http://www.randombugs.com Just another Bastard Operator From Hell. Everything from *nix to programming Thu, 05 Jan 2012 11:44:55 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html#comments Mon, 06 Jun 2011 10:35:21 +0000 admin http://www.randombugs.com/?p=739
It’s been a while since I configured the latest Dynamic Mass Virtual Hosting Server. Last time I used mod_vhost_alias to create a dynamic virtual hosting and it worked without any problem for what we need in that time. Then we didn’t care about the ftp and virtual users, the sites was updated from web pages and security was pretty much handled by upload application who managed the virtual hosting. Now, the problem is a little bit changed: We need a secure sever which should support ftp virtual users with quota ...]]> http://www.randombugs.com/php/apache-dynamic-virtual-hosting-php-security.html/feed 1 http://www.randombugs.com/java/glassfish/snmp-support-glassfish-211-cluster-support.html http://www.randombugs.com/java/glassfish/snmp-support-glassfish-211-cluster-support.html#comments Mon, 14 Mar 2011 11:57:21 +0000 admin http://www.randombugs.com/?p=701
Why you choose SNMP when Glassfish have strong JMX support? I presume, the answer for all who use SNMP is (almost) the same: Because the architecture of current monitoring solution is not scalable enough, and I cannot load my monitoring servers with supplementary JAVA processes. Before starting using SNMP I tried to see what solutions I have: 1. Re-design entire monitoring solution 2. Use SNMP I’m a lazy person, so I choose to add SNMP support for all our clusters . To do that you should do 3 easy steps: 1. Upload the ...]]> http://www.randombugs.com/java/glassfish/snmp-support-glassfish-211-cluster-support.html/feed 0 http://www.randombugs.com/java/sunjvmhotspotdebuggernosuchsymbolexception-find-symbol-ghotspotvmtypeentrytypenameoffset.html http://www.randombugs.com/java/sunjvmhotspotdebuggernosuchsymbolexception-find-symbol-ghotspotvmtypeentrytypenameoffset.html#comments Tue, 08 Feb 2011 14:33:58 +0000 admin http://www.randombugs.com/?p=676
This, probably, is a bug which was not spotted very often because is very obscure and the Debian guys moved very quick and fixed the problem. I know, I found a lot of bugs related to sun.jvm.hotspot.debugger.NoSuchSymbolException: Could not find symbol “gHotSpotVMTypeEntryTypeNameOffset”, but this is different. Usually was a problem of “striping symbols from libjvm.so”, but in my case wasn’t that. Also I found this error related to OpenJDK (I use Sun JDK) and the solution was to use -server flag to get the correct libjvm.so. Anyway it took me ...]]> http://www.randombugs.com/java/sunjvmhotspotdebuggernosuchsymbolexception-find-symbol-ghotspotvmtypeentrytypenameoffset.html/feed 1 http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html#comments Thu, 30 Dec 2010 11:26:26 +0000 admin http://www.randombugs.com/?p=666
Everyone, with a decent Linux security knowledge, should know about ModSecurity – Open Source Web Application Firewall. Personally, I know this mod from 2004 and it help me a lot in detecting and/or preventing malicious attacks before reaching my customers applications.]]> http://www.randombugs.com/linux/atomic-modsecurity-rules-debian-lenny-50.html/feed 0 http://www.randombugs.com/linux/crash-innodb-table.html http://www.randombugs.com/linux/crash-innodb-table.html#comments Thu, 06 May 2010 14:16:10 +0000 admin http://www.randombugs.com/?p=658
I searched over internet, on several tens of posts, to find how to delete a crashed Innodb table. Short story: I tried to import a big table but it crashed in the middle of the process (power failure). The table was not very important so I didn’t care about the table, I just want to delete it and start from the scratch, but surprise! The table cannot be deleted! I use the latest MySQL Innodb plugin from Debian backports repository (is coming with Debian 5.1.xx) with file per table ...]]> http://www.randombugs.com/linux/crash-innodb-table.html/feed 1 http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html#comments Tue, 04 May 2010 20:00:13 +0000 admin http://www.randombugs.com/?p=650
