Category Archives: Linux & Solaris

Creating a SELinux policy for the named daemon in a chrooted BIND9 configuration

I recently configured chrooted BIND9 slave on RHEL6.4 64-bit, with SELinux enabled, with this enabled the named daemon failed to start, easily tested by disabling SELinux, and then starting it, which would then be successful.  So, I needed to create … Continue reading

Posted in Linux & Solaris | Tagged , , , , , | Leave a comment

RHEL6.4-64 – No networking after cloning via template VM using vSphere client

I had a VMware VM of a RHEL6.4 64-bit  machine, security hardened to CIS standards, converted to VM template within vSphere as it was going to be reused, I then used ‘Clone to New Virtual Machine’ to…well..erm..clone it, this worked … Continue reading

Posted in Linux & Solaris | Tagged , , | 1 Comment

Centos6.4 64-bit – No networking after clean install

I was recently running up a new CentOS6.4 64-bit minimal install on VMware vCenter v5  & vSphere client v5, and during the install of CentOS you can configure the networking manually, which I usually do for servers.  This VM server … Continue reading

Posted in Linux & Solaris | Tagged , | Leave a comment

How to blow away a Solaris zone

You’ve been monkeying around with Solaris zones, and now you want to blow away your screwed up test zone, here’s how you do it. To completely delete/remove a Solaris zone you essentially have 4 step process. Shutdown the zone Halt … Continue reading

Posted in Linux & Solaris | Tagged , | Leave a comment

pam_tally & pam_tally2

There a few minor differences between pam_tally & pam_tally2, just enough to trip you over and end up in another head scratching moment! pam_tally,  seems to have fallen out of favour for RHL6 & >= CentOS 6, they  seemed to … Continue reading

Posted in Linux & Solaris | Tagged , , , , | 4 Comments

Splunk – howto configure a RHEL6 host to send data to Spunk and to use the Splunk TA for Unix and Linux

I did this. On Splunk server (receiver) Download/install Splunk TA for Unix and Linux to the Splunk server (receiver) and enabled it by going to Manager|Apps|Enable On host you want to collect data from (sender) Download and install the Splunk … Continue reading

Posted in Linux & Solaris | Tagged , | Leave a comment

How to exclude a directory from Linux audit

Using audit to track system changes, with rules from the CIS security guidelines. This server also has Splunk running on it, this created a crap load of changes that are reflected in the audit log files, so much so that … Continue reading

Posted in Linux & Solaris | Leave a comment