Category: Tips

SSH Tectia: Setup Public-Key Authentication

Check out this article about SSH Tectia: Setup Public-Key Authentication. Please tell me what you think about it. You can contact me anytime!

A quick post on how to setup a public-key authentication on an SSH client server, product by SSH Tectia.

Summary: User instruction on how to setup public-key authentication.

In setting up the ssh public-key authentication between servers, local and remote, we have to generate the key pairs and transfer it to the remote/server.

Client Side

The publickey authentication method is enabled by the SSHtectia package by default. A functional ID’s key pair can be generated using the ‘generate_keys’ script (may be located in /export/opt/SSHtectia//util/ or depending on your installation). That script, ‘generate_keys’, is use to generate user key pairs: id_dsa_2048_a and id_dsa_2048_a.pub (default names) in the centralized key location:

/etc/opt/SSHtectia/keys/

The script also creates an ‘identification’ file in /etc/opt/SSHtectial/keys/ that contains the name of the private keys:

# more identification
# SSH Tectia private key
IdKey /etc/opt/SSHtectia/keys/%U/id_dsa_2048_a

# OpenSSH private key
IdKey /etc/opt/SSHtectia/keys/%U/id_dsa

Don’t forget to substitute the private key filename for ‘id_dsa_2048_a’ or ‘id_dsa’ if you are using a different naming convention. If several key pairs are used, list private keys on a separate lines.

Server Side

The publickey authentication method is enabled for functional IDs ONLY by the SSHtectia package (how do we know if an account is such?).

Copy the public key file (i.e. id_dsa_2048_a.pub) to the server, to the centralized key location. You can use sftp, copy paste or any other method to do this.

Also copy the ‘authorization’ file (created by the ‘generate_keys’ script) from the cliet to the server’s centralized key location.

Test the connection.. it should work.. It worked on mine.

2 Newest Wordpress Plugin in Sysadmindayph

Check out this article about 2 Newest Wordpress Plugin in Sysadmindayph. Please tell me what you think about it. You can contact me anytime!

There’s this 2 new Wordpress plugin here in Sysadmindayph dot com (the newest that I installed at least). I just want to share this one for the readers of this blog who is also Wordpress user.

The two new plugins here are:

SEO Smart Link – SEO Smart Links can automatically link keywords and phrases in your posts and comments with corresponding posts, pages, categories and tags on your blog.

Broken Link Checker – This plugin will monitor your blog looking for broken links and let you know if any are found.

SVM: Determine Free Space on Soft Partition

Check out this article about SVM: Determine Free Space on Soft Partition. Please tell me what you think about it. You can contact me anytime!

SVM: Determine Free Space on Soft Partition , we use the metastat -c command…

[root@localhost] /work/users> metastat -c d103
d103 p 32GB d100
d100 m 68GB d101 d102
d101 s 68GB c1t2d0s0
d102 s 68GB c1t3d0s0

[root@localhost] /work/users> metastat -p d103
d103 -p d100 -o 32 -b 58720256 -o 127926432 -b 8388608
d100 -m d101 d102 1
d101 1 1 c1t2d0s0
d102 1 1 c1t3d0s0

So from the first metastat -c d103.. that’s a mirrored 68G partition, d100 and a 32G soft partition d103.. We still have around 35G of space.

update: — someone comment please.. this information is incomplete!

BMC/Veritas Netbackup Daemon (bpcd bprd) Restart

Check out this article about BMC/Veritas Netbackup Daemon (bpcd bprd) Restart. Please tell me what you think about it. You can contact me anytime!

Here’s some tips in bouncing off NBU client daemon. BMC Netbackup (formerly with Veritas apparently) may have a number of ways to accomplish this (specially if you’re not the backup admin) and depending on the version of the Netbackup software.

The following general guidelines can be used to determine if a restart of NetBackup is required after making changes to the /usr/openv/netbackup/bp.conf file on a system.

Continue reading »

Metastat Needs Maintenance Metareplace

Check out this article about Metastat Needs Maintenance Metareplace. Please tell me what you think about it. You can contact me anytime!

Guilty! Putting all those Metastat keywords on one subject, that’s me! ANyway, I don’t want to stale this blog so once in a while I’m going to be posting some bits and pieces of Unix tools/tips.. and here’s a new one about SVM… Responding to Disk Errors courtesy of BigAdmin!

Continue reading »

Send Break on SPARC Enterprise T5120 – Send Break on ILOM

Check out this article about Send Break on SPARC Enterprise T5120 – Send Break on ILOM. Please tell me what you think about it. You can contact me anytime!

Send Break on SPARC Enterprise T5120 – well it for the T5000 series I guess, the newer ones. Or “Sending Break onan ILOM..

“->” = ILOM
“sc>” = ALOM

.. and since this particular server has the “->” prompt we’re using the ILOM.

