Short tip: Add SSH authentication to WordPress

WordPress updates, themes and plugins can be installed very comfortable in the backend – unfortunately it is still required to specify FTP or FTPS connection information. Depending on your personal preferences or security policy FTP is often not an option – e.g. when you’re maintaining a central directory for SSH users as primary identificatino source.
Continue reading...

Short tip: disable automatic NetworkManager connections after user logins

During a fresh CentOS installation recently I had the problem that a system’s network connection was not working reliably. Sometimes pings were possible, sometimes not. After it was possible to elimiate the firewall as commonly root cause, it turned out that the network connectivity was only working if the console is used. The mysterious cause
Continue reading...

Grafana LDAP authentication with FreeIPA

Grafana offers the possibility to authenticate users against LDAP – make it quite easy to integrate the tool into existing directory services. I’m using FreeIPA as directory and authentication service in my lab and had to adjust some settings to authenticate Grafana access. The first step is to alter the main configuration file of Grafana
Continue reading...

Kerberos Single sign-On over SSH under OS X

No Comments

An advantage of using Kerberos along with SSH is that it makes entering passwords obsolete when establishing connections. Unfortunately this is not working out of the box under OS X in the first place: $ kinit cstan@STANKOWIC.LOC cstan@STANKOWIC.LOC’s password: $ klist Credentials cache: API:xxx Principal: cstan@STANKOWIC.LOC Issued Expires Principal Oct 22 11:17:30 2016 Oct 22 21:17:37 2016 krbtgt/STANKOWIC.LOC@STANKOWIC.LOC
Continue reading...

Distribute Python modules using RPM

The Python Package Index (PyPI) website offers plenty of Python module source codes. To install these modules, it is needed to download and extract the archive and execute an installation script afterwards. Using the pip (pip installs packages) package manager, this process can be automated – e.g. for the nagiosplugin module: # pip install nagiosplugin
Continue reading...

5 tools you should not be able to run as root

If you plan to restrict utilizing the root user under Linux, it is most likely that you will create sudo rules to allow certain users to execute administrative utilities. There are plenty of tools you really should not be able to run as privileged users – some examples: screen, tmux The famous terminal multiplexers GNU Screen and tmux automatically create
Continue reading...

Short tip: remove Katello completely

If you’re testing the nightly builds of Katello, you might come into a situation where it is advisable to re-install the software completely. As the particular installation steps are automated using Puppet, there is also a dedicated utility which automates uninstalling the software in a clean way: katello-remove. This utility removes all required packages, stored
Continue reading...

Short tip: Updating Pulp database after upgrading Katello

After upgrading Katello recently, I stumbled upon the following error when accessing the administration interface: The web server protocol told me that a database update might causes this issue: # tail /var/log/httpd/foreman-ssl_error_ssl.log [Wed Aug 17 09:42:51.536914 2016] [:error] [pid 3178] [remote 10.22.1.16:128] mod_wsgi (pid=3178): Target WSGI script ‘/usr/share/pulp/wsgi/webservices.wsgi’ cannot be loaded as Python module. [Wed
Continue reading...

Short tip: Middle mouse click under OS X

The middle mouse button offers extended functionality in the most software – e.g. it can be used in web browsers to open or close tabs. When using the integrated trackpad of a MacBook or the Apple Magic Mouse this will not work due to missing mouse buttons. To enable this functionality under OS X there is a free software
Continue reading...

Simple CMDB import using Icinga Director

In my last article I focussed on Icinga 2 and the new configuration utility Icinga Director. I mentioned that Icinga Director can be used to link Icinga to pre-existing  Configuration Management Database (CMDB) systems to simplify data import. In this article we will create a little “dummy CMDB” with MySQL and automatically import and deploy host information. Using Icinga
Continue reading...