PyBlosxom |
/Admin/databases:
Use Netcat (nc) For Server-to-Server Database Copies
This can be a convenience, especially if you are working with a big database on a cloud server with no spare storage space. For MySQL, on the receiving server:
nc -l 1024 | mysql -uroot -p
On the sending server:
mysqldump -uroot -p | nc -q 0 1024
posted at: 03:03 | path: /Admin/databases | permanent link to this entry
/Admin/tripwire:
Configuring Tripwire
Simple, but not well-documented, so here it is:
On Debian/Ubuntu, "apt-get install tripwire" will not only get it installed but configure the keys it uses to cryptographically sign it's work.
(Should you need to reset the passphrases after install, checkout twadmin.)
After this edit twcfg.txt and twpol.txt in /etc/tripwire to your satisfaction, and then sign them:
twadmin --create-polfile --site-keyfile /etc/tripwire/site.key /etc/tripwire/twpol.txt
twadmin --create-cfgfile --site-keyfile /etc/tripwire/site.key /etc/tripwire/twcfg.txt
Then initialize the tripwire database with the system state:
tripwire --init
Thereafter check your system configuration with:
tripwire --check --interactive
To subsequently edit and update the policy:
tripwire --update-policy --secure-mode low /etc/tripwire/twpol.txt
posted at: 05:17 | path: /Admin/tripwire | permanent link to this entry