全文検索:
- 71 vsftpd @en:01_linux:01_net
- he Configuration File ===== <code console> # vi /etc/vsftpd/vsftpd.conf anonymous_enable=YES ↓ Disable... ser=YES chroot_list_enable=YES chroot_list_file=/etc/vsftpd/chroot_list ↓ List of users allowed to access beyond the home directory #chroot_list_file=/etc/vsftpd/chroot_list #ls_recurse_enable=YES ↓ Enab... ection ssl_enable=YES ← Enable SSL rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem ← Specify the server cer
- 71 vsftpd @01_linux:01_net
- code> ===== 設定ファイル修正 ===== <code console> # vi /etc/vsftpd/vsftpd.conf anonymous_enable=YES ↓ ... =YES chroot_list_enable=YES chroot_list_file=/etc/vsftpd/chroot_list ↓ ホームディレクトリより上層へのアクセスを許可するユーザのリスト #chroot_list_file=/etc/vsftpd/chroot_list #ls_recurse_enable=YES ... 最大ポート番号 ssl_enable=YES ← SSLの有効化 rsa_cert_file=/etc/pki/tls/certs/vsftpd.pem ← サーバー証明書を指定 force_loca
- 07 Python Selenium @15_python
- インストール ==== === Centos === <code> cat << EOM > /etc/yum.repos.d/google.chrome.repo [google-chrome] na... le.com/linux/chrome/deb/ stable main" | sudo tee /etc/apt/sources.list.d/google-chrome.list curl -fsSL
- 33 Let's Encrypt リバースプロキシ(手動板)+ GitLab @06_virtualization:05_container
- ssl_session_tickets off; ssl_certificate /etc/letsencrypt/live/gitlab.fl8.jp/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/gitlab.fl8.jp/privkey.pem; #ssl_dhparam /etc/nginx/certs/gitlab.fl8.jp.dhparam.pem; ssl_st... _stapling_verify on; ssl_trusted_certificate /etc/letsencrypt/live/gitlab.fl8.jp/cert.pem; set
- 10 Docker Let's Encrypt @06_virtualization:05_container
- : nginx restart: always volumes: - /etc/nginx/conf.d:/etc/nginx/conf.d - /etc/letsencrypt:/etc/letsencrypt - /var/www/html:/var/www/html ports: - 80:80 #network
- 2024.08.22 426 Failure reading network stream. @50_dialy:2024:08
- ork stream. </code> ===== 対応 ===== 以下を追加 <code|/etc//etc/vsftpd/vsftpd.conf> strict_ssl_read_eof=NO </code> ===== 参考 ===== [[https://qiita.com/subbbbbb/
- 30 NFSサーバ @01_linux:01_net
- 192.168.30.0/24からのみマウントさせる。 <code console> # vi /etc/exports /export/common 192.168.30.0/24(rw,async,n... ない。 ===== ③portmapを起動する ===== <code console> # /etc/rc.d/init.d/portmap start </code> ===== ④nfsを起動する ===== <code console> # /etc/rc.d/init.d/nfs start </code> ===== ⑤iptableを利用している場合 ===== /etc/sysconfig/nfsへ下記を追加 <code> STATD_PORT=32765 STATD
- 2024.05.02 Amazon Linux 2023 Zabbix @50_dialy:2024:05
- tall cp misc/init.d/fedora/core5/zabbix_agentd /etc/init.d/ chkconfig --add zabbix_agentd chkconfig z... </code> ==== conf修正 ==== <code> # cat /usr/local/etc/zabbix_agentd.conf | grep -v -e ^# -e ^$ LogFile=... code> cp misc/init.d/fedora/core5/zabbix_agentd /etc/init.d/ chkconfig --add zabbix_agentd chkconfig z... on 4:on 5:on 6:off </code> ==== 起動 ==== <code> /etc/init.d/zabbix_agentd start /etc/init.d/zabbix_age
- 34 UnboundでHA構成 @06_virtualization:05_container
- sudo localectl set-locale LANG=ja_JP.UTF-8 cat /etc/systemd/timesyncd.conf systemctl status systemd-t... m profile latency-performance cat << __EOM__ >> /etc/hosts.allow sshd: 192.168.0. :allow sshd: all :de... _ sudo apt install resolvconf cat << __EOM__ >> /etc/resolvconf/resolv.conf.d/head nameserver 1.1.1.1 ... #volumes: # - './unbound:/opt/unbound/etc/unbound/' network_mode: "host" __EOM__ </co
- 06 WireGuard @01_linux:10_network
- WireGuard/client01/preshared` cat << __EOM__ > /etc/wireguard/wg0.conf [Interface] Address = 10.0.1.1... 4.起動 ===== これでwg0が作成されます。 <code> # wg-quick up /etc/wireguard/wg0.conf # ip -4 a 3: wg0: <POINTOPOIN... </code> ==== 停止の場合 ==== <code> # wg-quick down /etc/wireguard/wg0.conf </code> ===== 5.自動起動の設定 =====... }} ===== 8.Linuxクライアントからの接続 ===== クライアント設定ファイルを/etc/wireguard/wg0.confに記述して、起動でOK <code> atp install
- 2024.07.27 dovecot Out of Memory @50_dialy:2024:07
- 確認 ==== <code> # docker exec -it mailserver cat /etc/dovecot/local.conf service lmtp { vsz_limit =
- 2024.07.10 PHP-FPMのumask変更 @50_dialy:2024:07
- く反映されなかった。 ===== Apache ===== <code> mkdir -p /etc/systemd/system/httpd.service.d cat >> /etc/systemd/system/httpd.service.d/umask.conf << 'EOL' [Service... d </code> ===== PHP-FPM ===== <code> mkdir -p /etc/systemd/system/php-fpm.service.d cat >> /etc/systemd/system/php-fpm.service.d/umask.conf << 'EOL' [Ser
- 25 Let's Encrypt リバースプロキシ @06_virtualization:05_container
- n.nginx_proxy: "true" volumes: - certs:/etc/nginx/certs:ro - vhost.d:/etc/nginx/vhost.d - html:/usr/share/nginx/html - /var/run/... r.sock:/tmp/docker.sock:ro - ./server.conf:/etc/nginx/conf.d/server.conf networks: - pr... t restart: always volumes: - certs:/etc/nginx/certs - acme:/etc/acme.sh - vho
- 2024.01.18 SSL Error in Rails @en:50_dialy:2024:01
- So, we need to create a symlink: <code> # ln -s /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem /usr... root 49 Jan 18 15:13 /usr/local/ssl/cert.pem -> /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem </co... orlist/9/baseos [error setting certificate file: /etc/pki/tls/certs/ca-bundle.crt] </code> This can be
- 08 Ubuntu Nat iptables直 @01_linux:30_ubuntu
- ==== 再起動しても反映 ==== # grep net.ipv4.ip_forward /etc/sysctl.conf net.ipv4.ip_forward=1 ===== SNAT =... ded (v6) </code> ===== Nat設定 ===== <code> # vi /etc/ufw/before.rules # FORWARD *filter -A FORWARD -m