Twitter
Home Blog Page 866

OpenSSL Update Fixes Drown Vulnerability

By
InfoWorld
-

The Drown attack decrypts TLS sessions on servers supporting SSL v2 and using RSA key exchange. Drown is different from other attacks against TLS in that it doesn’t need servers to be using the older version; the attack will succeed as long as the targeted system supports SSL v2. The cross-protocol attack (CVE-2016-0800) could lead to decryption of any encrypted session using SSL/TLS protocols as long as the server supports SSL v2 and uses RSA key exchange, the researchers said in their technical paper.

By making repeated SSL v2 connection requests, researchers uncovered bits of information about the server’s private RSA key. After enough requests, researchers were able to obtain the private key to decode the TLS sessions. The attack scope widens if the organization reuses that private RSA key across servers, even if different certificates are used.

The attack is made worse by two additional implementation vulnerabilities in OpenSSL, prompting the project team to release versions 1.0.2g and 1.0.1s to address the issues.

Read more at InfoWorld

RDO Kilo ML2&OVS&VLAN Mutti Node Deployment on Fedora 23

By
Boris Derzhavets
-

Current post follows up  Hackery to get going RDO Kilo on Fedora 23 . To complete packstack run for two nodes Controller/Network and Compute setup I had to apply as pre-installation following patches, otherwise neutron puppet crashed on Fedora 23 :-
1. Fix vs_port usage in Red Hat distros https://review.openstack.org/#/c/273174/   

2. Explicitly say that ovs_redhat parent is ovs https://review.openstack.org/#/c/189301/

************************************************************************
As post-installation patch for python-glanceclient  17.0-3 on F23
***********************************************************************
Convert headers to lower-case when parsing metadata

https://review.openstack.org/#/c/244899/

To be able to work with python-urllib3 1.13.1 installed on F23.  In other words,  to rebuild python-glanceclient-0.17.0-3.fc23.src.rpm and re-install rpms produced by the build , followed by `openstack-service restart`.  Would I have separated Storage Node glance client should be patched on both Storage node and Controller as well.

Complete text maybe seen here

 

 

 

 

 

How to install WordPress with Apache, MariaDB and PHP 7 on Arch Linux

By
Falko Timme
-

WordPress is a popular, dynamic, blog-focused content management system. The software is built upon a LAMP or LEMP stack and features an extensive plugin framework and theme system, which allows site owners and developers to deploy easy-to-use and powerful publishing tools. This tutorial will help you how to install and configure WordPress with Apache2, MariaDB and PHP 7 on Arch Linux.

Read more at HowtoForge

8 IoT Operating Systems Powering the Future

By
InformationWeek
-

Unlike PCs and mobile devices, there’s a wide variety of commercial and open source operating systems powering the IoT. Here are eight leading contenders and the best use-cases for them.

The tech industry is spending a great deal of time focusing its efforts on the Internet of Things (IoT) boom. Both for-profit technology companies and open source community members are promoting their operating system as the one to choose for a multitude of IoT purposes. But the fact is, not every OS is ideal for every IoT use. Because of this, there’s going to be some variety in the IoT OS space.

Read more at Information Week

 

Linux Mint Devs Explain Timeline of Website Hack

By
Softpedia
-

linux-mint-devs-explain copyThey received a lot of help from the community. The Linux Mint team is recovering from the website attack in February that seriously affected their credibility. The lead developer of the project, Clement Lefebvre explained in great detail everything that happened.

…The team is now working to fix the image of the project and the first step in this process is to inform the users about everything that happened. Nothing was held back, and we now know the entire timeline of the events.

IoT Can Be Hard, But Red Hat and Eurotech Are Teaming Up to Make It Easier

By
PCWorld
-

Through a new partnership, they’re building an end-to-end architecture to simplify integration. Italy-based Eurotech offers machine-to-machine platforms and other IoT products. Red Hat plans to combine its open-source Red Hat Enterprise Linux and Red Hat JBoss middleware with Eurotech’s Everyware Software Framework and Eurotech Everyware Cloud to create an end-to-end architecture for IoT. This will let enterprises integrate operational data from computing equipment at the edge of the network with cloud-based back-end services.

Enterprise IoT needs computing capability at the edges of networks so companies don’t have to ship masses of data to the cloud for real-time processing. Instead, data aggregation and transformation, plus data integration and routing, can take place close to the operational devices.

