----<|)imshahmemyselfandi(|>----

How to clear pending/stuck print job in AIX

noreply@blogger.com (imshahmemyselfandi) — Mon, 19 Jul 2010 05:13:00 +0000

## In this scenario the print queue name/printer name is AV169. This is for SAP printing. Check whether the print queue name/printer name is exist or not and it is pingable or not. If everything is fine, then proceed with the 3 steps below

1) root@sap03_R3P / # disable AV169
** This command will disable the printer for a while

2) root@sap03_R3P / # qcan -x 23 -P AV169
** Look for the first print queue ID that is listed. In this case the first print queue ID is 23

root@pxipvsap03_R3P / # lpstat -oAV169
Queue Dev Status Job Files User PP % Blks Cp Rnk
------- ----- --------- --- ------------------ ---------- ---- -- ----- --- ---
AV169 hp@AV RUNNING 23 000IJXSj.R3P r3padm 0 100 16 1 1
QUEUED 191 000J5NyL.R3P r3padm 107 1 2
QUEUED 332 000JUXwn.R3P r3padm 21 1 3

** Enter the command above to remove that print queue. After that, enter command : lpstat -oAV169 | more . If that print queue is still exist repeat the above command until that print queue is remove and disappear from the list. Then, enter again command lpstat -oAV169 | more for confirmation.

3) root@sap03_R3P / # enable AV169
** To enable again the printer, type the above command.

Follow the below steps for how to :)

$ /usr/sbin/ping AV169
PING AV169.domain1.local: (10.xx.xx.xxx): 56 data bytes
64 bytes from 10.xx.xx.xxx: icmp_seq=0 ttl=58 time=2 ms
64 bytes from 10.xx.xx.xxx: icmp_seq=1 ttl=58 time=2 ms
64 bytes from 10.xx.xx.xxx: icmp_seq=2 ttl=58 time=2 ms

----AV169.domain1.local PING Statistics----
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 2/2/2 ms

$ nslookup AV169
Server: pxdces01.domain1.local
Address: 10.xx.xx.xxx

Name: AV169.domain1.local
Address: 10.xx.xx.xxx

$ grep -i AV169 /etc/qconfig
AV169:
device = hp@AV169
hp@AV169:
file = /var/spool/lpd/pio/@local/dev/hp@AV169#hpJetDirect#9100
backend = /usr/lib/lpd/pio/etc/piojetd AV169 9100

$ lpstat -oAV169
Queue Dev Status Job Files User PP % Blks Cp Rnk
------- ----- --------- --- ------------------ ---------- ---- -- ----- --- ---
AV169 hp@AV RUNNING 23 000IJXSj.R3P r3padm 0 100 16 1 1
QUEUED 191 000J5NyL.R3P r3padm 107 1 2
QUEUED 332 000JUXwn.R3P r3padm 21 1 3
QUEUED 341 000JbHe5.R3P r3padm 11 1 4
QUEUED 439 000Lo5Td.R3P r3padm 14 1 5
QUEUED 444 000LuxhR.R3P r3padm 9 1 6
QUEUED 451 000M1QLh.R3P r3padm 11 1 7
QUEUED 619 000O4KQ5.R3P r3padm 45 1 8
QUEUED 623 000O5QcD.R3P r3padm 52 1 9
QUEUED 626 000O6FlJ.R3P r3padm 227 1 10
QUEUED 936 000P5qiX.R3P r3padm 15 1 11
QUEUED 17 000PNitd.R3P r3padm 9 1 12
QUEUED 139 000PPvHt.R3P r3padm 358 1 13
QUEUED 203 000PttcP.R3P r3padm 11 1 14
QUEUED 205 000PurI1.R3P r3padm 40 1 15
QUEUED 206 000PuilV.R3P r3padm 146 1 16
QUEUED 596 000QwNaT.R3P r3padm 81 1 17
QUEUED 74 000S8lJh.R3P r3padm 70 1 18
QUEUED 76 000S92Mj.R3P r3padm 12 2 19
QUEUED 77 000S9AtF.R3P r3padm 27 3 20
QUEUED 80 000S9izJ.R3P r3padm 39 2 21
QUEUED 106 000SCCQb.R3P r3padm 39 2 22
QUEUED 198 000SPfpB.R3P r3padm 40 2 23
QUEUED 366 000Snb4z.R3P r3padm 108 1 24
QUEUED 371 000SoYkb.R3P r3padm 90 1 25
QUEUED 590 000TLYcT.R3P r3padm 14 1 26
QUEUED 598 000TMeob.R3P r3padm 38 1 27
QUEUED 698 000TbEPJ.R3P r3padm 8 1 28
QUEUED 731 000TfuEr.R3P r3padm 8 1 29
QUEUED 767 000Tkzdx.R3P r3padm 8 1 30
QUEUED 11 000UMWor.R3P r3padm 17 1 31
QUEUED 68 000UV3Kr.R3P r3padm 17 1 32
QUEUED 813 000WGUnh.R3P r3padm 11 1 33
QUEUED 815 000WGuNF.R3P r3padm 11 1 34
QUEUED 827 000WIhBx.R3P r3padm 342 1 35
QUEUED 862 000WNe4X.R3P r3padm 276 1 36
QUEUED 907 000WU6in.R3P r3padm 16 1 37
QUEUED 171 000X7yoT.R3P r3padm 14 1 38
QUEUED 288 000XPiT3.R3P r3padm 14 1 39
QUEUED 359 000XbGWP.R3P r3padm 14 1 40

$ lpstat -pAV169 | wc -l
42

root@sap03_R3P / # disable AV169

root@sap03_R3P / # qcan -x 23 -P AV169

root@sap03_R3P / # lpstat -oAV169 | more
Queue Dev Status Job Files User PP % Blks Cp Rnk
------- ----- --------- --- ------------------ ---------- ---- -- ----- --- ---
AV169 hp@AV DOWN
QUEUED 23 000IJXSj.R3P r3padm 16 1 1
QUEUED 191 000J5NyL.R3P r3padm 107 1 2

root@sap03_R3P / # qcan -x 23 -P AV169

root@sap03_R3P / # lpstat -oAV169 | more
Queue Dev Status Job Files User PP % Blks Cp Rnk
------- ----- --------- --- ------------------ ---------- ---- -- ----- --- ---
AV169 hp@AV DOWN
QUEUED 191 000J5NyL.R3P r3padm 107 1 1
QUEUED 332 000JUXwn.R3P r3padm 21 1 2

root@sap03_R3P / # enable AV169

root@sap03_R3P / # lpstat -pAV169 | wc -l
41
root@sap03_R3P / # lpstat -pAV169 | wc -l
38
root@sap03_R3P / # lpstat -pAV169 | wc -l
36
root@sap03_R3P / # lpstat -pAV169 | wc -l
34
root@sap03_R3P / # lpstat -pAV169 | wc -l
32
root@sap03_R3P / # lpstat -pAV169 | wc -l
30
root@sap03_R3P / # lpstat -pAV169 | wc -l
25

MSC Malaysia Open Source Conference 2010

noreply@blogger.com (imshahmemyselfandi) — Sun, 06 Jun 2010 16:11:00 +0000

MSC Malaysia Open Source Conference

INVITATION TO PARTICIPATE IN MSC MALAYSIA OPEN SOURCE CONFERENCE 2010

Date: 29 June - 1 July, 2010
Venue: Berjaya Times Square

Come join us at the MSC Malaysia Open Source Conference 2010! You'll be pleasantly surprised...

Who should attend?

Business executives from local and foreign companies
Open Source developers, communities, inventors, evangelist, researchers, strategist
Government officers
Students, general public

Why you should attend?

Provide exposure and knowledge on the importance of Open Source in enhancing competitiveness by giving freedom of choice in software usage with lower total cost of ownership, hence benefiting businesses and society at large. Over 30 session tracks are made available.
Share amongst the open source community on new directions and latest innovations by the subject matter experts, thought leaders and industry gurus.
Provide a platform for conference participants to actively interact, share and exchange views, ideas, and tools on the latest trends and issues of Open Source.
Networking, learning and having great fun!

Click here for more details!

HP-UX : Managing Disc Basic

noreply@blogger.com (imshahmemyselfandi) — Fri, 30 Apr 2010 23:53:00 +0000

To check available disk space and file system, type bdf

[hpa50-12]/ >bdf
Filesystem kbytes used avail %used Mounted on
/dev/vg00/lvol3 204800 70848 132960 35% /
/dev/vg00/lvol1 295024 26616 238904 10% /stand
/dev/vg00/lvol8 1560576 273496 1277096 18% /var
/dev/vg00/lvol7 909312 858128 50848 94% /usr
/dev/vg00/lvol4 204800 2800 200496 1% /tmp
/dev/vg00/lvol6 929792 695864 232144 75% /opt
/dev/vg00/lvol5 20480 2320 18024 11% /home

** The bdf command displays the amount of free disk space available

To check physical volume of disk, type ioscan -funC disk

[hpa50-12]/ >ioscan -funC disk
Class I H/W Path Driver S/W State H/W Type Description
======================================================================
disk 0 0/0/1/1.15.0 sdisk CLAIMED DEVICE HP

18.2GST318406LC
/dev/dsk/c1t15d0 /dev/rdsk/c1t15d0
disk 1 0/0/2/1.15.0 sdisk CLAIMED DEVICE HP

18.2GMAN3184MC
/dev/dsk/c3t15d0 /dev/rdsk/c3t15d0

** Ioscan scans system hardware, usable I/O system devices, or kernel I/O system data structures as appropriate, and lists the results.

