tag:blogger.com,1999:blog-7641994481188130072024-03-18T04:16:33.492-04:00A Sysadmin's Notestonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.comBlogger95125tag:blogger.com,1999:blog-764199448118813007.post-66886989076757564642023-10-19T06:54:00.005-04:002023-10-19T06:54:53.987-04:00Login hangs for scanning account
<h3>The Proplem</h3>
<p>I ran into this issue the other day. Tenable.sc (formerly Security Center) was reporting a hit on plugin 21745 for a Red Hat Enterprise Linux 8 (RHEL 8) system. I checked on the account used on the systems for scanning and it wasn't locked out or anything. When I tryied to SSH into the system with the credentals, it would just hang. The system logs showed "login successful". When I rebooted the system was able to login normally again, but the problem would come back eventually. </p>
<h3>The Cause</h3>
<p>When the Nessus scanner scanner connects to a system, it's scanning, it makes several connections to the host. Each connection starts a tmux session. The proplem is the TMUX sessions where not being closed after the Nessus scanner disconnected from the system. It turned out that the account used for security scanning had around 2,000 TMUX sessions running.
</p>
<h4>The Fix</h4>
<p>Add "set -g destroy-unattached on" to the /etc/tmux.conf file. </p>
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">scanuser</span>@<span class="Apple-style-span" style="color: blue;">remotesystem></span>
sudo echo "set -g destroy-unattached on" >> <b>/etc/tmux.conf</b>
</div><p>This will apend this line "set -g destroy-unattached on" into the /etc/tmux.conf configuration file. This will auto close sessions not being actively used. </p>
<br />
<h4>Anther Fix</h4><br />
Set system wide rules for TMUX on the effected systems so only the account used by the Nessus scanner will have use of the TMUX terminal multiplexer.
<b>/etc/profile.d/custom.sh</b>
<pre>
<div style="background-color: white; border-color: rgb(221, 221, 221); border-style: solid; border-width: 1px; display: block; padding: 0.667em 0.917em 0.917em 0.667em;">
[ "$USER" != "scanuser" ]
then if [ "$PS1" ]
then parent=$(ps -o ppid= -p $$)
name=$(ps -o comm= -p $parent)
case "$name" in (sshd|login) exec tmux
esac
fi
fi
</div>
</pre>
<p><h4>Defs</h4>
<b>TMUX</b> is an open-source terminal multiplexer for Unix type systems. Mulitple terminal sessions can accessed simultaneously by spliting the terminal into different screens. Can also detach remote sessions and reattach later, simular to what the screen application can do. <br />
<b>Tenable Plugin</b> a plugin is a script deployed by the Nessus scanner to check for security vulnerabilities. In this case plugin 21745 is an info plugin, it displays info from other plugins. This plugin is triggered (displayed) whenever a login failure occurs.
</p>
<h4>Other useful links</h4>
<b>Tmux Cheat Sheet & Quick Reference</b><br />
<a href="https://www.redhat.com/sysadmin/introduction-tmux-linux" target="_blank">https://tmuxcheatsheet.com</a>/<br />
<b>A beginner's guide to tmux</b><br />
<a href="https://www.redhat.com/sysadmin/introduction-tmux-linux" target="_blank">https://www.redhat.com/sysadmin/introduction-tmux-linux</a><br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-33034101022164973042023-03-07T20:46:00.003-05:002023-03-07T23:09:27.488-05:00Setup SSH Keys with Agent<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgsvZrZLsTUuzwSbdmcAtHz0jTS1zmb8k6fn93RXuURbDkCJoMhruhfWdezEPh7Klwywq-vZUYYztr00ZHjtt4dB-psscgNmMMOHJiS13fzc086Sh_GhniYYZWDzi_Dv7jh-nFptzgYHg/s1600/ssh-logo.png" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgsvZrZLsTUuzwSbdmcAtHz0jTS1zmb8k6fn93RXuURbDkCJoMhruhfWdezEPh7Klwywq-vZUYYztr00ZHjtt4dB-psscgNmMMOHJiS13fzc086Sh_GhniYYZWDzi_Dv7jh-nFptzgYHg/s1600/ssh-logo.png" /></a></div>This guide for setting up SSH Keys with an SSH Agent for auto-logging into Linux based systems. Why set up SSH keys, why not just use your password? SSH Keys are considered more secure than using passwords to access systems, because user accounts are authenticated by the server without ever having to send your password over the network. If the passwords are not transmitted then they can't be intercepted. This works by identifying yourself to an SSH server using public-key cryptography and challenge-response authentication. When you set up an SSH agent then the agent will handle the challenge-response authentication for you.<br />
<br />
This guide is not for installing or setting up a SSH server. You must have the sshd service running on your system in order to follow along with this guide. All the examples are take from a Red Hat system. In the following examples, <b>earth</b> is the name on the local system and <b>moon</b> is the remote system. <div>
<h1 style="text-align: left;"><b>Create you key pair</b></h1>
The <b>ssh-keygen</b> command will generate a public and private keypair. The keys will be stored in the users home directory<!--EndFragment--> by default, this is the path ~/.ssh/. The basic command looks like this: <b>ssh-keygen -t [dsa|rsa] </b> The -t sets the type of keys used. In the example below I create a rsa key pair. This command also sets the passphrase, think of this like setting a password. Make sure you remember the
<!--StartFragment-->passphrase because you will use this instead of the password for logging into the remote system (moon).<br />
<div style="background-color: #dddddd; border-color: rgb(221, 221, 221); border-style: solid; border-width: 1px; display: block; padding: 0.667em 0.917em 0.917em 0.667em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>ssh-keygen -t rsa</b><br />
Enter file in which to save the key (/home/man/.ssh/id_rsa): <b> Press [Enter] key</b><br />
Enter passphrase (empty for no passphrase): <br />
Enter same passphrase again: <br />
Your identification has been saved in /home/man/.ssh/id_rsa.<br />
Your public key has been saved in /home/man/.ssh/id_rsa.pub.<br />
The key fingerprint is:dfhjodfnk<br />
04:be:15:ca:1d:0a:1e:e2:a7:e5:de:98:4f:b1:a6:01 </div>
<br />It is import to protect your private key, so don't share it. <br />
<br /><div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- Do not leave the passphrase blank. Doing this is a bad security practice, because this defeats the purpose of having the extra security of SSH keys. This will make the system less secure. If you have done this just rerun the command and add a passphrase. </div>
<div><br /></div><h1 style="text-align: left;"><b>Install Public Key on Remote Host</b></h1>
You install the public SSH key by copying or appending it to the authorized_keys file on a remote host. This file is also located in the users home directory, ~/.ssh/. For most systems you can use the <b>ssh-copy-id</b> command, which I cover in Method 1. I will show a work around if the <b>ssh-copy-id</b> command is not available, in Method 2 & 3.</div><div><h3 style="text-align: left;">Method 1 - Use The ssh-copy-id Command</h3>
The easiest way to install the public key to a remote SSH server is use the <b>ssh-copy-id</b> command. To use the command type "<b>ssh-copy-id <remote host></b>". This command appends the public key to the authorized_keys file on the the remote host. If the file doesn't exist it will be created. <div>In the example below "moon" is the name of the remote host.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b> ssh-copy-id moon</b><br />
Now try logging into the machine, with "ssh 'remote-host'", and check in:<br />
<br />
.ssh/authorized_keys<br />
<br />
to make sure we haven't added extra keys that you weren't expecting.</div><div><br /></div>
This the best way is to copy over the public key because <b>ssh-copy-id</b> will create .ssh/authorized_keys file if it doesn't exist. The command also appends the public key to the authorized_keys file, whereas other methods may overwrites the file. This allows the account to use keys from more than one system.</div><div>
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- This method will not work on some systems, such as Solaris 10.</div>
<div><br /></div><h3 style="text-align: left;">Method 2 - Manually Copy the Key File</h3></div><div>This method uses the <b>scp </b>command to copy the public key to the remote server. Before the <b>ssh-copy-id</b> command came about, this was way it was done. The key file will fail to copy to the system if .ssh/authorized_keys doesn't exist. If this happens just login with your password and create the file and try again. The main downside to this method is that it overwrites the authorized_keys file.<!--EndFragment--><br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b> scp ~/.ssh/id_rsa.pub moon:~/.ssh/authorized_keys</b></div><div><br /></div>Alternately you can get around this by doing this instead. The command below mimics what the <b>ssh-copy-id</b> command does. It creates the .ssh directory if it doesn't exist and appends the contents of the key to the authorized_keys file.</div><!--StartFragment--><!--EndFragment--><div><div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;"><span class="Apple-style-span" style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>cat ~/.ssh/id_rsa.pub | ssh man@moon "mkdir -p ~/.ssh && cat >> ~/.ssh/authorized_keys</b></div></div><div><br /></div><div>
<h3 style="text-align: left;">Method 3 - If You Automount Your Home Directory</h3>
If your home directory automounts across a lot of servers then you can just append the contents of the public key to the authorized_keys file. This method can be a lot faster then other methods. For example if you have 100 hosts you need to connect to, you just need to run the command once to connect to all of them. Instead of running 100 copy commands you just run one. Again this will only work if the hosts your connecting to automount the same home directory that the SSH kays are on.</div><div><br /></div><div>You can copy it over with the cat command.<br />
<div style="background-color: #dddddd; border-color: rgb(221, 221, 221); border-style: solid; border-width: 1px; display: block; padding: 0.667em 0.917em 0.917em 0.667em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys</b></div>
<!--StartFragment-->The other methods will still work if you prefer them to this one. <!--EndFragment--><br />
<h1 style="text-align: left;"><b>Setting up the SSH Agent</b></h1><div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLHurzdyAnAHzDvPpIx65jSwrs7RZnZnOiaPEaEizt_D0Oyl4et0O08GXP8UUd8FWjs9_D7OgkeP4tS7j9mWYIwBhhimtG1P8dhASvQmy8VqOqqBB-pXccDmEXzF_gMakXON1XLIv1qZVRXZrS0GfwF2kGWOyEIVGanVK9sAZoq8V7rKW800IEaQ/s425/ssh_0203.gif" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" data-original-height="198" data-original-width="425" height="149" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgLHurzdyAnAHzDvPpIx65jSwrs7RZnZnOiaPEaEizt_D0Oyl4et0O08GXP8UUd8FWjs9_D7OgkeP4tS7j9mWYIwBhhimtG1P8dhASvQmy8VqOqqBB-pXccDmEXzF_gMakXON1XLIv1qZVRXZrS0GfwF2kGWOyEIVGanVK9sAZoq8V7rKW800IEaQ/s320/ssh_0203.gif" width="320" /></a></div><br /><div><br /></div><div>At this point when you login to a remote host you now get prompted for the SSH passphrase instead of the password. To automate the login process it is recommended to setup an SSH Agent. Luckily setting up an SSH Agent is easy. The agent holds the passphrase for the user and then presets the passphrase when prompted. </div><div><br /></div><div>There are some considerations you need to consider when running an SSH Agent. If a GUI is installed on the system, such as gnome, then the window manager may run the agent for you. This is by far the easiest way to setup an agent. If the system window manager handles SSH keys then you get prompted with a GUI text box for a passphrase the 1st time you try to SSH to a remote host. If you enter the passphrase the GUI will run the SSH Agent for you system wide for the user currently logged into that account. This lasts until the system is rebooted or the user logs out.</div><!--StartFragment--><!--EndFragment--><!--StartFragment--><!--EndFragment--><!--StartFragment--><!--EndFragment--><div><br /></div><div>You can also run the agent from within a terminal or shell. When you run an agent from the terminal it will only work from that terminal and not system wide like does if the GUI manages the agent. </div><div><br /></div><div>To start an SSH Agent in a terminal run the commands show below. </div>
<div style="background-color: #dddddd; border-color: rgb(221, 221, 221); border-style: solid; border-width: 1px; display: block; padding: 0.667em 0.917em 0.917em 0.667em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>eval `ssh-agent`</b><br />
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span><b> ssh-add</b><br />
Enter passphrase for /home/man/.ssh/id_rsa: <br />
Identity added: /home/man/.ssh/id_dsa (/home/man/.ssh/id_rsa)</div>
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- Add these commands to the .bashrc file to start an agent automatically when you open a terminal emulator. </div>
</div><div><br /></div><div>If you use VNC, just start your VNC server session in the same terminal you used to starting your agent. This way all your terminal emulators launched in your VNC session, will use the same agent. </div><div><br /></div><div>
<div class="separator" style="clear: both; text-align: center;"><div class="separator" style="margin-left: 1em; margin-right: 1em; text-align: center;"><br /></div></div><h1 style="text-align: left;"><b>SSH Agent Management</b></h1>
One issue with agents is that sometimes you end up running a lot of agents. This is because the agent doesn't stop running when the terminal closes. You need to run the command below and kill any agents that you are not using.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>ps aux | grep agent</b></div>
