Featured »

March 2, 2022 – 2:00 pm

Books have been written on the subject of awk and sed. Here’s a small sample of commands I put together over the years that are useful for everyday system administration tasks. Most of these tasks …

Read the full story »
Networking

Unix and Linux network configuration. Multiple network interfaces. Bridged NICs. High-availability network configurations.

Applications

Reviews of latest Unix and Linux software. Helpful tips for application support admins. Automating application support.

Data

Disk partitioning, filesystems, directories, and files. Volume management, logical volumes, HA filesystems. Backups and disaster recovery.

Monitoring

Distributed server monitoring. Server performance and capacity planning. Monitoring applications, network status and user activity.

Commands & Shells

Cool Unix shell commands and options. Command-line tools and application. Things every Unix sysadmin needs to know.

Home » Archive by Category

Articles in SysAdmin

Anatomy of Internet Bullshit

June 25, 2019 – 11:12 am
yyamsb8x7dou2n5x9abhju9dffi

Here’s an oldie from two years ago that reared its ugly head on Pocket: Starting Your Day on the Internet Is Damaging Your Brain, by Srinivas Rao. The author presents his personal opinion that reading …

Late Night Rant: College Admissions Scandal

June 23, 2019 – 11:11 am
vwnz1i4nkpz6wqtxr00pse2xwea

This is America: you’re either a duper or a dupee. I’m a duper. You guys are the dupees.
— Frank Reynolds (Danny DeVito), It’s Always Sunny in Philadelphia
How will the 2019 college admissions scandal work out? …

Adding and Removing sshd instances on CentOS 7

June 20, 2019 – 11:09 am
gtmwo2mvag6419w36e4wqir67iu

As a follow-up to my previous post about adding sshd instances on CentOS 5 & 6, here’s a script that does the same on RHEL/CentOS 7.

Adding and Removing sshd instances on CentOS 6

April 20, 2019 – 8:24 pm
Photo-2019-03-25-20-44-06_2465

This is a process and a couple of script to allow you to setup an additional sshd service on an alternate port.

Creating a Chroot Jail for SSH Access

April 17, 2019 – 4:51 pm
Photo-2019-03-25-16-55-55_2462

Just a quick collection of notes on – rather than a definitive guide to – setting up an SSH chroot jail on RHEL 6. The same should work on RHEL 7 and unrelated flavors. For …

The Unix Oriental

April 14, 2019 – 4:16 pm
17516F9C-988D-4D42-A460-6E4D9C9F5A27s

Placed quite appropriately in the “Security” category – my favorite Oriental cocktail recipe. Distinguishing it from the classic preparation, are absence of sweet vermouth and lime juice, as well as addition of just a couple …

Notes on ownCloud configuration

April 12, 2019 – 4:13 pm
Photo-2019-03-22-23-20-20_2454

The ownCloud file sharing application has been around for some time now, but somehow evaded my attention. My limited imagination makes me say “think of it us Dropbox hosted on the server in your basement”.

Encrypting Log Data During Log Rotation

April 9, 2019 – 4:12 pm
zbndpnm52bwk2uvwwyu9uomvglc

Most log files do not contain personally-identifiable information or other sensitive data. And even if they do, encryption of all personal data is not mandatory under GDPR. Still, on occasion, for testing and troubleshooting purposes …

DevOps Obfuscation

April 6, 2019 – 4:10 pm
1wwk5j68lvbgnevinwc1w265zqd

Some years ago I’ve been reading “DevOps in Straight English” by Magnus Hedemark  and encountered the Release Frequency vs. Risk chart that supposedly illustrated the advantages of DevOps. It seemed convincing enough to not give …

Gnuplot with Bash

April 2, 2019 – 4:08 pm
4804B26A-4735-42D4-AAA8-AF5DAADA39E9

OK, so both of these things have been around forever and will be around long after we’re gone. It’s worth your time to learn how to use the to together.

Multi-Dimensional Arrays in Bash

March 30, 2019 – 4:06 pm
DFBC10D0-9D8E-4A91-996A-CFD4E2CF0487

Bash does not support multi-dimensional arrays, but there is a way to imitate this functionality, if you absolutely have to.

Asciinema Notes

March 27, 2019 – 4:04 pm
4yryncu3ahxlkekwi1mt5kns1i7

Asciinema is an awesome tool for recording your console sessions. It’s great for documenting processes and, in general, showing people how shit works: one look is worth a thousand words, as they say. Unfortunately, I …

Late Night Rant: Facebook

March 25, 2019 – 4:15 pm
Photo-2019-03-23-01-15-56_2459

According to media reports, since 2012, millions of Facebook and Instagram logins and plaintext passwords have been sitting on some internal Facebook system, accessible by  thousands of the company’s employees.

Measure DNS Server Performance

March 25, 2019 – 4:04 pm
Tangled FX 2.1.2 (Jan 10, 2019 at 6:31:40 PM) B & W Etching preset

This is not an entirely proper way to benchmark a DNS server, but, in a pinch, it should give you some idea of its responsiveness and stability.

File Compression Testing

January 27, 2019 – 5:29 pm
IMG_2308

For some reason I haven’t used zip much on Linux, sticking to the standard tar/gzip combo. But zip seems to be a viable alternative. While not as space-efficient, it is definitely faster; syntax is simple; …

Killing Process Network Access

January 27, 2019 – 4:45 pm
IMG_1941[1]

Imagine this scenario: a particular process on your server is connecting to a host outside your internal network and you don’t like that. On the other hand, you can’t just kill that process because you need it.

Installing t CLI power tool for Twitter

January 21, 2019 – 4:41 pm
k0c1xg3f9erebub0aeel9842kih-1[1]

The ‘t’ is an excellent Ruby-based CLI utility for interacting with the Twitter API written by Erik Berlin. This is certainly not the only such tool available, but, in my estimation, it is the most full-featured and expertly-written. No amateur-hour coding here.

Keeping Abreast with Filesystem Changes

January 17, 2019 – 4:39 pm
4bh5tzr851pq7wca4n9e6zus2fn[1]

The inotify is a Linux kernel sybsystem for notifying user-space applications of filesystem changes. I always thought this exceptionally handy utility was under-appreciated or at least underutilized.

Inventory Network Services with Nmap

January 14, 2019 – 4:32 pm
dg7fhku552hsa11yayxb6voyf3i

With the growing number of network-enabled devices in your home, meaningful security becomes elusive. The first step to addressing the situation is knowing what you have. A few examples below use the nmap utility to scan your local network and detect active devices and services.

The Facebook Fracas

January 9, 2019 – 4:48 pm
gaabtjyr7kjlsqt1dsziphakwvj[1]

The Facebook privacy saga is getting ridiculous. You’re using a free service that you signed up for – nobody was holding a gun to your giant head. And it’s not Gulag either: just delete your profile, uninstall the damned app, and forget Facebook ever existed.

Removing Chef Server Installation

January 9, 2019 – 4:44 pm
House cleaning product on wood table

Just a quick note on how to completely remove (more or less) Chef server installation from a CentOS/RHEL box.

Auto-Update /etc/hosts

January 9, 2019 – 4:39 pm
rkhctxih1a1jdqh7x0cgs00ljh5[1]

This was a silly solution to a silly problem, but may come in handy in the future for other things. A user process was establishing frequent connections to a handful of FQDNs. Not having any IP caching capability, every connection attempt was preceded by DNS lookup.