A web and systems development journal (from a–too busy–web developer who does a lot of various IT work.)
Here's a proper way of installing PECL runkit on centos.
cd /usr/local/src/ git clone https://github.com/zenovich/runkit.git cd runkit phpize ./configure make make install
Now edit your php.ini
vi /usr/local/lib/php.ini
Add the following under your extension= listings.
; PECL runkit extension=sorunkit.so
Now restart Apache.
service httpd restart
That's it.
Alright... Kinda off topic.
XBMC is my favorite media center, and the default skin Confluence is pretty dated--i.e. the icons/interface haven't been updated in forever.
I did try other skins, but mouse support wasn't anywhere near as good as the default skin Confluence--I use a logitech touch mouse and no keyboard.
Anyhow...
A quick way to apply a patch to a drupal file or module is as follows:
cd locations/of/module/ #or cd locations/of/file/ wget https://www.drupal.org/files/issues/some.patch cat some.patch | patch -p1
That's it.
This still hasn't been fixed at the time of this writing. So here we go...
Sort breaks, and does unpredictable sorting, if you use more than 20 options. E.g. say you have have an exposed grouped filter with a price drop down of more than 20 options, sorting will not work after 20 items, it will always spit out a different order than what you specify.
Edit the following Views module file:
sites/all/modules/views/handlers/views_handler_filter.inc
Look for this:
'#delta' => 10
Replace with this:
'#delta' => 60
To Change the "Sender" info we have to do the following:
cd /usr/local/directadmin/data/templates/custom/ cp /usr/local/directadmin/data/templates/virtual_host2.conf /usr/local/directadmin/data/templates/custom/ cp /usr/local/directadmin/data/templates/virtual_host2_secure.conf /usr/local/directadmin/data/templates/custom/ sed -i 's/`USER`@`DOMAIN`/no-reply@`DOMAIN`/g' ./virtual_host2*.conf echo "action=rewrite&value=httpd" >> /usr/local/directadmin/data/task.queue /usr/local/directadmin/dataskq d
Here is my optimized Apache 2.4.x httpd.conf:
Credits: gregrickaby/The-Perfect-Apache-Configuration: https://github.com/gregrickaby/The-Perfect-Apache-Configuration
NOTICE: Adjusted the <ifmodule filter_module=""> portion, to be compatible with Apache 2.4.
Before:
FilterProvider COMPRESS DEFLATE resp=Content-Type $text/html
After:
By default apache loads a bunch of encryption protocols. Most of which either are insecure and/or slow.
The location of these settings are based on DirectAdmin's Apache 2.4.x, however, you should easily be able to locate them in your apache .conf files.
vi /etc/httpd/conf/extra/httpd-ssl.conf
Now comment out the default SSL settings and add new ones as shown below:
Recently my IP address was blacklisted by directadmin on my own server. Here's a how-to that may save you time, in case you're unable to login to DirectAdmin.
cd /usr/local/directadmin killall -9 directadmin ./directadmin b2000
Now try to log into directadmin. You should see the reason why you are unable to. For me it was "Blocking blacklisted IP xxx.xx.xxx.xxx"
Let's install GraphicsMagick!
cd /usr/local/src wget ftp://ftp.graphicsmagick.org/pub/GraphicsMagick/GraphicsMagick-LATEST.tar.gz tar xvfz GraphicsMagick-LATEST cd GraphicsMagick-* ./configure --enable-shared make make install
Let's test it.
gm version
If you get this error:
gm: error while loading shared libraries: libGraphicsMagick.so.3: cannot open shared object file: No such file or directory
Do this to fix:
echo "/usr/local/lib" >> /etc/ld.so.conf ldconfig
Ok... Let's install GMagick PHP extension
Here's the 2014 version on how-to install Apache Solr 4.10, alongside Apache Tomcat 7, to help out with things like Drupal faceted search.
Ok... let's do this.
yum install java-1.7.0-openjdk # or aptitude install java7-jdk
Done--that was quick.
Get the latest version of Tomcat here:
http://tomcat.apache.org/download-70.cgi
Let's assume that we already have a primary physical drive in our system (HDD or SDD), and have added a second drive to our box, which we need to partition and mount automatically on boot.
Here's how to that:
ls /dev/sd*
Since this is our 2nd drive, you should see /dev/sdb.
Example:
/dev/sda /dev/sda1 /dev/sda2 /dev/sda3 /dev/sdb
Let see the currently mounted drives and partition layout:
lsblk -o NAME,FSTYPE,SIZE,MOUNTPOINT,LABEL
Here's a full list of all available lsblk options:
Recently our /etc/fstab got screwed up preventing us from SSH-ing into the server after a reboot. So we were given KVM access to our server.
