IBM HTTP Server httpd.conf

ServerName was.hensler.net:80 LoadModule rewrite_module modules/mod_rewrite.so RewriteEngine On RewriteRule ^\/$ https://%{SERVER_NAME}/ [NE,L,R] LoadModule ibm_ssl_module modules/mod_ibm_ssl.so Keyfile /opt/IBM/HTTPServer/ssl/key.kdb SSLStashfile /opt/IBM/HTTPServer/ssl/key.sth <IfModule mod_ibm_ssl.c> Listen 0.0.0.0:443 <VirtualHost *:443> ServerName was.hensler.net:443 SSLEnable SSLClientAuth none SSLCompression off SSLProtocolDisable SSLv2 SSLv3 SSLProtocolEnable TLSv1 TLSv11 TLSv12 SSLCipherSpec TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 SSLCipherSpec TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 SSLCipherSpec TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 SSLCipherSpec TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 SSLCipherSpec TLS_RSA_WITH_AES_256_CBC_SHA SSLCipherSpec TLS_RSA_WITH_AES_128_CBC_SHA SSLCipherSpec SSL_RSA_WITH_3DES_EDE_CBC_SHA SSLCipherSpec SSL_RSA_WITH_3DES_EDE_CBC_SHA # […]

Read More

Autostart opendj CentOS

https://backstage.forgerock.com/knowledge/kb/book/b73824898#a56766667 cd /etc/systemd/system vim opendj.service [Unit] Description=opendj LDAP Server After=network.target remote-fs.target nss-lookup.target [Service] Type=forking PIDFile=/opt/opendj/logs/server.pid ExecStart=/opt/opendj/bin/start-ds –quiet ExecStop=/opt/opendj/bin/stop-ds –quiet PrivateTmp=true LimitNOFILE=infinity [Install] WantedBy=multi-user.target systemctl enable opendj.service systemctl start opendj.service systemctl stop opendj.service

Read More

Autostart IBM HTTP Server CentOS

http://publib.boulder.ibm.com/httpserv/ihsdiag/startstop_questions.html#how-do-i-start-ihs-during-the-linux-boot-process cd /etc/systemd/system vim ihs.service [Unit] Description=IBM HTTP Server After=network.target remote-fs.target nss-lookup.target [Service] Type=forking PIDFile=/opt/IBM/HTTPServer/logs/httpd.pid ExecStart=/opt/IBM/HTTPServer/bin/apachectl start -d /opt/IBM/HTTPServer ExecStop=/opt/IBM/HTTPServer/bin/apachectl graceful-stop ExecReload=/opt/IBM/HTTPServer/bin/apachectl graceful PrivateTmp=true LimitNOFILE=infinity [Install] WantedBy=multi-user.target vim ihsadmin.service [Unit] Description=IBM HTTP Administration Server After=network.target remote-fs.target nss-lookup.target [Service] Type=forking PIDFile=/opt/IBM/HTTPServer/logs/admin.pid ExecStart=/opt/IBM/HTTPServer/bin/adminctl start ExecStop=/opt/IBM/HTTPServer/bin/adminctl stop PrivateTmp=true LimitNOFILE=infinity [Install] WantedBy=multi-user.target   systemctl enable ihs.service systemctl start ihs […]

Read More

Centos 7 Installation

yum -y install mc wget unzip net-tools lsof ntp nfs-utils nfs4-acl-tools portmap autofs vim yum -y install xclock xauth xhost xorg-x11-fonts* yum -y install libstdc++.i686 libXtst pam.i686 dejavu-lgc-sans-fonts gtk2.i686 gtk2 libXtst.i686 Minimum Install for Installation Manager: http://www-01.ibm.com/support/docview.wss?uid=swg21459143 yum -y install gtk2.i686 yum -y install libXtst.i686 yum -y install compat-libstdc++ yum install libstdc++.so.5 yum -y install gtk2.i686 […]

Read More

postfix macos high sierra

sudo vim /etc/postfix/main.cf message_size_limit = 10485760 mailbox_size_limit = 0 biff = no smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated permit recipient_delimiter = + tls_random_source = dev:/dev/urandom #smtpd_tls_ciphers = medium myhostname = mail.hensler.net mydomain = hensler.net myorigin = $mydomain #inet_interfaces = $myhostname, localhost mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,mail.$mydomain mynetworks = 127.0.0.0/8 smtpd_banner = $myhostname smtpd_use_tls= yes smtp_use_tls = […]

Read More

“lets encrypt”, SSL, certbot, macos high sierra

certbot reads apaches SSL configuration and creates certificates for each configured site brew install certbot sudo vim /etc/letsencrypt/options-ssl-apache.conf > comment out SSLCompression off sudo certbot –apache > create certificates > https://certbot.eff.org/#osx-apache Automating renewal > sudo certbot renew –dry-run

Read More

dnsmasq macos high sierra

brew install dnsmasq   sudo vim /usr/local/etc/dnsmasq.conf bogus-priv local=/lan.hensler.net/ domain=lan.hensler.net expand-hosts listen-address=127.0.0.1 listen-address=10.0.29.150   sudo vim /etc/hosts ## # Host Database # # localhost is used to configure the loopback interface # when the system is booting. Do not change this entry. ## 127.0.0.1 localhost 255.255.255.255 broadcasthost ::1 localhost 10.0.29.60 hostname   /etc/resolv.conf domain lan.hensler.net […]

Read More