To check further information of physical volume type, pvdisplay /Physical/volumes/path

[hpa50-12]/ >pvdisplay /dev/dsk/c1t15d0
--- Physical volumes ---
PV Name /dev/dsk/c1t15d0
VG Name /dev/vg00
PV Status available
Allocatable yes
VGDA 2
Cur LV 8
PE Size (Mbytes) 4
Total PE 4340
Free PE 3074
Allocated PE 1266
Stale PE 0
IO Timeout (Seconds) default
Autoswitch On

** pvdisplay - display information about physical volumes within LVM volume group

To check Volume Group (VG), look at the output of the bdf command and see at the Filesystem field, /dev/vg00 <-- vg00 is the Volume Group (VG). Then type command, vgdisplay

volumegr0up [hpa50-12]/ >vgdisplay vg00
--- Volume groups ---
VG Name /dev/vg00
VG Write Access read/write
VG Status available
Max LV 255
Cur LV 8
Open LV 8
Max PV 16
Cur PV 1
Act PV 1
Max PE per PV 4350
VGDA 2
PE Size (Mbytes) 4
Total PE 4340
Alloc PE 1266
Free PE 3074
Total PVG 0
Total Spare PVs 0
Total Spare PVs in use 0

To scan the existing volume group, type vgscan

[hpa50-12]/ >vgscan
vgscan: The physical volume "/dev/dsk/c1t15d0" is already recorded in the

"/etc/lvmtab" file.
Physical Volume "/dev/dsk/c3t15d0" contains no LVM information

** vgdisplay - display information about LVM volume groups

To check Logical Volume, look at the output of the bdf command and see at the Filesystem field, /dev/vg00/lvol3, /dev/vg00/lvol1 and /dev/vg00/lvol8. lvol3, lvol1 and lvol8 are the logical volume. To getthe information of logical volume type, lvdisplay /dev/vg00/logicalVolume

=========
Example1
=========

[hpa50-12]/ >lvdisplay /dev/vg00/lvol3
--- Logical volumes ---
LV Name /dev/vg00/lvol3
VG Name /dev/vg00
LV Permission read/write
LV Status available/syncd
Mirror copies 0
Consistency Recovery MWC
Schedule parallel
LV Size (Mbytes) 200
Current LE 50
Allocated PE 50
Stripes 0
Stripe Size (Kbytes) 0
Bad block off
Allocation strict/contiguous
IO Timeout (Seconds) default

=========
Example2
=========

[hpa50-12]/ >lvdisplay /dev/vg00/lvol1
--- Logical volumes ---
LV Name /dev/vg00/lvol1
VG Name /dev/vg00
LV Permission read/write
LV Status available/syncd
Mirror copies 0
Consistency Recovery MWC
Schedule parallel
LV Size (Mbytes) 300
Current LE 75
Allocated PE 75
Stripes 0
Stripe Size (Kbytes) 0
Bad block off
Allocation strict/contiguous
IO Timeout (Seconds) default

=========
Example3
=========

[hpa50-12]/ >lvdisplay /dev/vg00/lvol8
--- Logical volumes ---
LV Name /dev/vg00/lvol8
VG Name /dev/vg00
LV Permission read/write
LV Status available/syncd
Mirror copies 0
Consistency Recovery MWC
Schedule parallel
LV Size (Mbytes) 1524
Current LE 381
Allocated PE 381
Stripes 0
Stripe Size (Kbytes) 0
Bad block on
Allocation strict
IO Timeout (Seconds) default

[hpa50-12]/ >ioscan -kfC ext_bus
Class I H/W Path Driver S/W State H/W Type Description
=================================================================
ext_bus 0 0/0/1/0 c720 CLAIMED INTERFACE SCSI C896 Ultra Wide

LVD
ext_bus 1 0/0/1/1 c720 CLAIMED INTERFACE SCSI C896 Ultra Wide

Single-Ended
ext_bus 2 0/0/2/0 c720 CLAIMED INTERFACE SCSI C87x Fast Wide

Single-Ended
ext_bus 3 0/0/2/1 c720 CLAIMED INTERFACE SCSI C87x Ultra Wide

Single-Ended

To get information of what disk and filesystem that currently mount type, mount

[hpa50-12]/ >mount
/ on /dev/vg00/lvol3 log on Fri Apr 30 17:28:38 2010
/stand on /dev/vg00/lvol1 defaults on Fri Apr 30 17:28:38 2010
/var on /dev/vg00/lvol8 delaylog,nodatainlog on Fri Apr 30 17:28:42 2010
/usr on /dev/vg00/lvol7 delaylog,nodatainlog on Fri Apr 30 17:28:42 2010
/tmp on /dev/vg00/lvol4 delaylog,nodatainlog on Fri Apr 30 17:28:42 2010
/opt on /dev/vg00/lvol6 delaylog,nodatainlog on Fri Apr 30 17:28:42 2010
/home on /dev/vg00/lvol5 delaylog,nodatainlog on Fri Apr 30 17:28:43 2010

[hpa50-12]/ >bdf
Filesystem kbytes used avail %used Mounted on
/dev/vg00/lvol3 204800 70848 132960 35% /
/dev/vg00/lvol1 295024 26616 238904 10% /stand
/dev/vg00/lvol8 1560576 273496 1277096 18% /var
/dev/vg00/lvol7 909312 858128 50848 94% /usr
/dev/vg00/lvol4 204800 2800 200496 1% /tmp
/dev/vg00/lvol6 929792 695864 232144 75% /opt
/dev/vg00/lvol5 20480 2320 18024 11% /home

Use Variables with Scripts

noreply@blogger.com (imshahmemyselfandi) — Sun, 18 Apr 2010 07:18:00 +0000

Using an editor or the cat command, write a script that uses a variable. Note that this script uses the bash shell on LINUX, but you can also use the ksh shell with UNIX.

1) Set a value for the variable first using typeset then check it using set.

[root@vmpc_rh804 root]# typeset first=you
[root@vmpc_rh804 root]# set | more
BASH=/bin/bash
BASH_ENV=/root/.bashrc
BASH_VERSINFO=([0]="2" [1]="05b" [2]="0" [3]="1" [4]="release" [5]="i686-pc-linu
x-gnu")
BASH_VERSION='2.05b.0(1)-release'
COLORS=/etc/DIR_COLORS
.
.
.
first=you
hi=hello
langfile=/root/.i18n

2) Write a short Welcome script that uses a variable.

[root@vmpc_rh804 root]# cat > Welcome.bash
#!/bin/bash
#
first=Student
echo "Welcome to Linux $first"
Ctrl/D

3) Execute your script using the shell interpreter.

$ bash Welcome.bash
Welcome to Linux Student

Invoke a Script

noreply@blogger.com (imshahmemyselfandi) — Sun, 18 Apr 2010 06:42:00 +0000

Use various methods to invoke a script, and determine when it runs in your shell, and when a subshell is created.

1) Using an editor or the cat command, write a korn or bash script that:
* Executes the ps command.
* Echos the value of the shell variable hi.

[root@vmpc_rh804 root]# cat > do-ps.bash
#!/bin/bash
# This script displays active processes
#
ps
echo $hi

2) Set the value of hi to hello in your current command line shell.

[root@vmpc_rh804 root]# hi=hello

3) Execute your script using the shell interpreter.

[root@vmpc_rh804 root]# bash do-ps.bash
PID TTY TIME CMD
1311 pts/4 00:00:00 bash
1358 pts/4 00:00:00 bash
1365 pts/4 00:00:00 ps

** Note that it doesn't recognize the hi variable. This is because the variable is local to the shell in which it was defined. When this script is executed, a new shell is started that is outside your local shell. **

4) Add execute privilege to the script file and run it as a command from the current directory.

[root@vmpc_rh804 root]# chmod +x do-ps.bash
[root@vmpc_rh804 root]# ./do-ps.bash
PID TTY TIME CMD
1311 pts/4 00:00:00 bash
1367 pts/4 00:00:00 do-ps.bash
1374 pts/4 00:00:00 ps

5) Use the built-in source command to execute the commands in the script file.

[root@vmpc_rh804 root]# source do-ps.bash
PID TTY TIME CMD
1311 pts/4 00:00:00 bash
1375 pts/4 00:00:00 ps
hello
[root@vmpc_rh804 root]#

** Note that it is able to recognize the hi variable. This is because the source command runs this script in the local shell. **

How to write a simple shell script in Linux

noreply@blogger.com (imshahmemyselfandi) — Sun, 18 Apr 2010 05:26:00 +0000

Below are the simple steps to write a simple shell script in Linux machine. Before this I don't have any experience to write a script. Thanks to HP's Virtual Lab. Its really make my day ;-)

===========
Exercise 1
===========

1) Find what shells are available on your system.

[root@vmpc_rh804 root]# more /etc/shells
/bin/sh
/bin/bash
/sbin/nologin
/bin/bash2
/bin/ash
/bin/bsh
/bin/tcsh
/bin/csh

2) Using an editor or the cat command, write a korn or bash script that:

* Comments what the script will do.
* Shows your current directory.
* Shows who is currently logged on.
* Prints the current date and time.

[root@vmpc_rh804 root]# cat > myscript
#! /bin/bash
#
# This script shows current directory
# then shows who is on the system
# then prints the date and time
#
pwd
who
date
Ctrl/D

3) Run the script by calling up the shell interpreter.

[root@vmpc_rh804 root]# bash myscript
/root
root :0 Apr 11 06:25
root pts/0 Apr 11 06:26
root pts/1 Apr 11 06:26
root pts/2 Apr 11 06:26
root pts/3 Apr 11 06:26
root pts/5 Apr 11 06:27
root pts/4 Mar 30 00:25 (16.158.13.22)
Tue Mar 30 00:55:01 EST 2010

4) Show how the script cannot be run as a command unless the file has execute privileges.

[root@vmpc_rh804 root]# ./myscript
-bash: ./myscript: Permission denied

5) Add execute privilege to the script file and try running it again.

