20121220

openldap: bdb_equality_candidates: (uidNumber) not indexed

This article was a big help

Tested on Debian v6.0.6


  1. Stop the LDAP server:
    /etc/init.d/slapd stop
  2. Open the right OpenLDAP config file with an editor:
    vi /etc/ldap/slapd.d/cn\=config/olcDatabase\=\{1\}hdb.ldif
  3. Add new lines (after the one with olcDbIndex: objectClass eq in it) for the missing indexes. Eg.:
    olcDbIndex: cn eq
    olcDbIndex: gidNumber eq
    olcDbIndex: memberUid eq
    olcDbIndex: uid eq
    olcDbIndex: uidNumber eq
    olcDbIndex: uniqueMember eq
  4. Run the OpenLDAP indexer for your configuration:
    slapindex -F /etc/ldap/slapd.d/
  5. Fix file permissions in your OpenLDAP database:
    sudo chown -R openldap:openldap /var/lib/ldap
  6. Start the LDAP server:
    /etc/init.d/slapd start

20121109

VCenter 5 & Oracle 11g - Waiting for vpxd to initialize: .failed

So I have a VMWare vCenter v5 appliance connected to Oracle 11g database but I noticed I couldnt login to the vSphere client. I ssh'd to vCenter and found out vpxd process was down. When I manually tried to start it I got and error.

vcenter:~ # /etc/init.d/vmware-vpxd start
Waiting for vpxd to initialize: .failed


Its fails to start... why?

So I tried to start it from the vCenter web console and I got 
"ORA-28001: the password has expired"

I decided to login to Oracle DB and check ...yup....I found out my user account is expired.

SQL> select username,account_status from dba_users;

USERNAME       ACCOUNT_STATUS
------------------------------ --------------------------------
SYS       OPEN
SYSTEM       OPEN
VPXADMIN       EXPIRED



So first I setup a new password
"alter user VPXADMIN identified by MYNEWPASSWORD;"

And I dont need passwords to expire on the server so I fixed that by running

"ALTER PROFILE DEFAULT LIMIT PASSWORD_LIFE_TIME UNLIMITED;"



20121031

chroot SSH arch linux

I used this article to help me setup chroot
http://allanfeid.com/content/creating-chroot-jail-ssh-access

but i kept getting error with ssh

"You don’t exist, go away!"


this is how i fixed it:

ln /etc/passwd /var/jail/etc/
ln /etc/group /var/jail/etc/

The key part now is you need both of these paths!

cp /usr/lib/linnss_* /var/jail/usr/lib/
cp /lib/libnss_* /var/jail/lib/


Then i got this error when i tried ssh again.
"PRNG is not seeded"

fixed it by running.
mknod /var/jail/dev/urandom c 1 9

now i get "host key verification failed", so i had to run
mknod -m 666 /var/jail/dev/tty c 5 0



eef! an hour lost searching for an answer online. I hope this helps someone.

20121009

epanel v1.3.1 released

https://sites.google.com/site/forgothename/notes/epanel

pushkey v1.1 released


Pushes your ssh key to a remote location. It tries to create a .ssh folder remotley then it adds your ssh key to authorized_keys. 
It also applies the correct permissions on the folder and file. 
If your ssh key does not exist then it will go through the process of creating one for you.


https://github.com/abiheiri/pushkey/downloads

20121005

slackware 14 x64 - tagfile

I created a slackware v14 x64 tagfile as a minimal install. It is only 540M.

here: http://goo.gl/AyX4s

Untar the file somewhere and during "setup" you will see install options full, menu, expert and tagpath.
Choose tagpath and specify the path of where you untared the files.

ie. /tmp/tags/slackware64/

To mount this file during install you have several options. One option is  .iso mount, another is
wget http://goo.gl/AyX4s

When i was on virtualbox i did something interesting.
I added two cdrom drives, one for install cd and one for the tagfile.iso.

I ran dd on my desktop:
dd if=tarfile.tar of=tarfile.iso

I added the iso in the virtualbox cdrom

during slackware live cd shell i ran
cat /dev/cdrom0 > /tmp/mytarfile.tar

cat /dev/cdrom0 showed me the whole contents of tar so that's how i knew what was in it.

20120825

arch linux install - 2012.08.04


Oh arch linux, sometimes you make me want to punch myself in the face.

How to install Arch - https://wiki.archlinux.org/index.php/Installation_Guide.

Unfortunately I had problem with Grub. This is how I resolved it.


grub-install /dev/sda

grub-mkconfig -o /boot/grub/grub.cfg  


Configure LVM

  • Make sure you change USELVM="no" to USELVM="yes" in /etc/rc.conf. The rc.sysinit script that parses the USELVM variable entry will accept either yes or YES, however it will not accept mixed case [This is fixed in latest release].
  • Make sure that lvm2 is in the HOOKS section of /etc/mkinitcpio.conf just before the filesystems so that your kernel will find LVM volumes at boot time.
  • If your root filesystem ( "/" ) is put onto a logical volume, make sure regenerate kernel image based on above modified /etc/mkinitcpio.conf by using below command so that bootloader can find your root during booting
     cd /boot 
     mkinitcpio -p linux 

20120817

mac remote desktop without installer v2.1.1

tested on MacOS X mountain lion 10.8


open /Volumes/RDC/RDC\ Installer.mpkg/Contents/Packages/RDC_all_rdc.pkg/Contents/Archive.pax.gz



source:
http://www.wezm.net/technical/2009/03/mac-remote-desktop-connection-without-installer/

20120525

Things I learned from ampache 3.5.4-9 and debian 6.0.4

aptitude install mysql-server-5.1 ampache

During install it will setup root for mysql. Dont use a password that includes a single quote ( ' ) it will fail and not tell you. If you messed up you can rerun by doing dpkg-reconfigure mysql-server-5.1


fix flash streaming (do both)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601688
http://ampache.org/forums/viewtopic.php?f=2&t=2790&start=15

20120422

set firefox as default browser using update-alternatives

Firstly if you run 'update-alternatives --get-selections', you will notice that there is a list of generic names pointing to your main web browser.


gnome-www-browser
x-www-browser
www-browser


So I will want to point all those to use firefox as default, and i will create a also new group called firefox so it can make a handy symlink to /usr/bin/firefox




update-alternatives --install (symlink path) (this is the generic name from get-selections) (this is where the binary really is) (this is priority level)


So the first part actually makes the change.
update-alternatives --install /usr/bin/gnome-www-browser gnome-www-browser /usr/lib/firefox/firefox-bin 10


this actually lets me now choose my new added firefox
update-alternatives --config gnome-www-browser


update-alternatives --install /usr/bin/x-www-browser x-www-browser /usr/lib/firefox/firefox-bin 10
update-alternatives --config x-www-browser


update-alternatives --install /usr/bin/www-browser www-browser /usr/lib/firefox/firefox-bin 10
update-alternatives --config www-browser 


update-alternatives --install /usr/bin/firefox firefox /usr/lib/firefox/firefox-bin 10


Run all these commands and you should be good to go.


Tested on Debian 6.04

20120108

I prefer pushkey over ssh-copy-id

Pushes your ssh key to a remote location. It tries to create a .ssh folder remotley then it adds your ssh key to authorized_keys.
It also applies the correct permissions on the folder and file.
If your ssh key does not exist then it will go through the process of creating one for you.


Tested and working on debian, ubuntu, redhat, centos, suse, freebsd, openbsd (requires bash shell)

goo.gl/wMG4J