If there is more than one agent running then you should kill the additional ssh-agent.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>pkill ssh-agent</b></div>
This will only kill agents owned by the user running the command in.<br />
<br />
One way to kill your ssh-agents is to add a kill statement to the .bash_logout file.<br />
<b><br /></b>
<b>Reference Section</b><br />
<a href="http://linux.die.net/man/1/ssh-copy-id"> Manpage ssh-copy-id</a><br /><br /><div class="separator" style="clear: both; text-align: center;"><br /></div></div><br /><br /><br /></div>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-1637224391961436922018-12-14T15:09:00.002-05:002018-12-14T15:09:38.021-05:00Free Blockchain training<div class="separator" style="clear: both; text-align: center;">
<a href="https://www.ethos.io/blockchain-education/" target="_blank"><img alt="https://www.ethos.io/blockchain-education/" border="0" data-original-height="480" data-original-width="1091" height="140" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjtq_MKMozuaOh7LRojj1q00j3M1J6go8U5rYA3iDYLhHOnXkD4wJOqvqsDpCLQD1suOfwwUkxdkgYFZr8iieO1v65noSRzytaQbVAgelAmHSY0AcA71so84oHgdXaKgr4MUsENk86IxibH/s320/ethos-training.GIF" width="320" /></a></div>
I found some free training on Cryptocurrency or Blockchain technology. This training is from the people who bought us the <a href="https://www.ethos.io/" target="_blank">Ethos wallet</a>. Go to there site and checkout there free wallet and training.<br />
<br />2bitminerhttp://www.blogger.com/profile/09426849282909691114noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-45053501342175691662018-12-13T09:57:00.000-05:002018-12-13T09:58:58.695-05:00Tape Format Script for Tape Pickup<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3ON15keqyNe_WShW3pY6ASO66O-9i40Qp3Yqv8LtP3xHg8mKPx2dwwBtmbaEX2Q_M5QAyVRSxXQYK1uR7LvKj4ydiwDBJqJXloSjR7O4PoEpKuMc9TbaYOULEIxvXHX6Ia4nUD5uqWg/s1600/Gnu-bash-logo_svg.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="64" data-original-width="152" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3ON15keqyNe_WShW3pY6ASO66O-9i40Qp3Yqv8LtP3xHg8mKPx2dwwBtmbaEX2Q_M5QAyVRSxXQYK1uR7LvKj4ydiwDBJqJXloSjR7O4PoEpKuMc9TbaYOULEIxvXHX6Ia4nUD5uqWg/s1600/Gnu-bash-logo_svg.png" /></a></div>
<br />
The other day my co-worker showed me how to send our tapes offsite. Apparently you need to format the list of tapes in a certain way. So you can input the info to the <a href="https://www.ironmountain.com/" target="_blank">Iron Mountain</a> site for pickup. He was going though several steps to change the format in Excel. I told myself there has to be a better way, so wrote a script shown below.<br />
<br />
First you need to put all the tapes in a list. I put the tape list in the file called list shown in the example below. Then I run the script, I created (tape-input.sh). I take the output and paste it into the web portal.<br />
<br />
<br />
list<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="font-family: "courier new" , "courier" , monospace;"><span style="font-family: "courier new" , "courier" , monospace;">U00010L5 <br />U00011L5 <br />U00012L5 <br />U00013L5 <br />U00014L5 <br />U00015L5 <br />U00016L5 <br />U00017L5 <br />U00018L5 <br />U00019L5 <br />U00020L5 <br />U00021L5 <br />U00022L5 <br />U00023L5 <br />U00024L5 <br />U00025L5 <br />U00026L5 <br />U00027L5 <br />U00028L5 <br />U00029L5 <br />U00030L5 <span style="font-family: "courier new" , "courier" , monospace;">CA<span style="font-family: "courier new" , "courier" , monospace;">T</span></span></span></span></div>
<br />
tape-input.sh<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="font-family: "courier new" , "courier" , monospace;">#!/bin/bash</span><br />
<span style="font-family: "courier new" , "courier" , monospace;"># Created to format the tapes numbers to add to the web portal</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">echo -e "Packaged by <span style="font-family: "courier new" , "courier" , monospace;">man</span>, $(date|awk '{print $2" "$3" "$6}')"</span><br />
<br />
<span style="font-family: "courier new" , "courier" , monospace;">cat list |sed ':a;N;$!ba;s/\n/, /g'| perl -pe 's{,}{++$n % 3 ? $& :"\n"}ge'</span></div>
<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>./tape-input.sh</b><br />
Packaged by man, Dec 13 2018<br />
U00010L5, U00011L5, U00012L5<br />
U00013L5, U00014L5, U00015L5<br />
U00016L5, U00017L5, U00018L5<br />
U00019L5, U00020L5, U00021L5<br />
U00022L5, U00023L5, U00024L5<br />
U00025L5, U00026L5, U00027L5<br />
U00028L5, U00029L5, U00030L5 CAT</div>
I take the output and paste it into the Iron Mountain web portal for pickup.<br />
<br />
I hope this helps someone out. If you have any questions please ask below.<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-38980067351972097552018-11-21T11:22:00.000-05:002018-11-26T09:54:47.975-05:00Fix RPM Database finding for UEFI file types<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibGtrabz1sgAg7lBhHO7AabGwvnUql93vL94wJSVD_Pfr0hg4S2lbezO5tT7o775kMkO8aaMnuekXpSC6tL89w-G9ToxVsA4BfEnOYTPZUZzrvQfRWGM_EQXYlVAcmDZGxbRxYNtKZWg/s1600/RHEL.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" data-original-height="120" data-original-width="120" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEibGtrabz1sgAg7lBhHO7AabGwvnUql93vL94wJSVD_Pfr0hg4S2lbezO5tT7o775kMkO8aaMnuekXpSC6tL89w-G9ToxVsA4BfEnOYTPZUZzrvQfRWGM_EQXYlVAcmDZGxbRxYNtKZWg/s1600/RHEL.jpg" /></a></div>
I ran into an issue the other day when was hardening a server. I couldn't change the file permissions on a few files to what the RPM database says is the default. This was in regard to the /boot/efi files or UEFI file types. <br />
<br />
This is the check: rpm -Va<br />
<br />
The security rule: RHEL-07-010010 "The Red Hat Enterprise Linux operating system must be configured so that the file permissions, ownership, and group membership of system files and commands match the vendor values." Basically the the check is to ensure the files have the default file permissions or less.<br />
<br />
Also works for Red Hat 6<br />
RHEL-06-000516, RHEL-06-000517, RHEL-06-000518, RHEL-06-000519 <br />
<br />
<b>The Fix</b><br />
<br />
Add the line below to /etc/fstab<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
UUID=#### /boot/efi vfat umask=0177,shortnames=winnt 0 0</div>
<br />
Unmount and mount /boot/efi<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>umount /boot/efi</b><br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>mount /boot/efi</b></div>
<br />
<br />
Some other reference materials.<br />
<a href="https://access.redhat.com/solutions/1364143" target="_blank">Could not change permission for /boot/efi/EFI/redhat/grub.conf</a><br />
<a href="https://access.redhat.com/solutions/3237921" target="_blank">Why do /boot/efi content always show up in rpm -Va output in UEFI enabled system?</a><br />
<br />
How to lookup UUIDs <br />
<a href="https://liquidat.wordpress.com/2007/10/15/short-tip-get-uuid-of-hard-disks/">https://liquidat.wordpress.com/2007/10/15/short-tip-get-uuid-of-hard-disks/</a><br />
<a href="https://liquidat.wordpress.com/2013/03/13/uuids-and-linux-everything-you-ever-need-to-know/">https://liquidat.wordpress.com/2013/03/13/uuids-and-linux-everything-you-ever-need-to-know/</a>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-85550040586169448582018-11-08T13:55:00.000-05:002018-11-08T13:55:46.738-05:00Six Fee Computer BooksI like getting free stuff, so when I got and email from <a href="mailto:jason@linuxtrainingacademy.com" target="_blank">Jason Cannon</a> and his website <a href="https://courses.linuxtrainingacademy.com/" target="_blank">Linux Training Academy</a> I had to share it. Jason Cannon is offering six of his books for free through <a href="http://amazon.com/">Amazon.com</a> until this Saturday. To get the books you need an Amazon account with the US or UK store. The books are in the kindle format, which can be read on your computer or tablet if you don't have a kindle.<br />
<br />
These books are absolutely free! Just click on the book to download it from Amazon's US store. Use this <a href="http://amzn.to/2moARmV" target="_blank">link for Amazon's UK store</a>.<br />
<br />
<a href="https://www.amazon.com/dp/B00HNC1AXY/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=e7cea874e7cfffdb1489cd3d67f62d88" style="margin-bottom: 2em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="313" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgQosoTJwO5gjXdC_VH4Are4fOMssAG76l2yQTG171wqG_GQ3bar-mjcjZyvHuzIYjeHdnpQNtGp19ebSSWmoxUpK7A8AbtZoeq-F900gFkrrY8CrapzjHM5JRuj4xV6pIEi4YZ7Rb7cQ/s200/41ws59xAKeL.jpg" width="125" /></a>
<a href="https://www.amazon.com/dp/B01BJ8GCPS/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=4895697864c431b769147d9a0cff8c9d" style="margin-bottom: 1em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="313" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiS-0sGkBcH99icEnfmCoBAowr8P56Mg2OLRR6HyVHRRc-iKs00vmH-zIdG44tJe4VbxA9v89CIV_YN8uX8Sh4upJ0KeZuOBsZB0_gj-HTviow0HoSXM3gKvkniZKx670AVCTB9SD-L-A/s200/41lYoE7aJzL.jpg" width="125" /></a>
<a href="https://www.amazon.com/dp/B015FZAXU6/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=ee2106ce5882ee765aca905898f4b347" style="margin-bottom: 1em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="313" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgdu4iKCBuhyzMTz6I0SXmuwWLAFsZvQvzlAVDGj5cyRZuUPbd5Evrdsbw1OFwzvmq7pJXu9OL2gbFt5uxoww1y2q3hcdqjEJnMy4GXRVmPxMH_n1INavKKpTMknrSXHbpZYcPDofr_3A/s200/41ZvU0GZirL.jpg" width="125" /></a>
<a href="https://www.amazon.com/dp/B00JRGCFLA/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=7a8f4f5b79b112dc7307036f0e8a9b94" style="margin-bottom: 1em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="313" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEigA7eFGtWnLGhR4hseNL48f4wGrtXXFm9w8Oz26ymGzBCJDD502WdpZFbX098q8gFkpmZOfNxDnbGVpBagypGOsDAzFOxAl7qA9_KXys-LPiivRIapLKpxOjuWH6T-rVmLSqeFVRkntA/s200/41PVsjWk4OL.jpg" width="125" /></a>
<a 1em="" href="https://www.amazon.com/High-Availability-LAMP-Stack-Applications-ebook/dp/B00R3Z9QI2/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=ca432355380ef5a0904ff071fb95352e" style="margin-bottom: 1em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="334" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWOTtAa3cwtji_Nln-UepDRVjzqDDe3CWvvMA23_KjXj1uqhCFhHYTF9a9HeVRD2LikC1lbjgT0HijXtWUQAq9ulFKKkNUWn_A7JAq3pZNCbtNpjb0TzAF8as8obcygfCpaIkcVQeLNw/s200/41alsCwxLcL.jpg" width="133" /></a>
<a href="https://www.amazon.com/dp/B00N4IQRD4/ref=as_li_ss_tl?ie=UTF8&linkCode=sl1&tag=jasoncame-20&linkId=96aa4491e3bee2414e0501e0eba73cc9" style="margin-bottom: 1em; margin-right: .5em;"><img border="0" data-original-height="500" data-original-width="313" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjrrV2OsttFT_MEgInx-KrUEMJfkwZfh9XhL0lBTxgLPqSA8_rSaM1mry8iDLGUTS279w8aMzUcaNmkzT0acKgSIZTwKaIDPO6o5P5U1aBQHlzqMVfvwS7SSXtoHSQ43xvUaLxkAgCQzQ/s200/41S1-9oKRqL.jpg" width="125" /></a>
<br />
<br />
Prices of the print versions<br />
$24.99 Linux for Beginners
<br />
$24.99 Linux Administration<br />
$14.99 Shell Scripting<br />
$14.99 Command Line Kung Fu<br />
$19.99 High Availability for the LAMP Stack<br />
<u>$24.99 </u> Python Programming for Beginners<br />
$124.94 Total savings <br />
<br />
I found out about this because I'm on a mailing list that Jason Cannon and his site put out. Further instructions on how to get the free books can be found on his <a href="https://courses.linuxtrainingacademy.com/kindle-books/?__s=ma5gvbzvhc2n1t8jq9ns" target="_blank">website</a>.<br /><br />
If your looking for more free books checkout my other posts:<br />
<a href="https://rich-notes.blogspot.com/2018/10/free-python-books.html" target="_blank">Free Python Books</a><br />
<a href="https://rich-notes.blogspot.com/2018/03/free-books.html" target="_blank">Free Books</a>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-12733611513980086482018-11-06T16:45:00.003-05:002018-11-06T16:45:48.991-05:00Remotely Login & Run Commands on ILOMs<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhoBPC39M_yNLRNdSZmJRl_JiVoTOEAElf8NDQXL1rL6p6PzxTrQknNV0XpjqfhKmYpX_v6gR_YIdgsmkkgdl0zNJdYzLB3TVcdQ46bH2BfYZ1SrsrU7dIByTOQM0VwXjcsBPCtjD7YHg/s1600/ILOM-login.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" data-original-height="542" data-original-width="758" height="142" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhoBPC39M_yNLRNdSZmJRl_JiVoTOEAElf8NDQXL1rL6p6PzxTrQknNV0XpjqfhKmYpX_v6gR_YIdgsmkkgdl0zNJdYzLB3TVcdQ46bH2BfYZ1SrsrU7dIByTOQM0VwXjcsBPCtjD7YHg/s200/ILOM-login.png" width="200" /></a></div>
Logging into Oracle's Integrated Lights Out Manager (<a href="https://www.oracle.com/technetwork/server-storage/servermgmt/tech/integrated-lights-out-manager/index.html" target="_blank">ILOM</a>) to get info can be a real pain, so I wrote this script to do it for me. Normally one would use use Simple Network Management Protocol (<a href="https://en.wikipedia.org/wiki/Simple_Network_Management_Protocol" target="_blank">SNMP</a>) or Intelligent Platform Management Interface (<a href="https://en.wikipedia.org/wiki/Intelligent_Platform_Management_Interface" target="_blank">IPMI</a>), but due to security concerns I was not able to use either of these options. Even with the latest firmware installed the ILOMs would not support modern security practices. So I was forced to find anther way. I needed to write a script that would wait for a prompt and then fill it in for me. <a href="https://core.tcl.tk/expect/index" target="_blank">Expect</a> an extension to the Tcl scripting language is great for this kind of stuff, but I decided to use <a href="https://www.tldp.org/LDP/abs/html/here-docs.html" target="_blank">HERE</a> which is even easier. <br />
