Auto-loading Kernel Modules at System Boot in CentOS/RHEL

I’m used to add the module in /etc/modprobe.conf , It’s also possible to add module parameters in the /etc/modprobe.d/ and to load modules from /etc/rc.local if you want that.

What I found today is that RedHat based systems like RHEL6, RHEL5, CentOS 6, CentOS 5 tend to try to do it their own way: They use the /etc/sysconfig/modules/ directory under the RedHat specific /etc/sysconfig directory for this.

CentOS/RHEL loads its kernel modules at boot time using the wrapper script located in /etc/rc.sysinit. At about line number 145 you can find a loop which basically instructs system to load any user defined kernel modules in /etc/sysconfig/modules/ directory:

# Load other user-defined modules
for file in /etc/sysconfig/modules/*.modules ; do
[ -x $file ] && $file
done

# Load other user-defined modules

for file in /etc/sysconfig/modules/*.modules ; do

[ -x $file ] && $file

done

Let’s say you want to load dm_script module used for LUKS at boot time:

# vi /etc/sysconfig/modules/dm_crypt.modules

#!/bin/bash
modprobe dm_crypt

# vi /etc/sysconfig/modules/dm_crypt.modules

#!/bin/bash

modprobe dm_crypt

Make sure the script is executable:

# chmod +x /etc/sysconfig/modules/dm_crypt.modules

1	# chmod +x /etc/sysconfig/modules/dm_crypt.modules

Thanks to Darius at AphoniaStream for such quick and easy article: Auto-loading Kernel Modules at System Boot in CentOS/RHEL | AphoniaStream.

Great offer from Linux Journal’s Ditigal Subscription

I came across an good offer from Linux Journal on Facebook today. They have a short period offer for digital subscription to their magazine. Only $1 pr issue for 19 months. Continue reading →

How To Disable The Overlay Scrollbars In Ubuntu [Quick Tip]

Here is a way to disable overlay scrollbars in Ubuntu
Continue reading →

Change the close, maximize, minimize button position on windows [in Ubuntu 12.04 and 12.10 with Gnome]

Here is a quick guide on how to change the position of the maximize, close, and minimize buttons in Ubuntu Gnome.

Continue reading →

TEMPer for messuaring temperature in server rooms

I have just ordered the TEMPer from amazon.com. I will connect it to a server and run a small perl script to probe it for the temperature. I will let ZenOss run this script and fetch the outcome of the script to collect and check against my defined ok values.

I looked it up on the internet and saw that it is told to be coming without instructions and drivers.

Continue reading →

Best practice cable rack rooms

I remember one of the first places I worked as a sysadmin. The cables in the server room several places looked like a mess. This was a non-commercial work-place, where the government gave us just what we needed, not more.

The sight of the server room where a pity sight. I have learned that long network cables make a lot of mess. To make you server room as tidy as possible when it comes to network cables, it is smart to keep several lengths of new network cables available. Always find the right size for the cable so it does not make a mess.

The cables in the server room I refer to was hanging from one part of the wall, into a big pile because the cables where to long, before it was connected to a patch panel. It had another connector than the usual RJ-45.

Here are some pictures to show how you can cable your network so it becomes easier to manage.

Continue reading →

howto disable java in Chrome, Firefox or Safari

Here is how to disable Java in you browser:

All Java exploits come from Java running in your browser.

Disable java in Chrome

Type “chrome://plugins” into your address bar. This will bring up a new tab. Find the item on the list that reads just plain “Java” and click below it where it says “Disable” in blue. Restart your browser.

Continue reading →

Fix permissions on profilePath and homeDirectory

I was doing a cleanup of users home and profile directories.
I found out that we needed to fix permissions on most of the directories to be able to do f.ex backup.

