sles – Justin Lim

0

PCI compliance and backporting

Posted on June 3, 2014 by jlim0930

Due to the complex and sensitive environments of today world many groups of servers will require to get quarterly or annual security audits especially if they are part of PCI. Unfortunately for Sysadmin’s most security scanning tools are blind to backports done by both redhat and novell. backporting is where the security patches are applied to the older (current) versions of the packages that was shipped with a particular version of the operating system. So while you can have 1 major version of the package installed it will have many different versions of backports applied to it. The process itself… Continue Reading →

0

VirtualBox – how to create and share disks to setup/test clusters

Posted on July 16, 2013 by jlim0930

Once in a while you will want to setup clusters with shared disks to test and play around with various clusters. while this is easy to do in kvm/xen/etc its not so easy with virtualbox. There is a way via command line tools to create disks and attaching it so that it is shared. For me I have windows 7 64bit and I am running virtualbox 64bit 4.xxxxx. It is most likely easier if you include the path for “c:Program FilesOracleVirtualBox” however if you do not its ok. We will need to run the command VBoxManage or “c:Program FilesOracleVirtualBoxVBoxManage.exe” if… Continue Reading →

0

Dell OMSA 101 – mirroring and bootstraping

Posted on October 2, 2012 by jlim0930

If you have a environment that has a lot of dell servers and want to get storage and chassis information OMSA is the way to do it. If your machines have access to the internet you can easily download it from linux.dell.com and install it however if you have a good number of servers and/or do not have access to the internet via your servers you will most likely want to mirror the repository so that you can install it from your trusted host. In this post we will assume that we have a trusted host that has access to… Continue Reading →

0

NFS locking down ports for SLES

Posted on May 5, 2010 by jlim0930

When you run NFS server it will pick random ports for mountd and nlockmgr which can change upon reboot causing nightmares when the nfs is going through a firewall. You can lock these ports down so that its not random anymore edit /etc/sysconfig/nfs and put in the following STATD_PORT=4001 LOCKD_TCPPORT=4002 LOCKD_UDPPORT=4002 MOUNTD_PORT=4003 and restart the nfs services now if you look at the port assignments via rpcinfo you will see that mountd and nlockmgr is locked into a specific port # rpcinfo -p program vers proto port 100000 2 tcp 111 portmapper 100000 2 udp 111 portmapper 100003 2 udp … Continue Reading →