Once seting up Java to allow unsigned certificates--hint: under the Java Control Panel click the "Security" tab, and slide the "security level" to the bottom "Medium" . We were then greated with a message:
'give root password for maintenance or press ctrl+d to continue"
Come to find out CTRL-C and CTRL-V doesn't work, you have to type the pass by hand--this was very tedious since my root pass is extremely complex.
So once in I soon realized that the system was mounted as "read-only"; meaning that you couldn't make any changes to it; or in other words, completely useless at this state.
These are some of the basic things I do when I setup a new server
With each version of DirectAdmin, new configuration values are introduced that you may not know about. To see ALL these values do the following:
/usr/local/directadmin/directadmin c | sort -n
You can essentially copy/paste the entire results into your /usr/local/directadmin/conf/directadmin.conf replacing anything else in there.
source: http://help.directadmin.com/item.php?id=15
If you don't own a certificate, you can create your own with letsencrypt.com:
For security reasons, it's recommended to disable recursive DNS lookups. Here is how:
Find out your named version
named -v
If your BIND version is at least 9.x then insert the following, between options { }:
// Deny recursive lookups
allow-query { any; };
allow-transfer { none; };
allow-recursion { localhost; };
recursion yes;
So it looks like something like this:
Source: https://help.poralix.com/articles/how-to-block-ips-with-csf-directadmin-bfm
cd /usr/local/src wget http://www.configserver.com/free/csf.tgz tar -xzf csf.tgz cd csf ./install.directadmin.sh
Now login as Admin into directadmin or WHM, and click the link ConfigServer Security & Firewall
You'll probably want to add your WAN IP here--you can find out what it is here: http://www.ip-secrets.com/
Then add your WAN IP into Quick Allow column.
If you ever created domain pointers in DirectAdmin, you may have wondered how to set the domain pointer NOT to process email locally.
For instance say you have PRIMARYDOMAIN.com as the main domain under your DirectAdmin account--and it is set NOT to process emails locally, but rather have an external email server handle that; Under MX Records you un-checked "Use this server to handle my emails. If not, change the MX record and uncheck this option". So now you decided to create a "domain pointer" under that same account for another domain SECONDARYDOMAIN.com ... You set the proper MX records for this domain pointer under DNS settings, pointing to the external mail server, and think you're all good to go...
So... A couple of years ago I purchased a Thunderbolt capable motherboard (Gigabyte GA-z77X-UP5), and an Apple's 27-in Thunderbolt Display--rather than it's (now-discontinued) Apple LED Cinema display--to go along with my Apple iMac 2010 (as a dual-display setup) which I was primarily using as an LED monitor for my Windows 7/8 PC. Boy was that a mistake... LOL . Thunderbolt support on non-Apple computers was TERRIBLE back then. Maybe it still is terrible still, but I got some good news after all this time. More after the break.
Your server sends out a lot of email to user root. For example, CSF (ConfigServer Security & Firewall) sends out most security notifications to root.
So, this is how we specify what email address root emails go to:
vi /etc/aliases
Scroll to the bottom, and add or replace existing:
root: [email protected]
Save and exit, then reload the aliases:
newaliases
Another option is to create a ~/.forward file and put your email address in it.
Example: Say I'm logged in as root.
vi ~/.forward
This will create (or edit an exising) file:
/root/.forward
Next we add the email address we want root emails forwarded to:
[email protected]
Now restart exim.
As a server administrator, I rely mostly on root or sudo access--allowing me absolute control of the server. However, "with great power, comes great responsibility!"
You can easily accidentally do this devastatingly bad command of wiping your entire system clean.
rm -rf / # or rm -rf /*
Which looks almost identical to the popular command
rm -rf ./ # or rm -rf ./*
There was a recent prank on 4chan /b/ forum that, in short, instructed users to execute the above command in order to "unlock Apple OS X bitcoin mining".
I recently ran into this problem of iTunes NOT seeing my iPhone or iPad, even though Windows 8 recognized it with no problem.
Well, come to find out, somehow the "Apple Mobile Device USB Driver" drivers got uninstalled and only Microsoft Windows 8 drivers "Portable Devices" MTP USB Device driver existed.
Say you're on CentOS 5.x, and want to pimp out your bash prompt using the pretty awesome Solarized color scheme. Well, there's a nice .bashrc Solarized setup here: https://github.com/seebi/dircolors-solarized. To use all the features of dircolors.256dark version, you'll need GNU coreutils 8.5 or higher, otherwise you'll get errors like this:
I found an interesting discovery with Notepad++ where PHP, HTML, CSS, etc language syntax highlighting didn't appear in the language menu. Not sure if this is the result of the way an older version set the settings--whereas, even if you upgraded to latest version (without uninstalling first), the upgrades wouldn't overwrite the original settings file. I think this was disabled at the time of install when it asks if you want it to be your default for HTML files; where I normally UNselect this, since I use a PHP IDE to handle PHP, HTML, CSS, etc files.