[root@vmpc_rh804 root]# chmod +x myscript
[root@vmpc_rh804 root]# ./myscript
/root
root :0 Apr 11 06:25
root pts/0 Apr 11 06:26
root pts/1 Apr 11 06:26
root pts/2 Apr 11 06:26
root pts/3 Apr 11 06:26
root pts/5 Apr 11 06:27
root pts/4 Mar 30 00:25 (16.158.13.22)
Tue Mar 30 01:04:14 EST 2010

============
Exercise 2
============

1) [root@vmpc_rh804 root]# more /etc/shells
/bin/sh
/bin/bash
/sbin/nologin
/bin/bash2
/bin/ash
/bin/bsh
/bin/tcsh
/bin/csh

[root@vmpc_rh804 root]# cat > myscript1
#!/bin/bash
#
#
ifconfig eth0
netstat -i

2) [root@vmpc_rh804 root]# bash myscript1
eth0 Link encap:Ethernet HWaddr 00:50:56:03:04:40
inet addr:172.16.0.40 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 b) TX bytes:168 (168.0 b)
Interrupt:10 Base address:0x10a0

Kernel Interface table
Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Flg
eth0 1500 0 0 0 0 0 4 0 0 0 BMRU
eth1 1500 0 1335 0 0 0 1351 0 0 0 BMRU
lo 16436 0 98 0 0 0 98 0 0 0 LRU

3) [root@vmpc_rh804 root]# ./myscript1
-bash: ./myscript1: Permission denied

4) [root@vmpc_rh804 root]# chmod +x myscript1

5) [root@vmpc_rh804 root]# ./myscript1
eth0 Link encap:Ethernet HWaddr 00:50:56:03:04:40
inet addr:172.16.0.40 Bcast:172.16.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:4 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 b) TX bytes:168 (168.0 b)
Interrupt:10 Base address:0x10a0

Kernel Interface table
Iface MTU Met RX-OK RX-ERR RX-DRP RX-OVR TX-OK TX-ERR TX-DRP TX-OVR Flg
eth0 1500 0 0 0 0 0 4 0 0 0 BMRU
eth1 1500 0 1397 0 0 0 1395 0 0 0 BMRU
lo 16436 0 98 0 0 0 98 0 0 0 LRU

Basic AIX command must know

noreply@blogger.com (imshahmemyselfandi) — Tue, 13 Apr 2010 20:53:00 +0000

This post is with reference to IBM's tutorial

==========
Hardware
==========

____________________________________________________
How do I get a detailed configuration of my system?
____________________________________________________

Type the following:

lscfg, prtconf

$ lscfg
INSTALLED RESOURCE LIST

The following resources are installed on the machine.
+/- = Added or deleted from Resource List.
* = Diagnostic support not available.

Model Architecture: chrp
Model Implementation: Multiple Processor, PCI bus

+ sys0 System Object
+ sysplanar0 System Planar
* vio0 Virtual I/O Bus
* ent1 U9117.MMA.06F18E3-V11-C5-T1 Virtual I/O Ethernet Adapter (l-lan)
* ent0 U9117.MMA.06F18E3-V11-C2-T1 Virtual I/O Ethernet Adapter (l-lan)
* vsa0 U9117.MMA.06F18E3-V11-C0 LPAR Virtual Serial Adapter
* vty0 U9117.MMA.06F18E3-V11-C0-L0 Asynchronous Terminal
* pci2 U789D.001.DQD34TR-P1 PCI Bus
* pci6 U789D.001.DQD34TR-P1 PCI Bus
+ sissas1 U789D.001.DQD34TR-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
* sas1 U789D.001.DQD34TR-P1-T3 Controller SAS Protocol
+ hdisk1 U789D.001.DQD34TR-P3-D1 SAS Disk Drive (300000 MB)
+ ses3 U789D.001.DQD34TR-P3-Y2 SAS Enclosure Services Device
+ ses4 U789D.001.DQD34TR-P3-Y1 SAS Enclosure Services Device
* sata1 U789D.001.DQD34TR-P1-T3 Controller SATA Protocol
* pci7 U789D.001.DQD34TR-P1 PCI Bus
+ usbhc2 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
+ usbhc3 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
+ usbhc5 U789D.001.DQD34TR-P1 USB Enhanced Host Controller (3310e000)
* pci0 U789D.001.DQD37KN-P1 PCI Bus
* pci4 U789D.001.DQD37KN-P1 PCI Bus
+ sissas0 U789D.001.DQD37KN-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
* sas0 U789D.001.DQD37KN-P1-T3 Controller SAS Protocol
+ ses0 U789D.001.DQD37KN-P4-Y1 SAS Enclosure Services Device
+ hdisk0 U789D.001.DQD37KN-P3-D1 SAS Disk Drive (300000 MB)
+ ses1 U789D.001.DQD37KN-P3-Y2 SAS Enclosure Services Device
+ ses2 U789D.001.DQD37KN-P3-Y1 SAS Enclosure Services Device
* sata0 U789D.001.DQD37KN-P1-T3 Controller SATA Protocol
+ cd0 U789D.001.DQD37KN-P4-D1 SATA DVD-RAM Drive
* pci5 U789D.001.DQD37KN-P1 PCI Bus
+ usbhc0 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
+ usbhc1 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
+ usbhc4 U789D.001.DQD37KN-P1 USB Enhanced Host Controller (3310e000)
* lhea1 U789D.001.DQD34LP-P1 Logical Host Ethernet Adapter (l-hea)
+ ent3 U789D.001.DQD34LP-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
* lhea0 U789D.001.DQD34TR-P1 Logical Host Ethernet Adapter (l-hea)
+ ent2 U789D.001.DQD34TR-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
+ L2cache0 L2 Cache
+ mem0 Memory
+ proc0 Processor

$ prtconf
System Model: IBM,9117-MMA
Machine Serial Number: 06F18E3
Processor Type: PowerPC_POWER6
Processor Implementation Mode: POWER 6
Processor Version: PV_6_Compat
Number Of Processors: 1
Processor Clock Speed: 4704 MHz
CPU Type: 64-bit
Kernel Type: 64-bit
LPAR Info: 11 myserver
Memory Size: 1024 MB
Good Memory Size: 1024 MB
Platform Firmware level: EM340_075
Firmware Version: IBM,EM340_075
Console Login: enable
Auto Restart: true
Full Core: false

Network Information
Host Name: host
IP Address: 192.168.1.1
Sub Netmask: 255.255.255.0
Gateway: 192.168.1.2
Name Server: 192.168.1.3
Domain Name: host.local

Paging Space Information
Total Paging Space: 2048MB
Percent Used: 18%

Volume Groups Information
==============================================================================
rootvg:
PV_NAME PV STATE TOTAL PPs FREE PPs FREE DISTRIBUTION
hdisk0 active 558 275 71..00..00..92..112
hdisk1 active 558 275 71..00..00..92..112
==============================================================================

INSTALLED RESOURCE LIST

The following resources are installed on the machine.
+/- = Added or deleted from Resource List.
* = Diagnostic support not available.

Model Architecture: chrp
Model Implementation: Multiple Processor, PCI bus

+ sys0 System Object
+ sysplanar0 System Planar
* vio0 Virtual I/O Bus
* ent1 U9117.MMA.06F18E3-V11-C5-T1 Virtual I/O Ethernet Adapter (l-lan)
* ent0 U9117.MMA.06F18E3-V11-C2-T1 Virtual I/O Ethernet Adapter (l-lan)
* vsa0 U9117.MMA.06F18E3-V11-C0 LPAR Virtual Serial Adapter
* vty0 U9117.MMA.06F18E3-V11-C0-L0 Asynchronous Terminal
* pci2 U789D.001.DQD34TR-P1 PCI Bus
* pci6 U789D.001.DQD34TR-P1 PCI Bus
+ sissas1 U789D.001.DQD34TR-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
* sas1 U789D.001.DQD34TR-P1-T3 Controller SAS Protocol
+ hdisk1 U789D.001.DQD34TR-P3-D1 SAS Disk Drive (300000 MB)
+ ses3 U789D.001.DQD34TR-P3-Y2 SAS Enclosure Services Device
+ ses4 U789D.001.DQD34TR-P3-Y1 SAS Enclosure Services Device
* sata1 U789D.001.DQD34TR-P1-T3 Controller SATA Protocol
* pci7 U789D.001.DQD34TR-P1 PCI Bus
+ usbhc2 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
+ usbhc3 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
+ usbhc5 U789D.001.DQD34TR-P1 USB Enhanced Host Controller (3310e000)
* pci0 U789D.001.DQD37KN-P1 PCI Bus
* pci4 U789D.001.DQD37KN-P1 PCI Bus
+ sissas0 U789D.001.DQD37KN-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
* sas0 U789D.001.DQD37KN-P1-T3 Controller SAS Protocol
+ ses0 U789D.001.DQD37KN-P4-Y1 SAS Enclosure Services Device
+ hdisk0 U789D.001.DQD37KN-P3-D1 SAS Disk Drive (300000 MB)
+ ses1 U789D.001.DQD37KN-P3-Y2 SAS Enclosure Services Device
+ ses2 U789D.001.DQD37KN-P3-Y1 SAS Enclosure Services Device
* sata0 U789D.001.DQD37KN-P1-T3 Controller SATA Protocol
+ cd0 U789D.001.DQD37KN-P4-D1 SATA DVD-RAM Drive
* pci5 U789D.001.DQD37KN-P1 PCI Bus
+ usbhc0 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
+ usbhc1 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
+ usbhc4 U789D.001.DQD37KN-P1 USB Enhanced Host Controller (3310e000)
* lhea1 U789D.001.DQD34LP-P1 Logical Host Ethernet Adapter (l-hea)
+ ent3 U789D.001.DQD34LP-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
* lhea0 U789D.001.DQD34TR-P1 Logical Host Ethernet Adapter (l-hea)
+ ent2 U789D.001.DQD34TR-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
+ L2cache0 L2 Cache
+ mem0 Memory
+ proc0 Processor

_____________________________________________________________________________________________
Displays platform-specific device information. The flag is applicable to AIX 4.2.1 or later.
_____________________________________________________________________________________________

lscfg -p

$ lscfg -p
INSTALLED RESOURCE LIST

The following resources are installed on the machine.