From ILOM to Solaris:
-> start /SP/console

From ALOM to Solaris:
sc> console

And of course.. Enter “#.” to return to ALOM / ILOM !!

Send Break on ILOM

set /HOST send_break_action=break
and then
start /SP/console

c)ontinue, s)ync, r)eset? s

bada bing! bada boom!

Transfer Firefox Settings to New Computer

Check out this article about Transfer Firefox Settings to New Computer. Please tell me what you think about it. You can contact me anytime!

How do you transfer all the nice little Firefox settings, bookmarks, plugins and addons that you already have on your old computer to your new one? I’m sure there must be some configuration file somewhere in your program files or the code of firefox itself, but for use not so fluent with firefox, we can use 3rd party tools.

Firefox Extension Backup Extension (FEBE)

FEBE allows you to quickly and easily backup your Firefox extensions. In
fact, it goes beyond just backing up — It will actually rebuild your
extensions individually into installable .xpi files. Now you can easily
synchronize your office and home browsers.
FEBE backs up your extensions, themes, and (optionally) your bookmarks,
preferences, passwords, cookies and just about everything else Firefox
offers (it can even backup/restore your entire profile).

Backups can be performed on demand or scheduled for daily, weekly, or
monthly unattended runs.

mozilla addons url:https://addons.mozilla.org/en-US/firefox/addon/2109

MozBackup

MozBackup is a simple utility for creating backups of Mozilla
Firefox,
Mozilla Thunderbird, SeaMonkey, Mozilla Suite and Netscape profiles.
*It allows you to backup and restore* bookmarks, mail, contacts, history,
extensions, cache etc. It’s an easy way to do Firefox backup, Thunderbird
backup .

the homepage url:http://mozbackup.jasnapaka.com/

UX: usermod: WARNING: Group entry exceeds 2048 char: /etc/group entry truncated

Check out this article about UX: usermod: WARNING: Group entry exceeds 2048 char: /etc/group entry truncated. Please tell me what you think about it. You can contact me anytime!

“UX: usermod: WARNING: Group entry exceeds 2048 char: /etc/group entry truncated”

That’s today’s error,.. you wake up, logged and that’s the request that get slapped on you face…

This is when you try to add or modify a user’s group membership with ‘usermod -G’.. It usually happen when the group has tons of members and using usermod will fail as says that it exceeds… blah blah..

Edit the /etc/group file by hand.. take note though that doing a quick ‘/’ search for the group name will give you a ‘truncated’ message or something…

Find the group name manually, append the user account to the beginning of the list.

Exiting from Container Console if forgot to specify an escape character…

Check out this article about Exiting from Container Console if forgot to specify an escape character…. Please tell me what you think about it. You can contact me anytime!

Once you have a non-global zone installed or running on a Solaris 10 installation, it is often useful to connect to the console of the zone. This provides the same control over the zone as connecting to the console of a physical server running Solaris.

To connect to the console of a Solaris 10 zone called testzone, use the following command as root or the equivalent on the global zone:

zlogin -C testzone

The -C option specifies a console login. The console login will persist when the zone is rebooted.
To exit zlogin, use the escape sequence ~. on a new line (the tilde must follow a carriage return, not any other character). If this escape character is inappropriate (because you are connected using software like tip that also uses this escape sequence), you can specify a different escape character on the command line. For example, to use the @ symbol, use:

zlogin -C -e @ testzone

In this case, to exit the zlogin console session, type @. on a new line

Just a note of reference, if you are using tip and forget to change the escape character above. you can do the following to get out

~~.

This will force it to disconnect the local zlogin instead of the tip…
—-
However, let’s go deeper….

If you logged into a container’s console (via chs000xx —> ILOM —> then to a serial console)..


#. – will exit to ILOM (but once you logged in again.. you’re in container’s console)
~. – will exit to chs000xx (but once you logged in again.. you’re in container’s console)
~~. – WILL EXIT from the Container!!


It’s a like an hierarchy thingy..


(first part was taken from a website… later part was from me.. of course if you didn’t read all of it, you wont see this note.. :D )

http://sysadmindayph.com/

Top equivalent for AIX – Topas, Only Better

Check out this article about Top equivalent for AIX – Topas, Only Better. Please tell me what you think about it. You can contact me anytime!

Top equivalent for AIX – Topas, Only Better… That’s what I searched when I got a ticket from one of the AIX boxes here complaining about CPU being 99% used up.

Of course, you can use vmstat with interval, but for those sysadmin folks who are use to using Top, its still more comfortable using (and seeing) the top output.

Topas is the equivalent of Top for AIX.. it’s better than Top as a matter of fact according to some AIX gurus (and Solaris)

If you persists in using top, You’ll have to build it yourself from the sources at http://www.unixtop.org/ plus probably this fix: 

        http://sourceforge.net/tracker/index.php?func=detail&aid=934590&group_id=72892&atid=536044

Good luck!