<br />
In order to make this work I created the user <i>mancnt</i> on the local system and on all the ILOMs. I also created a SSH key and setup an SSH agent on the local system and then I copied the key over to the ILOMs. If you don't know how to setup SSH keys check out my last post on how to do it "<a href="https://rich-notes.blogspot.com/2016/04/a-better-way-to-setup-ssh-keys.html" target="_blank">A Better Way to Setup SSH Keys</a>". You will also need a file containing the hostnames of the ILOMs you want access. In the example script below I use two such files, lsILOMb and lsILOMc, one for the blades and one for the chassis. <br />
<br />
<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
#!/bin/bash<br />
#<br />
# This section is for the ILOM blades<br />
HERE-ILOM(){ <br />
ssh $1 2>/dev/null <<here awk="" br="" macaddress="/" print="">show /SP/network macaddress <br />HERE <br />} <br /># This section is for the ILOM Chassis <br />HERE-ILOMc(){ <br />ssh $1 2>/dev/null <<here awk="" br="" macaddress="/" print="">show /CMM/network macaddress <br />HERE <br />} </here></here><br />
<br />
# To get IP address from hostname<br />
Ping-to-IP(){ <br />
ping -c1 $1 |grep PING|awk '{print $3}'|sed -e 's/(//' -e 's/)//' <br />
}<br />
<br />
# Main section <br />
ps aux|grep manacnt|grep -v grep |grep agent &>/dev/null || echo "Need to have an agent running"<br />
<br />
# Section for ILOMs on Oracle Blades <br />
for s in $(cat lsILOMb) <br />
do echo -e "$(Ping-to-IP $s),$(HERE-ILOM $s),Embedded Linux,$s" <br />
done<br />
<br />
# Section for ILOMs on Oracle Chassis <br />
for s in $(cat lsILOMc) <br />
do echo -e "$(Ping-to-IP $s),$(HERE-ILOMc $s),Embedded Linux,$s,FALSE,ILOM,N611" <br />
done </div>
<br />
So the script generates a comma-separated values (CVS) file, which contains the IP address, MAC address, OS, and hostname. I then give this file to the network security people. <br />
<br />
<b>Example output:</b> 10.0.1.20,00:10:e0:40:c2,Embedded Linux,server-ilom<br />
<br />
If you have any questions feel free to ask them below. <br />
<br /><br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-67443577646343438732018-10-11T12:16:00.000-04:002018-10-11T12:16:07.723-04:00Free Python BooksHello, I ran across some free books on Python and I thought I would share them with you. These books are written by Al Sweigart, who has made the books available under the Creative Commons License. So the books are free and legal for you to read and download. Click on the image of the book to go to the site hosting the free book.<br />
<br />
The link below is the main site the books are on and there are also some free videos. There is also some online courses as well.<br />
<a href="http://inventwithpython.com/">http://inventwithpython.com/ </a><br />
<br />
<a href="http://inventwithpython.com/invent4thed/"><img border="0" data-original-height="300" data-original-width="227" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgPrU4IyQGXVGlaK3iH8cZ-nyxNtJZ8R6__Q_L-8FcHTfTC4DWZQ7FTGemXCHUkkSgFNqDy3u2XQIjT21ev5zBbuDyWEhQamHXS4rpIjfC1CrvoYwrbrueICdx6-M7Ix8-_mk9d4x4y3Q/s1600/cover_invent4th_thumb.png" /></a>
<a href="https://automatetheboringstuff.com/"><img border="0" data-original-height="300" data-original-width="227" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvrWf7OfOxbSdr9cGuVHbrH5m0B8QIcTNlH936UcKG6qZX1bGAHK_TMyXR-vBANXAnU9iMsB86NcDD9YP40rLoptEKaAd8zjavSXvmlzmkhY0fr1FR4g7BSoldKBj5Ii5Y_DgqIoPAXg/s1600/automate_cover_medium.png" /></a>
<a href="https://turtleappstore.com/book/"><img border="0" data-original-height="300" data-original-width="227" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgV18gXq44CjzKxj_uSm3Twc1Y6Q-KnK9uJLrUHtjvgnI_ypLg5TMcLmkWxXJ_34wdqc0vtGfvxf-9jgE_jxMXcru-RVQPxYwrP1umtL-_sNDqFAxn6VcYPV0D5Wrhf6H4RDcMx_KHU4w/s1600/book_cover_coding_with_minecraft.jpg" /></a>
<a href="http://inventwithpython.com/cracking/"><img border="0" data-original-height="300" data-original-width="227" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgiMIC7b4vQyngl8Pqwty9jS5KBwrWsW3fWzvLk2JnCdCu8PcKxRgIUg6hyphenhyphen0Pogzb7L8b7zckYBMRzm-OC__CbwESPcL1GmqbHNHgCpELptjpEMgLedlLWaH80HaxTI5QS9AB8HyquqAA/s1600/cover_crackingcodes_thumb.png" /></a>
<a href="http://inventwithpython.com/pygame/"><img border="0" height="300" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgDQRy0qXJwFIuCW00Y07RZ4yF4cuE3UpsrstsMA2rZ-eA_i8frNr6rpvrvrWNf1kyZkh5sqY9hm6ug8bfmmu7QfIAxVChe-F3qUDWQcbCWt-pFPkOKdhIoFB_N8yyYH5upPSGm7xT4Mw/s1600/cover_makinggames_thumb.png" width="220" /></a>
<br />
<br />
<br />
You can also get some free Python from Amazon as well. Use this <a href="https://www.amazon.com/s/ref=sr_st_price-asc-rank?keywords=python&rh=i%3Aaps%2Ck%3Apython&qid=1539263314&sort=price-asc-rank" target="_blank">link</a>, to to see a list of Python books sorted by price, from low to high. These are kindle books that can also be read online with the kindle cloud player, if you don't have a kindle. tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-57511969904746611492018-08-15T12:34:00.000-04:002019-10-24T07:49:28.406-04:00(Updated) Free Cryptocurrency Payed Directly to Your Wallet<br />
There are many sites that offer free <a href="https://en.wikipedia.org/wiki/Cryptocurrency" target="_blank">cryptocurrency</a>. Many of these sites are called <a href="https://www.google.com/search?client=firefox-b-ab&ei=bk1FWo2API7i_AbV04TADA&q=cryptocurrency+faucet+definition&oq=cryptocurrency+faucet+de&gs_l=psy-ab.1.2.33i160k1l3.1866.2693.0.5037.5.5.0.0.0.0.147.397.4j1.5.0....0...1c.1.64.psy-ab..1.4.344...33i21k1.0.QfheB-koZ-U" target="_blank">faucets</a>. Faucet websites give tiny amounts of cryptocurrency in exchange for showing you
adds. The main purpose of faucets is to promote the coin there offering. Many of these faucets make you come back repeatedly before you can
withdraw the funds to your cryptocurrency wallet. I have found some
faucets that payout immediately to your wallet, no more
waiting. Using these websites will not make you rich, but free money is free
money and the ads on the sites I'm showing are not excessive. <br />
<br />
So far I have only found a few faucets that pay directly to your wallet.
If you know of any addition faucets please post them below.<br />
<br />
<br />
This is an update to this blogs previous <a href="https://rich-notes.blogspot.com/2017/12/free-cryptocurrency-payed-directly-to.html" target="_blank">Free Cryptocurrency Payed Directly to Your Wallet</a> post. There are a few faucets from the previous post that are no longer working, but perhaps in the future they will work again. The Most of the <a href="https://wavesplatform.com/" target="_blank">Waves</a> coin faucets are the still working. I have added more faucets to this list, which include new faucets for these coins: <a href="https://zencash.com/" target="_blank">ZenCash</a>, <a href="https://minexcoin.com/" target="_blank">Minexcoin</a>, <a href="https://denarius.io/" target="_blank">Denarius</a>, and <a href="https://www.savebitcoin.io/" target="_blank">Bitcoin Green</a>.<br />
<br />
<br />
<a href="https://zencash.com/" target="_blank"><b>ZenCash (ZEN)</b></a><br />
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/zencash/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe>
<style type="text/css">
p.p1 {margin: 0.0px 0.0px 0.0px 0.0px; font: 12.0px Arial; color: #000000}
span.s1 {font-kerning: none}
</style><span class="s1">ZEN is a major coin so getting coins coins from a ZEN cash faucet is a big deal. </span><br />
<br />
<div class="p1">
<span class="s1"><a href="http://getzen.cash/">http://getzen.cash/</a><span class="Apple-converted-space"> </span></span></div>
This faucet pays from 50000 to 150000 Satoshis every 20 hours. The only issue is that now you need to have an account on the site and that is a real pain.<br />
<br />
Link to the ZEN web wallet: <a href="https://myzenwallet.io/" target="_blank">https://myzenwallet.io/</a><br />
<a href="https://wavesplatform.com/" target="_blank"><br /></a>
<a href="https://wavesplatform.com/" target="_blank"><b>Waves (WAVES)</b></a><br />
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/waves/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe>
The Waves faucets are managed by the Waves
stacking or mining pools. This is to promote the Waves coin and to
encourage you to lease Waves coins with them. One interesting thing
about the Waves coin is that it is a <a href="https://www.google.com/search?client=firefox-b-ab&q=proof+of+stake&sa=X&ved=0ahUKEwih1NX-v63YAhXIkOAKHTc1Aa0Q7xYIJigA&biw=1754&bih=921" target="_blank">Proof of Stake (PoS)</a> coin, meaning that holding the waves coin in the Waves wallet will earn you more Waves coin. But unlike other POS coins you can only stake by leasing the coin out hte coin to the pool.<br />
<br />
<a href="http://freewav.es/"><span class="s1">Freewaves</span></a><br />
You will get some Waves coins and the option to get some random tokens. This faucet can be used every hour per IP address.<br />
<br />
<a href="https://wavesdrop.com/"><span class="s1">WavesDrop</span></a><br />
You will get some Waves coins and the option to get some random tokens. This faucet can be used every hour per IP address.<br />
<br />
<a href="https://fountainperpetua.com/"><span class="s1">FountainPerpetua</span></a><br />
You
will get some Waves coins and the option to get some random tokens,
usually Mercury (MER) tokens. This faucet can be used every hour per IP
address. <br />
<br />
Link to the Waves web wallet: <a href="https://wavesplatform.com/">https://wavesplatform.com/ </a><br />
The Waves wallet is a multi coin wallet and has a built in exchange.<br />
<br />
<a href="https://minexcoin.com/" target="_blank"><b><span class="m_-2849791378405372152gmail-s1" style="font-kerning: none;">MinexCoin (MNX)</span></b></a><br />
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/minexcoin/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe>
<br />
The coin also has a banking feature called "MinexBank"where you can earn interest by "parking" there coins.<br />
<br />
<a href="https://xdeathwing.com/" target="_blank">xdeathwing </a><br />
This faucet pays out every 6 hours. This is tracked via your IP address. There are no ads on the site and the payout is really fast. One nice feature of the coin is that you can park it and earn interest.<br />
<br />
MNX doesn't have a web wallet, so you will have to install a client on your computer. <br />
<br />
<br />
<a href="https://denarius.io/" target="_blank"><b>Denarius (DNR) </b></a>
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/denarius/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe><br />
This coin can be mined (POW) and staked (POS) and the coins can be put into a Master Node.<br />
<br />
<a href="http://xemplarsoft.com/" rel="nofollow" target="_blank">xemplarsoft</a><br />
This faucet pays out 0.002 every 24 hours. The site seems to track your withdraw from the faucet via your router's IP address and not your wallet address. The site also works through a VPN. There are no ads at the monument.<br />
<br />
One easy way to get a DNR wallet is by joining their <a href="https://discord.gg/F2zqsAU" target="_blank">Discord</a>. If you chose to use the wallet from there <a href="https://discord.gg/F2zqsAU" target="_blank">Discord</a> server beware the address changes, so check it before you use the faucet. If you are active on the Denarius <a href="https://discord.gg/F2zqsAU" target="_blank">Discord</a> server they sometimes payout free coins to there members, this is commonly called rain. I was able to get 10 coins on the coins birthday, which I put in a shared Master Node. Click on the word <a href="https://discord.gg/F2zqsAU" target="_blank">Discord</a> for the <a href="https://discord.gg/F2zqsAU" target="_blank">Discord</a> invite.<br />
<br />
The <a href="https://www.coinomi.com/downloads/" target="_blank">Coinomi</a> wallet supports this coin, and you can get it for your android or apple device. <br />
<br />
<b>Bitcoin Green (BITG)</b>
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/bitcoin-green/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe><br />
This is a Proof of Stake (PoS), so if you stack the coin it will earn you more coins.<br />
<br />
<a href="http://bitgfaucet.com/" rel="nofollow">bitgfaucet</a><br />
This faucet is often always dry. You can claim every 12 hours.<br />
<br />
They have wallets you can install on your computer.<br />
<br />
<br />
<br />
<br />
<br />
<b><i>Faucets listed below have stopped working but might come back in the future</i></b>.<br />
<br />
<b>Bytecoin (BCN)</b>
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/bytecoin/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe><br />
<div class="p1">
<span class="s1">The Bytecoin </span>faucet was managed by <a href="https://bytecoin.org/">bytecoin.org</a><span class="s1"> the developers and maintainers of Bytecoin.</span>
<br />
<br />
<span class="s1"><a href="http://freebytecoin.cf/" target="_blank">Freebytecoin </a></span></div>
This
faucet can be used once an hour per IP address. They have recently
switched to a manually payout system so you will not get the BCN
instantly. You will however get the payout in a timely manner.<br />
<br />
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/waves/usd" style="border: currentcolor; clear: right; float: right; height: 125px; width: 275px;"></iframe>
<br />
<b>WAVES (WAVES)</b><br />
<br />
<a href="http://wavesgo.com/faucet">WavesGo</a><br />
This was the best and most reliable Waves faucet, when it was working. In the past you got some <br />
Waves coins as well as some WavesGo (WGO) tokens. This faucet used work once hour,