Model Architecture: chrp
Model Implementation: Multiple Processor, PCI bus

sys0 System Object
sysplanar0 System Planar
vio0 Virtual I/O Bus
ent1 U9117.MMA.06F18E3-V11-C5-T1 Virtual I/O Ethernet Adapter (l-lan)
ent0 U9117.MMA.06F18E3-V11-C2-T1 Virtual I/O Ethernet Adapter (l-lan)
vsa0 U9117.MMA.06F18E3-V11-C0 LPAR Virtual Serial Adapter
vty0 U9117.MMA.06F18E3-V11-C0-L0 Asynchronous Terminal
pci2 U789D.001.DQD34TR-P1 PCI Bus
pci6 U789D.001.DQD34TR-P1 PCI Bus
sissas1 U789D.001.DQD34TR-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
sas1 U789D.001.DQD34TR-P1-T3 Controller SAS Protocol
hdisk1 U789D.001.DQD34TR-P3-D1 SAS Disk Drive (300000 MB)
ses3 U789D.001.DQD34TR-P3-Y2 SAS Enclosure Services Device
ses4 U789D.001.DQD34TR-P3-Y1 SAS Enclosure Services Device
sata1 U789D.001.DQD34TR-P1-T3 Controller SATA Protocol
pci7 U789D.001.DQD34TR-P1 PCI Bus
usbhc2 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
usbhc3 U789D.001.DQD34TR-P1 USB Host Controller (33103500)
usbhc5 U789D.001.DQD34TR-P1 USB Enhanced Host Controller (3310e000)
pci0 U789D.001.DQD37KN-P1 PCI Bus
pci4 U789D.001.DQD37KN-P1 PCI Bus
sissas0 U789D.001.DQD37KN-P1-T3 PCI-X266 Planar 3Gb SAS Adapter
sas0 U789D.001.DQD37KN-P1-T3 Controller SAS Protocol
ses0 U789D.001.DQD37KN-P4-Y1 SAS Enclosure Services Device
hdisk0 U789D.001.DQD37KN-P3-D1 SAS Disk Drive (300000 MB)
ses1 U789D.001.DQD37KN-P3-Y2 SAS Enclosure Services Device
ses2 U789D.001.DQD37KN-P3-Y1 SAS Enclosure Services Device
sata0 U789D.001.DQD37KN-P1-T3 Controller SATA Protocol
cd0 U789D.001.DQD37KN-P4-D1 SATA DVD-RAM Drive
pci5 U789D.001.DQD37KN-P1 PCI Bus
usbhc0 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
usbhc1 U789D.001.DQD37KN-P1 USB Host Controller (33103500)
usbhc4 U789D.001.DQD37KN-P1 USB Enhanced Host Controller (3310e000)
lhea1 U789D.001.DQD34LP-P1 Logical Host Ethernet Adapter (l-hea)
ent3 U789D.001.DQD34LP-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
lhea0 U789D.001.DQD34TR-P1 Logical Host Ethernet Adapter (l-hea)
ent2 U789D.001.DQD34TR-P1-C10-T4 Logical Host Ethernet Port (lp-hea)
L2cache0 L2 Cache
mem0 Memory
proc0 Processor

PLATFORM SPECIFIC

Name: IBM,9117-MMA
Model: IBM,9117-MMA
Node: /
Device Type: chrp

Name: openprom
Model: IBM,EM340_075
Node: openprom

Name: interrupt-controller
Model: IBM, Logical PowerPC-PIC, 00
Node: interrupt-controller@0
Device Type: PowerPC-External-Interrupt-Presentation

Name: interrupt-controller
Model: IBM,Logical PHB
Node: interrupt-controller@800000025000200
Device Type: PowerPC-LSI-Source
Physical Location: U789D.001.DQD37KN-P1

Name: interrupt-controller
Model: IBM,Logical PHB
Node: interrupt-controller@800000025000220
Device Type: PowerPC-LSI-Source
Physical Location: U789D.001.DQD34TR-P1

Name: lhea
Node: lhea@23c00b08
Physical Location: U789D.001.DQD34TR-P1

Name: lhea
Node: lhea@23c00b10
Physical Location: U789D.001.DQD34LP-P1

Name: pci
Model: IBM,Logical_PHB
Node: pci@800000020000200
Physical Location: U789D.001.DQD37KN-P1

Name: pci
Model: IBM,Logical_PHB
Node: pci@800000020000220
Physical Location: U789D.001.DQD34TR-P1

Name: vty
Node: vty@30000000
Device Type: serial
Physical Location: U9117.MMA.06F18E3-V11-C0

Name: l-lan
Node: l-lan@30000002
Device Type: network
Physical Location: U9117.MMA.06F18E3-V11-C2-T1

Name: l-lan
Node: l-lan@30000005
Device Type: network
Physical Location: U9117.MMA.06F18E3-V11-C5-T1

Name: ethernet
Node: ethernet@23e00008
Device Type: network
Physical Location: U789D.001.DQD34TR-P1-C10-T4

Name: ethernet
Node: ethernet@23e00010
Device Type: network
Physical Location: U789D.001.DQD34LP-P1-C10-T4

Name: pci
Node: pci@2
Physical Location: U789D.001.DQD37KN-P1

Name: pci
Node: pci@2,4
Physical Location: U789D.001.DQD37KN-P1

Name: pci
Node: pci@2
Physical Location: U789D.001.DQD34TR-P1

Name: pci
Node: pci@2,4
Physical Location: U789D.001.DQD34TR-P1

Name: pci1014,02BD
Node: pci1014,02BD@1
Physical Location: U789D.001.DQD37KN-P1-T3

Name: usb
Node: usb@1
Physical Location: U789D.001.DQD37KN-P1

Name: usb
Node: usb@1,1
Physical Location: U789D.001.DQD37KN-P1

Name: usb
Node: usb@1,2
Physical Location: U789D.001.DQD37KN-P1

Name: pci1014,02BD
Node: pci1014,02BD@1
Physical Location: U789D.001.DQD34TR-P1-T3

Name: usb
Node: usb@1
Physical Location: U789D.001.DQD34TR-P1

Name: usb
Node: usb@1,1
Physical Location: U789D.001.DQD34TR-P1

Name: usb
Node: usb@1,2
Physical Location: U789D.001.DQD34TR-P1

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD37KN-P1-T1

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD37KN-P1-T2

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD37KN-P1

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD34TR-P1-T1

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD34TR-P1-T2

Name: hub
Node: hub@1
Physical Location: U789D.001.DQD34TR-P1

____________________________________________________________________________________
Displays the VPD (Vital Product Database) found in the customized VPD object class.
____________________________________________________________________________________

lscfg -v

$ lscfg -v
INSTALLED RESOURCE LIST WITH VPD

The following resources are installed on your machine.

Model Architecture: chrp
Model Implementation: Multiple Processor, PCI bus

sys0 System Object
sysplanar0 System Planar
vio0 Virtual I/O Bus
ent1 U9117.MMA.06F18E3-V11-C5-T1 Virtual I/O Ethernet Adapter (l-lan)

Network Address.............466DAA4CB305
Displayable Message.........Virtual I/O Ethernet Adapter (l-lan)
Hardware Location Code......U9117.MMA.06F18E3-V11-C5-T1

ent0 U9117.MMA.06F18E3-V11-C2-T1 Virtual I/O Ethernet Adapter (l-lan)

Network Address.............466DAA4CB302
Displayable Message.........Virtual I/O Ethernet Adapter (l-lan)
Hardware Location Code......U9117.MMA.06F18E3-V11-C2-T1

vsa0 U9117.MMA.06F18E3-V11-C0 LPAR Virtual Serial Adapter

Hardware Location Code......U9117.MMA.06F18E3-V11-C0

vty0 U9117.MMA.06F18E3-V11-C0-L0 Asynchronous Terminal
pci2 U789D.001.DQD34TR-P1 PCI Bus

Hardware Location Code......U789D.001.DQD34TR-P1

pci6 U789D.001.DQD34TR-P1 PCI Bus

Hardware Location Code......U789D.001.DQD34TR-P1

sissas1 U789D.001.DQD34TR-P1-T3 PCI-X266 Planar 3Gb SAS Adapter

ROM Level.(alterable).......02200070
Customer Card ID Number.....572C
Hardware Location Code......U789D.001.DQD34TR-P1-T3

sas1 U789D.001.DQD34TR-P1-T3 Controller SAS Protocol
hdisk1 U789D.001.DQD34TR-P3-D1 SAS Disk Drive (300000 MB)

Manufacturer................IBM
Machine Type and Model......HUS153030VLS300
FRU Number..................10N7234
ROS Level and ID............41343234
Serial Number...............ABCD73EF
EC Level....................H17923Y
Part Number.................42R5648
Device Specific.(Z0)........000005329F001002
Device Specific.(Z1)........VBIPA424
Device Specific.(Z2)........0068
Device Specific.(Z3)........08263
Device Specific.(Z4)........
Device Specific.(Z5)........22
Device Specific.(Z6)........H17923Y
Hardware Location Code......U789D.001.DQD34TR-P3-D1

ses3 U789D.001.DQD34TR-P3-Y2 SAS Enclosure Services Device

ROM Level.(alterable).......0021
Hardware Location Code......U789D.001.DQD34TR-P3-Y2

ses4 U789D.001.DQD34TR-P3-Y1 SAS Enclosure Services Device

ROM Level.(alterable).......0021
Hardware Location Code......U789D.001.DQD34TR-P3-Y1

sata1 U789D.001.DQD34TR-P1-T3 Controller SATA Protocol
pci7 U789D.001.DQD34TR-P1 PCI Bus

Hardware Location Code......U789D.001.DQD34TR-P1

usbhc2 U789D.001.DQD34TR-P1 USB Host Controller (33103500)

Hardware Location Code......U789D.001.DQD34TR-P1

usbhc3 U789D.001.DQD34TR-P1 USB Host Controller (33103500)

Hardware Location Code......U789D.001.DQD34TR-P1

usbhc5 U789D.001.DQD34TR-P1 USB Enhanced Host Controller (3310e000)

