Home Tutorials Linux Administration
Category:

Linux Administration

Linux Administration presents a collection of common issues and useful tips for Linux system administration. Whether you’re new to system administration or have been maintaining systems for some time, we hope these tips are helpful regardless of your background or choice in Linux distributions.

Create SSH shortcut in Linux - blackMORE Ops -2
How toHackingLinuxLinux AdministrationSecurity

Create SSH shortcut in Linux

by blackMOREOps
written by blackMOREOps

I got quite a few servers where I login via SSH. As a Linux user, I feel tired typing more than few things at a time (not my fault!), so I decided to create SSH shortcuts and save it to my desktop. From then, all I needed to do is open that shortcut and just type in my password of tokenID depending on the server’s I am using. So, in this guide, I will demonstrate how to create SSH shortcut in Linux.
First go to Desktop (or where-ever you want to save these shortcuts) and create a file named production.desktop.

blackmore@blackTOP:~/Desktop$ cd /home/blackmore/Desktop/
blackmore@blackTOP:~/Desktop$ 
blackmore@blackTOP:~/Desktop$ vi production.desktop

Copy paste the following codes in the file:

[Desktop Entry]
Version=1.0
Name=My Server
Comment=Login to Prod
Exec=mate-terminal --disable-factory --sm-client-disable --class=MyServer -x ssh -t [email protected]
StartupWMClass=MyServer
Terminal=false
X-MultipleArgs=false
Type=Application
Icon=utilities-terminal
StartupNotify=true

Create SSH shortcut in Linux - blackMORE Ops -2The most important thing you need to change is the user and server name (FQDN) i.e. [email protected] to something like [email protected] or [email protected] etc. Depending on your Linux distro, you might also need to change Icon=utilities-terminal as this name might not be same.

Save the file and then change the permission to the file:

blackmore@blackTOP:~/Desktop$ chmod -R +rwx production.desktop

You should see an ICON on your desktop with MyServer name.

Right click-open or double-click both would fire up a SSH session to your server with username pre-filled waiting for your password/token/security code. Pretty neat!

On a side note, if you are trying to secure your servers, then perhaps use CSF Firewall and limit it by country code as shown in here. I’ve always found CSF to be better compared to Fail2Ban.

2 comments
0 FacebookTwitterPinterestThreadsBlueskyEmail
Limiting access to specific ports by country in CSF - blackMORE Ops - 1
Command Line Interface (CLI)How toLinuxLinux AdministrationSecurity

Limiting access to specific ports by country in CSF

by blackMOREOps
written by blackMOREOps

If you have a dedicated server or a VPS, chances are you are the only Administrator/root user who needs to maintain it from SSH or command line. That means, you also get a *hitload of email alerts from your server about botnets trying to access your servers SSH port. There’s many ways you can manage this and secure your server. The most common is to change SSH server ports to something unusual. The second way is to limit SSH access by IP or Subnet. Both has it’s benefits. The third way is to switch to certificate based authentication. But if you are the only SSH/FTP user for your server, then limiting access to specific ports by country is another option without remembering the port or multiple ISP subnets you use. For example, I manage my servers from my mobile (so, it’s using my carriers IP), from home (home ISP), from Work (Work Subnet), from Public WiFi spot over VPN etc. Depending on where I am at and which ports are open in their firewall, I found I can simply limit it by Country Code and use certificate based authentication. That drops false alerts to simply zero. Limiting access to specific ports by country in CSF - blackMORE Ops - 1

I use ConfigServer Security & Firewall (or more commonly known as CSF Firewall). Apart from changing SSH ports, switching to certificate based authentication, I am limiting access to specific ports by country in CSF, and [highlight color=”green”]IT IS AWESOME[/highlight].

To limit the ability to connect on a specific port or ports to visitors with IP addresses originating in a specific country or countries, you must:

  • Close that port in firewall
  • Define country codes allowed to connect on those blocked ports
  • Specify blocked ports to be opened for specified country

In this example, we’re restricting access to a non-standard SSH port, 48695, to IP addresses based in Germany(DE).

