My IT Blog

Securing your Linux server is important to protect your data, intellectual property, and time, from the hands of crackers (hackers). The system administrator is responsible for security Linux box. In this first part of a Linux server security series, I will provide 20 hardening tips for default installation of Linux system. #1: Encrypt Data Communication All data transmitted over a network is open to monitoring. Encrypt transmitted data whenever possible with password or using keys / certificates. Use  scp, ssh , rsync, or sftp for file transfer. You can also mount  remote server file system  or your own home directory using special sshfs and fuse tools. GnuPG  allows to encrypt and sign your data and communication, features a versatile key managment system as well as access modules for all kind of public key directories. Fugu  is a graphical frontend to the commandline Secure File Transfer application (SFTP). SFTP is similar to FTP, but unlike FTP, the entire session is encrypted,

Q: I am using QLogic driver and I would like to know how do I scan new LUNs on Linux operating system? A: You need to find out driver proc file /proc/scsi/qlaXXX. For example on my system it is /proc/scsi/qla2300/0 Once file is identified you need to type following command (login as the root user): # echo "scsi-qlascan" > /proc/scsi/qla2300/0 # cat /proc/scsi/qla2300/0 Now use the script  rescan-scsi-bus.sh  new LUN as a device. Run script as follows: # ./rescan-scsi-bus.sh -l -w 

Introduction The firmware gets updated by the driver or each time the "qla2300" or "qla2400" modules are loaded. Drivers need specific firmware versions. Nevertheless here's QLogic firmware repo : ftp.qlogic.com/outgoing/linux/firmware/ Note. it's ok to have a more recent BIOS than firmware, but not the contrary. Driver & Firmware installation The driver should be included into the RHEL distribution. If not, use constructor's provided one e.g., - HP Approved Software :  driverdownloads.qlogic.com/QLogicDriverDownloads_UI/Product_detail.aspx?oemid=21 - IBM Supported Software :  driverdownloads.qlogic.com/QLogicDriverDownloads_UI/IBM.aspx?companyid=6 make sure you have the gcc package, rpm -q gcc and install the driver, ./INSTALL -h ./INSTALL -f -a Note. make sure the default binary isn't a link to gcc 2.95 (as it's sometimes the case on Oracle installs), ll /usr/bin/gcc or check that the gcc version matches the distribution build, dmesg |

Windows Server 2008 includes many enhancements for connecting to a Storage Network. One notable feature is inclusion of native multipathing (Microsoft MPIO) inbox. Microsoft MPIO in delivers high availability by establishing multiple sessions/connections from a Windows Server host to an external storage array through iSCSI, Fibre Channel, and SAS (Serial Attached SCSI). Microsoft MPIO use redundant physical path components–adapters, cables, and switches–to create logical "paths" between the server and the storage device. In the event that a device in the path fails, Microsoft MPIO automatically redirects IO to an alternate path for continued application availability. Each NIC (in the case of iSCSI Software Initiator) or HBA (in the case of Fibre Channel, SAS, iSCSI HBA) should be connected through redundant switch infrastructures to provide continued access to storage in the event of a failure in a storage fabric component. Note: Failover times can vary by storage vendor and

Goal To successfully install Microsoft Application Request Routing Version 2 for IIS 7 and its dependent modules.  The ARR Version 2 installer package contains the following components: Microsoft Application Request Routing Version 2 for IIS 7.  Microsoft URL Rewrite Module Version 2 for IIS 7 RC2. Microsoft Web Farm Management Version 1 for IIS 7. Microsoft External Cache Version 1 for IIS 7. The steps outlined in this document will install all four components. Prerequisites This walkthrough requires the following prerequisites: IIS 7.0 on Windows 2008 (any SKU) or newer where Application Request Routing will be installed. Important:  ARR Version 2 RTW supports upgrading from ARR Version 1 RTW and from ARR Version 2 RC. If any other version of ARR is already installed, uninstall both ARR and URL Rewrite before proceeding.   Note that the corresponding configurations will be lost. Step 1 - Download Microsoft Application Request Routing Version 2. Download the Microsoft Applicatio