sandip's blog

lftp ftp client support tls/ssl so why not use a secure connection for ftp.

Insist on your host to serve up ftp with tls/ssl support so all data is secured.

If using proftpd server, tls/ssl can be configured via "/etc/proftpd.conf":

The certificate can be generated to be used on the ftp server via:

Reference:

• ProFTPD mini HOWTO TLS

Godaddys' linux hosting allows for editing your own "php.ini" file and enables support for logging errors, good for debugging purposes when developing with php.

Add the below lines to php.ini in the document root, to log all errors:

You should also protect the php.ini and error_log file via .htaccess:

If you need to flush your firewall iptables rules, do not do a direct `iptables --flush` from a remote machine if the default policy is set to DROP packets, you will lock yourself out.

Run the below script instead:

or set the default policy to ACCEPT before flushing.

To find the default policy:

If using earlier versions, use "star" to backup and restore files with extended attributes. SELinux and ACLs use these Extended Attributes to store the security contexts and access control lists respectively.

Tar has now been rebuilt in RedHat 5 and added support for Extended Attributes.

--selinux Archive the SELinux attributes of the files and directories
--acls Archive the ACL attributes of files and directories
--xattrs Archive all Extended Attributes of files and directories.
This includes both SELinux and ACL attributes, as well as any other xattr.

setuid files when executed inherit the permissions of the owner of the file. So having files with setuid of root is a bad idea.

Here's how to find it and unset it.

Note:
There are some system files like at and crontab that have these bits set and is required for it to run.

To unset it:

Easy way to add freetype support on PHP, on a DirectAdmin hosting environment with Fedora as the OS, is to use the rpm versions of freetype and freetype-devel.

1. If not installed already:
   
   # yum install freetype freetype-devel
   
   
2. Edit "/usr/local/directadmin/customapache/configure.php" to include the below lines.
   
           --with-freetype \
        --with-freetype-dir=/usr/lib \
        --enable-gd-native-ttf \
   
   Note: /usr/lib is the path to the libttf.so .
   
   # rpm -ql freetype-devel | grep libttf.so
   
   
3. Then run the build:
   
   # ./build clean
# ./build php n
   
   
4. If you need to build and update existing packages:
   
   # ./build clean
# ./build update
# ./build all
   
   
5. Check with phpinfo to confirm.

This is going to be a collection of bash code snippets:

1. Check if the user running the script is root:
   
   # make sure we're running as root
if [ `id -u` != 0 ]; then { echo "Sorry, must be root.  Exiting..."; exit; } fi
2. Check the successful execution of previous command:
   
   if (( $? )); then
        {
                echo "could not executed successfully";
                exit;
        }
fi;
3. Check number of arguments:
   
   # Check for proper number of command line args.

EXPECTED_ARGS=1
E_BADARGS=65

if [ $# -ne $EXPECTED_ARGS ]
then
  echo "Usage: `basename $0` {arg}"
  exit $E_BADARGS
fi
4. Array loops:
   
   VALUES=("value1" "value2" "value3" "..." "valueN")

for ((i=0; i<${#VALUES[@]}; i++))
do
  echo ${VALUES[$i]}
done

Edit "/etc/yum/pluginconf.d/installonlyn.conf" and change the enabled to "0" or increase the "tokeep" value to the number of versions you want to keep.

Scenario:

Example:
http://somesite.com/mydir/a
http://somesite.com/mydir/b
http://somesite.com/mydir/c
etc...

To be rewritten as:
http://somesite.com/mydir/view.php?p=a
http://somesite.com/mydir/view.php?p=b
http://somesite.com/mydir/view.php?p=c
etc...

Except:
http://somesite.com/mydir rewrite--> /mydir/home.html
http://somesite.com/mydir/home rewrite-> /mydir/home.html
http://somesite.com/mydir/about rewrite-> /mydir/about.html

Solution:

These rules should go in an .htaccess file in the "mydir" directory: