This article is the minimal configuration for a Squid transparent proxy with SSL Interception (or bump). We’re using CentoOS 7. This article is based on the good work at “https://www.sbarjatiya.com/notes_wiki/index.php/Configure_squid-3.3_in_transparent_mode_on_CentOS_7_with_SSL_bump” with a few minor changes/corrections. Disable SELinux or put it in permissive mode. Squid works on odd ports. I will
Read more
If you get this strange error when trying to start the Zabbix agent on a CentOS 7 or similar system, this article should help you solve the problem. The article at “https://www.zabbix.com/forum/zabbix-troubleshooting-and-problems/355498-centos-7-zabbix-3-4-7-cannot-create-semaphore-28-no-space-left-on-device” explains the issue further. However, you can jump right to the solution in “this” article. Issuing the command:
Read more
If you need a quick LDAP and Kerberos system up and running to provide authentication and user information, FreeIPA is for you. IPA is documented at “https://www.freeipa.org/page/Main_Page”. This article demonstrates how to set up FreeIPA on CentOS 7. By the end of this article, you’ll have a working FreeIPS system
Read more
This article shows how to configure a Redhat/CentOS 7 workstation to access a remote storage system using both NFS and CIFS. This article focuses on the workstation (client) side. The server should already be configured to share the resources. For this demonstration, the following detalis need to be know about
Read more
vTigerCRM is an excellent opensource (free to use) CRM that I use. However, it does have a small advert to help promote the work of 3rd party developers contributing the to marketplace. It’s there for a good reason but i fully understand why some people don’t want it there. You
Read more
High-end firewall appliances such as those from Watchguard offer the facility to automatically block remote systems based on their behavior such as port scanning. An intruder will often start their intrusion with some reconnaissance which includes scanning the remote system for open ports to learn what services are available. pfSense
Read more
This article demonstrates how to ensure hosts authenticate before communicating with the Zabbix server and that communications use TLS. TIP: This setup is based on an “active” monitoring setup. In other words, the Zabbix server doesn’t pro-actively connect to the clients (the servers being monitored) but rather wait for connections
Read more
This article explains how to install OpenVAS on CentOS 7. My earlier attempts to document the installation process of OpenVAS on CentOS 6 failed. OpenVAS is an alternative to (and a fork of) the very popular Nessus. It’s a very capable vulnerability scanner. I hope to write other articles on
Read more
This article demonstrates how to add and remove a disk from a virtual machine running in KVM. We’re using CentOS 6 but the same works with CentOS 7. First list the disks attached to the virtual machine before we add the new disk. Run the following command while logged into
Read more
We have a server with a bunch of hard disks that need to be combined to create one large filesystem. Further to that, we want some redundancy so we’ll need RAID. In our case, we’ll be using RAID 6. In this walk-through, we’re using a CentOS 7 server with 7
Read more