Step 1 – Close the Ports in the Firewall

Log in to your server via SSH and browse to /etc/csf folder. Create a backup of csf.conf file.

root@blackTOP:~# 
root@blackTOP:~# cd /etc/csf
root@blackTOP:/etc/csf# 
root@blackTOP:/etc/csf# cp csf.conf csf.conf-bkp
root@blackTOP:/etc/csf# 
root@blackTOP:/etc/csf# vi csf.conf

Open csf.conf file and scroll down to the IPv4 Port Settings section, and remove the desired port number (in this case Port 22) from the TCP_IN and UDP_IN (if present) fields.

Limiting access to specific ports by country in CSF - blackMORE Ops - 1
Here, we’ve removed port 48695 from the allowed incoming IPV4 ports, effectively blocking external access to the port:

Step 2 – Add allowed country code

Seach for CC_ALLOW_PORTS i.e. Country Code Lists and Settings section and add the country code to CC_ALLOW_PORTS.

I am allowing traffic originating from DE to connect on ports which have been otherwise closed in the firewall.

Multiple countries can be comma separated with no spaces in between, and you can find a list of ISO 3166-1 alpha-2 codes at https://en.wikipedia.org/wiki/ISO_3166-1_alpha-2

Find CC_ALLOW_PORTS_TCP and CC_ALLOW_PORTS_UDP fields in the config.

Add port 48695 to open to the country (or countries) specified in CC_ALLOW_PORTS here from Step 2. Once all done, save csf.conf.

Limiting access to specific ports by country in CSF - blackMORE Ops - 2

Step 3 – Restart CSF and LFD

Now we need to restart CSF and LFD.

root@blackTOP:~# service lfd restart
root@blackTOP:~# csf -r

This change will allow only users from Germany(DE) to access my custom SSH port in the firewall’s IPV4 Port Settings on port 48695. This works pretty well for me as I am with one of the largest ISP’s who’s IP range is well defined. Also allows me to login via my Mobile as my carrier is also using in-house IP addresses.

If you’re using CSF Firewall, you will find this cheat sheet useful.

1 comment
0 FacebookTwitterPinterestThreadsBlueskyEmail
Enable NumLock on startup in Kali Linux - blackMORE Ops -4
Kali LinuxHackingHow toLinuxLinux Administration

Enable NumLock on startup in Kali Linux

by blackMOREOps
written by blackMOREOps

I got a long password with a passphrase that contains some numbers. So when I type in my password, I instinctively use NumPad to type it in. Guess what? Kali Linux doesn’t enable NumLock by default on startup. So I press Enter and it says I entered wrong password. This was one of those annoying thing and I didn’t wanted to waste my precious energy pressing that 1 single button. ermmm.. I think I will stop sooking now and write about how to enable NumLock on Startup in Kali Linux.

There’s two different ways you can do it. Both involves one VERY Important step. Enable your NumLock manually for the first time.

Using dConf Editor GUI

So now that you have your NumLock enabled, type in the following in terminal:

root@kali:~# dconf-editor

And you should see Graphical dConf Editor open.

Enable NumLock on startup in Kali Linux - blackMORE Ops -1

In dConf Editor, browse to org > gnome > settings-daemon > peripherals > keyboard

Then simply tick the box that says “remember-numlock-state

One thing to note here, in that “numlock-state” should be “on” state.

Enable NumLock on startup in Kali Linux - blackMORE Ops -2

That’s it. Simply close dConf Editor and reboot to check whether it worked for you.

Using command line

This is Linux, so of course you can simply type in a simple command to make it work. But remember that important step I said, Enable your NumLock manually for the first time.

Then simply open Terminal and type in the following command:

root@kali:~# gsettings set org.gnome.settings-daemon.peripherals.keyboard remember-numlock-state true

Enable NumLock on startup in Kali Linux - blackMORE Ops -3

Press enter and bobs your Uncle. Reboot to confirm.

3 comments
0 FacebookTwitterPinterestThreadsBlueskyEmail
Changing timezone in Linux - blackMORE Ops -5
Linux AdministrationHow toKali LinuxLinuxSecurity

Changing timezone in Linux

by blackMOREOps
written by blackMOREOps

This is something I need quite often when I setup a new VPS or Virtual Machine in the cloud. I use multiple cloud infrastructures that includes Azure, Amazon AWS, DigitalOcean, CloudatCost and InterServer. All of them has pre-set Virtual Machine or ISO that you can simply deploy using a few clicks. Once the machines are up and running, they are either running on a US time zone or using UTC. It creates problem for me when I try to look up something in the lost and often I find it hard to relate my ConfigServer Security and Firewall or Nginx logs with local time. Changing timezone in Linux is pretty simple and it doesn’t affect any running applications.

