In follow-up to previous posts I’ve had about SSL (specifically with Let’s Encrypt), here is the set of {{SSL}} configurations I use with all my sites. These, if used correctly, should score you an “A+” with no warnings from ssllabs.com. Note: I have an improved entropy package installed (twuewand). This is adapted from the Mozilla config …
Continue reading ssl configuration for apache 2.4 on centos 7 with let’s encrypt
turn on spf filtering with postfix and centos 7
After running my new server for a while, I was noticing an unusually-high level of bogus email arriving in my inbox – mail that was being spoofed to look like it was coming from myself (to myself). After a great deal of research, I learned there is a component of the {{DNS}} specification that allows …
Continue reading turn on spf filtering with postfix and centos 7
putting owncloud 8 on a subdomain instead of a subdirectory on centos 7
After moving to a new server, I wanted to finally get {{ownCloud}} up and running (over SSL, of course) on it. And I like subdomains for different services, so I wanted to put it at sub.domain.tld. This turns out to be not as straight-forward as one might otherwise hope, sadly – ownCloud expects to be …
Continue reading putting owncloud 8 on a subdomain instead of a subdirectory on centos 7
automated let’s encrypt ssl certificate renewal on centos 7
In my how-to for Let’s Encrypt, I gave an example script that can be called via cron (or manually) which will renew Let’s Encrypt {{SSL}} certificates under {{CentOS}} 6. If you want to do it on {{CentOS}} 7 (which is what I am now running), use the following: cd ~/letsencrypt git pull systemctl stop httpd.service …
Continue reading automated let’s encrypt ssl certificate renewal on centos 7
let’s encrypt centos 6 – truly free ssl
There’s been quite a bit of excitement surrounding Let’s Encrypt recently – a truly 100% free {{SSL}} issuer. Last week I helped a friend of mine get his first Let’s Encrypt certificate generated and configured for his website. One of the things I found incredibly frustrating is that Let’s Encrypt does not have a package …
Continue reading let’s encrypt centos 6 – truly free ssl
merging centos iso images
Thanks to @Anon on Unix.SE for the pointer on how to do this. And to @Andy‘s comment on @mmckinst‘s answer for the warning about additional packages you may need. As my three readers know, I run a {{CentOS}} mirror. One of the idiosyncrasies of CentOS, like its upstream {{RHEL}}, is that DVD ISOs aren’t always just one image – …
Continue reading merging centos iso images
bglug presentation – 04 aug 2014 – basics of initial centos/rhel 6.x server configuration
Attached is the presentation for my talk on initial CentOS/RHEL 6.x server configuring. bglug-2014-08-04-myers
soup to nuts mirroring of centos
I run a CentOS mirror. Have for a couple years. But I never stopped to see just how long it takes to start becoming a mirror. In case you wanted to know, I created a quick DO VM and ran the rsync mirror job yesterday. The results? At ~2.5MB/s, it took just over 8 hours to download …
Continue reading soup to nuts mirroring of centos
setting-up etherpad in centos 6
To add to my tutorial collection, here’s how to setup EtherPad on CentOS 6 (x64). As in the IRC tutorial, I used a Digital Ocean VM for this 🙂 What is EtherPad? It’s an open-source collaborative text editor that works like Google Docs – ie, all editors/viewers can see changes from everyone else in realtime. …
Continue reading setting-up etherpad in centos 6
automatically extract email attachments with common linux tools
I had need to automatically process emails to a specific address to pull attachments out, and this is how I did it: $ yum install mpack $ cat extract-attach.sh #!/bin/bash rm -rf ~/attachtmp mkdir ~/attachtmp mv ~/Maildir/new/* ~/attachtmp cd ~ munpack ~/attachtmp/* rm -rf ~/attachtmp $ crontab -l */5 * * * * ~/extract-attach.sh Why, …
Continue reading automatically extract email attachments with common linux tools
network install of centos 6
I wanted to try something different when playing with CentOS 6 recently, so I did a network install. Other than one very small detail, the install is identical to installing off a normal ISO. Here’s the difference: use the netinstall.iso (eg http://centos.datente.com/media/6/isos/x86_64/CentOS-6.4-x86_64-netinstall.iso) when it asks for the URL to grab your image from, use something like http://centos.datente.com/media/6/os/x86_64 (make …
Continue reading network install of centos 6