per wallet address. Did at one time work though a VPN.<br />
<br />
<br />
<b>Conclusion</b><br />
Remember this will not a get rich, so don't put a lot of effort into getting the coins. Faucets are just meant to promote the coin. Many coins are switching to Airdrops as there main way to promote a their coin. Sometimes the faucets will stop working or are under maintenance, so
if it is not working try again later. I hope this was helpful. If you
have any questions or comments please post them below. If you know of
any faucets that payout to your wallet, and are not to a site connected <a href="https://coinpot.co/" target="_blank">CoinPot</a> or <a href="https://faucethub.io/" target="_blank">Faucet Hub</a>, please let me know.<br />
<br />
<b>Wallet Tip</b><br />
Use a webwallet if you don't have many coins that are worth a lot of money. If you start to collect a lot of valuable crypto then switch to client wallet or a hardware wallet. If you end up needing to install the a lot of client wallets on your computer. Then install it on a external or removable storage device, because some of these wallets can get very big and and take a lot of space on your local hard drive. If you fill up your hard drive your computer, the computer can get slower or even crash (stop working). <br />
<br />
<br />
<b>My ZenCash wallets address</b><br />
znaBJT8amzTdGLhk985QvZnN1QbF8G3M5NH<br />
<br />
<b>My Waves wallet address </b><br />
3P9nJZ9PSb8yR8pueB4WbBtLvD4raDi6Ah8 <br />
<br />
<b>My <span class="m_-2849791378405372152gmail-s1" style="font-kerning: none;">Minexcoin </span></b><b><span class="m_-2849791378405372152gmail-s1" style="font-kerning: none;"><b>wallet address</b></span></b><br />
<span class="m_-2849791378405372152gmail-s1" style="font-kerning: none;">XYupxVDW4yWD2nG6eS68YLhKSq76Dn<wbr></wbr>LsHi</span><br />
<br />
<span class="m_-2849791378405372152gmail-s1" style="font-kerning: none;"><b>My Bytecoin wallet address</b><br />
<span style="background-color: white; color: #333333; font-family: "lato" , sans-serif; font-size: 14px;">28ExGFyTXTPdCHYqPqkNasMjTYHpnHFgG7KAAEcQpKkYKoX1UzLzHdsgjykcu8CuQRG9SxEoSH7YxCHJVp7Ui9es3WSjGDt</span> </span><br />
<br />
<br />
<br />2bitminerhttp://www.blogger.com/profile/09426849282909691114noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-86708119165951403862018-06-22T16:40:00.002-04:002018-06-22T16:40:42.657-04:00How to setup Claymore on EthOS<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen="" class="YOUTUBE-iframe-video" data-thumbnail-src="https://i.ytimg.com/vi/-f1v60kslJM/0.jpg" frameborder="0" height="266" src="https://www.youtube.com/embed/-f1v60kslJM?feature=player_embedded" width="320"></iframe></div>
<br />
<br />
Today I’m showing you how to setup the Claymore dual miner on EThOS. Ethos is Linux based operating system specially designed to mine cryptocurrency. In the examples we are going to dual mine Callisto (CLO) and SmartCash (SMART), but Claymore can be used to mine any number of coins. The reason I make this video was because EthOS has changed the what configuration files you can use. The local.conf or remote.conf files are still the most important files for mining on EthOS, but we used to be able to supplement these files with stub files. I go over the new way to do things now that the stub files
are no longer an option. Now we have to use the flags option to this in local.conf. I also go over some advanced settings. <br />
<br />
<br />
Below I have included the a copy of the file I used in the video. Remember to replace my info with your info.<br />
<br />
<br />
Example files
Local.conf<br />
---------------------------------<br />
globalminer claymore<br />
stratumproxy enable<br />
proxywallet 0x33496bf2654acbdbe501accc9393790707e89ad3<br />
proxypool1 stratum+tcp://lb.geo.callistopool.eu:8001<br />
poolpass1 x<br />
proxypool2 stratum+tcp://clopool.pro:2561<br />
poolpass2 x<br />
<br />
dualminer enabled<br />
dualminer-coin keccak<br />
dualminer-pool<br />
stratum+tcp://us-mine.smartcash.cc:3008<br />
dualminer-wallet SaMXJJ4CjFRDVwJceAEQfE2QfUMKuRpiGt<br />
dualminer-poolpass1 x<br />
<br />
claymore=flags -eworker trio -dcri 8,8,8 -colors 1 -allpools 1<br />
--------------------------------------<br />
To add failover pools for the 2nd coin edit this file:
/opt/miners/claymore/dpools.txt
<br />
<br />
Links to more info<br />
Main Page
<a class="yt-simple-endpoint style-scope yt-formatted-string" href="https://www.youtube.com/redirect?q=http%3A%2F%2Fethosdistro.com%2F&v=-f1v60kslJM&event=video_description&redir_token=8HyHrSHYPDmnTKHWyZeZIQJD2kN8MTUyOTc4MzE0OUAxNTI5Njk2NzQ5" spellcheck="false">http://ethosdistro.com/</a><br />
EthOS knowledge base
<a class="yt-simple-endpoint style-scope yt-formatted-string" href="https://www.youtube.com/redirect?q=http%3A%2F%2Fethosdistro.com%2Fkb%2F&v=-f1v60kslJM&event=video_description&redir_token=8HyHrSHYPDmnTKHWyZeZIQJD2kN8MTUyOTc4MzE0OUAxNTI5Njk2NzQ5" spellcheck="false">http://ethosdistro.com/kb/</a><br />
SmartCash (SMART) <a href="https://smartcash.cc/">https://smartcash.cc/</a><br />
Callisto (CLO) <a href="https://callisto.network/">https://callisto.network/</a><br />
<br />
<br />
2bitminerhttp://www.blogger.com/profile/09426849282909691114noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-45043457288644631982018-05-18T10:19:00.001-04:002018-12-13T09:09:24.948-05:00Turn a list into a CSV file<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgKoVVaMhPtdtzyiwh1wKabXhiBHjQ-y5M8omd5ZVn2Z2etBsJJi-rTR8djlqRBJ_cX71PJI6SW81QQHAgJNpOKQAR3nD5lzMLfo5mZU93EcHC6fxyLW3VUYtUyuZey0ce4xZSsZHQ4ag/s1600/BASH.jpeg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="187" data-original-width="270" height="138" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgKoVVaMhPtdtzyiwh1wKabXhiBHjQ-y5M8omd5ZVn2Z2etBsJJi-rTR8djlqRBJ_cX71PJI6SW81QQHAgJNpOKQAR3nD5lzMLfo5mZU93EcHC6fxyLW3VUYtUyuZey0ce4xZSsZHQ4ag/s200/BASH.jpeg" width="200" /></a></div>
Hello today I'm showing you two simple ways to turn a list into a comma separated (CSV) output. This is helpful if you need to import the output into a spreadsheet. You can do this one of two ways, with a BASH for loop or with SED.<br />
<br />
We are going to use list.txt which is a small list of solar objects for this example. <br />
<br />
<b>list.txt</b><br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
earth<br />
moon<br />
mars<br />
venus<br />
saturn</div>
<br />
<b>BASH Script</b><br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
for s in $(cat list.txt)<br />
do echo -en "$s, "<br />
done</div>
-note - if you don't want spaces or commas use "$s" instead<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: lime;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>./BASHscript</b><br />
earth, moon, mars, venus, saturn, </div>
<br />
<b>SED Script
</b><br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
cat list.txt | sed ':a;N;$!ba;s/\n/, /g'</div>
<br />
As you can see the SED statement is much shorter.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: lime;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>./SEDscript</b><br />
earth, moon, mars, venus, saturn, </div>
<br />
I hope someone out there finds this useful. If you have any questions or comments please post them below.tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-6193506458730910752018-03-26T18:19:00.000-04:002018-03-27T09:40:31.132-04:00Free Books<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjQ2iy-FwtnhghyphenhyphenPaMK4y384A8y-conpuWHi88b5NR3N5ngaz1GSCFq-lT1YGO2pVhIcS7wZEVZPMD2LZOFGK46QR-j1uFjq3ATdHWazA7KXXDmpDEu-77KtzeFcMifoIxVM5iNSMHSeg/s1600/images.jpeg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" data-original-height="203" data-original-width="164" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjQ2iy-FwtnhghyphenhyphenPaMK4y384A8y-conpuWHi88b5NR3N5ngaz1GSCFq-lT1YGO2pVhIcS7wZEVZPMD2LZOFGK46QR-j1uFjq3ATdHWazA7KXXDmpDEu-77KtzeFcMifoIxVM5iNSMHSeg/s1600/images.jpeg" /></a></div>
We all love free stuff, right? So in this post I list some sites that I found that offer free books. It is also important to protect the rights of content creators, so I'm only listing free books that are totally legal to download. If you know of any sites that offer free books please provide a link in the comments below.<br />
<br />
<b>Free Novels</b><br />
<a href="http://www.baen.com/categories/free-library.html" target="_blank">Free Books from publisher BAEN</a><br />
Lots of totally free books books on the BAEN website from may different publishers and genre types.<br />
<br />
<a href="https://librivox.org/" target="_blank">LibriVox</a><br />
Free public domain audio books. These books are several different languages. Librivox is a non-commercial, non-profit and ad-free project. They get most of their texts from <a href="http://www.gutenberg.org/">Project Gutenberg</a>, and the <a href="http://archive.org/">Internet Archive</a> hosts their audio files (for free!).<br />
<br />
<a href="http://www.gutenberg.org/" target="_blank">Project Gutenberg</a><br />
This a site that hosts free ebooks in many in the public domain. They also have ebooks in several different languages<br />
<br />
<a href="https://audio.verkaro.org/" target="_blank">Verkaro Audiobooks</a><br />
This site has many free audio books. they used to be called LiteralSystems.org. The books span many different genre.<br />
<br />
<a href="http://manybooks.net/" target="_blank">ManyBooks</a><br />
This site has over 33,000 eBooks to choose from. These books are in many different genres.<br />
<br />
<a href="https://archive.org/" target="_blank">Internet Archive</a><br />
This site is a non-profit library of millions of free books, movies, software, music, websites, and more.<br />
<br />
<a href="https://www.bookbub.com/ebook-deals/free-ebooks" target="_blank">BookBub</a><br />
"BookBub features limited-time offers for the best free books in over
twenty genres, from both top-tier publishers and critically-acclaimed
independent authors. These free ebooks are available on all devices,
including Kindle, Nook, iPad, and Android. Check out some of our current
selections" - https://www.bookbub.com<br />
<br />
<a href="https://books.google.com/" target="_blank">Google</a><br />
Believe it or not, Google has a lot of free books on there site. Though some of the books are just excerpts of books for sale.<br />
<br />
<b>Free IT text books</b><br />
<a href="https://github.com/TechBookHunter/Free-DevOps-Books" target="_blank">DevOps books</a><br />
This is a absolutely free collection of free It professionals or people who want to get into IT.<br />
<br />
<a href="http://freepdf-books.com/" target="_blank">Free PDF Books</a><br />
Free technical books and lectures in PDF form.<br />
<br />
<a href="https://www.safaribooksonline.com/" target="_blank">Safari Books Online</a><br />
Safari books online is the place to get Oreilly IT books. It is not exactly free, but you can get a free trail.<br />
<br />
I hope this info will hope some get some free and legal books. Don't forget there is also the public library. Please fee free to post any additional info on free and legal books below in the comments. <br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-2369584948278314432018-03-13T14:51:00.000-04:002018-03-13T14:51:09.558-04:00Free Dev Ops Tech BooksBelow is a link for some free to some free IT books. Just go to the link and pick the book or books you want and down load the PDF. Feel free to share and read.<br />
<br />
<br />
<a href="https://github.com/TechBookHunter/Free-DevOps-Books">Free Dev Ops Books</a>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-61434133131614424462017-12-28T15:46:00.000-05:002018-02-08T21:58:35.186-05:00Free Cryptocurrency Payed Directly to your Wallet<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhRrI_mt8rnFcnfi5TlY68eDkUYBbhIiGA8I4tkBupfLKoWf5OVqWQIIriMOZ-D8FqFyeXd1lEjQXYjFMocW5nDUTPsr1pGRzv_AHN5AXE5e9j5rwnn8WCkZQ2GuAJ-xMQMvipRjum43Q/s1600/th.jpeg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" data-original-height="100" data-original-width="100" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhRrI_mt8rnFcnfi5TlY68eDkUYBbhIiGA8I4tkBupfLKoWf5OVqWQIIriMOZ-D8FqFyeXd1lEjQXYjFMocW5nDUTPsr1pGRzv_AHN5AXE5e9j5rwnn8WCkZQ2GuAJ-xMQMvipRjum43Q/s1600/th.jpeg" /></a> There are many sites that offer free <a href="https://en.wikipedia.org/wiki/Cryptocurrency" target="_blank">cryptocurrency</a>. These sites are called <a href="https://www.google.com/search?client=firefox-b-ab&ei=bk1FWo2API7i_AbV04TADA&q=cryptocurrency+faucet+definition&oq=cryptocurrency+faucet+de&gs_l=psy-ab.1.2.33i160k1l3.1866.2693.0.5037.5.5.0.0.0.0.147.397.4j1.5.0....0...1c.1.64.psy-ab..1.4.344...33i21k1.0.QfheB-koZ-U" target="_blank">faucets</a> they give tiny amounts of cryptocurrency in exchange for showing you adds. Many of these faucets make you come back repeatedly before you can withdraw the funds to your cryptocurrency wallet. I have found some faucets that payout immediately and/or directly to your wallet, no more waiting.<br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgnRAbvIyXHMZWKIlNhYufn2YQn-la-YV2USJSBEuVTEVCM1H3hhXfHjxmJmfFTJCML25BZWfUanKdBRWkHP7NLWkM4e-6_z8RyqiP4Hi3VQJ9qSDSzpAt5-KD_IhyphenhyphenIBT5-iUa-zbpU7A/s1600/w.jpeg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" data-original-height="152" data-original-width="200" height="150" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgnRAbvIyXHMZWKIlNhYufn2YQn-la-YV2USJSBEuVTEVCM1H3hhXfHjxmJmfFTJCML25BZWfUanKdBRWkHP7NLWkM4e-6_z8RyqiP4Hi3VQJ9qSDSzpAt5-KD_IhyphenhyphenIBT5-iUa-zbpU7A/s200/w.jpeg" width="200" /></a> So far I have only found the one faucet for <a href="https://bytecoin.org/" target="_blank">Bytecoin</a> and a few related faucets for the <a href="https://wavesplatform.com/" target="_blank">Waves</a> coin. Using these websites will not make you rich, but free money is free money and the ads on the sites are not excessive. One interesting thing about the Waves coin is that it is a <a href="https://www.google.com/search?client=firefox-b-ab&q=proof+of+stake&sa=X&ved=0ahUKEwih1NX-v63YAhXIkOAKHTc1Aa0Q7xYIJigA&biw=1754&bih=921" target="_blank">Proof of Stake (PoS)</a> coin, meaning that holding the waves coin in the Waves wallet will earn you more Waves coin.<br />
