Email from my hosting provider

Posted by Harith on Wednesday, June 16, 2010 · Leave a Comment

Salam,

Selama aku dpt email dari hosting provider aku dan nak share dgn hampa semua.. ;)

------------------------------------------------------------------------------------------------------------

Dear our valued customer,

It is extremely important to secure your PHP and keep your PHP version up to date in order to minimize security vulnerabilities.

Here are the security enhancements we recommend you to apply:
1. Install and configure ModSecurity.
ModSecurity is an open source intrusion detection and prevention engine for web applications. Operating as an Apache Web server module, the purpose of ModSecurity is to increase web application

security, protecting web applications from known and unknown attacks.
2. Install PHP HardenedPHP patch.
The hardenedPHP patch is a patch that adds security hardening features to PHP to protect your servers on the one hand against a number of well known problems in PHP applications and on the other

hand against potential unknown vulnerabilities within those applications or the PHP core itself.
3. Keep your Plesk version and application version up to date.

**NOTE: mod_security and Suhosin were not tested completely with Plesk Sitebuilder. It is recommended to disable mod_security and Suhosin on the publishing server if you are using Plesk Sitebuilder.

Step of installation for mod security:
1. Download yum repo and install the mod security using yum
                        # wget -q -O – http://www.atomicorp.com/installers/atomic.sh | sh
                        # yum install mod_security
2. Download the mod security rules and apply it.
                        # cd /etc/httpd/modsecurity.d && wget http://downloads.prometheus-group.com/delayed/rules/modsec-2.5-free-latest.tar.gz
                        # tar –xvvzf modsec-2.5-free-latest.tar.gz
3. Removed unwanted rules/
                        # cd /etc/httpd/modsecurity.d && rm -Rf 00_asl_rbl.conf 00_asl_whitelist.conf
4. Restart apache service
                        #/etc/init.d/httpd restart

Step of installation for Suhosin
1. Download suhosin and install it
                        #cd /usr/local/
                        #wget http://www.hardened-php.net/suhosin/_media/suhosin-0.9.18.tgz
                        #tar -zxvf suhosin-0.9.18.tgz
                        #cd suhosin-0.9.18
                        #phpize
                        #./configure
                        #make && make install
2. Adding a load directive to php.ini
                        #extension=suhosin.so
3. Restart apache service
                        #/etc/init.d/httpd restart

If you have any further enquiries, please feel free to submit us a ticket at http://247livesupport.biz.
Thank you!

Regards,
247livesupport.biz's Technical Team

------------------------------------------------------------------------------------------------------------

Ubuntu 10.04 LTS sudah lepaskan

Posted by Harith on Thursday, April 29, 2010 · Leave a Comment

Ubuntu 10.04 LTS sudah dilepaskan, pakat-pakat download. Untuk pengguna internet dari Malaysia, boleh guna mana-mana mirror di Malaysia. Senarainya boleh di tengok kat sini ( http://ubuntu.harisfazillah.info/2009/11/ubuntu-mirror-download-servers-for.html )

p/s: tengah download ni.....tak sabar2 lak.. ;)

FreeBSD command to stop IPFW Firewall

Posted by Harith on Friday, February 12, 2010 · Leave a Comment

To stop the firewall, issue the command: # /etc/rc.d/ipfw stop
To disable firewall remove following line from /etc/rc.conf file: firewall_enable="YES"
OR set it as follows:

firewall_enable="NO"

Optimize PHP Linux Web Server

Posted by Harith · Leave a Comment

Open php.ini configuration file.

vi /etc/php.ini

Find and change to following value:-

max_execution_time = 30
max_input_time = 30
memory_limit = 40M
post_max_size = 8M
upload_max_filesize = 2M
file_uploads = Off (Turn off if it really not use.)
cgi.force_redirect = 0
allow_url_fopen = Off
sql.safe_mode = Off

Reload Apache, using following command:-

server httpd reload

/etc/init.d/httpd reload

Suggestion #1 for my final year project : Cloud Computing

Posted by Harith on Monday, February 8, 2010 · Leave a Comment

Now i thinking to develop could computing, i don't sure how to be done. Maybe start with private cloud computing first and more research need to be done too.... Looks ubuntu cloud much easier, now in stage installing Ubuntu server....hahhaa...pening kepala edeng..

namebench : DNS Benchmark Utility

Posted by Harith on Friday, February 5, 2010 · Leave a Comment

Namebench use to find out the fastest DNS servers available for your computer to use. Namebench run benchmark using your web browser history, tcpdump output, or standardized datasets in order to provide an individualized recommendation.

This is the result from my benchmarking

I got Google Public DNS is the fastest and followed by P1 DNS server... maybe Google DNS server it the fastest in term of speed, but from my experience, Level 1 (4.2.2.1,4.2.2.2,4.2.2.3,4.2.2.4) DNS server the fastest propagated DNS.

To install:-

Download here.

tar -zxvf namebench-1.0.5.tgz
cd namebench-1.0.5/
python setup.py install
./namebench.py

ip_conntrack: table full, dropping packet

Posted by Harith · Leave a Comment

Happen on my old freaking old server this afternoon....i unable to SSH into server at all...and need to physical access and here what i got after plugged the monitor...

ip_conntrack: table full, dropping packet

keep coming and coming... to solve this issue, i need to increase it value..but before that need to check current value first. To do so, need run following command.