Posts Categorized: red hat centos

You (root) are not allowed to access to (crontab) because of pam configuration

I have obviously messed something up with my PAM configuration and received the following error message:

To get around this I amended the file:

And added a line for the root user as follows:

before the final deny line:

Install Logtail on CentOS

I had a munin plugin script that uses the logtail program. Logtail comes with the ‘logcheck’ package – available in the EPEL repository. To install it make sure you have the EPEL repository installed. If not (for CentOS 6):

With the EPEL repository installed, install logcheck:

Logtail is installed to:

LDAPS Active Directory Issues with php-5.3.3-27.el6_5.2.x86_64

I upgraded a CentOS server today updating PHP from

to

This stopped a PHP web application I had written from being able to communicate with Active Directory over LDAPS. Normal LDAP appears to continue working fine but when I change my connections back to ldaps they stop working. To deal with the problem… Read more »

Browsing the GitLab Omnibus Postgres Database

phpPgAdmin

After installing GitLab Omnibus edition I wanted to take a look at the database tables. To do so I installed phpPgAdmin (available in the EPEL repo):

I created a user in Postgres for use with phpPgAdmin:

If you have problems running the psql command you may want to specify the the unix socket… Read more »

Restricting SSH Logins to LDAP Group

The are multiple methods of doing this including using pam but I settled for the following: In the /etc/ssh/sshd_config file I currently have:

to check for ssh keys for the user logging in and I also have password authentication disallowed. The content of the file /usr/libexec/openssh/ssh-ldap-wrapper was simply:

I amended it to:

Read more »

pam_exec.so Execute Commands on User Login

In addition to the normal pam_mkhomedir.so I wanted to create a directory for each user on an alternative disk. To do so I edited:

added the line below (just above the line: session optional pam_mkhomedir.so)

Then created the create_dir.sh file:

and added the following:

It is also possible to add… Read more »

Named: libcrypto.so.10: no version information available

centos logo

We had a problem today on CentOS release 6.4  when restarting the bind / named service. We had been receiving the error message:

This problem may have come about from using the CentAlt version of Bind. We are using 40:9.9.4-1.P2.el6 and we had been using openssl-1.0.0-27.el6_4.2.x86_64  while openssl version 1.0.1e-16.el6_5.4 was available in the… Read more »

Reset ntopng admin password

I had a comment on my recent Ntopng article from a user who needed to reset the admin password on ntopng. Ntopng uses redis as a backend data store. So first check that the redis server is actually running:

You should get output similar to:

Test a connection to redis:

You should… Read more »

ntopng on CentOS 6

ntopng

Ensure you have the EPEL repository installed first then do the following to add a repository for ntopng:

Add the following (the deri bit at the end below is not cut off – it works):

Install ntopng and dependencies:

Set the services to auto start on boot:

Ensure the GeoIP databases… Read more »

Installing Munin 2.x on Centos 6

Ensure you have the epel repository installed then:

The configuration file for Apache is located at:

Create the username/password file referred to in the above file:

Restart the munin-node service and ensure it starts on boot:

Restart the Apache service to ensure the munin conf is picked up:

Wait for… Read more »