As admin, I ended up creating a small script fix.bat

@echo off
if "%1"=="" goto blank

REM Recursively assign ownership to Administrators.  Answer prompts with "Y".

takeown /R /A /F %1 /D Y
subinacl.exe /file %1 /perm
cacls %1 /T /E /P "Administrators":F
cacls %1 /T /E /P SYSTEM:F
cacls %1 /T /E /P %1:F
subinacl.exe /verbose /nostatistic /subdirectories %1 /setowner=%1
subinacl.exe /verbose /nostatistic /subdirectories %1\*.* /setowner=%1

REM V2
takeown /R /A /F %1.V2 /D Y
subinacl.exe /file %1.V2 /perm
cacls %1.V2 /T /E /P "Administrators":F
cacls %1.V2 /T /E /P SYSTEM:F
cacls %1.V2 /T /E /P %1:F
subinacl.exe /verbose /nostatistic /subdirectories %1.V2 /setowner=%1
subinacl.exe /verbose /nostatistic /subdirectories %1.V2\*.* /setowner=%1

goto end
:blank
echo Missing username as parameter. Will change permission on username + username.V2
:end

@echo off

if "%1"=="" goto blank

REM Recursively assign ownership to Administrators. Answer prompts with "Y".

takeown /R /A /F %1 /D Y

subinacl.exe /file %1 /perm

cacls %1 /T /E /P "Administrators":F

cacls %1 /T /E /P SYSTEM:F

cacls %1 /T /E /P %1:F

subinacl.exe /verbose /nostatistic /subdirectories %1 /setowner=%1

subinacl.exe /verbose /nostatistic /subdirectories %1\*.* /setowner=%1

REM V2

takeown /R /A /F %1.V2 /D Y

subinacl.exe /file %1.V2 /perm

cacls %1.V2 /T /E /P "Administrators":F

cacls %1.V2 /T /E /P SYSTEM:F

cacls %1.V2 /T /E /P %1:F

subinacl.exe /verbose /nostatistic /subdirectories %1.V2 /setowner=%1

subinacl.exe /verbose /nostatistic /subdirectories %1.V2\*.* /setowner=%1

goto end

:blank

echo Missing username as parameter. Will change permission on username + username.V2

:end

which I call like this:

cd \directory\profiles
fix.bat username1

1 2	cd \directory\profiles fix.bat username1

Linux Shell Script To Backup and Restore MBR (Master Boot Recored)

I might not recommend using a shell script for doing backup and restore of your MBR, but it can help a lot to read a script to understand how backup of MBR can be done.

What you need is dd, sfdisk, and a few bytes available on your disk, nfs or usb where you want to store it.

Make a MBR backup. It takes 512 bytes:

dd if=/dev/$devname of="$back/$sysname-$devname-MBR-back" bs=512 count=1

1	dd if=/dev/$devname of="$back/$sysname-$devname-MBR-back" bs=512 count=1

Make a backup of your partition table for your $devname

sfdisk -d /dev/$devname &gt; "$back/$sysname-$devname-partition-back.sf"

1	sfdisk -d /dev/$devname > "$back/$sysname-$devname-partition-back.sf"

To restore partition table from a earlier sfdisk backed up partiton table:

sfdisk /dev/$devname &lt; "$back/$sysname-$devname-partition-back.sf"

1	sfdisk /dev/$devname < "$back/$sysname-$devname-partition-back.sf"

I struggle to understand why we restore the 448 bytes when we f.ex http://en.wikipedia.org/wiki/Master_boot_record says that it is 446 B (boot loader) + 16 B (partition 1) + 16 B (partition 2) + 16 B (partition 3) + 16 B (partition 4) + 2 B (bootsignature)

To restore only the boot-record, which is the first 448 bytes of the mbr record.