Anyway... The fix:
Domain Pointers are designed to be exact duplicates of the domain they're created under. As such, you cannot edit many aspects of them.
However, if you wish to have the website data remain the same as the main domain, but be able to control email accounts, you can do it by creating the pointer as another full domain name, and then use symbolic links to link the website data to that of the main domain.
1) If the Domain Pointer exists, delete it.
2) Create the Domain Pointer as a full domain:
- User Level -> Domain Setup -> Add Another Domain -> domain=domainpointer.com
3) Link the data directory that of the main domain, requires ssh:
Let's assume CustomBuild is installed.
We have to configure our options.conf and enable the spamassassin installation.
cd /usr/local/directadmin/custombuild vi options.conf
Now we enable it under #mail options and save:
#Mail options exim=yes eximconf=no clamav=no spamassassin=yes dovecot=yes pigeonhole=no
Next we run update custombuild
./build update
BUT before we run ./build spamassassin we must first download all the requirements (as custombuild will not do this for us):
yum install spamassassin -y; yum -y erase spamassassin
So now that yum downloaded all the requirements we can now do the install. Though let's also update exim before we do this:
cd ~ mkdir .composer curl -sS https://getcomposer.org/installer | php mv composer.phar ~/bin/composer chmod +x ~/bin/composer echo "PATH=$PATH:~/.composer/vendor/bin" >> ~/.bash_profile . ~/.bash_profile
Get the latest (or whatever) version here:
https://github.com/drush-ops/drush/releases
cd /LOCATION/OF/DRUPAL composer require drush/drush
And we done...
Here is how to use latest version of custombuild 2.0 . The commands for custombuild 2.0 are basically identical to custombuild 1.1 and 1.2, so all this stuff should look familiar. Here are instructions to custombuild 1.x.
Download latest version of custombuild 2.0
cd /usr/local/directadmin mv custombuild custombuild-01 wget http://files.directadmin.com/services/custombuild/2.0/custombuild.tar.gz tar xvzf custombuild.tar.gz cd custombuild ./build
Setup options.conf: Change PHP version to 5.5 (5.5 is stable, if your setup works with 5.3, it will likely work with 5.5), Apache to 2.4, and mysql to 5.6 (plus set it to install)
vi options.conf
now change to the following:
Zend Opcache is part of PHP 5.5, however, it's not enabled by default. It's a successor to APC cache--meaning APC cache is never going to be compatible with PHP 5.5 or higher
Opcache is also around 10% faster than APC, and more stable.
However, if you're on PHP 5.3 or PHP 5.4, you can still use ZendOpCache, and it should still be a bit faster than APC
vi /usr/local/lib/php.ini
Paste this under your extension_dir
Here is how you download all files from a directory using wget with automatic resume of partially downloaded files (in case your connection gets cut off)
wget -r -c --no-parent http://www.whateveraddress.com/downloads
Keep in mind this will only download files that it can read from that location. If you need to wget a bunch of files from a directory you have SSH or FTP access to you first have to do the following inside that directory:
vi .htaccess
and paste in the following and save.
Options +Indexes
Now that directory should show all the files in it via a browser.
source: http://help.directadmin.com/item.php?id=15
If you don't own a certificate, you can create your own:
/usr/bin/openssl req -x509 -newkey rsa:2048 -keyout /usr/local/directadmin/conf/cakey.pem -out /usr/local/directadmin/conf/cacert.pem -days 9000 -nodes chown diradmin:diradmin /usr/local/directadmin/conf/cakey.pem chmod 400 /usr/local/directadmin/conf/cakey.pem
Or... If you already have your own certificate and key, then copy/paste them in the following
Certificate:
vi /usr/local/directadmin/conf/cacert.pem
Key:
vi /usr/local/directadmin/conf/cakey.pem
Once done one of the above, edit your directadmin.conf
Increasing the size of /tmp is not a practical thing to do on a busy server, mainly because you probably won't be able to dismount /tmp because it's constantly used by various services--trying to find and kill them all is too tedius. (Plus you won't be able to do single user mode through SSH)
So what we will do here is create a whole new /tmp storage location, make a backup of the old /tmp, add the new location to fstab, reboot the server, copy everything from the backup /tmpBKP location to new location, and lastly reboot the server again.