<br />
<b>Faucets rules</b><br />
All of the the Faucets listed below will allow you to withdraw once per hour. All but one of the faucets below track you using your IP address. In order to withdraw more then that you will need more then one external IP address. The WavesGo faucet tracks you via the waves wallet address, so for example if you have 2 Waves wallet address then you can withdraw 2 times an hour.<br />
<br />
<b>Bytecoin (BCN)</b><br />
<br />
<div class="p1">
<span class="s1">The Bytecoin </span>faucet is managed by <a href="https://bytecoin.org/">bytecoin.org</a><span class="s1"> the developers and maintainers of Bytecoin.</span><br />
<br />
<span class="s1"><a href="http://freebytecoin.cf/" target="_blank">Freebytecoin</a></span></div>
This faucet can be used once an hour per IP address. They have recently switched to a manually payout system so you will not get the BCN instantly. You will however get the payout in a timely manner. <br />
<br />
<b>WAVES </b><br />
The Waves faucets are managed by the Waves stacking or mining pools. This is to promote the Waves coin and to encourage Proof of Stake (PoS) mining of the Waves coin.<br />
<br />
<a href="http://wavesgo.com/faucet">WavesGo</a><br />
This is the best and most reliable Waves faucet. You will get some Waves coins as well as some WavesGo (WGO) tokens. This faucet can be used once hour, per wallet address. Will work though a VPN.<br />
<br />
<div>
<div class="p1">
<a href="http://freewav.es/"><span class="s1">Freewaves</span></a></div>
<div class="p1">
You will get some Waves coins and the option to get some random tokens. This faucet can be used every hour per IP address. </div>
<br />
<a href="https://wavesdrop.com/"><span class="s1">WavesDrop</span></a><br />
You will get some Waves coins and the option to get some random tokens. This faucet can be used every hour per IP address.</div>
<br />
<a href="https://fountainperpetua.com/"><span class="s1">FountainPerpetua</span></a><br />
You will get some Waves coins and the option to get some random tokens, usually Mercury (MER) tokens. This faucet can be used every hour per IP address. <br />
<br />
<div class="p1">
<b>Wallets</b><br />
If you want to withdraw BCN or Waves from the faucets you will need a wallet.<br />
<br />
Go to the <a href="https://bytecoin.org/downloads" target="_blank">Bytecoin website</a> for a list of <a href="https://bytecoin.org/downloads" target="_blank">Bytecoin (BCN) wallets.</a><br />
<br />
<a href="https://waveswallet.io/">Waves Lite wallet</a></div>
The Waves Lite wallet can also can also be used to hold Bitcoin, Ethureum, Litcoin, and Zcash. The wallet also has a builtin exchange called DAX. The DAX exchange can be used to sell the tokens you get. The wallet is also needed to do Proof of Stake pool mining.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhln2BwUe4ISBbqs4zveZb7Vb6t79Q775Ue5g65Cg529c0Pa3mo8XAGq4eAgMt4S1a1-orVTo8Cj5CmtF70fnbiFT6i4bi4RlDZCVYdWl8dik1QIfNkxZeEkBDDK6pgST504UsqitpMUA/s1600/Screen+Shot+2018-02-07+at+10.51.02+PM.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="762" data-original-width="1600" height="152" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhln2BwUe4ISBbqs4zveZb7Vb6t79Q775Ue5g65Cg529c0Pa3mo8XAGq4eAgMt4S1a1-orVTo8Cj5CmtF70fnbiFT6i4bi4RlDZCVYdWl8dik1QIfNkxZeEkBDDK6pgST504UsqitpMUA/s320/Screen+Shot+2018-02-07+at+10.51.02+PM.png" width="320" /></a></div>
<br />
<br />
<b>Exchanges</b><br />
Many exchanges will not except small payments to there exchange wallets. <a href="https://bittrex.com/" target="_blank">Bittrex</a> will not except the tokens or the Waves coin from the faucets as the payment amount is to small. The <a href="https://hitbtc.com/?ref_id=5a33c57c4cf7b" target="_blank">HitBTC</a> exchange will except the BCN and Waves faucet payouts, but the free tokens from the Waves faucet be lost. <br />
<br />
<br />
Current Bytecoin (BCN) and Waves prices<br />
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/bytecoin/usd" style="border: none; height: 125px; width: 275px;"></iframe>
<iframe allowtransparency="true" frameborder="0" id="widget-ticker-preview" scrolling="no" src="//www.coingecko.com/en/widget_component/ticker/waves/usd" style="border: none; height: 125px; width: 275px;"></iframe>
<br />
<br />
Sometimes the faucets will stop working or are under maintenance, so if it is not working check back later. I hope this was helpful. If you have any questions or comments please post them below. If you know of any faucets that payout to your wallet, and not to a site like <a href="https://coinpot.co/" target="_blank">CoinPot</a> or <a href="https://faucethub.io/" target="_blank">Faucet Hub</a>, please let me know.<br />
<br />
<b>My Waves wallet address </b><br />
3P9nJZ9PSb8yR8pueB4WbBtLvD4raDi6Ah8 <br />
<br />
<b>My BCN wallet address</b><br />
<span style="background-color: white; color: #333333; font-family: "lato" , sans-serif; font-size: 14px;">28ExGFyTXTPdCHYqPqkNasMjTYHpnHFgG7KAAEcQpKkYKoX1UzLzHdsgjykcu8CuQRG9SxEoSH7YxCHJVp7Ui9es3WSjGDt</span><br />
<span style="background-color: white; color: #333333; font-family: "lato" , sans-serif; font-size: 14px;"><br /></span>
<span style="background-color: white; color: #333333; font-family: "lato" , sans-serif; font-size: 14px;"><br /></span>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com1tag:blogger.com,1999:blog-764199448118813007.post-28156277088133983142017-04-04T11:49:00.002-04:002017-04-04T11:49:53.690-04:00Manually Update Plugins on a Nessus Scanner (Windows)<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgMdvk7kSzgeDbtsx5uvp_S0f576MJ-S2l2ixsHvbl_41XWVQ11GxMykIhpETKWyCeGC5taw169ev4ylWQSLkKK3_cYBZUy4hZhvFq0zQOmhGX2hrZHRyWTzEFghibw0R9K_iAMB-U7kg/s1600/download.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgMdvk7kSzgeDbtsx5uvp_S0f576MJ-S2l2ixsHvbl_41XWVQ11GxMykIhpETKWyCeGC5taw169ev4ylWQSLkKK3_cYBZUy4hZhvFq0zQOmhGX2hrZHRyWTzEFghibw0R9K_iAMB-U7kg/s1600/download.png" /></a></div>
I had an issue the other day with one of my <a href="https://www.tenable.com/products/nessus-vulnerability-scanner">Nessus Vulnerability Scanners</a> which is being managed by Security Center. In <a href="http://www.tenable.com/products/securitycenter">Security Center</a> the status of one of the Nessus scanners showed "<b>Plugin Out of Sync</b>". I tried to push the plugins to the Nessus scanner from the Security Center, but I was getting a status error of "<b>Connection timed out</b>". So basically I was getting a latency issue on the connection. The Nessus scanner and the Security Center are in different states, so this may be why there is so much latency. I just built this Nessus scanner, so there were just too many plugins to be pushed over the wire by Security Center. To fix this issue, I just manually copied the plugins to the Nessus scanner. Then I manually loaded the plugins into the Nessus scanner. After I did this, I have not had this issue again.<br />
<br />
Manually updating the Plugins can sometimes fix error or scanner status of "<b>Protocol error</b>". These instructions work on Nessus 5x and 6x, when managed by Security Center 4x or 5x.<br />
<br />
Follow the instructions below to manually install plugins for the Nessus scanner on a Windows computer. For Linux computers click <a href="http://manually-update-nessus-plugins.html/">here</a>.<br />
<br />
1. Login to the Nessus scanner.<br />
<br />
2. Open PowerShell or the Windows command line (CMD) as privileged user.<br />
<br />
3. Stop the Nessus service<br />
<div style="background-color: darkblue; border: 1px solid rgb(221 , 221 , 221); color: white; display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b># net stop "Tenable Nessus"</b></div>
<br />
4. Remove the Nessus scanner from Security Center<br />
<br />
5. Reset the scanner<br />
<div style="background-color: darkblue; border: 1px solid rgb(221 , 221 , 221); color: white; display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b># …\Program Files\Tenable\Nessus>nessuscli fetch fix --reset</b></div>
<br />
6. Connect the Nessus scanner<br />
<div style="background-color: darkblue; border: 1px solid rgb(221 , 221 , 221); color: white; display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b># …\Program Files\Tenable\Nessus>nessuscli fetch –security-center</b></div>
<br />
7. Load the plugins into Nessus<br />
<div style="background-color: darkblue; border: 1px solid rgb(221 , 221 , 221); color: white; display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b># …\Program Files\Tenable\Nessus>nessuscli update <i>plugins_file.tar.qz</i></b></div>
<br />
8. Start the Nessus scanner<br />
<div style="background-color: darkblue; border: 1px solid rgb(221 , 221 , 221); color: white; display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b># net start “Tenable Nessus”</b></div>
<br />
9. Login to the web interface for Nessus and verify that the configuration is complete.<br />
https://localhost:8834<br />
<br />
10. Login to the web interface for the Security Center. Add the Nessus scanner back and verify connectivity.<br />
<br />
Your done.<br />
<br />
<b>Related posts</b><br />
<a href="http://rich-notes.blogspot.com/search/label/Tenable">On this Blog</a><br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com1tag:blogger.com,1999:blog-764199448118813007.post-60653852086306643612017-03-20T17:25:00.000-04:002017-03-21T14:58:51.484-04:00Turn off BEEP in BASH<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjx0QGGgUmMaZwWxk85BLYzLfiKBhp4bLwn-r3QhPr7fv_xY5WbIDi9Gb3WETVGVtysQjLPLxJXy74AJpHmkziGlN6Vr2Bp-jCJW5_3rmLjcvSBZwRpxWN242KWxvDC1ZtQlPuk8SbI0A/s1600/Gnu-bash-logo_svg.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjx0QGGgUmMaZwWxk85BLYzLfiKBhp4bLwn-r3QhPr7fv_xY5WbIDi9Gb3WETVGVtysQjLPLxJXy74AJpHmkziGlN6Vr2Bp-jCJW5_3rmLjcvSBZwRpxWN242KWxvDC1ZtQlPuk8SbI0A/s1600/Gnu-bash-logo_svg.png" /></a></div>
Sometimes your on a computer that has speakers and if your on the termial it keeps beeping. This can be annoying if all your doing is using the tab key to use auto complete. Who ever thought that making the terminal beep was a good idea? Anyway below are some ways to get ride of the beeps.<br />
<br />
<br />
In /etc/inputrc file add the line below.<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
set bell-style none</div>
<br />
Put the line below in a profile. If you want to set it globally but in /etc/profile, otherwise set it in bash_profile, .bashrc, and/or .profile.<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
setterm -blength 0</div>
<br />
This will make the beeping sound go away for good. If you have any questions or comments please post them below.<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-31887692787423171072017-03-15T10:29:00.002-04:002017-03-27T09:30:20.723-04:00How to clear Nessus Plugin 42873 on Security Center<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhK0xzOMLtSimxyRUfF6Sb_c3Zbt9XFHvAZGn68YnMTjTzGGU9CtAQiJku0r2vaJPgomFfN39RJCt6YgAB4pi2nB9Cjt2POIFI9vblkCzu62NXUeyB59DtQCQjyFCE3YzoVj3kCybiENA/s1600/securitycenter_2.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhK0xzOMLtSimxyRUfF6Sb_c3Zbt9XFHvAZGn68YnMTjTzGGU9CtAQiJku0r2vaJPgomFfN39RJCt6YgAB4pi2nB9Cjt2POIFI9vblkCzu62NXUeyB59DtQCQjyFCE3YzoVj3kCybiENA/s1600/securitycenter_2.png" /></a></div>
I use <a href="http://www.tenable.com/products/securitycenter">Security Center</a> with <a href="http://www.tenable.com/products/nessus-vulnerability-scanner">Nessus</a> scanners from <a href="http://www.tenable.com/">Tenable</a> to do vulnerability scanning on my servers. Sometimes the scanner finds hits on itself, such as a hit on plugin <a href="http://www.tenable.com/plugins/index.php?view=single&id=42873">42873 "SSL </a><span class="value"><a href="http://www.tenable.com/plugins/index.php?view=single&id=42873">Medium Strength Cipher Suites Supported"</a> on the Security Center. Below I show the steps needed to disable 3DES on Security Center..</span><br />
<br />
<strong>To disable 3DES within Security Center do the following:</strong><br />
1. Open the file /opt/sc/support/conf/sslciphers.conf<br />
<br />
2. Search for DES-CBC3-SHA<br />
<br />
3. After the colon that precedes the above string, add an exclamation mark which is the signal to disable the given cipher.<br />
<br />
4. The whole string should look like :!DES-CBC3-SHA:<br />
<br />
Once complete, restart the SC service and complete a
rescan and this vulnerability should be remediation.<br />
<span style="font-family: "calibri";"><br /></span>
<span style="font-family: "calibri";">To clear the other part of this hit, make sure the server is using SSL ciphers have encryption key length of over 112 bits. </span><br />
<span style="font-family: "calibri";"><br /></span>
<span style="font-family: "calibri";"><span style="font-family: "calibri";">
<strong>Reference</strong>
<a href="http://www.tenable.com/plugins/index.php?view=single&id=42873">Plugin 42873</a><br />
<a href="https://www.openssl.org/blog/blog/2016/08/24/sweet32/" target="_blank">https://www.openssl.org/blog/blog/2016/08/24/sweet32/</a>
</span></span>
tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-64318843067313567682017-02-20T23:26:00.001-05:002017-02-20T23:31:02.191-05:00Rename & Combine Audio Book files into one audio book.<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMip0ou7FvcWwmTISkkliA0yt_AfT0PF7Slho_mU_HQyj6YrypytQZXN2R7MOsY4zmgbiq5wOqT7Qhoasfu8hNuspOATgL6d-oN4QAy48U6o17OkL2n-9ZoVRiarVMvnPQjWBmVGSMnA/s1600/images.jpeg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjMip0ou7FvcWwmTISkkliA0yt_AfT0PF7Slho_mU_HQyj6YrypytQZXN2R7MOsY4zmgbiq5wOqT7Qhoasfu8hNuspOATgL6d-oN4QAy48U6o17OkL2n-9ZoVRiarVMvnPQjWBmVGSMnA/s1600/images.jpeg" /></a></div>
I like to listen to <a href="https://en.wikipedia.org/wiki/Audiobook">audio books</a> and I get them them from places such as <a href="http://www.audible.com/">Audible</a>, books on CD, the library or <a href="https://librivox.org/">LibriVox</a>. The issue is that all these places present the files to you in different ways. You can get one big file or a lot of small files. They all use different naming conventions which can make organizing your books difficult. To play my audio books I use the <a href="https://itunes.apple.com/us/app/ibooks/id364709193?mt=8">iBooks</a> app from Apple and the <a href="https://itunes.apple.com/us/app/audible-audio-books-original/id379693831?mt=8">Audible app</a> form Audible, on my iPod Touch. Apples <a href="https://itunes.apple.com/us/app/ibooks/id364709193?mt=8">iBooks</a> app works well but is missing some features that the <a href="https://itunes.apple.com/us/app/audible-audio-books-original/id379693831?mt=8">Audible app</a> has such as the bookmarking feature. The Audible app is really bad at playing books that are broken up into several files. The app will play the files out of order or show each file as a separate book.<br />
<br />
So to fix the issues described above I recommend that you rename and/or combine all the files from one book into one file. Below I show the BASH script I wrote to fix this issue. I wrote and tested this script on a Mac. This script will also work on Linux and UNIX operating systems. After the files are combined the finder didn't show the right length for the audio book but when I imported the file into iTunes everything displayed right and the file worked fine.<br />
<br />
The script below shows how to combine several MP3 files into one file. I put a comment after each command explaining what it is doing. If you have any questions about the script below ask it in the the comment section below.<br />
<br />
script-book<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
Put contents of files here
<br />
<pre>#!/bin/bash
# This script was created on 20170216
# This script was created to combine MP3 files form audio books into one file.
# usage ./script-book bookname
#
if [ -z "$1" ]
then
echo -e "Please rerun the script with desired file name at the end \n
Example: ./script-book bookname"
exit 1
fi</pre>
<pre># The if statement checks for $1 variable. </pre>
<pre># If no variable is present then the gives error message and exits
for s in $(ls |grep .mp3|egrep -v '(png|jpg)'|awk '{print $NF}')
# egrep removes pictures
# $NF gives the last column in the file name. This removes the spaces in the name.
do mv *$s $1$s
# This renames the files
cat *$s >> $1.mp3
# Cat combines the files
rm *$s
# Removes old files
done
ls -lh
</pre>
</div>
<br />
In order to make the script work, copy it into the same directory the audio books files are located in. In the example below the script is called script-book and the ls command shows the script in the same directory as the audio book files.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth> </span><b>ls</b><br />
The Hot Gate 001.mp3 The Hot Gate 021.mp3 The Hot Gate 041.mp3 <br />
The Hot Gate 002.mp3 The Hot Gate 022.mp3 The Hot Gate 042.mp3 <br />
The Hot Gate 003.mp3 The Hot Gate 023.mp3 The Hot Gate 043.mp3<br />
The Hot Gate 004.mp3 The Hot Gate 024.mp3 The Hot Gate 044.mp3 <br />
The Hot Gate 005.mp3 The Hot Gate 025.mp3 The Hot Gate 045.mp3 <br />
The Hot Gate 006.mp3 The Hot Gate 026.mp3 The Hot Gate 046.mp3 <br />
The Hot Gate 007.mp3 The Hot Gate 027.mp3 The Hot Gate 047.mp3<br />
The Hot Gate 008.mp3 The Hot Gate 028.mp3 The Hot Gate 048.mp3 <br />
The Hot Gate 009.mp3 The Hot Gate 029.mp3 The Hot Gate 049.mp3 <br />
The Hot Gate 010.mp3 The Hot Gate 030.mp3 The Hot Gate 050.mp3<br />
The Hot Gate 011.mp3 The Hot Gate 031.mp3 The Hot Gate 051.mp3 <br />
The Hot Gate 012.mp3 The Hot Gate 032.mp3 The Hot Gate 052.mp3 <br />
The Hot Gate 013.mp3 The Hot Gate 033.mp3 The Hot Gate 053.mp3 <br />
The Hot Gate 014.mp3 The Hot Gate 034.mp3 The Hot Gate 054.mp3<br />
The Hot Gate 015.mp3 The Hot Gate 035.mp3 The Hot Gate 055.mp3<br />
The Hot Gate 016.mp3 The Hot Gate 036.mp3 The Hot Gate 056.mp3<br />
The Hot Gate 017.mp3 The Hot Gate 037.mp3 The Hot Gate 057.mp3<br />
The Hot Gate 018.mp3 The Hot Gate 038.mp3 The Hot Gate 058.mp3<br />
The Hot Gate 019.mp3 The Hot Gate 039.mp3 The Hot Gate 059.mp3<br />
The Hot Gate 020.mp3 The Hot Gate 040.mp3 script-book</div>
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- Make sure the script is executable before you run the command as shown below. Alternately you can also run the script by bash before the command if you don't know how to make the script executable. Example: bash ./script-book bookname</div>
<br />
In the example below the I show how to execute the script and show example output. This shows that the script combined the files listed above and named the file TheHotGate and removed all the old unneeded files.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span style="color: red;">man</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>./script-book TheHotGate</b><br />
total 447744<br />
-rw-r--r-- 1 arich staff 219M Feb 20 11:34 TheHotGate.mp3<br />
-rw-r--r-- 1 arich staff 624B Feb 20 11:33 script-book</div>
<br />
<br />
I hope this helps anyone who is having a similar issue.<br />
<br />
<br />
Links to places to get audio books.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3i70YHDk9545Iv5GXy_x09tAJo5d6IfMzqZQXmmuXT-BhtTpMG1EHNERmNWZFbZCArr-OOS2pVV_y3VFsYS30ffl6FaBHMw4rLUR2dF-r86gi6vFqYEXLQSdgKlveRtEW76Yv5sH9ow/s1600/LibriVox.jpeg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg3i70YHDk9545Iv5GXy_x09tAJo5d6IfMzqZQXmmuXT-BhtTpMG1EHNERmNWZFbZCArr-OOS2pVV_y3VFsYS30ffl6FaBHMw4rLUR2dF-r86gi6vFqYEXLQSdgKlveRtEW76Yv5sH9ow/s1600/LibriVox.jpeg" /></a></div>
<br />
<a href="https://librivox.org/">LibriVox</a><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjuhyPZXmw-ultKiutWW3lsj4q7BJWVrPFETBMU-g3ZKdRtV3rT6qLHw-irmIZrZNPmE9PM3yjnr6PqfJm8c6nq_xdCF-f4x32JjaOCF0Ubse8AO_AdWAzlubt1fUSnh2_Sq9ArL6m4gg/s1600/download.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjuhyPZXmw-ultKiutWW3lsj4q7BJWVrPFETBMU-g3ZKdRtV3rT6qLHw-irmIZrZNPmE9PM3yjnr6PqfJm8c6nq_xdCF-f4x32JjaOCF0Ubse8AO_AdWAzlubt1fUSnh2_Sq9ArL6m4gg/s1600/download.png" /></a></div>
<br />
<a href="http://www.audible.com/">Audible</a><br />
<br />
<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-62758117243321688812016-12-01T14:37:00.000-05:002017-02-16T15:11:32.231-05:00How to Reset a Nessus Scanner<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjttJ66Daw1sc7EZbGD47LnpBaW9v0aNoaF36iO-S2LIt0KjdF8Gc3WT0RG0x35wnY366J9dcrYZDuMYP0jij9giz4nfVGIofTohX6RBkcXziRXxqyPmKvXxVcWqFRzcl8e04h2hGcfqQ/s1600/download.png" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjttJ66Daw1sc7EZbGD47LnpBaW9v0aNoaF36iO-S2LIt0KjdF8Gc3WT0RG0x35wnY366J9dcrYZDuMYP0jij9giz4nfVGIofTohX6RBkcXziRXxqyPmKvXxVcWqFRzcl8e04h2hGcfqQ/s1600/download.png" /></a></div>
The other day I installed a new <a href="https://www.tenable.com/products/nessus-vulnerability-scanner">Nessus Vulnerability Scanner</a> which is a security scanner that is often controlled <a href="http://www.tenable.com/products/securitycenter">Security Center</a>, both of which are Tenable products. After I finished the install and configured the Nessus scanner to be managed by Security Center. I tried to log back into the scanner and discovered I was locked out. So I figured I could just reinstall the Nessus scanner, after all it only take a few minutes to do. I reinstalled Nessus and I was still locked out, what gives. Below are the steps used to get back into the scanner. I later found an even easier way to get back into the Nessus scanner, which I also posted below.<br />
<br />
<b>Follow the steps below to uninstall the Nessus scanner and remove the configuration files.</b><br />
<br />
1. Optional - Stop the nessusd service<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>service nessusd stop</b></div>
<br />
2. To uninstall Nessus remove the Nessus package <br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>rpm -e nessus-package<rpm for="" nessud=""></rpm></b></div>
<br />
For some reason /opt/nessus still exists after the Nessus package is removed<br />
<br />
3. Remove the Nessus directory.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>rm -r /opt/nessus</b></div>
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- Don't worry the Nessus the files will be recreated after the reinstall.</div>
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- If the /opt/nessus directory is not removed, then your account will still be locked. This is because the configuration files will still exist.</div>
<br />
4. Now install Nessus<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>rpm -ivh nessus.rpm<nessus package=""></nessus></b></div>
<br />
5. Go to the Web interface to finish the configuration of the scanner<br />
https://nessus:8834<br />
<br />
Installing Nessus and setting it up to be managed by Security Center takes very little time, but you<br />
<br />
<b>Create a new user and/or set the user password.</b><br />
<br />
Add user to scanner<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>
/opt/nessus/sbin/nessuscli adduser newuser</b></div>
<br />
Change password on the nessus scanner<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>
/opt/nessus/sbin/nessuscli chpasswd username</b></div>
<br />
I showed you in a previous post "<a href="http://rich-notes.blogspot.com/2016/05/reset-admin-account-on-security-center.html" target="_blank">Reset Admin account on Security Center</a>" how to do this for Security Center.<br />
<br />
Related posts on this site:<br />
<a href="http://rich-notes.blogspot.com/2016/05/reset-admin-account-on-security-center.html" target="_blank">Reset Admin account on Security Center</a><br />
<a href="http://rich-notes.blogspot.com/2016/04/manually-update-plugins-pvs.html" target="_blank">Manually Update Plugins for your PVS</a><br />
<a href="http://rich-notes.blogspot.com/2016/03/manually-update-nessus-plugins.html" target="_blank">Manually Update Plugins on a Nessus Scanner</a>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-51637073006344611812016-09-28T21:42:00.000-04:002018-12-13T10:17:34.537-05:00Latest Scripts for finding Java <div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEinoAWDdyA4Etnn6QLi_zcQWyb5D2NlKV6uJt6CX_XKfPALRowtNyA2Wes3gTT-WeFLwXG0uRznpfOD9xbWwOVWnpc3UXWx5FSK1qtxp0FJwvI0TcTfZvg0HKS2xQwLiJtscu3goHYOnQ/s1600/download+%25281%2529.jpeg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEinoAWDdyA4Etnn6QLi_zcQWyb5D2NlKV6uJt6CX_XKfPALRowtNyA2Wes3gTT-WeFLwXG0uRznpfOD9xbWwOVWnpc3UXWx5FSK1qtxp0FJwvI0TcTfZvg0HKS2xQwLiJtscu3goHYOnQ/s1600/download+%25281%2529.jpeg" /></a></div>
I have in the past posted my script for finding instances of <a href="http://www.java.com/en/">Java</a>, on the servers I manage. I have since updated the script to I posted on this blog. You can still see the old script on this blog under the title <i>"<a href="http://rich-notes.blogspot.com/2014/08/remotely-checking-java-versions.html" target="_blank">Checking Java Versions Remotely</a>". </i>My method of finding all the versions of Java on all the servers, consists of running two scripts. One script called check-java acts as a manager for the other script and gathers all the data into a nice report. The other script called stig-java does the actual work of finding Java on the target system.<br />
<br />
In order for this script to work you will need to setup your SSH clients for auto login. If you don't know how to do this please refer to my post <a href="http://rich-notes.blogspot.com/2013/09/how-to-setup-ssh-keys.html">How to setup SSH Keys</a>. This script doesn't need the automount in order to work.<br />
<br />
<b>What the scripts does.</b><br />
<br />
First off you need to put both scripts in the same location. I put the scripts in the home directory in a folder called scripts. The main script, check-java copies the stig-java script to /tmp on all the servers. Then logs into all the servers, one at a time, and runs the stig-java script and sends the output to a file with the server's name. The check-java script then deletes stig-java form /tmp on all the servers. All those output files are then combined into a single file with extra lines removed.<br />
<br />
The scripts have been test on Solaris 10, Red Hat 5 & 6 (RHEL) and SLES 11 and they work fine. On the Mac the colors don't work.<br />
<div>
<br /></div>
<br />
The check-java script<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
#!/bin/bash<br />
# This script is for running the stig-java script on the servers.<br />
<br />
SP=$(uname -n)<br />
<br />
### Copy files section<br />
echo -e "\e[1m Coping files \033[0m"<br />
for host in $(cat COOP SOL SLES )<br />
do if [ $host == $SP ]<br />
then cp ~/scripts/stig-java3 /tmp/stig-java3 2>/dev/null<br />
else scp -q stig-java $host:/tmp &>/dev/null<br />
fi<br />
done<br />
for host in $(cat ACAS RHEL)<br />
do scp -q stig-java $host:/var/tmp<br />
done<br />
for host in $(cat TD)<br />
do scp -q stig-java3 $host:/tmp &>/dev/null<br />
done<br />
echo -e "\e[1m Done copying files \033[0m \n"<br />
<br />