Hardware Location Code......U789D.001.DQD34TR-P1

pci0 U789D.001.DQD37KN-P1 PCI Bus

Hardware Location Code......U789D.001.DQD37KN-P1

pci4 U789D.001.DQD37KN-P1 PCI Bus

Hardware Location Code......U789D.001.DQD37KN-P1

sissas0 U789D.001.DQD37KN-P1-T3 PCI-X266 Planar 3Gb SAS Adapter

ROM Level.(alterable).......02200070
Customer Card ID Number.....572C
Hardware Location Code......U789D.001.DQD37KN-P1-T3

sas0 U789D.001.DQD37KN-P1-T3 Controller SAS Protocol
ses0 U789D.001.DQD37KN-P4-Y1 SAS Enclosure Services Device

ROM Level.(alterable)....... 06
Hardware Location Code......U789D.001.DQD37KN-P4-Y1

hdisk0 U789D.001.DQD37KN-P3-D1 SAS Disk Drive (300000 MB)

Manufacturer................IBM
Machine Type and Model......HUS153030VLS300
FRU Number..................10N7234
ROS Level and ID............41343234
Serial Number...............ABCDEFGH
EC Level....................H17923Y
Part Number.................42R5648
Device Specific.(Z0)........000005329F003002
Device Specific.(Z1)........VBIPA424
Device Specific.(Z2)........0068
Device Specific.(Z3)........08263
Device Specific.(Z4)........
Device Specific.(Z5)........22
Device Specific.(Z6)........H17923Y
Hardware Location Code......U789D.001.DQD37KN-P3-D1

ses1 U789D.001.DQD37KN-P3-Y2 SAS Enclosure Services Device

ROM Level.(alterable).......0021
Hardware Location Code......U789D.001.DQD37KN-P3-Y2

ses2 U789D.001.DQD37KN-P3-Y1 SAS Enclosure Services Device

ROM Level.(alterable).......0021
Hardware Location Code......U789D.001.DQD37KN-P3-Y1

sata0 U789D.001.DQD37KN-P1-T3 Controller SATA Protocol
cd0 U789D.001.DQD37KN-P4-D1 SATA DVD-RAM Drive

Manufacturer................IBM
Machine Type and Model......RMBO00205B1
ROS Level and ID............RA33
Device Specific.(Z0)........058002028F000030
Part Number.................42R7969
EC Level....................H89633
FRU Number..................42R7970
Hardware Location Code......U789D.001.DQD37KN-P4-D1

pci5 U789D.001.DQD37KN-P1 PCI Bus

Hardware Location Code......U789D.001.DQD37KN-P1

usbhc0 U789D.001.DQD37KN-P1 USB Host Controller (33103500)

Hardware Location Code......U789D.001.DQD37KN-P1

usbhc1 U789D.001.DQD37KN-P1 USB Host Controller (33103500)

Hardware Location Code......U789D.001.DQD37KN-P1

usbhc4 U789D.001.DQD37KN-P1 USB Enhanced Host Controller (3310e000)

Hardware Location Code......U789D.001.DQD37KN-P1

lhea1 U789D.001.DQD34LP-P1 Logical Host Ethernet Adapter (l-hea)

Hardware Location Code......U789D.001.DQD34LP-P1

ent3 U789D.001.DQD34LP-P1-C10-T4 Logical Host Ethernet Port (lp-hea)

IBM Host Ethernet Adapter:
Network Address.............00215E32BBC0

lhea0 U789D.001.DQD34TR-P1 Logical Host Ethernet Adapter (l-hea)

Hardware Location Code......U789D.001.DQD34TR-P1

ent2 U789D.001.DQD34TR-P1-C10-T4 Logical Host Ethernet Port (lp-hea)

IBM Host Ethernet Adapter:
Network Address.............00215E32BF40

L2cache0 L2 Cache
mem0 Memory
proc0 Processor

_____________________________________________________________________________________
How do I find out the chip type, system name, node name, model number, and so forth?
_____________________________________________________________________________________

The uname command provides details about your system.

Displays the system name, nodename, version, machine ID.

### uname -a contains command -s, -n ,-r, -v -m ###

$ uname -a
AIX myserver 1 6 00CF18E34C00

Displays the chip type of the system. For example, PowerPC.

$ uname -p
powerpc

Displays the release number of the operating system.

$ uname -r
1

Displays the system name. For example, AIX.

$ uname -s
AIX

Displays the name of the node.

$ uname -n
myserver

Displays the system model name. For example, IBM, 9114-275.

$ uname -M
IBM,9117-MMA

Displays the operating system version.

$ uname -v
6

Displays the machine ID number of the hardware running the system.

$ uname -m
00CF12345C00

Displays the system ID number.

$ uname -u
IBM,0123F45E6

==========
About AIX
==========

_____________________________________________________________________________
What version, release, and maintenance level of AIX is running on my system?
_____________________________________________________________________________

Type one of the following:

oslevel -r, lslpp -h bos.rte

$ oslevel -r
6100-04

$ lslpp -h bos.rte
Fileset Level Action Status Date Time
----------------------------------------------------------------------------
Path: /usr/lib/objrepos
bos.rte
6.1.2.0 COMMIT COMPLETE 02/17/09 10:49:17
6.1.4.0 COMMIT COMPLETE 03/30/10 09:25:43

Path: /etc/objrepos
bos.rte
6.1.2.0 COMMIT COMPLETE 02/17/09 10:49:17
6.1.4.0 COMMIT COMPLETE 03/30/10 09:25:43

__________________________________________________
What SP (Service Pack) is installed on my system?
__________________________________________________

To see which SP is currently installed on the system, run the oslevel -s command. Sample output for an AIX 5L Version 5.3 system, with TL4, and SP2 installed

would be:

oslevel â€“s
5300-04-02

$ oslevel -s
6100-04-03-1009

_________________________________________
How many processors does my system have?
_________________________________________

To display the number of processors on your system, type:

lscfg | grep proc

$ lscfg | grep proc
+ proc0 Processor

____________________________________________________________________
How do I determine the amount of paging space allocated and in use?
____________________________________________________________________

Type the following:

lsps -a

$ lsps -a
Page Space Physical Volume Volume Group Size %Used Active Auto Type Chksum
hd6 hdisk0 rootvg 2048MB 18 yes yes lv 0

==================================
Volume groups and logical volumes
==================================

___________________________________________________________
To display the number of hard disks on your system, type:
___________________________________________________________

lspv

$ lspv
hdisk0 00cf18e34d375ab5 rootvg active
hdisk1 00cf18e3b4df2ae5 rootvg active

____________________________________________________________
How do I list information about a specific physical volume?
____________________________________________________________

To find details about hdisk1, for example, run the following command:

lspv hdisk1

$ lspv hdisk0
PHYSICAL VOLUME: hdisk0 VOLUME GROUP: rootvg
PV IDENTIFIER: 00cf18e34d375ab5 VG IDENTIFIER 00cf18e300004c000000011f817ad65a
PV STATE: active
STALE PARTITIONS: 0 ALLOCATABLE: yes
PP SIZE: 512 megabyte(s) LOGICAL VOLUMES: 15
TOTAL PPs: 558 (285696 megabytes) VG DESCRIPTORS: 2
FREE PPs: 275 (140800 megabytes) HOT SPARE: no
USED PPs: 283 (144896 megabytes) MAX REQUEST: 1 megabyte
FREE DISTRIBUTION: 71..00..00..92..112
USED DISTRIBUTION: 41..112..111..19..00
MIRROR POOL: None

_____________________________________
How do I display all logical volumes
_____________________________________

$ lsvg
rootvg

____________________________________________________________________________________________
How do I display all logical volumes that are part of a volume group (for example, rootvg)?
____________________________________________________________________________________________

You can display all logical volumes that are part of rootvg by typing the following command:

lsvg -l rootvg

$ lsvg -l rootvg
rootvg:
LV NAME TYPE LPs PPs PVs LV STATE MOUNT POINT
hd5 boot 1 2 2 closed/syncd N/A
hd6 paging 4 8 2 open/syncd N/A
hd8 jfs2log 1 2 2 open/syncd N/A
hd4 jfs2 1 2 2 open/syncd /
hd2 jfs2 7 14 2 open/syncd /usr
hd9var jfs2 2 4 2 open/syncd /var
hd3 jfs2 20 40 2 open/syncd /tmp
hd1 jfs2 1 2 2 open/syncd /home
hd10opt jfs2 2 4 2 open/syncd /opt
hd11admin jfs2 1 2 2 open/syncd /admin
livedump jfs2 1 2 2 open/syncd /var/adm/ras/livedump
fslv00 jfs2 40 80 2 open/syncd /export/nim
fslv01 jfs2 1 2 2 open/syncd /tftpboot
fslv02 jfs2 200 400 2 open/syncd /export/nim/mksysb
loglv00 jfslog 1 2 2 closed/syncd N/A

_________________________________________________
To show all the characteristics of rootvg, type:
_________________________________________________

lsvg rootvg

$ lsvg rootvg
VOLUME GROUP: rootvg VG IDENTIFIER: 00cf18e300004c000000011f817ad65a
VG STATE: active PP SIZE: 512 megabyte(s)
VG PERMISSION: read/write TOTAL PPs: 1116 (571392 megabytes)
MAX LVs: 256 FREE PPs: 550 (281600 megabytes)
LVs: 15 USED PPs: 566 (289792 megabytes)
OPEN LVs: 13 QUORUM: 1 (Disabled)
TOTAL PVs: 2 VG DESCRIPTORS: 3
STALE PVs: 0 STALE PPs: 0
ACTIVE PVs: 2 AUTO ON: yes
MAX PPs per VG: 32512
MAX PPs per PV: 1016 MAX PVs: 32
LTG size (Dynamic): 1024 kilobyte(s) AUTO SYNC: no
HOT SPARE: no BB POLICY: relocatable

____________________________________
To show disks used by rootvg, type:
____________________________________

lsvg -p rootvg

$ lsvg -p rootvg
rootvg:
PV_NAME PV STATE TOTAL PPs FREE PPs FREE DISTRIBUTION
hdisk0 active 558 275 71..00..00..92..112
hdisk1 active 558 275 71..00..00..92..112

_________________________________________________
How do I list information about logical volumes?
_________________________________________________