mod_qos is becoming a very popular module for Apache, from the discover of Slowloris DDoS Attack. It seems, mod_qos is the best solution for Slowloris attack on Apache 2, but you can also check mod_evasive, mod_security or http accelerator “Varnish”. In this post I will try to present a step by step tutorial how to install mod_qos and configure to prevent Slowloris DDoS attack. This post is just a compendium of other good posts: How To Defend slowloris DDoS With mod_qos (Apache2 On Debian [Lenny]) DDoS, Apache2 and mod_qos How to best defend ...]]> http://www.randombugs.com/linux/compile-configure-modqos-prevent-slowloris-ddos-apache-2-debian-lenny-distribution.html/feed 4 http://www.randombugs.com/linux/contentfilter-unsolicited-bulk-email.html http://www.randombugs.com/linux/contentfilter-unsolicited-bulk-email.html#comments Tue, 16 Mar 2010 14:07:18 +0000 admin http://www.randombugs.com/?p=643
After an Amavis upgraded my e-mail system started to have a strange behavior. A lot of emails sent internally from one user to another stopped with the following message: ——– Original Message ——– Subject: Considered UNSOLICITED BULK EMAIL, apparently from youis considered local. Date: Tue, 13 Mar 2010 00:13:39 +0200 (EET) From: Content-filter at xxx13.randombugs.com To: A message from to: -> yyy@randombugs.com was considered unsolicited bulk e-mail (UBE). Our internal reference code for your message is 00311-13/npX-RCahiLdc The message carried your return address, so it was either a genuine mail from you, or a sender address was faked and ...]]> http://www.randombugs.com/linux/contentfilter-unsolicited-bulk-email.html/feed 1 http://www.randombugs.com/java/java-networking-problems-debian-squeezesid.html http://www.randombugs.com/java/java-networking-problems-debian-squeezesid.html#comments Tue, 16 Feb 2010 08:46:07 +0000 admin http://www.randombugs.com/?p=630
After upgrading to the latest version of Debian squeeze/sid, I was not able to use the networking in java. If you get: [2/16/10 10:39 AM] Exception occurred: java.net.SocketException: Network is unreachable at java.net.PlainSocketImpl.socketConnect(Native Method) at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:333) at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:195) at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:182) at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:366) at java.net.Socket.connect(Socket.java:525) then you should disable ipv6. To do that ...]]> http://www.randombugs.com/java/java-networking-problems-debian-squeezesid.html/feed 1 http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html#comments Mon, 28 Sep 2009 18:04:20 +0000 admin http://www.randombugs.com/?p=606
A lot of people are not satisfied by the default Java Logging (JUL) in Glassfish. Also, myself I encountered some problems on clustered environments where we should have one single log and not one log for each instance. Trying to change the logging system in Glassfish it looks to be almost impossible , but I found a very interesting project java.util.logging to log4j Bridge and the sky become more clear for Glassfish logging. Jul to Log4J Bridge are part of log4J project and is very useful when you ...]]> http://www.randombugs.com/java/glassfish/changing-logging-system-glassfish-21.html/feed 0 http://www.randombugs.com/java/dbappender-log4j-12.html http://www.randombugs.com/java/dbappender-log4j-12.html#comments Thu, 24 Sep 2009 20:19:46 +0000 admin http://www.randombugs.com/?p=595
Initially, DBAppender for Log4j was introduced in version 1.3 of Log4j, but this version was ABANDONED by Apache team. DBAppender is very useful when we want to send our log on a JNDI resource and not on standard JDBC or file. If you need just logging in a database for your application, then you should use JDBCAppender. If you want to log on a JNDI or Database Connection Pool the DBAppender is for you. In this post I will show you how to get, compile and quick test the DBAppender. 1. ...]]> http://www.randombugs.com/java/dbappender-log4j-12.html/feed 6