Posted on

How to allow Named/bind9 to write to other directory that blocked by Apparmor

My slave dns server returned error while I tried to add another domain, below example of the error.

kernel: [1239217.411031] type=1503 audit(1309700303.423:12381):
operation="mknod" pid=1692 parent=1 profile="/usr/sbin/named"
requested_mask="c::" denied_mask="c::" fsuid=109 ouid=109
name="/etc/bind/db/in/tmp-ImzPls04Rk"

That’s because named aren’t allowed to write to directory /etc/bind/db/in. To solve this issue, open apparmor profile of named (/etc/apparmor.d/usr.sbin.named), add this line right after ‘/etc/bind/** r,‘ :

/etc/bind/db/** rw,

Restart the apparmor and then restart named.

Posted on

Tentang Promosi Simpati Freedom

Simpati Freedom

Halo semua, kali ini saya cuma mau share pengalaman dalam urusan telpon menelpon. Dari semua operator yang pernah saya pakai. Kali ini cuma Simpati yang sangat cocok untuk saya.

Saya sangat sering berhubungan dengan client, baik dihubungi maupun menghubungi. Karena pekerjaan saya yang sering membuat saya berpindah-pindah lokasi, maka jelas saya sangat membutuhkan sebuah telepon yang cukup luas coverage-nya.

Tentu saja, kebutuhan tentang coverage ini, cuma simpati yang bisa memenuhinya. Dari sisi harga, sekarang ada yang paket Simpati Freedom. Dimana hal ini membuat saya lebih mudah tanpa harus mempunyai banyak kartu. Karena client saya biasanya menggunakan operator yang lain dan dengan Simpati Freedom kita bisa Ngobrol Tanpa Batas ke SEMUA OPERATOR. Ya, SEMUA OPERATOR.

Continue reading “Tentang Promosi Simpati Freedom”

Posted on

Installing Mailing List Manager a.k.a Mailman on Ubuntu 6.06

Mailman Logo
Mailman

Recently I Installed a mailing list manager on my mailserver. I use GNU’s mailman. It’s straightforward and simple and they have a web-based administration. I’m following this tutorial from wiki.ubuntu.com.

But unfortunately, this tutorial has some error in configuration. After a long search finally I found that, the line at /etc/mailman/mm_cfg.py should be MTA = None. But in the tutorial is MTA = Postfix.

The configuration error is not quickly found, because the mailing list is running as usual. I found this error on this situation.

My server is postfix and using virtual mail. I have a mailbox called dummybox@example.com. Then I create a lists called dummybox@lists.example.com. Everytime I send an email to dummybox@example.com, postfix try to deliver the email to mailman. And whoops, its error!

After changing MTA to None, this error dissapear.

Update #1:
I change the  MTA to None on wiki.ubuntu.com. Thank God it’s wiki, a collaborated pages. So I can change the error.

Posted on

Installing OpenBSD 4.7 in Ubuntu KVM-84

OpenBSD Logo
OpenBSD Logo

Hello all,

This time I need to play with OpenBSD, because I want to learn some software that doesn’t exist in Linux. It’s combination of spamd, relaydb and pf. The purpose of this, I want to get rid of spam as many as I could. Of course, with minimal efforts (cpu cycles, bandwidth, etc).

Installing OpenBSD is easy, you can follow some guidance by cibercity.biz here. After the install is finish, you will encounter another problem. Where’s the login prompt? Lucky you, on cibercity.biz tutorial, there’s also a tutorial how to get in the login prompt. It’s a problem with some kernel config, I don’t understand too much right now. Just follow the white rabbit. 😀

Ta..da.. Now you’re ready to rock in ksh!

Update 14 Aug 2010:
After installation is success, you have another problem a head. The network interface card of KVM is very slow. After a little googling, no solution right now. Because spamd, relaydb and pf already ported to FreeBSD since 5.x, I’m switching to FreeBSD. The tutorial is here. Happy FreeBSDing..

