {database}.* to {user}@{domain} identified by "{pass}"; |
| 189 |
|
|
| 190 |
|
|
| 191 |
- Document saving: |
- Document saving: |
Parent Directory
| 
Revision Log
| 
Patch
