UWOT.EU

CentOS 6.4, QEMU+KVM

It’s summer, it’s hot as hell, I am back home from mountains and I’ve plenty of free time.Between a barbecue and the next one I spend my time playing with and learning new stuff: this week new stuff is called QEMU-KVM.Yesterday I also tried XenServer but to be honest I wasn’t impressed, it just look like to be an old version of CentOS minimal install with some custom repos and a fancy GUI. …

Posted on

nginx and TLS v1.2

Given that SSL and TLS, especially v1.0, suffer from serious security issues (e.g. https://en.wikipedia.org/wiki/Transport_Layer_Security#TLS) I thought it would be a good idea to use the latest and more secure version of it: v1.2.On CentOS 6.4 the openssl version included is quite old and doesn’t support TLS v1.1 and 1.2.So, first of all we have to install the latest version 1.0.1e, it can be done compiling from sources or by adding a third party repository; I chose the latter. …

Posted on

WordPress admin, SSL, Apache + nginx

Let’s say we have a WordPress blog and we would like to encrypt our login pages and the whole back-end of the site.There are many ways to do it, but since I already have a nginx instance configured as reverse proxy running in front of Apache I’ll use it to “protect” my admin pages and logins.In this page I’ll not cover Apache’s configuration, which, by the way, is trivial to say the least, so please refer to this other post: Apache + nginx as reverse proxy. …

Posted on

Linux Kernel 3.10 and VMware Workstation 9

A new Linux kernel version is released and guess what: VMware Workstation fucked up once again.The fix posted on the Arch Linux wiki is applicable also to Fedora 19, I’ll post it here for future reference.For more information: https://wiki. …

Posted on

DeaDBeeF compiled from source

Yesterday was the big day, Fedora “Schrödinger’s Cat” 19 stable release was released.Since I had a free afternoon I decided to install it on my Thinkpad, and luckily everything was fine, even Anaconada installer issues with UMTS modules are gone, VMware Workstation 9.0.2 was working fine and so on.The only issue I had was with DeaDBeeF audio player, I am using it from quite a long time and I like it a lot; too bad it’s not included in the default Fedora’s repos nor in the epel ones so every time I have to install it manually. …

Posted on

Apache + nginx as reverse proxy

One of the things I was planning to do but never did is installing nginx as reverse proxyin front of Apache.nginx is present in the epel repos for CentOS, so the installation process is just a matter of:

Posted on

Wireshark as unprivileged user

Documentation on the Wireshark wiki seems to not be really up to date, or at least it’s not completely applicable to Fedora 18, so here is what I did to make it work.After installing Wireshark (and its GUI) with the usual:It should automatically create a group called “wireshark” and we are supposed to add our user (mafio in my case) to this group:Then issue this last command:This is it, now Wireshark should be able to sniff network packets without needing to be executed as root.

Posted on

OpenVPN server and CentOS

OpenVPN is the de facto standard VPN free open source software; it is widely used, tested, well documented and also included in the CentOS repos (EPEL). .:. Server side configuration yum install openvpn easy-rsa dnsmasq When yum is done installing the required packages, copy the sample config file. cp /usr/share/doc/openvpn-*/sample-config-files/server.conf /etc/openvpn Uncomment/edit the following lines in /etc/openvpn/server.conf: port 1194 proto udp dev tun ca ca.crt cert server.crt key server.key dh dh4096. …

Posted on