By the way, This is the tutorial I want to achive, from benzedrine.cx.

Posted on

How to setup login prompt and grub via serial console

In my Office, I use a relatively small computer devices. I setup those boxes as router, located in network panel room together with switch and cable closet. There’s no monitor or keyboard there. So when there’s any error, I need an quick solutions to see what happened while boot.

I tried this with Ubuntu 10.04. This tutorial is not compatible with Ubuntu below 10.04.

First we set the getty, so we can log-in through serial console.

$ sudo vi /etc/init/ttyS0.conf
# ttyS0 - getty
#
# This service maintains a getty on ttyS0 from the point the system is
# started until it is shut down again.

start on stopped rc RUNLEVEL=[2345]
stop on runlevel [!2345]

respawn
exec /sbin/getty -L 38400 ttyS0 vt102

Then we setup the grub loader so it can show on serial ports too. Just adjust your grub configuration with this configuration.

$sudo vi /etc/default/grub
# If you change this file, run 'update-grub' afterwards to update
# /boot/grub/grub.cfg.

GRUB_DEFAULT=0
GRUB_TIMEOUT=1
GRUB_DISTRIBUTOR=`lsb_release -i -s 2> /dev/null || echo Debian`
GRUB_CMDLINE_LINUX_DEFAULT="console=tty0 console=ttyS0,38400n8"

# Uncomment to disable graphical terminal (grub-pc only)
GRUB_TERMINAL=serial
GRUB_SERIAL_COMMAND="serial --speed=38400 --unit=0 --word=8 --parity=no --stop=1"

# The resolution used on graphical terminal
# note that you can use only modes which your graphic card supports via VBE
# you can see them in real GRUB with the command `vbeinfo'
#GRUB_GFXMODE=640x480

# Uncomment if you don't want GRUB to pass "root=UUID=xxx" parameter to Linux
#GRUB_DISABLE_LINUX_UUID=true

After editing grub configuration, we update our grub with this command:

$sudo update-grub

Before we test the grub loader with serial, we should test the getty program. Now, on client computer, we install minicom program. I’m using USB2Serial that detected on port /dev/ttyUSB0. I use 38400 baud speed. Just adjust the 38400 with other speed if you like.

Let’s install the minicom program with this command:

$sudo apt-get install minicom

After that, launch the minicom program. Set the configuration like this. Press ^ao on the minicom screen.

+-----[configuration]------+
| Filenames and paths      |
| File transfer protocols  |
| Serial port setup        |
| Modem and dialing        |
| Screen and keyboard      |
| Save setup as dfl        |
| Save setup as..          |
| Exit                     |
+--------------------------+

Choose “Serial port setup”

+-----------------------------------------------------------------------+
| A -    Serial Device      : /dev/ttyUSB0                              |
| B - Lockfile Location     : /var/lock                                 |
| C -   Callin Program      :                                           |
| D -  Callout Program      :                                           |
| E -    Bps/Par/Bits       : 38400 8N1                                 |
| F - Hardware Flow Control : No                                        |
| G - Software Flow Control : No                                        |
|                                                                       |
|    Change which setting?                                              |
+-----------------------------------------------------------------------+

After done configurating, Save it as default by choosing “Save setup as dfl”. Then Let’s try to initialized the serial by pressing ^am . If success then we have a login prompt.

Ubuntu 10.04 LTS ro-bb-fa-fb-fe ttyS0                                           

ro-bb-fa-fb-fe login:

On the login screen we know that we use serial console by “ttyS0” It’s mean we use serial 0.

Reference:
[1]https://help.ubuntu.com/community/SerialConsoleHowto
[2]http://www.vanemery.com/Linux/Serial/serial-console.html

Buy Sabrent SBT-USC6M USB 2.0 to Serial (9-pin) DB-9 RS-232 (BLUE) at Amazon and get discounted price.