dd if="$back/$sysname-$devname-MBR-back" of=/dev/$devname bs=448 count=1

1	dd if="$back/$sysname-$devname-MBR-back" of=/dev/$devname bs=448 count=1

To restore the full MBR

dd if="$back/$sysname-$devname-MBR-back" of=/dev/$devname bs=512 count=1

1	dd if="$back/$sysname-$devname-MBR-back" of=/dev/$devname bs=512 count=1

See a nice backup script to take backup of partition table and master boor record MBR here:

http://bash.cyberciti.biz/diskadmin/linux-shell-script-backup-restore-disk-mbr/

Disable users in AD who have not logged in within 35 days

Disable users who have not logged in within 35 days

 'This script disables users that have not logged on within 35 days, that are not currently disabled, do not have non-expiring passwords and then generates a new log file every time the script is run in the format of MM_DD_YYYY HH-MM-SS.txt

option Explicit

Dim adoCommand, adoConnection, strBase, strFilter, strAttributes
Dim objRootDSE, strDNSDomain, strQuery, adoRecordset, strDN, objUser
Dim dtmDate, strDate
Dim strFile, objFSO, objFile
Dim temp, temp1

' Setup ADO objects.
Set adoCommand = CreateObject("ADODB.Command")
Set adoConnection = CreateObject("ADODB.Connection")
adoConnection.Provider = "ADsDSOObject"
adoConnection.Open "Active Directory Provider"
Set adoCommand.ActiveConnection = adoConnection

Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("defaultNamingContext")
'Search entire Active Directory domain.
strBase = "&lt;LDAP://" &amp; strDNSDomain &amp; "&gt;"

'Determine date, in GeneralizedTime format, 35 days in the past.
dtmDate = DateAdd("d", Now(), -35)
strDate = CStr(Year(dtmDate)) &amp; Right("0" &amp; Cstr(Month(dtmDate)), 2) &amp; Right("0" &amp; CStr(Day(dtmDate)), 2) &amp; "000000.0Z"

'Filter on user objects that have not logged on within 35 days, are not disabled and do not have non-expiring passwords.

strFilter = "(&amp;(objectCategory=person) (objectClass=user)" &amp; "(lastLogonTimeStamp&lt;= " &amp; strDate &amp; ")" &amp; "(!lastLogonTimeStamp=0)" _
&amp; "(!userAccountControl:1.2.840.113556.1.4.803:=2)" &amp; "(!userAccountControl:1.2.840.113556.1.4.803:=65536))"

' Comma delimited list of attribute values to retrieve.
strAttributes = "distinguishedName"

' Construct the LDAP syntax query.
strQuery = strBase &amp; ";" &amp; strFilter &amp; ";" &amp; strAttributes &amp; ";subtree"
adoCommand.CommandText = strQuery
adoCommand.Properties("Page Size") = 100
adoCommand.Properties("Timeout") = 30
adoCommand.Properties("Cache Results") = False

'Run the query
Set adoRecordset = adoCommand.Execute

'Generate the filename in the format MM_DD_YYYY HH-MM-SS.txt
'remote / and : from filename current date
temp=replace((CStr(Now())), "/", "_")
temp1=replace(temp, ":", "-")

'create the file
Set objFSO = CreateObject("Scripting.FileSystemObject")
Set objFile = objFSO.CreateTextFile("C:\scripts\" &amp; temp1 &amp; ".txt")

'Enumerate the resulting recordset.
objFile.WriteLine "Program run at: " &amp; CStr(Now())
Do Until adoRecordset.EOF
'Retrieve values.
strDN = adoRecordset.Fields("distinguishedName").Value
'Escape any "/" characters.
strDN = Replace(strDN, "/", "\/")
'Bind to user object.
Set objUser = GetObject("LDAP://" &amp; strDN)
'Disable the account
objUser.AccountDisabled = True
'Save changes to AD.
objUser.SetInfo
'Log information.
objFile.WriteLine "User disabled: " &amp; strDN
'Move to the next record in the recordset.
adoRecordset.MoveNext
Loop

'Clean up.
objFile.Close
adoRecordset.Close
adoConnection.Close

'This script disables users that have not logged on within 35 days, that are not currently disabled, do not have non-expiring passwords and then generates a new log file every time the script is run in the format of MM_DD_YYYY HH-MM-SS.txt

option Explicit

Dim adoCommand, adoConnection, strBase, strFilter, strAttributes

Dim objRootDSE, strDNSDomain, strQuery, adoRecordset, strDN, objUser

Dim dtmDate, strDate

Dim strFile, objFSO, objFile

Dim temp, temp1

' Setup ADO objects.

