Archive for the linux CategoryEnvironmentError: The environment options "TRAC_ENV" or "TRAC_ENV_PARENT_DIR" or the mod_python options "TracEnv" or "TracEnvParentDir" are missing. Yuck. What’s more, if you’re using SuExec (like I am) then your Apache directives are ignored. Solution: Edit your trac.fcgi and prepend the following code. # hack for SuExec import os; os.environ['TRAC_ENV_PARENT_DIR'] = ‘/var/lib/trac’
11
02
2008
vmsplice exploit fix and patching on DebianPosted by: drax in admin, exploitation, kernel, linux, securityTags: debian Some vulnerabilities in the Linux kernel where publicly disclosed on the 8th of February 2008. These can be exploited by any user to gain elevated privileges. A “local root” exploit was published Sunday which allows an arbitrary user to escalate to root privileges. Affected versions: >= 2.6.17
02
02
2008
Encrypted filesystem on OS X, Linux and WindowsPosted by: drax in admin, linux, osxTags: truecrypt
TrueCrypt, probably the best solution available, was only working on Linux and Windows… up to now.
24
01
2008
Hosting multiple SSL vhosts on a single IP/Port/Certificate with Apache2Posted by: drax in admin, linux, osxTags: apache, ssl, vhosts But that’s impossible!!HTTPS is just HTTP encapsulated inside an SSL tunnel. Apache’s virtual hosts are a clever “hack” whereby the Host header in the HTTP packet is verified. This alllows a single apache instance on a single IP/Port combination to serve a (not so) infinite number of differentes sites (aka vhosts). Problem: The SSL tunnel is created before the first HTTP packet gets sent. Apache needs an SSL certificate but doesn’t have a Host header to match, hence cannot choose a virtual host. SolutionThis trick essentially does the matching of the Host header after the SSL connection has been established. How? Via some mod_rewrite magic! CaveatsAlthough I said so, it’s not really that magical. There are a few things this trick does not solve.
|