Read more at PCWorld

OPNFV Promises More Powerful Platform

By
The Linux Foundation
-

With its second software release, named for the Indian river Brahmaputra, the OPNFV is flexing its muscle as an organization, showing off not only more robust capability for testing NFV use cases and functionality but also key feature enhancements. The biggest takeaway, however, is a more robust platform that can take in the work of diverse upstream groups in the virtualization space and a much larger development community, moving forward more quickly.

Those key features include such things as the ability to spin up and configure Layer 3 virtual private networks, support for IPv6 and its testing, and initial service function chaining using OpenDaylight’s Beryllium SDN controller.

Read more at LightReading

Shippable 4.0 Sets Sail with Improved Docker Integration

By
The Linux Foundation
-

Developers are facing more work than ever as workflow pipelines shift them into creating new builds dozens or even hundreds of times a day. When server platform provider Packet.net set out to optimize their on-premise build system, it looked to Shippable to help them reach its goals. By onboarding Shippable, the company saw an increase of eight times over their original build times.

This week, Shippable has introduced a variety of new features including customizable Docker workflows, better pipeline visualization, and more in its version 4.0 release…. The first thing users will notice about Shippable v4.0 is its increased flexibility. Developers can use the tools and platforms they’re working with currently to automate their build and deployment pipelines.

Read more at The New Stack

Install and Configure Munin monitoring server in Linux

By
Surendra Anne
-

Munin is an excellent system monitoring tool similar to RRD tool which will give you ample information about system performance in multiple fronts like disk, network, process, system and users. These are some of the default properties Munin monitors. How Munin works?

How Munin works?

Munin works in a client-server model. Munin server process on main server try to collect data from client daemon which is running locally(Munin can monitor it’ss own resources) or from remote client(Munin can monitor hundreds of machines) and displays them in graphs on its web interface.

Configuring Munin in nutshell

This is of two steps as we have to configure both server and client.
1)Install Munin server package and configure it so that it get data from clients.
2)Configure Munin client so that server will connect to client daemon for data collocation.

Install munin server in Linux

Munin server installation on Ubuntu/Debian based machines

apt-get install munin apache2

Munin server installation on Redhat/Centos based machines. Make sure that you enable EPEL repo before installing Munin on Redhat based machines as by default Redhat based machines do not have Munin in their repos.

yum install munin httpd

Configuring Munin server in Linux

Below are the steps we have to do in order to bring server up.
1) Add host details which need monitoring in /etc/munin/munin.conf
2) Configure apache web server to include munin details.
3) Create User name and password for web interface
4) Restart apache server

Step 1: Add hosts entry in this file in /etc/munin/munin.conf. Go to end of the file and a client to monitor. Here in this example, I added my DB server and its IP address to monitor

Example:

[db.linuxnix.com] address 192.168.1.25 use_node_name yes

Save the file and exit.

Step 2: Edit/create munin.conf file in /etc/apache2/conf.d folder to include Munin Apache related configs. In another note, by default other Munin web related configs are kept in /var/www/munin folder.

vi /etc/apache2/conf.d/munin.conf

Content:

Alias /munin /var/www/munin<Directory /var/www/munin> Order allow,deny Allow from localhost 127.0.0.0/8 ::1 AllowOverride None Options ExecCGI FollowSymlinks AddHandler cgi-script .cgi DirectoryIndex index.cgi AuthUserFile /etc/munin/munin.passwd AuthType basic AuthName "Munin stats" require valid-user <IfModule mod_expires.c> ExpiresActive On ExpiresDefault M310 </IfModule></Directory>

Save the file and exit

Step 3: Now create a username and password for viewing muning graphs:

htpasswd -c /etc/munin/munin-htpasswd munin

Note: For Redhat/Centos machines replace “apache2” with “httpd” in each path to access your config files.
Step 3: Restart Apache server so that Munin configurations are picked-up by Apache.

Ubuntu/Debian based:

service apache2 restart

Centos/Redhat based:

service httpd restart

Install and configure Munin client in Linux

Read Full Post: http://www.linuxnix.com/install-and-configure-munin-monitoring-server-in-linux/

 

Solus 1.1 Operating System Officially Released

By
Softpedia
-

solus-1-1Solus has just received its first point release in the new “Shannon” series, and the new version is now available for download and your enjoyment.

Not a lot has changed in the past few days since the previous weekly update for Solus, but from the looks of it, developers have managed to close most of the bugs, making the operating system a much more stable and interesting release. … When the team promised some big changes for the 1.1 version, they weren’t kidding. This is a massive update, and it’s really difficult to list all of the modifications and improvements, but here is a rundown of the most important stuff.

1...865866867...10,743Page 866 of 10,743