First become root using sudo command

user@kali:~# sudo -s
root@kali:~#

Then simply run the following command to reconfigure your timezone locale

root@kali:~# dpkg-reconfigure tzdata
(or)
user@ubuntu:~# sudo dpkg-reconfigure tzdata

If you don’t want to become root, then you can use this command with sudo as well.

Changing timezone in Linux - blackMORE Ops -2

This works for Ubuntu, Debian, Kali Linux or anything that is a Debian or Ubuntu variant.

Then it’s select the right Geographic Area such as Australia.

Changing timezone in Linux - blackMORE Ops -3

and TimeZone area such as Sydney.

Changing timezone in Linux - blackMORE Ops -4

That’s it. Once done, your terminal should show default update current time zone.

5 comments
0 FacebookTwitterPinterestThreadsBlueskyEmail
Handy MySQL Commands - blackMORE Ops -1
Command Line Interface (CLI)HackingLinuxLinux AdministrationWordPress

Handy MySQL Commands

by blackMOREOps
written by blackMOREOps

I’ve compiled a list of handy MySQL commands that I use very frequently  in a headless server. I am not a MySQL guru, so I decided to braindump everything in here. This covers random issues from WordPress slowness, Query Cache Modification, User Creation, Database dumping and importing, rsync’ing large files across servers and many more.

Handy MySQL Commands - blackMORE Ops - 2

Most things are in random order, do Ctrl+F to search this page for keywords or use it as required to create your own personal Wiki page. I’ve leeched a lot of commands from multiple pages/websites and tried to credit them as much I could remember. If you migrate websites to different servers a lot like I do, you will definitely find this article very interesting.

At the bottom are statements, clauses, and functions you can use in MySQL. Below that are PHP and Perl API functions you can use to interface with MySQL. To use those you will need to build PHP with MySQL functionality. To use MySQL with Perl you will need to use the Perl modules DBI and DBD::mysql.

Below when you see # it means from the unix shell. When you see mysql> it means from a MySQL prompt after logging into MySQL.

So here goes random mysql commands in no particular order :)

Improving MySQL Query Cache

Important Note: From MySQL 5.6.8,query_cache_type is set to OFF by default. So if you haven’t explicitly turned it ON on old version, it may not work anymore!

Check current status of query_cache

mysql -e "show variables like 'query_cache_%'"

Will output something like:

+------------------------------+-----------+
| Variable_name | Value |
+------------------------------+-----------+
| query_cache_limit | 2097152 |
| query_cache_min_res_unit | 4096 |
| query_cache_size | 268435456 |
| query_cache_strip_comments | ON |
| query_cache_type | ON |
| query_cache_wlock_invalidate | OFF |
+------------------------------+-----------+

Changing Query Cache size:

mysql> SET GLOBAL query_cache_size = 16777216;
mysql> SHOW VARIABLES LIKE 'query_cache_size';

Output:

+------------------+----------+
| Variable_name    | Value    |
+------------------+----------+
| query_cache_size | 16777216 |

Query Cache Config

Add something like below following to your /etc/my/my.cnf

query_cache_size =16777216
query_cache_type = 1 
query_cache_limit = 2M 
query_cache_strip_comments =1

Fixing slow Query for the wp_options table

The reason the query is being logged is it doesn’t use an index. The query time is 0, i.e. it actually executes fast. You can unset the “log-queries-not-using-indexes” option if you don’t want these to be logged.

The wp_options table has no index on autoload, so the query ends up doing a full table scan. In general that table shouldn’t get too large, so it’s not a problem, but I’m guessing that’s somehow happened in your case.

Adding an index might solve the problem, but as TheDeadMedic pointed out in the comments, it might not if the values of autoload are either majority yes, or evenly distributed between yes and no:

First, do this query to see what the distribution looks like:

SELECT COUNT(*), autoload FROM wp_options GROUP BY autoload;

if a large majority of them are set to ‘no’, you can solve the problem for now by adding an index on autoload.