Set adoCommand = CreateObject("ADODB.Command")

Set adoConnection = CreateObject("ADODB.Connection")

adoConnection.Provider = "ADsDSOObject"

adoConnection.Open "Active Directory Provider"

Set adoCommand.ActiveConnection = adoConnection

Set objRootDSE = GetObject("LDAP://RootDSE")

strDNSDomain = objRootDSE.Get("defaultNamingContext")

'Search entire Active Directory domain.

strBase = "<LDAP://" & strDNSDomain & ">"

'Determine date, in GeneralizedTime format, 35 days in the past.

dtmDate = DateAdd("d", Now(), -35)

strDate = CStr(Year(dtmDate)) & Right("0" & Cstr(Month(dtmDate)), 2) & Right("0" & CStr(Day(dtmDate)), 2) & "000000.0Z"

'Filter on user objects that have not logged on within 35 days, are not disabled and do not have non-expiring passwords.

strFilter = "(&(objectCategory=person) (objectClass=user)" & "(lastLogonTimeStamp<= " & strDate & ")" & "(!lastLogonTimeStamp=0)" _

& "(!userAccountControl:1.2.840.113556.1.4.803:=2)" & "(!userAccountControl:1.2.840.113556.1.4.803:=65536))"

' Comma delimited list of attribute values to retrieve.

strAttributes = "distinguishedName"

' Construct the LDAP syntax query.

strQuery = strBase & ";" & strFilter & ";" & strAttributes & ";subtree"

adoCommand.CommandText = strQuery

adoCommand.Properties("Page Size") = 100

adoCommand.Properties("Timeout") = 30

adoCommand.Properties("Cache Results") = False

'Run the query

Set adoRecordset = adoCommand.Execute

'Generate the filename in the format MM_DD_YYYY HH-MM-SS.txt

'remote / and : from filename current date

temp=replace((CStr(Now())), "/", "_")

temp1=replace(temp, ":", "-")

'create the file

Set objFSO = CreateObject("Scripting.FileSystemObject")

Set objFile = objFSO.CreateTextFile("C:\scripts\" & temp1 & ".txt")

'Enumerate the resulting recordset.

objFile.WriteLine "Program run at: " & CStr(Now())

Do Until adoRecordset.EOF

'Retrieve values.

strDN = adoRecordset.Fields("distinguishedName").Value

'Escape any "/" characters.

strDN = Replace(strDN, "/", "\/")

'Bind to user object.

Set objUser = GetObject("LDAP://" & strDN)

'Disable the account

objUser.AccountDisabled = True

'Save changes to AD.

objUser.SetInfo

'Log information.

objFile.WriteLine "User disabled: " & strDN

'Move to the next record in the recordset.

adoRecordset.MoveNext

Loop

'Clean up.

objFile.Close

adoRecordset.Close

adoConnection.Close

Experiencing weblogging

Explore… and understand!

Auto-loading Kernel Modules at System Boot in CentOS/RHEL

Great offer from Linux Journal’s Ditigal Subscription

How To Disable The Overlay Scrollbars In Ubuntu [Quick Tip]

Change the close, maximize, minimize button position on windows [in Ubuntu 12.04 and 12.10 with Gnome]

TEMPer for messuaring temperature in server rooms

Best practice cable rack rooms

howto disable java in Chrome, Firefox or Safari

Fix permissions on profilePath and homeDirectory

Linux Shell Script To Backup and Restore MBR (Master Boot Recored)

Disable users in AD who have not logged in within 35 days