Run the following command to display information about the logical volume hd5:

lslv hd5

$ lslv hd5
LOGICAL VOLUME: hd5 VOLUME GROUP: rootvg
LV IDENTIFIER: 00cf18e300004c000000011f817ad65a.1 PERMISSION: read/write
VG STATE: active/complete LV STATE: closed/syncd
TYPE: boot WRITE VERIFY: off
MAX LPs: 512 PP SIZE: 512 megabyte(s)
COPIES: 2 SCHED POLICY: parallel
LPs: 1 PPs: 2
STALE PPs: 0 BB POLICY: non-relocatable
INTER-POLICY: minimum RELOCATABLE: no
INTRA-POLICY: edge UPPER BOUND: 32
MOUNT POINT: N/A LABEL: primary_bootlv
MIRROR WRITE CONSISTENCY: on/ACTIVE
EACH LP COPY ON A SEPARATE PV ?: yes
Serialize IO ?: NO

_______________________________________
How do I display mounted file systems?
_______________________________________

Type the following command to display information about all currently mounted file systems:

mount

$ mount
node mounted mounted over vfs date options
-------- --------------- --------------- ------ ------------ ---------------
/dev/hd4 / jfs2 Mar 30 09:54 rw,log=/dev/hd8
/dev/hd2 /usr jfs2 Mar 30 09:54 rw,log=/dev/hd8
/dev/hd9var /var jfs2 Mar 30 09:54 rw,log=/dev/hd8
/dev/hd3 /tmp jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/hd1 /home jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/hd11admin /admin jfs2 Mar 30 09:55 rw,log=/dev/hd8
/proc /proc procfs Mar 30 09:55 rw
/dev/hd10opt /opt jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/livedump /var/adm/ras/livedump jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/fslv00 /export/nim jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/fslv01 /tftpboot jfs2 Mar 30 09:55 rw,log=/dev/hd8
/dev/fslv02 /export/nim/mksysb jfs2 Mar 30 09:55 rw,log=/dev/hd8

____________________________________________________________
How do I get partition-specific information and statistics?
____________________________________________________________

The lparstat command provides a report of partition information and utilization statistics. This command also provides a display of Hypervisor information.

$ lparstat

System configuration: type=Shared mode=Uncapped smt=On lcpu=2 mem=1024MB psize=8 ent=0.10

%user %sys %wait %idle physc %entc lbusy vcsw phint
----- ----- ------ ------ ----- ----- ------ ----- -----
1.5 0.7 2.0 95.7 0.00 2.4 2.7 438900296 6281425

=========
Network
=========

___________________________________________
How do I get the IP address of my machine?
___________________________________________

Type one of the following:

ifconfig -a, host Fully_Qualified_Host_Name (eg; host myserver)

$ host myserver
myserver is 192.168.1.1

_______________________________________________________
How do I identify the network interfaces on my server?
_______________________________________________________

Either of the following two commands will display the network interfaces:

lsdev -Cc if, ifconfig -a

$ lsdev -Cc if
en0 Available Standard Ethernet Network Interface
en1 Available Standard Ethernet Network Interface
en2 Defined Standard Ethernet Network Interface
en3 Defined Standard Ethernet Network Interface
en4 Available Standard Ethernet Network Interface
et0 Defined IEEE 802.3 Ethernet Network Interface
et1 Defined IEEE 802.3 Ethernet Network Interface
et2 Defined IEEE 802.3 Ethernet Network Interface
et3 Defined IEEE 802.3 Ethernet Network Interface
et4 Defined IEEE 802.3 Ethernet Network Interface
lo0 Available Loopback Network Interface

____________________________________________________________________________________________
To get information about one specific network interface, for example, en0, run the command:
____________________________________________________________________________________________

ifconfig en0

How to get runlevel information in HP-UX

noreply@blogger.com (imshahmemyselfandi) — Tue, 06 Apr 2010 19:58:00 +0000

[hpa50-16]/ >who -r
. run-level 3 Apr 9 06:23 3 0 S

How to check software information in HP-UX

noreply@blogger.com (imshahmemyselfandi) — Tue, 06 Apr 2010 19:24:00 +0000

To check software information in HP-UX is simple. Just type swlist or /usr/sbin/swlist

[hpa50-16]/ >swlist
# Initializing...
# Contacting target "hpa50-16"...
#
# Target: hpa50-16:/
#

#
# Bundle(s):
#

B8342AA B.11.11.05 Netscape Communicator 4.75
BUNDLE11i B.11.11.0102.2 Required Patch Bundle for HP-UX 11i, February 2001
Base-VXVM B.03.20.1 Base VERITAS Volume Manager 3.2 for HP-UX
CDE-English B.11.11 English CDE Environment
FDDI-00 B.11.11.02 PCI FDDI;Supptd HW=A3739A/A3739B;SW=J3626AA
FibrChanl-00 B.11.11.09 PCI/HSC FibreChannel;Supptd HW=A6684A,A6685A,A5158A,A6795A
GOLDAPPS11i B.11.11.0112.6 Gold Applications Patches for HP-UX 11i, December 2001
GOLDBASE11i B.11.11.0112.6 Gold Base Patches for HP-UX 11i, December 2001
GigEther-00 B.11.11.14 PCI/HSC GigEther;Supptd HW=A4926A/A4929A/A4924A/A4925A;SW=J1642AA
GigEther-01 B.11.11.02 PCI/PCI-X GigEther;Supptd HW=A6794A
HPUX11i-OE-Ent B.11.11.0203 HP-UX Enterprise Operating Environment Component
HPUXBase64 B.11.11 HP-UX 64-bit Base OS
HPUXBaseAux B.11.11.0203 HP-UX Base OS Auxiliary
HWEnable11i B.11.11.0203.5 Hardware Enablement Patches for HP-UX 11i, March 2002
OnlineDiag B.11.11.06.09 HPUX 11.11 Support Tools Bundle, Mar 2002
RAID-00 B.11.11.01 PCI RAID; Supptd HW=A5856A
TermIO-00 B.11.11.05 PCI MUX; Supptd HW=A6748A/A6749A/J3592A/J35923A; SW=J3596A
b_SOPHOS 2.12 (SOPHOS) Sophos Anti-Virus
perl B.5.6.1.C Perl Programming Language

How to check Ignite version in HP-UX

noreply@blogger.com (imshahmemyselfandi) — Tue, 06 Apr 2010 19:20:00 +0000

Command below can be used to find what is the version of Ignite installed in our server

shah@nxxx07:(shah)> more /opt/ignite/Version
C.7.1.93

C.7.1.93 is the version of installed Ignite :-)

Unix Tutorial For Dummies Like Me :-)

noreply@blogger.com (imshahmemyselfandi) — Mon, 19 Oct 2009 07:41:00 +0000

CPU / Memory

1. HPUX

2. AIX

3. Solaris

4. Linux

5. Tru64

HPUX

How to check CPU/Memory usage

# glance OR top OR vmstat OR iostat OR sar

## to check CPU/Memory utilisation

· Find large processes which currently filled up the CPU/Memory usage.

AIX

How to check CPU/Memory usage:

# sar OR vmstat OR iostat OR topas ## to check CPU/Memory utilisation

· Find large processes which currently filled up the CPU/Memory usage.

SOLARIS

How to check CPU/Memory usage:

# sar OR vmstat OR iostat ## to check CPU/Memory utilisation

· Find large processes which currently filled up the CPU/Memory usage.

LINUX

How to check CPU/Memory usage:

# sar OR vmstat OR iostat OR top ## to check CPU/Memory utilisation

· Find large processes which currently filled up the CPU/Memory usage.

TRU64

How to check CPU/Memory usage:

# vmstat OR iostat OR top ## to check CPU/Memory utilisation

· Find large processes which currently filled up the CPU/Memory usage.

HPUX

How to check disk space: (using /var as example)

# bdf /var ## to check disk utilisation for /var filesystem

# find /var -xdev -type f -size +5000000c -exec ls -l {} \; | sort -nk 5 ## to find larger files in /var

AIX, SOLARIS, LINUX, TRU64

How to check disk space:

# df -k /var ## to check disk utilisation for /var filesystem

# find /var -xdev -type f -size +5000000c -exec ls -l {} \; | sort -nk 5 ## to find larger files in /var

HPUX/AIX/SOLARIS/LINUX/TRU64

Pre-checking before reboot

Capture the system details

# bdf > /tmp/bdf.txt ## For HPUX

OR

# df –k > /tmp/df.txt ## For other OS

# netstat –in > /tmp/netstat.in.txt

# netstat –rn > /tmp/netstat.rn.txt

# lanscan > /tmp/lanscan.txt ## For HPUX

# ioscan –fn > /tmp/ioscan.txt ## For HPUX

# ps –ef | grep –i sap ## Double confirm no SAP running

# ps –ef | grep –I oracle ## Double confirm no Database running

How to reboot server

# shutdown [-option] [ +Time [ Message ] ] ## man shutdown to find more the option

Account Creation

# finger

OR

# grep –i <> /etc/passwd

HPUX/AIX/SOLARIS/LINUX/TRU64

# useradd –c -g -m –d -s id

## man useradd for more the option

AIX

# mkuser ## man mkuser for more the option

Account Mod

Do initial checking on the account

# finger

OR

# grep –i <> /etc/passwd

HPUX/SOLARIS/LINUX/TRU64

# usermod ## man usermod for more the option

AIX

# chuser ## man chuser for more the option

Account Deletion

Do initial checking on the account

# finger

OR

# grep –i <> /etc/passwd

HPUX/SOLARIS/LINUX/TRU64

# userdel –r ## man userdel for more the option

AIX

# rmuser ## man rmuser for more the option

Generic Process to add printer

1) Confirm details provided (such as printer queue name, IP address and model).

2) Perform initial checking:-

# ping ## Ping new printer IP address

# lpstat –o ## Verify if printer queue used up

Issue following command to create print queue.

# hppi or sam ## HP UX

# smitty ## IBM

Generic Process to modify printer:

1) Confirm details provided (such as printer queue name, IP address and model).