ALTER TABLE wp_options ADD INDEX (`autoload`);

Dumping one particular MySQL Database

mysqldump -u username -p --databases database_name> /tmp/server1_database_name.sql

Importing one particular MySQL Database

First create user and database

mysql -u root -p
create database database_name;
show databases;
use database_name;
CREATE USER 'username'@'localhost' IDENTIFIED BY 'somepasswordhere';
GRANT ALL PRIVILEGES ON databse_name.* TO 'username'@'localhost';
FLUSH PRIVILEGES;

Move database dump from server 1 to server 2:

cd /tmp
rsync -avz --progress server1_username@server1_ip_address:/tmp/database_name.sql .

Dont forget the last . in the above command.
Finally import that database you dumped in server 1.

mysql -u username -p database_name < server1_database_name.sql

To login (from unix shell) use -h only if needed.

# [mysql dir]/bin/mysql -h hostname -u root -p

Create a database on the sql server.

mysql> create database [databasename];

List all databases on the sql server.

mysql> show databases;

Switch to a database.

mysql> use [db name];

To see all the tables in the db.

mysql> show tables;

To see database’s field formats.

mysql> describe [table “” not found /]

;

To delete a db.

mysql> drop database [database name];

To delete a table.

mysql> drop table [table “” not found /]

;

Show all data in a table.

mysql> SELECT * FROM [table “” not found /]

;

Returns the columns and column information pertaining to the designated table.

mysql> show columns from [table “” not found /]

;

Show certain selected rows with the value “whatever”.

mysql> SELECT * FROM [table “” not found /]

 WHERE [field name] = "whatever";

Show all records containing the name “Bob” AND the phone number ‘3444444’.

mysql> SELECT * FROM [table “” not found /]

 WHERE name = "Bob" AND phone_number = '3444444';

Show all records not containing the name “Bob” AND the phone number ‘3444444’ order by the phone_number field.

mysql> SELECT * FROM [table “” not found /]

 WHERE name != "Bob" AND phone_number = '3444444' order by phone_number;

Show all records starting with the letters ‘bob’ AND the phone number ‘3444444’.

mysql> SELECT * FROM [table “” not found /]

 WHERE name like "Bob%" AND phone_number = '3444444';

Show all records starting with the letters ‘bob’ AND the phone number ‘3444444’ limit to records 1 through 5.

mysql> SELECT * FROM [table “” not found /]

 WHERE name like "Bob%" AND phone_number = '3444444' limit 1,5;

Use a regular expression to find records. Use “REGEXP BINARY” to force case-sensitivity. This finds any record beginning with a.

mysql> SELECT * FROM [table “” not found /]

 WHERE rec RLIKE "^a";

Show unique records.

mysql> SELECT DISTINCT [column name] FROM [table “” not found /]

;

Show selected records sorted in an ascending (asc) or descending (desc).

mysql> SELECT [col1],[col2] FROM [table “” not found /]

 ORDER BY [col2] DESC;

Return number of rows.

mysql> SELECT COUNT(*) FROM [table “” not found /]

;

Sum column.

mysql> SELECT SUM(*) FROM [table “” not found /]

;

Join tables on common columns.

mysql> select lookup.illustrationid, lookup.personid,person.birthday from lookup left join person on lookup.personid=person.personid=statement to join birthday in person table with primary illustration id;

Creating a new user. Login as root. Switch to the MySQL db. Make the user. Update privs.

# mysql -u root -p
mysql> use mysql;
mysql> INSERT INTO user (Host,User,Password) VALUES('%','username',PASSWORD('password'));
mysql> flush privileges;

Change a users password from unix shell.

# [mysql dir]/bin/mysqladmin -u username -h hostname.blah.org -p password 'new-password'

Change a users password from MySQL prompt. Login as root. Set the password. Update privs.

# mysql -u root -p
mysql> SET PASSWORD FOR 'user'@'hostname' = PASSWORD('passwordhere');
mysql> flush privileges;

Recover a MySQL root password. Stop the MySQL server process. Start again with no grant tables. Login to MySQL as root. Set new password. Exit MySQL and restart MySQL server.