### Running the stig-java script section<br />
echo -e "\e[1mLooking for Java on Solaris Servers\033[0m "<br />
echo "-------------------------------------------------"<br />
for s in $(cat COOP SOL)<br />
do echo -e "Checking $s "<br />
ssh -qt $s /usr/local/bin/sudo /tmp/stig-java &> ~/scripts/outputJ/sol/$s<br />
done<br />
echo -e "\n\e[1mLooking Java on RHEL Servers\033[0m "<br />
echo "-------------------------------------------------"<br />
for r in $(cat ACAS RHEL)<br />
do echo -e "Checking $r "<br />
ssh -qt $r /usr/bin/sudo ~/scripts/stig-java &> ~/scripts/outputJ/rhel/$r || ssh -qt $r /usr/bin/sudo /var/tmp/stig-java &> ~/scripts/outputJ/rhel/$r<br />
done<br />
echo -e "\n\e[1mLooking Java on SLES Servers \033[0m "<br />
echo "------------------------------------------------"<br />
for l in $(cat SLES)<br />
do echo -e "Checking $l "<br />
if [ $l == $SP ]<br />
then sudo ~/scripts/stig-java &> ~/scripts/outputJ/sles/$SP<br />
else <br />
ssh -qt $l /usr/bin/sudo /tmp/stig-java &> ~/scripts/outputJ/sles/$l || ssh -q $l /usr/bin/sudo /tmp/stig-java &> ~/scripts/outputJ/sles/$l<br />
fi<br />
done<br />
echo -e "\n\e[1mLooking Java on Teradata Servers \033[0m "<br />
echo "------------------------------------------------"<br />
for t in $(cat TD)<br />
do echo -e "Checking $t "<br />
ssh -qt $t /usr/bin/sudo /tmp/stig-java3 &> ~/scripts/outputJ/td/$t || ssh -q $t /usr/bin/sudo /tmp/stig-java3 &> ~/scripts/outputJ/td/$t<br />
ssh -q $t rm /tmp/stig-java3<br />
done<br />
<br />
# Clean Up<br />
echo "Deleting tmp files"<br />
for host in $(cat COOP SOL ACAS RHEL SLES)<br />
do if [ $l == $SP ]<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>then rm /tmp/stig-java 2>/dev/null<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>else<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>ssh -q $host rm /tmp/stig-java 2>/dev/null ||ssh -q $host rm /var/tmp/stig-java<br />
fi<br />
done<br />
echo " "<br />
<br />
# Finishing up<br />
cat ~/scripts/outputJ/sol/* > ~/scripts/outputJ/solM<br />
cat ~/scripts/outputJ/rhel/* > ~/scripts/outputJ/rhelM<br />
cat ~/scripts/outputJ/sles/* > ~/scripts/outputJ/slesM<br />
cat ~/scripts/outputJ/td/* > ~/scripts/outputJ/tdM<br />
<br />
echo -e "\e[1m ------------------------ Solaris Servers ------------------------- \033[0m\n" > ~/scripts/outputJ/output<br />
cat ~/scripts/outputJ/solM >> ~/scripts/outputJ/output<br />
echo -e "\e[1m ------------------------ RHEL Servers ------------------------- \033[0m\n" >> ~/scripts/outputJ/output<br />
cat ~/scripts/outputJ/rhelM >> ~/scripts/outputJ/output<br />
echo -e "\e[1m ------------------------ SLES Servers ------------------------- \033[0m\n" >> ~/scripts/outputJ/output<br />
cat ~/scripts/outputJ/slesM >> ~/scripts/outputJ/output<br />
echo -e "\e[1m ------------------------ Teradata Servers ------------------------- \033[0m\n" >> ~/scripts/outputJ/output<br />
cat ~/scripts/outputJ/tdM >> ~/scripts/outputJ/output<br />
<br />
egrep -v "(1.8.0_${1}|1.7.0_${2}|1.6.0_${3}|1.8.0.${4}|1.7.0.${5}|1.6.0.{6})" outputJ/output|more</div>
<br />
The stig-java script<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
#!/bin/bash<br />
# This script is for finding versions of Java on a server.<br />
#<br />
DATE=$(date)<br />
echo -e "\e[1;34m <<<<<<<<<<<<<<<<<<<< $(uname -n) >>>>>>>>>>>>>>>>>>>\e[0m "<br />
echo -e "Last scanned on $DATE"<br />
<br />
### Find Java Section<br />
for s in $(find / \( -name 10_Recommended* -o -name scratch -o -name zones -o -name mnt \) -prune -o -type f -name java -print 2>/dev/null)<br />
do ee=$($s -fullversion 2>&1 |awk '{print $4}' )<br />
echo -e "\e[1m$ee\e[0m \t $s"<br />
done<br />
echo " "<br />
### Find Packages Section<br />
if [ SunOS == $(uname -s) ]<br />
then if [[ -z $(pkginfo |grep SUNWj[3-8]) ]]<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>then echo -e "\e[1mNo Java packages found\e[0m"<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>else echo -e "\e[1mPackages found:\e[0m \n$( pkginfo |grep SUNWj[3-8])"<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>fi<br />
else if [[ -z $( rpm -qa |egrep '(jdk|jre)' ) ]]<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span> then echo -e "\e[1mNo Java packages found\e[0m"<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span> else echo -e "\e[1mPackages found:\e[0m \n$( rpm -qa |grep -v SYMC|egrep '(jdk|jre)' )"<br />
fi<br />
fi<br />
### Find Directories Section<br />
if [ SunOS != $(uname -s) ]<br />
then DF=$( ls -d /usr/java/j* 2>/dev/null )<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>if [[ -n $DF ]]<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span> then echo -e "\e[1mDirectories found:\e[0m\n$DF" 2>/dev/null<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span> else echo -e "\e[1mNo directories found\e[0m"<br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>fi<br />
fi<br />
<br />
### STIG Java Check List Section<br />
if [ -e /usr/java ]<br />
then JCKL="Passed Java Check List"<br />
if [ -e /usr/java/jre/lib/deployment.properties ] &>/dev/null<br />
then grep deployment.security.askgrantdialog.notinca=false /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.security.askgrantdialog.notinca.locked /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.security.validation.crl=true /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.security.validation.crl.locked /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.security.validation.ocsp=true /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.security.validation.ocsp.locked /usr/java/jre/lib/deployment.properties &>/dev/null || JCKL="\e[1;31mFailed Java Check List\033[0m"<br />
else JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
fi<br />
if [ -e /usr/java/jre/lib/deployment.config ] &>/dev/null #JRE0070 V-32901 CAT II<br />
then grep deployment.system.config=file:/usr/java/jre/lib/deployment.properties /usr/java/jre/lib/deployment.config &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
grep deployment.system.config.mandatory=false /usr/java/jre/lib/deployment.config &>/dev/null || JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
else JCKL="\e[1;31mFailed Java Check List\e[0m"<br />
fi<br />
else echo -e "\e[1;34mNo System Java from Oracle Found \e[0m"<br />
fi<br />
echo -e "\e[1m$JCKL \e[0m"</div>
<br />
This other script is used on the systems with spaces in the path<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
Put contents of files here<br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"><<<<<<<<<<<<<<<<<<<< Linux server name >>>>>>>>>>>>>>>>>>></span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Last scanned on Thu Sep 29 13:17:30 GMT 2016</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">"1.8.0_101-b13" /usr/java/jdk1.8.0_101/bin/</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">java</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">"1.8.0_101-b13" /usr/java/jdk1.8.0_101/jre/</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">bin/java</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"><br /></span>
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Linux packages:</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"> java-1.7.0-openjdk-devel-1.7.</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">0.111-2.6.7.2.el6_8.x86_64</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">java-1.7.0-openjdk-1.7.0.111-</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">2.6.7.2.el6_8.x86_64</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">jdk1.8.0_101-1.8.0_101-fcs.</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">x86_64 )</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Directories found:</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">/usr/java/jdk1.8.0_101</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Failed Java Check List</span></div>
<br />
Example output<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>./check-java</b><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"><<<<<<<<<<<<<<<<<<<< Linux server name >>>>>>>>>>>>>>>>>>></span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Last scanned on Thu Sep 29 13:17:30 GMT 2016</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">"1.8.0_101-b13" /usr/java/jdk1.8.0_101/bin/</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">java</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">"1.8.0_101-b13" /usr/java/jdk1.8.0_101/jre/</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">bin/java</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"><br /></span>
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Linux packages:</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;"> java-1.7.0-openjdk-devel-1.7.</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">0.111-2.6.7.2.el6_8.x86_64</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">java-1.7.0-openjdk-1.7.0.111-</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">2.6.7.2.el6_8.x86_64</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">jdk1.8.0_101-1.8.0_101-fcs.</span><wbr style="color: #222222; font-family: arial, sans-serif; font-size: 12.8px;"></wbr><span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">x86_64 )</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Directories found:</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">/usr/java/jdk1.8.0_101</span><br />
<span style="color: #222222; font-family: "arial" , sans-serif; font-size: 12.8px;">Passed Java Check List</span></div>
<br />
<br />
Let me know if this script is helpful in anyway. If you need more details or have questions let me know, by posting belowtonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-11078976985744973832016-09-22T21:01:00.000-04:002016-10-25T22:17:19.764-04:00Create user account and set password with one command<div class="separator" style="clear: both; text-align: right;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYJvo_YU0GQsfvy64vY9Bs7rYywR4mri7J-jwYS_Sg5s3A0jeDgMghLhLUdrbIDaOqF7zAOqzZMIvInc395exdRqh31x9UNh2z5fTgJabpwUsoZSIcmQi5au3JF-6lXFulHJrac5302g/s1600/images.jpeg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYJvo_YU0GQsfvy64vY9Bs7rYywR4mri7J-jwYS_Sg5s3A0jeDgMghLhLUdrbIDaOqF7zAOqzZMIvInc395exdRqh31x9UNh2z5fTgJabpwUsoZSIcmQi5au3JF-6lXFulHJrac5302g/s1600/images.jpeg" /></a></div>
I often see forum posts where a System Administrators, wants to create local user accounts on several servers and doesn't want to have to have to set the user's password over and over again. Below I share two ways to do this. The first way creates the user account and sets the password in one command. The second method sets the password in a additional command. Ether way can be used in a script, which can speed things up if you need to create one or more accout on servel systems.<br />
<br />
Below is an example of creating a user account.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>useradd -u 25 -g staff -G ftp,users -m -d /export/home/newuser -c "newuser" -s /bin/bash newuser</b>
<br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span>
<b>passwd newuser</b><br />
passwd: Changing password for username<br />
New Password:<br />
Re-enter new Password:<br />
passwd: password successfully changed for newuser</div>
<br />
This method can be very time consuming process and would be hard to use in script. Below is an example of how using the -p option in the useradd command, to set the user's password by setting the uses hash.<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>useradd -u 25 -g staff -G ftp,users -m -d /export/home/newuser -c "newuser" -s /bin/bash -p '6$jbvkjjg$qFmFH.bQmmtXzyBY0s9v7Oicd2z4XSIecDzlB5KiA2/jctKu9YterLp8wwnSq.qc.eoxqOmSuNp2xS0ktL3nh/' newuser</b></div>
<br />
This method works on Linux computers, such as <a href="https://www.suse.com/products/server/" target="_blank">SLES</a> and <a href="https://www.redhat.com/en/technologies/linux-platforms/enterprise-linux" target="_blank">RHEL</a>. It however doesn't work on systems such as <a href="https://en.wikipedia.org/wiki/Solaris_(operating_system)" target="_blank">Solaris</a>.<br />
<br />
Alternately you can also set the users by echoing the password to standard in, as shown below. The major issue with doing it this way is that the password is recorded in the system logs and if your running the command remotely then your sending the password in the clear. So I don't recomend doing it this way.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>echo <i>password</i> | passwd newuser --stdin</b></div>
<b><br /></b>
This method works only Linux systems.<br />
<br />
<b>Other posts with similar info</b><br />
<a href="http://rich-notes.blogspot.com/2016/04/linux-user-account-creation.html" target="_blank">Linux User Account Creation & Customization</a><br />
<a href="http://rich-notes.blogspot.com/2011/06/adding-new-user-account-to-unix-based.html">Adding a new user to a UNIX based system</a><br />
<br />
<b>References pages.</b><br />
<a href="http://linux.die.net/man/8/useradd">Online man page - useradd</a><br />
<a href="http://linux.die.net/man/1/passwd">Online man page - passwd</a>tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-56037976401438402332016-09-15T17:43:00.000-04:002017-03-20T17:44:33.500-04:00Setting up NFS & automount on RHEL<br />
I believe that any Linux or UNIX server should start a very minimal build. Meaning that a server should only have the programs or packages installed that are needed for the operation of the server. To make some of my servers a little more functional I decided to install NFS and automount. This is so users can automount home directories and mount external shares. <br />
<br />
Follow the steps below to install NFS and autofs, so you can mount the NFS shares and mount home directories.