2) Perform initial checking:-

HPUX

# ping ## Ping new and old printer IP address

# lpstat –o ## Verify printer queue

# grep –i model /etc/lp/interface ## Check printer model

# grep –i periph /etc/lp/interface ## Check printer IP

# grep –i /etc/hosts ## Check printer IP

IBM

# Smitty

Issue following command to modify printer queue IP or model. Printer modify can be do anytime.

HPUX

# vi /etc/lp/interface ## Change network printer IP only

**To modify printer model, remove old print queue and recreate with new model.

**If print queue are remote printer, remove old print queue and recreate with new IP or model.

IBM

**Remove old print queue and recreate with new IP or model

Generic Process to delete printer:

1) Confirm details provided (such as printer queue name, IP address and model).

2) Perform initial checking:-

HPUX/IBM/SUN SOLARIS/Linus/Tru64

# ping ## Ping new and old printer IP address

# lpstat –o ## Verify printer queue

Issue following command to delete printer queue IP or model.

HPUX

# hppi or sam

IBM

# smitty

Using nmap for Linux administration and security

noreply@blogger.com (imshahmemyselfandi) — Thu, 04 Jun 2009 03:35:00 +0000

This articles is taken from here

In this tip we are going to learn about nmap, an open source network scanner that is ideal for network troubleshooting, scanning, and auditing. The tool can be used to identify devices on the network as well as the services running on the particular devices. Additionally, advanced information such as operating systems in use, particular services (name and version), and network filters and firewalls can be identified.

The identification of services with nmap is achieved through its fingerprint database that currently contains 5,000+ fingerprints. This database is supported by the community by allowing submission of known fingerprints.

Nmap as an inventory tool
One of the common applications of nmap is to generate basic inventory reports. This is useful for network maps, renewal of maintenance agreements on network devices and nodes, and to identify rogue, unauthorized, or forgotten devices.
The basic scan for an inventory makes use of a ping scan. For example, the following scan shows the host available on the 192.168.1.0/24 network. The -sP tells nmap to do a ping scan, and the -n says to not do name resolution.

nmap -sP -n 192.168.1.0/24
Starting Nmap 4.76 (http://nmap.org) at 2009-05-14 10:18 CDT
Host 192.168.1.1 appears to be up.
MAC Address: 00:18:3A:A4:43:BA (Westell Technologies)
Host 192.168.1.2 appears to be up.
Host 192.168.1.3 appears to be up.
MAC Address: 00:17:EE:01:95:19 (Motorola CHS)
Host 192.168.1.4 appears to be up.
MAC Address: 00:16:CB:A3:27:E4 (Apple Computer)
Host 192.168.1.5 appears to be up.
MAC Address: 00:1E:52:7D:84:7E (Apple)
Nmap done: 256 IP addresses (5 hosts up) scanned in 2.17 seconds

This ping scan is quite useful for building inventories quickly. It can also be the building blocks of more sophisticated scripts and programs to validate adds and changes to the network. For example, the following command reports the new host (192.168.1.5) on the network from two daily scans output to text files:

diff monday.scan tuesday.scan | grep "> Host"
> Host 192.168.1.5 appears to be up.

Host-specific inventory
To look at a particular host to determine services running, you can use nmap. For example, let's take a closer look at the 192.168.1.5 that appears to have been turned up sometime after the Monday scan but before the Tuesday scan:

nmap -n 192.168.1.5
Starting Nmap 4.76 ( http://nmap.org ) at 2009-05-14 12:44 CDT
Interesting ports on 192.168.1.5:
Not shown: 984 closed ports
PORT STATE SERVICE
22/tcp open ssh
88/tcp open kerberos-sec
111/tcp open rpcbind
139/tcp open netbios-ssn
445/tcp open microsoft-ds
515/tcp open printer
548/tcp open afp
631/tcp open ipp
1021/tcp open unknown
1022/tcp open unknown
1023/tcp open netvenuechat
2049/tcp open nfs
3300/tcp open unknown
5900/tcp open vnc
20221/tcp open unknown
20222/tcp open unknown
MAC Address: 00:16:CB:A3:27:E4 (Apple Computer)
Nmap done: 1 IP address (1 host up) scanned in 10.46 seconds
It appears to be a Unix based system based upon ssh, but the identification of the MAC address makes the system most likely an Apple Mac computer. But, a closer look using nmap's service and version detection, more information can be gleaned. The -sV parameter is used for this:

mb3:~ root# nmap -n -sV 192.168.1.5
Starting Nmap 4.76 ( http://nmap.org ) at 2009-05-14 12:47 CDT
Interesting ports on 192.168.1.5:
Not shown: 984 closed ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 5.1 (protocol 1.99)
88/tcp open kerberos-sec Mac OS X kerberos-sec
111/tcp open rpcbind
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: WORKGROUP)
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: WORKGROUP)
515/tcp open printer
548/tcp open afp?
631/tcp open ipp CUPS 1.3
1021/tcp open rpcbind
1022/tcp open rpcbind
1023/tcp open rpcbind
2049/tcp open rpcbind
3300/tcp open unknown?
5900/tcp open vnc VNC (protocol 3.8)
20221/tcp open unknown?
20222/tcp open unknown?
1 service unrecognized despite returning data.
If you know the service/version, please submit the following fingerprint
at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
SF-Port548-TCP:V=4.76%I=7%D=5/14%Time=4A0C5929%P=i386-apple-darwin9.4.0%r(
SF:SSLSessionReq,172,"\x01\x03\0\0Q\xec\xff\xff\0\0\x01b\0\0\0\0\0\x18\0\"
AD9
SF:6FA5112ED039C\0\x04mini");
MAC Address: 00:16:CB:A3:27:E4 (Apple Computer)
Service Info: OS: Mac OS X
Host script results:
| Discover OS Version over NetBIOS and SMB: Unix
|_ Discover system time over SMB: 2009-05-14 12:49:02 UTC-5
Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 119.68 seconds

Now the administrator knows that it is Mac OS X, and that it is being used for Windows file sharing using Samba, that it is most likely sharing printers via CUPS, and that the system is configured for remote management with virtual network computing (VNC).

Using nmap for security
While nmap is quite useful for administrators as shown above, it is also quite powerful for security audits. For example, many companies do not allow Web servers to be run on user networks (i.e. networks where user computers and laptops are connected). nmap can easily be used to identify all the systems with Web services running on the well known ports of 80 and 443 with:

nmap -n -p 80,443 192.168.1.0/24 | egrep "ports|open"
Interesting ports on 192.168.1.1:
80/tcp open http
443/tcp open https
Interesting ports on 192.168.1.2:
Interesting ports on 192.168.1.3:
Interesting ports on 192.168.1.4:
Interesting ports on 192.168.1.5:

Another useful feature is identifying particular versions to determine if systems are vulnerable to an announced vulnerability. For example, let's assume the Samba team has announced a security issue with a particular version of Samba, and you need to identify all your Samba versions. The following reports the Samba versions:

nmap -n -sV -p 139 192.168.1.0/24 | egrep "ports|139"
Interesting ports on 192.168.1.1:
139/tcp closed netbios-ssn
Interesting ports on 192.168.1.2:
139/tcp closed netbios-ssn
Interesting ports on 192.168.1.3:
139/tcp filtered netbios-ssn
Interesting ports on 192.168.1.4:
139/tcp open netbios-ssn Samba smbd 3.2 (workgroup: HQ)
Interesting ports on 192.168.1.5:
139/tcp open netbios-ssn Samba smbd 2.1 (workgroup: REMOTE)
Interesting ports on 192.168.1.15:
139/tcp open netbios-ssn Samba smbd 3.2 (workgroup: WORKGROUP)

This tip has shown how nmap can be used for network inventory scans (-sP), more thorough inventory and auditing, and security scans to identify unauthorized services as well as assist in security vulnerability assessments. nmap is a good tool to have readily available...combine it with grep or egrep and it becomes a powerful reporting tool.

How to check Ubuntu version

noreply@blogger.com (imshahmemyselfandi) — Thu, 04 Jun 2009 03:16:00 +0000

There are a few command to check the Ubuntu version. See below.

Command : lsb_release -a
root@ubuntu:~# lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description: Ubuntu 8.10
Release: 8.10
Codename: intrepid

Command : cat /etc/issue
root@ubuntu:~# cat /etc/issue
Ubuntu 8.10 \n \l

Command : cat /etc/lsb-release
root@ubuntu:~# cat /etc/lsb-release
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=8.10
DISTRIB_CODENAME=intrepid
DISTRIB_DESCRIPTION="Ubuntu 8.10"

Command : cat /etc/apt/sources.list
root@ubuntu:~# cat /etc/apt/sources.list
#
# deb cdrom:[Ubuntu-Server 8.10 _Intrepid Ibex_ - Release amd64 (20081028.1)]/ intrepid main restricted

#deb cdrom:[Ubuntu-Server 8.10 _Intrepid Ibex_ - Release amd64 (20081028.1)]/ intrepid main restricted
# See http://help.ubuntu.com/community/UpgradeNotes for how to upgrade to
# newer versions of the distribution.

deb http://my.archive.ubuntu.com/ubuntu/ intrepid main restricted
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid main restricted

## Major bug fix updates produced after the final release of the
## distribution.
deb http://my.archive.ubuntu.com/ubuntu/ intrepid-updates main restricted
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid-updates main restricted

## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu
## team. Also, please note that software in universe WILL NOT receive any
## review or updates from the Ubuntu security team.
deb http://my.archive.ubuntu.com/ubuntu/ intrepid universe
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid universe
deb http://my.archive.ubuntu.com/ubuntu/ intrepid-updates universe
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid-updates universe

## OpenNMS
deb http://debian.opennms.org stable main
deb-src http://debian.opennms.org stable main

## N.B. software from this repository is ENTIRELY UNSUPPORTED by the Ubuntu
## team, and may not be under a free licence. Please satisfy yourself as to
## your rights to use the software. Also, please note that software in
## multiverse WILL NOT receive any review or updates from the Ubuntu
## security team.
deb http://my.archive.ubuntu.com/ubuntu/ intrepid multiverse
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid multiverse
deb http://my.archive.ubuntu.com/ubuntu/ intrepid-updates multiverse
deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid-updates multiverse