# /etc/init.d/mysql stop
# mysqld_safe --skip-grant-tables &
# mysql -u root
mysql> use mysql;
mysql> update user set password=PASSWORD("newrootpassword") where User='root';
mysql> flush privileges;
mysql> quit
# /etc/init.d/mysql stop
# /etc/init.d/mysql start

Set a root password if there is on root password.

# mysqladmin -u root password newpassword

Update a root password.

# mysqladmin -u root -p oldpassword newpassword

Allow the user “bob” to connect to the server from localhost using the password “passwd”. Login as root. Switch to the MySQL db. Give privs. Update privs.

# mysql -u root -p
mysql> use mysql;
mysql> grant usage on *.* to bob@localhost identified by 'passwd';
mysql> flush privileges;

Give user privilages for a db. Login as root. Switch to the MySQL db. Grant privs. Update privs.

# mysql -u root -p
mysql> use mysql;
mysql> INSERT INTO db (Host,Db,User,Select_priv,Insert_priv,Update_priv,Delete_priv,Create_priv,Drop_priv) VALUES ('%','databasename','username','Y','Y','Y','Y','Y','N');
mysql> flush privileges;

or

mysql> grant all privileges on databasename.* to username@localhost;
mysql> flush privileges;

To update info already in a table.

mysql> UPDATE [table “” not found /]

 SET Select_priv = 'Y',Insert_priv = 'Y',Update_priv = 'Y' where [field name] = 'user';

Delete a row(s) from a table.

mysql> DELETE from [table “” not found /]

 where [field name] = 'whatever';

Update database permissions/privilages.

mysql> flush privileges;

Delete a column.

mysql> alter table [table “” not found /]

 drop column [column name];

Add a new column to db.

mysql> alter table [table “” not found /]

 add column [new column name] varchar (20);

Change column name.

mysql> alter table [table “” not found /]

 change [old column name] [new column name] varchar (50);

Make a unique column so you get no dupes.

mysql> alter table [table “” not found /]

 add unique ([column name]);

Make a column bigger.

mysql> alter table [table “” not found /]

 modify [column name] VARCHAR(3);

Delete unique from table.

mysql> alter table [table “” not found /]

 drop index [colmn name];

Load a CSV file into a table.

mysql> LOAD DATA INFILE '/tmp/filename.csv' replace INTO TABLE [table “” not found /]

 FIELDS TERMINATED BY ',' LINES TERMINATED BY '\n' (field1,field2,field3);

Dump all databases for backup. Backup file is sql commands to recreate all db’s.

# [mysql dir]/bin/mysqldump -u root -ppassword --opt >/tmp/alldatabases.sql

Dump one database for backup.

# [mysql dir]/bin/mysqldump -u username -ppassword --databases databasename >/tmp/databasename.sql

Dump a table from a database.

# [mysql dir]/bin/mysqldump -c -u username -ppassword databasename tablename > /tmp/databasename.tablename.sql

Restore database (or database table) from backup.

# [mysql dir]/bin/mysql -u username -ppassword databasename < /tmp/databasename.sql

Create Table Example 1.

mysql> CREATE TABLE [table “” not found /]

 (firstname VARCHAR(20), middleinitial VARCHAR(3), lastname VARCHAR(35),suffix VARCHAR(3),officeid VARCHAR(10),userid VARCHAR(15),username VARCHAR(8),email VARCHAR(35),phone VARCHAR(25), groups VARCHAR(15),datestamp DATE,timestamp time,pgpemail VARCHAR(255));

Create Table Example 2.

mysql> create table [table “” not found /]

 (personid int(50) not null auto_increment primary key,firstname varchar(35),middlename varchar(50),lastnamevarchar(50) default 'bato');

Sources:

  • https://mariadb.com/kb/en/mariadb/sql-commands/
  • https://www.pantz.org/software/mysql/mysqlcommands.html
  • https://dev.mysql.com/doc/refman/5.7/en/mysql-commands.html
  • https://easyengine.io/tutorials/mysql/query-cache/
  • https://wordpress.stackexchange.com/questions/71691/slow-query-for-the-wp-options-table
0 comments
0 FacebookTwitterPinterestThreadsBlueskyEmail
Newer Posts
Older Posts
@2021 - All Right Reserved. Designed and Developed by PenciDesign