Apache, PHP, MySQL, and Drupal in FreeBSD 10 – Part II: MySQL55 and phpMyAdmin

Managing MySQL55 with phpMyAdmin:

In Part 1 of this article, Apache24 Server and PHP5 were installed and configured.  The next step towards having a functional FAMP (FreeBSD, Apache, MySQL, PHP) Stack is to install mysql and phpmyadmin. Continue reading “Apache, PHP, MySQL, and Drupal in FreeBSD 10 – Part II: MySQL55 and phpMyAdmin”

OpenLDAP Multi-Master Replication in FreeBSD – Part VIII: Clean Up

Clean Up:

After going through this exercise, several aspects of the software configuration needed cleaning up.

  • phpldapadmin:   Generic: User Account password hash defaults to md5
  • phpldapadmin:  Template Warnings of Attributes and Schemas not configured
  • Sendmail.schema:  Include sendmail.schema to slapd.conf
  • Samba.schema:  Include samba.schema to slapd.conf

Continue reading “OpenLDAP Multi-Master Replication in FreeBSD – Part VIII: Clean Up”

How to Recover from “Recovering vi editor sessions”

Recently, a ssh session terminated while editing a text file.  Unfortunately, tmux was not utilized and the session ended abruptly.  Not giving it much thought, the server was rebooted and during the dmesg output, the following message was produced: “recovering vi editor session”.

After searching the internet, I discovered vi saves its session by default in “/var/tmp/vi.recover”.  Since the saved sessions were not need, the contents of the directory were deleted and the resulting error message on boot up disappeared as well.

Checking for Root Kits on FreeBSD

Checking for Root Kits on FreeBSD

Whether one uses a FreeBSD Server at home, at the office, or rents a dedicated server, it is important to scan for dangerous root kits especially if the server is facing the internet.  In the FreeBSD Ports Collection, two root kit ports are available:  revealrk and rkhunter.  For this post, rkhunter was chosen. Continue reading “Checking for Root Kits on FreeBSD”

Openldap and Multi-Master Replication in FreeBSD – Part VII: Access Control Policy and SSF

Access Control Policy and SSF:

In an effort to provide some level of control to the OpenLDAP Server, access control policy (ACP) can be implemented using the “access to” directive.  This article will not focus as an instructive tutorial on access control or ssf (security strength factor) within OpenLDAP, but rather a brief insight into the author’s immediate needs to provide an initial level of directory security using the access control mechanisms. Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part VII: Access Control Policy and SSF”

Openldap and Multi-Master Replication in FreeBSD – Part VI: Connecting Clients

Connecting Clients:

What’s the use of having an OpenLDAP Directory if you do not have any clients connected to it?  In this article, attaching a Macintosh 10.9 Client to the OpenLdap Directory with standard schemas and storing the contents of our Home Directory on a NFS File Server is demonstrated.

 

Apple Mac Book Pro Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part VI: Connecting Clients”

Openldap and Multi-Master Replication in FreeBSD – Part V: TLS/SSL to secure OpenLDAP Data

Using TLS/SSL to secure OpenLDAP Data:

With the advent of NSA snooping, corporate espionage, and general employee mischief, it’s time to start utilizing encryption to snoop-proof data streams emanating from corporate networks.  LDAP is but one of many protocols in which encryption is necessary – see flowchart below.  This article will focus on using TLS/SSL on the interconnected streams of data originating from and to an OpenLDAP Server and its dependent services.  It will not contain much in the area of OpenLDAP ACL’s as a means to segregate different users and data with differing levels of encryption, nor will it focus on SASL and Kerberos as a means to secure data.  Again, these topics will present themselves in a future related article.

 

ssl-layers image from www.zytrax.com
www.zytrax.com

Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part V: TLS/SSL to secure OpenLDAP Data”

Openldap and Multi-Master Replication in FreeBSD – Part IV: Name Server Switch Setup

Name Server Switch using nss-pam-ldapd:

In Part IV, nss-pam-ldapd and /etc/nsswitch.conf are configured to allow the OpenLDAP server to provide user account, group, host name, etc. that would normally come from /etc/passwd, /etc/group, or NIS. Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part IV: Name Server Switch Setup”

Openldap and Multi-Master Replication in FreeBSD – Part III: Replication

Replication using Syncrepl N-Way Multi-Master:

 

In Part II of this series, phpLDAPadmin was installed and configured to manage an OpenLDAP Directory.  Part III will demonstration OpenLDAP Replication using Syncrepl N-Way Multi-Master configuration. Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part III: Replication”

Openldap and Multi-Master Replication in FreeBSD – Part II: PHPLdapAdmin

Managing OpenLDAP with phpLDAPadmin:

 

In the last article, we demonstrated setting up and configuring a basic OpenLDAP Server for authentication.  However, to manage your newly minted OpenLDAP Directory, a front-end to provide that functionality.  In this post, Apache 2.4, PHP 5 and phpLDAPadmin will be installed and configured to manage your Directory. Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part II: PHPLdapAdmin”