how to block ftp and ssh brute force attack in FreeBSD
No commentsbruteblock
Hate with ssh and FTP brute force attack? if you are Freebsd user, try use bruteblock software.
by this software, we can block brute force attacker automatically use ipfw2. so.. you can sleep well every day… hehehe..
here is step by step installation and configuration:
1. install from port
#cd /usr/ports/security/bruteblock
# make install clean
Read the rest of this entry »
add tun device on freebsd
No commentsIf you using vpn server on your server, you must check your tun device. How to check it?
[root@fw-gw1 /usr/home/bimo]# cd /dev
[root@fw-gw1 /dev]# ls
tun0
tun1
tun2
if you want to add tun device, you can create using command:
# ifconfig tun3 create
if you want to delete tun device:
#ifconfig tun3 destroy
Install PostgreSQL in FreeBSD
No commentsIts been long time since my last writen. Few days ago Bos ask me to install PostgreSQL in our webserver because he have costumer use PostgreSQL Database. OKe…lets start how to configure it.
First, make sure port in server is up to date, or we can update it, see update manual.
Now, lets start to install it.
———————————————————
cd /usr/port/database/postgresql84-server
make config, choose OPTIMIZED_CFLAGS for optimized
make install clean
———————————————————–
after finish installed, now lets configure it
——————————————————————–
Put postgresql in rc.conf so can running otomatic every time server startup
echo ‘postgresql_enable=”YES”‘ >> /etc/rc.conf
Read the rest of this entry »
Upgrade FreeBSD to Stable Version
1 comment so farafter 2 years running, i forget to upgrade my mail server to stable version ( wat de f@!#$!!). Not like my others server, My mail server only for backup server (before). So I am not consentrate with it. But now it is also my main server for email. so i must upgrade the version to stable and update other running application on it. Here i write down how to upgrade FreeBSD to stable version.
before you do it, make sure you understand of what you doing and prepare some coffee and "cemilan", coz its take more than 3 hour prosess ( depend on your computer resource and bandwidth)
Bismillahirohmanirohim…..
first, lets check my mail server version
mail# uname -a
FreeBSD mail.pagongxx.xxx.xx 6.1-RELEASE FreeBSD 6.1-RELEASE #0: Tue Oct 16 14:26:49 WIT 2007 bimo@mail.pagongxx.xxx.xx:/usr/src/sys/i386/compile/KERNEL1 i386
mail#
Read the rest of this entry »
Install DNS Server in FreeBSD
4 comments so farLast night, i help pak cancer install DNS server for Disduk ( Dinas kependudukan).He is NOC in dinas Kependudukan. Since all server change to FreeBSD so everything must build from beginning so the DNS. i have long time not install DNS. I dont have any documentation about it also. so today i will write down step by step installing DNS server using Bind9. Just incase if I forget, i can see this manual. Oke..lets begin….
Bismillahirohmanirohim……
1. INSTALL APPLICATION
install bind94
NS1#cd /usr/ports/dns/bind94
NS1#make install clean
cd /etc/named
ee named.conf
—————-begin—————————–
options {
// Relative to the chroot directory, if any
directory “/etc/namedb”;
pid-file “/var/run/named/pid”;
dump-file “/var/dump/named_dump.db”;
statistics-file “/var/stats/named.stats”;
allow-recursion { any; }; —————-> add this line euy
allow-query { any; }; —————-> add this line euy
allow-query-cache { any; }; —————-> add this line euy
listen-on { any; }; —————-> add this line euy
———-edit this line————————————–
forward only; ——–> use this
// forwarders { —————-> disable this line
// 127.0.0.1; —————-> disable this line
};
———————–close here———————————–
and also delete unnecesary configuration or example config
Read the rest of this entry »
Tips and trick FreeBSD
2 comments so farHere are some tips for freebsd users..
Having trouble using fetch through a firewall? Try setting the environment
variable FTP_PASSIVE_MODE to yes, and see fetch(3) for more details.
%
By pressing “Scroll Lock” you can use the arrow keys to scroll backward
through the console output. Press “Scroll Lock” again to turn it off.
%
Want colour in your directory listings? Use “ls -G”. “ls -F” is also useful,
and they can be combined as “ls -FG”.
%
If you need to ask a question on the FreeBSD-questions mailing list then
http://www.freebsd.org/doc/en_US.ISO8859-1/articles/
freebsd-questions/index.html
contains lots of useful advice to help you get the best results.
%
If you’d like to keep track of applications in the FreeBSD ports tree, take a
look at FreshPorts;
http://www.freshports.org/
%
To search for files that match a particular name, use find(1); for example
find / -name “*GENERIC*” -ls
will search ‘/’, and all subdirectories, for files with ‘GENERIC’ in the name.
– Stephen Hilton
%
In tcsh, you can `set autolist’ to have the shell automatically show
all the possible matches when doing filename/directory expansion.
%
You can `set autologout = 30′ to have tcsh log you off automatically
if you leave the shell idle for more than 30 minutes.
%
If you `set filec’ (file completion) in tcsh and write a part of the
filename, pressing TAB will show you the available choices when there
is more than one, or complete the filename if there’s only one match.
%
You can press up-arrow or down-arrow to walk through a list of
previous commands in tcsh.
%
You can disable tcsh’s terminal beep if you `set nobeep’.
%
If you `set watch = (0 any any)’ in tcsh, you will be notified when
someone logs in or out of your system.
Read the rest of this entry »