The example below is on a RHEL 6 server.<br />
<br />
<br />
To be able to mount NFS share you will need the following packages.<br />
autofs<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg-lf-evi5e7XzCl98d_D-fQ1rJUuFcBdQM6s6jirB2J281Xt6TK1nmOwL8WfItlBjK2M4WimH7l4FHkOEvAAC6HT6XkralQG0hR4iLBlqotUQJ_YOqb5L5JHd4rTd0V2r5kvOTvBd84A/s1600/linux-logo.jpg" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg-lf-evi5e7XzCl98d_D-fQ1rJUuFcBdQM6s6jirB2J281Xt6TK1nmOwL8WfItlBjK2M4WimH7l4FHkOEvAAC6HT6XkralQG0hR4iLBlqotUQJ_YOqb5L5JHd4rTd0V2r5kvOTvBd84A/s200/linux-logo.jpg" width="147" /></a>nfs-utils<br />
nfs-utils-lib<br />
<br />
Dependencies:
<br />
Hesiod
<br />
keyutils
<br />
libgssglue
<br />
libtirpc
<br />
python-argparse
<br />
rpcbind<br />
<br />
Install the packages<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>yum install autofs nfs-utils nfs-utils-lib</b></div>
<br />
To enable NFS shares you must add them to the /etc/fstab file. Example below.<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
10.12.12.8:/share /export/share nfs noauto,nosuid,nodev,noguid,noxattr,timeout,sloppy 0 0<br />
10.12.12.6:/cifs /export/cifs nfs noauto,nosuid,nodev,noguid,noxattr,timeout,sloppy 0 0<br />
repos:/linux_repos /export/repos nfs auto,ro,nosuid,nodev,noguid,noxattr,timeout,sloppy 0 0</div>
<br />
To setup the automount funtion you need to edit the auto.home and auto.master files.<br />
Add the hostname or IP address line to /etc/auto.home<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
* 10.10.10.2:/home/&</div>
<br />
Add this line to /etc/auto.master<br />
<div style="background-color: white; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
/export/home /etc/auto.home -nolock,nosuid,noguid,nodev,nobrowse,noxattr --timeout 10</div>
<br />
Restart services<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>service autofs restart</b><br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>service rpcbind start</b><br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server><b> </b></span><b>service nfs start</b></div>
<br />
Ensure that autofs starts at boot<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span>
<b>chkconfig –list autofs</b></div>
<br />
<b>Make mount points</b><br />
Make the mount pint for all the mount points listed in the /etc/fstab file..<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>mkdir /export/share</b><br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server> </span><b>mkdir /export/cifs</b><br />
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server> </span><b>mkdir /export/repos</b></div>
<br />
<br />
<div style="background-color: lightblue; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<b>Note</b>- make sure any host names used are added to the /etc/hosts file.</div>
<br />
After following the steps above evey should be working. test the configuration by loggingin or becoming a user with a non local home directory. Also try to mount the shares.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>mount /export/share</b></div>
<br />
Check to see if the mount was successful.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">server></span> <b>df -h | grep share</b><br />
Filesystem Size Used Avail Use% Mounted on<b></b><br />
10.12.12.8:/share 9.8G 1.9G 7.5G 20% /export/share</div>
<br />
Please let me know if you have any questions.<br />
<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-43312040863894529352016-05-20T14:52:00.002-04:002016-09-23T00:33:49.864-04:00Getting Cut & Paste to work in VNC<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjuxyX3BwV2Xt7X0PSVAQOs-2EbjAVP0Wq6FpxALmN7Uo4bzs_sKaCwnK333dAoi0AgjqkbxNCeD7iBPBsCjxsCd23ZnKinYXsYk2Rp2K_hrvTxHU-sbVlanPDY5gcDbE9jUYoMv988Vw/s1600/download.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjuxyX3BwV2Xt7X0PSVAQOs-2EbjAVP0Wq6FpxALmN7Uo4bzs_sKaCwnK333dAoi0AgjqkbxNCeD7iBPBsCjxsCd23ZnKinYXsYk2Rp2K_hrvTxHU-sbVlanPDY5gcDbE9jUYoMv988Vw/s200/download.png" width="200" /></a></div>
Sometimes the ability to use cut and paste stops working between your <a href="https://www.realvnc.com/">VNC</a> session and the your computer. To get cut and paste to work again just run the following command on the terminal.
<br />
<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>vncconfig &</b></div>
<br />
The vncconfig command lunches the vncconfig utility which controls the clipboard function needed for cut & paste to work. Just make sure all the check boxes are checked when the vncconfig utility comes up and cut & paste should start working again.
tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com0tag:blogger.com,1999:blog-764199448118813007.post-34409380379811050582016-05-17T09:19:00.001-04:002016-05-17T09:19:23.701-04:00Reset Admin account on Security Center<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgp29NNLHtAIeSOftzMIpK4n9QEg5eimyu4nZQTkZdjYxiEIHyz_m1EsjsO7NSVyda4JCRKTsbBrx6Zh1Jge1Zy7ipvOGSvepC9Z7ph4mFVebgvkUuRIlIrIOyk8N7_xrPVbNuU_y_V-Q/s1600/securitycenter_2.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgp29NNLHtAIeSOftzMIpK4n9QEg5eimyu4nZQTkZdjYxiEIHyz_m1EsjsO7NSVyda4JCRKTsbBrx6Zh1Jge1Zy7ipvOGSvepC9Z7ph4mFVebgvkUuRIlIrIOyk8N7_xrPVbNuU_y_V-Q/s1600/securitycenter_2.png" /></a></div>
The other day I got locked out of my admin account for the Security Center 5 from Tenable. In order to get back into the system I needed to reset the admin password. Below I show how to reset the admin password on Security Center 5. For this to work you must have elevated privileges, such as root.<br />
<br />
Reset the admin account password<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>sqlite3 /opt/sc/application.db "update userauth set password = 'bbd29bd33eb161d738536b59e37db31e' where username='admin';"</b></div>
This command sets the admin password to password<br />
<br />
Clear login failures.<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>sqlite3 /opt/sc/application.db "update userauth set failedLogins='0'
where username='admin';"</b></div>
<br />
Unlock the admin account<br />
<div style="background-color: #dddddd; border: 1px solid rgb(221, 221, 221); display: block; padding: 0.66em 0.91em 0.91em 0.66em;">
<span class="Apple-style-span" style="color: red;">root</span>@<span class="Apple-style-span" style="color: blue;">earth></span> <b>sqlite3 /opt/sc/application.db "update userauth set locked='0' where
username='admin';"</b></div>
<br />
After following these steps you will be able to login to the admin account with the password set to password. If you have any questions or comments please post them below.<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com7tag:blogger.com,1999:blog-764199448118813007.post-4085409640789157412016-04-28T22:36:00.000-04:002016-04-28T22:45:31.836-04:00Make Money While You Sleep<div class="separator" style="clear: both; text-align: center;">
</div>
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhbwts_7-U7k0pw5Dnf-xitMNDOCt3KSzgS_uZJUs1YKSl1zA7k_t_A6Y0tYRXbM_shzlLh_sZb3E_iaxoh86jvu5VAZ6ywbejE9f5LLGBrPmjD79T_yMFAowHs3aE9ipvYgkO3vkGKgQ/s1600/Screen+Shot+2016-04-28+at+8.48.04+PM.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhbwts_7-U7k0pw5Dnf-xitMNDOCt3KSzgS_uZJUs1YKSl1zA7k_t_A6Y0tYRXbM_shzlLh_sZb3E_iaxoh86jvu5VAZ6ywbejE9f5LLGBrPmjD79T_yMFAowHs3aE9ipvYgkO3vkGKgQ/s1600/Screen+Shot+2016-04-28+at+8.48.04+PM.png" /></a>There are a lot of apps for making money with your smartphone or tablet. It doesn't matter whether you use iOS or Android. Money Making Apps are almost everywhere. Today I want to tell you about an app called Swagbucks TV from Swagbucks. The Swagbucks TV app which pays you for watching videos and is available on both iOS or Android.<br />
<br />
<b>Well how does it work?</b><br />
In order to start earning money you need to signup for an account with Swagbucks. You can use the app to to create an account, but I would sign up for an account on the <a href="http://www.swagbucks.com/">Swagbucks</a> website, because it is easier. The app plays an ad and then plays a video. This continues until you stop the player. The app sometimes puts a cap on how much you can earn a day or in one sitting. After you're signed in your account you select a category and start a video. The categories are Featured Videos, Recipes (cooking), Entertainment, Fashion, Health, Home and Garden, Music, News, Travel, and Celebrity. If you like any the watching videos for the above mentioned, great enjoy making little money with this app.<br />
<br />
<b>How do you make money while sleeping?</b><br />
Before you go to sleep start playing videos with the app. Turn off the sound and turn down the screen brightness. When you wake up you earned some coin. You can also play some videos on your computer from the Swagbucks website as well, if you really want to milk this thing.<br />
<br />
<b>Links to apps</b><br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgAUl2QMjDQ9WiPUOWGMp7n8ZIwyXaIAQrfSA23qIWCAXYvHu73TGF99BZfYfFVscuk7pS2LGyJqPAyqs_mAuYR6a-__RB5dfkpIuVOkEvuBFM8khUWqSOa_yCB7PvRIRjoaqjVRzCTDA/s1600/Screen+Shot+2016-04-28+at+8.50.48+PM.png" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgAUl2QMjDQ9WiPUOWGMp7n8ZIwyXaIAQrfSA23qIWCAXYvHu73TGF99BZfYfFVscuk7pS2LGyJqPAyqs_mAuYR6a-__RB5dfkpIuVOkEvuBFM8khUWqSOa_yCB7PvRIRjoaqjVRzCTDA/s1600/Screen+Shot+2016-04-28+at+8.50.48+PM.png" /></a><br />
<a href="https://itunes.apple.com/us/app/swagbucks-tv/id579119692?mt=8">Swagbuck TV for iOS</a><br />
<a href="https://itunes.apple.com/us/app/swagbucks-tv/id579119692?mt=8">Swagbuck for iOS</a><br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8jo7kb6RcORXou6dYS_ghmWJw0xcVpoVwsLDkRaFeCehXfVG_AvNL5VvvsZPazl4CeEp9LaQjSMoKMIlvR34W1xL0sHpjxvOcF8LjRfY2GqNEntUw2C3yENm0GzHstGGgEK5v18UCbw/s1600/Screen+Shot+2016-04-28+at+9.06.24+PM.png" imageanchor="1" style="clear: right; float: right; margin-bottom: 1em; margin-left: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg8jo7kb6RcORXou6dYS_ghmWJw0xcVpoVwsLDkRaFeCehXfVG_AvNL5VvvsZPazl4CeEp9LaQjSMoKMIlvR34W1xL0sHpjxvOcF8LjRfY2GqNEntUw2C3yENm0GzHstGGgEK5v18UCbw/s1600/Screen+Shot+2016-04-28+at+9.06.24+PM.png" /></a><br />
<a href="https://play.google.com/store/apps/details?id=com.swagbuckstvmobile.views&hl=en">Swagbuck TV at Google Play</a><br />
<a href="https://play.google.com/store/apps/details?id=com.prodege.swagbucksmobile&hl=en">Swagbuck app at Google Play</a><br />
<br />
<br />
<br />tonyhttp://www.blogger.com/profile/08690593208452689503noreply@blogger.com1