Creator

You are here:-Creator

About Creator

This author has not yet filled in any details.
So far Creator has created 29 blog entries.

On-premise 에서 PLURA 에이전트 설치하기 curl

On-premise 에서 PLURA 에이전트 설치하기 curl 1. CentOS 6 1) Change Base CentOS repo mv /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.org curl -o /etc/yum.repos.d/CentOS-Base.repo http://rpms.plura.io/module/baseurl/6/CentOS-Base.repo mv /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6 /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6.org curl -o /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6 http://rpms.plura.io/module/baseurl/6/RPM-GPG-KEY-CentOS-6 2) Install epel mv /etc/yum.repos.d/epel.repo /etc/yum.repos.d/epel.repo.org curl -o /etc/yum.repos.d/epel.repo http://rpms.plura.io/module/baseurl/6/epel.repo mv /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6.org curl -o /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 http://rpms.plura.io/module/baseurl/6/RPM-GPG-KEY-EPEL-6 or yum install http://rpms.plura.io/module/baseurl/6/epel-release-latest-6.noarch.rpm mv /etc/yum.repos.d/epel.repo /etc/yum.repos.d/epel.repo.org curl -o /etc/yum.repos.d/epel.repo

By |2019-06-18T17:33:28+09:006월 18th, 2019|Categories: Tech|On-premise 에서 PLURA 에이전트 설치하기 curl에 댓글 닫힘

On-premise 에서 PLURA 에이전트 설치하기 wget

On-premise 에서 PLURA 에이전트 설치하기 wget 1. CentOS 6 1) Change Base CentOS repo mv /etc/yum.repos.d/CentOS-Base.repo /etc/yum.repos.d/CentOS-Base.repo.org wget http://rpms.plura.io/module/baseurl/6/CentOS-Base.repo -O /etc/yum.repos.d/CentOS-Base.repo mv /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6 /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6.org wget http://rpms.plura.io/module/baseurl/6/RPM-GPG-KEY-CentOS-6 -O /etc/pki/rpm-gpg/RPM-GPG-KEY-CentOS-6 2) Install epel mv /etc/yum.repos.d/epel.repo /etc/yum.repos.d/epel.repo.org wget http://rpms.plura.io/module/baseurl/6/epel.repo -O /etc/yum.repos.d/epel.repo mv /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6.org wget http://rpms.plura.io/module/baseurl/6/RPM-GPG-KEY-EPEL-6 -O /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6 or yum install http://rpms.plura.io/module/baseurl/6/epel-release-latest-6.noarch.rpm mv /etc/yum.repos.d/epel.repo /etc/yum.repos.d/epel.repo.org wget http://rpms.plura.io/module/baseurl/6/epel.repo -O

By |2019-06-18T17:31:56+09:006월 15th, 2019|Categories: Tech|On-premise 에서 PLURA 에이전트 설치하기 wget에 댓글 닫힘

HAProxy 1.8.x support tls v1.3 in CentOS 7

O. Prerequisites with openssl 1.1.1 yum -y install pcre2-devel zlib-devel 1. Download wget http://www.haproxy.org/download/1.8/src/haproxy-1.8.17.tar.gz tar -xvzf haproxy-1.8.17.tar.gz sleep 1 cd haproxy-1.8.17 2. Install make TARGET=linux2628 CPU=native USE_PCRE2=1 USE_PCRE2_JIT=1 USE_OPENSSL=1 SSL_LIB=/usr/local/ssl/lib SSL_INC=/usr/local/ssl/include/openssl USE_ZLIB=1 make install 3. Configuration   8. Reference https://dnsprivacy.org/wiki/display/DP/Building+HAProxy+so+that+it+can+use+TLSv1.3 https://certsimple.com/blog/haproxy-http2-dynamic-load-balancing-ssl http://itscom.org/archives/8377

By |2019-02-05T12:04:44+09:002월 5th, 2019|Categories: 미분류|HAProxy 1.8.x support tls v1.3 in CentOS 7에 댓글 닫힘

