A quick Speedtest from the Linux command line
speedtest-cli is in the Ubuntu repositories!
Archive of posts tagged Linux
HTTP Strict Transport Security with Apache
HTTP Strict Transport Security (HSTS) is a web security policy which helps to protect websites against protocol downgrade attacks by allowing web servers to declare that web browsers should only connect via secure HTTPS connections. The HSTS Policy for the site is communicated by the server to the browser via a HTTPS response header field …
Continue reading ‘HTTP Strict Transport Security with Apache’ »
Security Hardening – Apache and PHP Information Disclosure
Do you want to reduce the version information that Apache and PHP are providing in the HTTP headers? This may help. /etc/apache2/conf-available/security.conf /etc/php5/apache2/php.ini
Viewing HTTP Headers on Linux with curl
If you want to identify the configuration options for STS etc, you will need to look at HTTP Headers. From Linux you can use curl. For HTTPS sites, you may want to consider the –insecure option if you have other cert issues to contend with.
Building RPMs
Here is some advice I found useful when setting up my RPM build environment, and building a basic RPM. The main source I used, to save reading my book again or the man pages, was Linc Fessenden’s blog and some of Linc’s blog is repeated here for completeness. Thanks Linc! These instructions should work fine on any …
DNETC System V init Script
This week I was looking into init scripts again, its been a while… Anyhow, I remembered that I had written one for distributed.net’s client app. I thought I would share it, place in “/etc/init.d/dnetc”. It should work fine on current releases of Fedora, RHEL and CentOS. Its designed for the sysadmin to configure dnetc for …
Firefox SSH protocol handler (Linux)
I have a web page that lists servers I need to connect to. This page has several hyper links for each server to key webpages on that host. I wanted to be able to connect using ssh too, at the click of a link. (eg: ssh://myserver.example.com and ssh://user@myserver.example.com) I started doing a bit of research …
Happy New Year!
Well, better late than never. I thought I would take this chance to set myself some ‘open’ goals for the New Year. First off I hope to get involved in more FOSS advocacy projects, there are a few about which I hope I can contribute too. As part of this, I am going to get …
Delete mail from an exim mail queue
Here is a quick HowTo / TechTip for deleting all the mail from an exim mail queue! After the issue I blogged about the other day, where a webserver was being used to generate spam, we were left with a lot of spam email in the servers mail queue awaiting delivery. Amongst other things, this …
Squid Proxy Tip
Do you run a squid proxy? I do, and have been restarting squid to apply config changes for ages. Turns out that you can just run “service squid reload”, users have no down time and your config changes get applied. Great. Wish I had thought to check that before now….. 🙂 (This works on RHEL/CentOS, …