NGINX install support tls v1.3 in CentOS 7

0. Prerequisites openssl 1.1.1 http://blog.plura.io/?p=9209 1. Install redhat-lsb-core yum install redhat-lsb-core yum -y install wget openssl-devel libxml2-devel libxslt-devel gd-devel perl-ExtUtils-Embed GeoIP-devel pcre-devel 2. User add useradd builder groupadd builder 3. download wget http://nginx.org/packages/mainline/centos/7/SRPMS/nginx-1.15.8-1.el7_4.ngx.src.rpm 4. Configuration rpm -ivh nginx-1.15.8-1.el7_4.ngx.src.rpm sed -i "s|--with-http_ssl_module|--with-http_ssl_module --with-openssl=/usr/local/src/openssl-1.1.1a --with-openssl-opt=enable-tls1_3 |g" /root/rpmbuild/SPECS/nginx.spec 5. Compile rpmbuild -ba /root/rpmbuild/SPECS/nginx.spec 6. Install rpm -ivh /root/rpmbuild/RPMS/x86_64/nginx-1.15.8-1.el7_4.ngx.x86_64.rpm

By |2019-02-15T09:56:18+09:002월 5th, 2019|Categories: Tech|NGINX install support tls v1.3 in CentOS 7에 댓글 닫힘

syslog 빠른 설정

Legacy 클라이언트에서 원격지 syslog 서버를 이용하기 위한 설정 가이드 1. HP-UX vi /etc/syslog.conf *.info @10.10.52.149 /sbin/init.d/syslog stop /sbin/init.d/syslog start 2. Solaris vi /etc/syslog.conf *.info @10.10.52.148 svcadm restart system-log 3. AIX vi /etc/syslog.conf *.info @10.10.52.147 refresh -s syslogd command 명령어 수집 vi /etc/profile function logging { stat="$?" cmd=$(history|tail -1) if [ "$cmd" != "$cmd_old" ]; then

By |2018-09-04T15:55:57+09:005월 6th, 2018|Categories: Tech|0 Comments

OpenSSL 1.1.1a upgrade for CentOS 7

What's new? OPENSSL 1.1.1a https://www.openssl.org/blog/blog/2018/09/11/release111/   1. compiler yum group install 'Development Tools' yum install perl-core zlib-devel -y 2. openssl download cd /usr/local/src wget https://www.openssl.org/source/openssl-1.1.1a.tar.gz tar -xvzf openssl-1.1.1a.tar.gz 3. openssl compile cd openssl-1.1.1a ./config --prefix=/usr/local/ssl --openssldir=/usr/local/ssl shared zlib make make test make install   4. Configure Link Libraries cd /etc/ld.so.conf.d/ vi openssl-1.1.1a.conf /usr/local/ssl/lib 4.1 Now

By |2019-01-23T08:59:09+09:004월 21st, 2018|Categories: Tech|0 Comments

Nginx 와 WordPress 에서 xmlrpc 접속 거부

1. Nginx 의 conf 수정 server { location ~* /wp-includes/.*.php$ { deny all; access_log off; log_not_found off; } location ~* /wp-content/.*.php$ { deny all; access_log off; log_not_found off; } location ~* /(?:uploads|files)/.*.php$ { deny all; access_log off; log_not_found off; } location ~* /modules/.*.php$ { deny all; access_log off; log_not_found off; } location ~* /skins/.*.php$ {

By |2018-09-04T15:57:56+09:004월 21st, 2018|Categories: Tech|0 Comments

BASH 명령어를 rsyslog를 이용하여 ELK 취합 후 분석하기

BASH 명령어를 rsyslog를 이용하여 ELK 취합 후 분석하기 (Client) vi /etc/bash.bashrc export PROMPT_COMMAND='RETRN_VAL=$?;logger -p local6.debug "$(whoami) [$$]: $(history 1 | sed "s/^[ ]*[0-9]\+[ ]*//" ) [$RETRN_VAL]"' vi /etc/rsyslog.d/bash.conf - rsyslog 추가 local6.* /var/log/commands.log vi /etc/rsyslog.d/01-json-template.conf - rsyslog 추가 template(name="json-template" type="list") { constant(value="{") constant(value="\"@timestamp\":\"") property(name="timereported" dateFormat="rfc3339") constant(value="\",\"@version\":\"1") constant(value="\",\"message\":\"") property(name="msg" format="json") constant(value="\",\"sysloghost\":\"") property(name="hostname") constant(value="\",\"severity\":\"") property(name="syslogseverity-text") constant(value="\",\"facility\":\"") property(name="syslogfacility-text")

By |2017-12-12T09:38:25+09:0010월 3rd, 2017|Categories: Tech|0 Comments