## Uncomment the following two lines to add software from the 'backports'
## repository.
## N.B. software from this repository may not have been tested as
## extensively as that contained in the main release, although it includes
## newer versions of some applications which may provide useful features.
## Also, please note that software in backports WILL NOT receive any review
## or updates from the Ubuntu security team.
# deb http://my.archive.ubuntu.com/ubuntu/ intrepid-backports main restricted universe multiverse
# deb-src http://my.archive.ubuntu.com/ubuntu/ intrepid-backports main restricted universe multiverse

## Uncomment the following two lines to add software from Canonical's
## 'partner' repository. This software is not part of Ubuntu, but is
## offered by Canonical and the respective vendors as a service to Ubuntu
## users.
# deb http://archive.canonical.com/ubuntu intrepid partner
# deb-src http://archive.canonical.com/ubuntu intrepid partner

# Line commented out by installer because it failed to verify:
#deb http://security.ubuntu.com/ubuntu intrepid-security main restricted
# Line commented out by installer because it failed to verify:
#deb-src http://security.ubuntu.com/ubuntu intrepid-security main restricted
# Line commented out by installer because it failed to verify:
#deb http://security.ubuntu.com/ubuntu intrepid-security universe
# Line commented out by installer because it failed to verify:
#deb-src http://security.ubuntu.com/ubuntu intrepid-security universe
# Line commented out by installer because it failed to verify:
#deb http://security.ubuntu.com/ubuntu intrepid-security multiverse
# Line commented out by installer because it failed to verify:
#deb-src http://security.ubuntu.com/ubuntu intrepid-security multiverse

Installing nmap in Ubuntu

noreply@blogger.com (imshahmemyselfandi) — Thu, 04 Jun 2009 02:54:00 +0000

I want to using nmap in my Ubuntu server but I found that nmap is not installed yet.
root@ubuntu:~# nmap
The program 'nmap' is currently not installed. You can install it by typing:

So, to install nmap just type the below command. It is extremely simple and easy :)
type this command : apt-get install nmap
-bash: nmap: command not found
root@ubuntu:~# apt-get install nmap
** nmap will be installed and the below process will be shown
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following NEW packages will be installed:
nmap
0 upgraded, 1 newly installed, 0 to remove and 46 not upgraded.
Need to get 1080kB of archives.
After this operation, 3789kB of additional disk space will be used.
Get:1 http://my.archive.ubuntu.com intrepid/main nmap 4.62-1ubuntu1 [1080kB]
Fetched 1080kB in 20s (52.4kB/s)
Selecting previously deselected package nmap.
(Reading database ... 53517 files and directories currently installed.)
Unpacking nmap (from .../nmap_4.62-1ubuntu1_amd64.deb) ...
Processing triggers for man-db ...
Setting up nmap (4.62-1ubuntu1) ...

taddaaaaaaa...!!!! Nmap is installed..Yeaaaaa
root@ubuntu:~# nmap
Nmap 4.62 ( http://nmap.org )
Usage: nmap [Scan Type(s)] [Options] {target specification}
TARGET SPECIFICATION:
Can pass hostnames, IP addresses, networks, etc.
Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-254
-iL : Input from list of hosts/networks
-iR : Choose random targets
--exclude : Exclude hosts/networks
--excludefile : Exclude list from file
HOST DISCOVERY:
-sL: List Scan - simply list targets to scan
-sP: Ping Scan - go no further than determining if host is online
-PN: Treat all hosts as online -- skip host discovery
-PS/PA/PU [portlist]: TCP SYN/ACK or UDP discovery to given ports
-PE/PP/PM: ICMP echo, timestamp, and netmask request discovery probes
-PO [protocol list]: IP Protocol Ping
-n/-R: Never do DNS resolution/Always resolve [default: sometimes]
--dns-servers : Specify custom DNS servers
--system-dns: Use OS's DNS resolver
SCAN TECHNIQUES:
-sS/sT/sA/sW/sM: TCP SYN/Connect()/ACK/Window/Maimon scans
-sU: UDP Scan
-sN/sF/sX: TCP Null, FIN, and Xmas scans
--scanflags : Customize TCP scan flags
-sI : Idle scan
-sO: IP protocol scan
-b : FTP bounce scan
--traceroute: Trace hop path to each host
--reason: Display the reason a port is in a particular state
PORT SPECIFICATION AND SCAN ORDER:
-p : Only scan specified ports
Ex: -p22; -p1-65535; -p U:53,111,137,T:21-25,80,139,8080
-F: Fast mode - Scan fewer ports than the default scan
-r: Scan ports consecutively - don't randomize
--top-ports : Scan most common ports
--port-ratio : Scan ports more common than
SERVICE/VERSION DETECTION:
-sV: Probe open ports to determine service/version info
--version-intensity : Set from 0 (light) to 9 (try all probes)
--version-light: Limit to most likely probes (intensity 2)
--version-all: Try every single probe (intensity 9)
--version-trace: Show detailed version scan activity (for debugging)
SCRIPT SCAN:
-sC: equivalent to --script=safe,intrusive
--script=: is a comma separated list of
directories, script-files or script-categories
--script-args=: provide arguments to scripts
--script-trace: Show all data sent and received
--script-updatedb: Update the script database.
OS DETECTION:
-O: Enable OS detection
--osscan-limit: Limit OS detection to promising targets
--osscan-guess: Guess OS more aggressively
TIMING AND PERFORMANCE:
Options which take are in milliseconds, unless you append 's'
(seconds), 'm' (minutes), or 'h' (hours) to the value (e.g. 30m).
-T[0-5]: Set timing template (higher is faster)
--min-hostgroup/max-hostgroup : Parallel host scan group sizes
--min-parallelism/max-parallelism : Probe parallelization
--min-rtt-timeout/max-rtt-timeout/initial-rtt-timeout : Specifies
probe round trip time.
--max-retries : Caps number of port scan probe retransmissions.
--host-timeout : Give up on target after this long
--scan-delay/--max-scan-delay : Adjust delay between probes
--min-rate : Send packets no slower than per second
FIREWALL/IDS EVASION AND SPOOFING:
-f; --mtu : fragment packets (optionally w/given MTU)
-D : Cloak a scan with decoys
-S : Spoof source address
-e : Use specified interface
-g/--source-port : Use given port number
--data-length : Append random data to sent packets
--ip-options : Send packets with specified ip options
--ttl : Set IP time-to-live field
--spoof-mac : Spoof your MAC address
--badsum: Send packets with a bogus TCP/UDP checksum
OUTPUT:
-oN/-oX/-oS/-oG : Output scan in normal, XML, s| and Grepable format, respectively, to the given filename.
-oA : Output in the three major formats at once
-v: Increase verbosity level (use twice or more for greater effect)
-d[level]: Set or increase debugging level (Up to 9 is meaningful)
--open: Only show open (or possibly open) ports
--packet-trace: Show all packets sent and received
--iflist: Print host interfaces and routes (for debugging)
--log-errors: Log errors/warnings to the normal-format output file
--append-output: Append to rather than clobber specified output files
--resume : Resume an aborted scan
--stylesheet : XSL stylesheet to transform XML output to HTML
--webxml: Reference stylesheet from Insecure.Org for more portable XML
--no-stylesheet: Prevent associating of XSL stylesheet w/XML output
MISC:
-6: Enable IPv6 scanning
-A: Enables OS detection and Version detection, Script scanning and Traceroute
--datadir : Specify custom Nmap data file location
--send-eth/--send-ip: Send using raw ethernet frames or IP packets
--privileged: Assume that the user is fully privileged
--unprivileged: Assume the user lacks raw socket privileges
-V: Print version number
-h: Print this help summary page.
EXAMPLES:
nmap -v -A scanme.nmap.org
nmap -v -sP 192.168.0.0/16 10.0.0.0/8
nmap -v -iR 10000 -PN -p 80
SEE THE MAN PAGE FOR MANY MORE OPTIONS, DESCRIPTIONS, AND EXAMPLES
root@ubuntu:~#

noreply@blogger.com (imshahmemyselfandi) — Mon, 25 May 2009 02:32:00 +0000

INVITATION TO PARTICIPATE IN MSC MALAYSIA OPEN SOURCE CONFERENCE 2009

Date: 31 May - 3 June, 2009
Venue: Berjaya Times Square Hotel & Convention Center, Kuala Lumpur.

MSC Malaysia's inaugural and full-fledged Open Source Conference to incorporate a "Quadruple play" of 4 crucial stakeholders consisting of government, businesses, developers and community in envisioning open source's contribution to the IT industry and socio-economy.

Positioned as International forum for sharing and exchanging ideas on technical advancements, applications, development and business cases on open source, and its positive impact in meeting challenges of the current economic climate.

Organised by MSC Malaysia in cooperation with the Malaysian Administrative Modernisation and Management Planning Unit (MAMPU), the annual MSC Malaysia OSCONF is also supported by the Malaysian Open Source community. This event complements the annual Malaysian Government Open Source Software Conference (MyGOSSCON) as the premier platform for all things Open Source in Malaysia.

With 3 DAYS, 3 TRACKS, 1 HACKATHON are in store for everyone who attend this conference. In addition, we have renowned speakers from prime Open Source Enterprises which are Mozilla, Google and Red Hat to name a few and also not forgeting from the developer community - Ubuntu, BSD, Fedora, PHPs, etc

Come join us at the MSC Malaysia Open Source Conference 2009! You'll be pleasantly surprised...

Who should attend?

Business executives from MSC Malaysia and Non-MSC Malaysia Status companies
Open Source developers, communities, inventors, evangelist, researchers, strategist
Government officers
Students, general public

Why you should attend?

Provide exposure and knowledge on the importance of Open Source in enhancing competitiveness by giving freedom of choice in software usage with lower total cost of ownership, hence benefiting businesses and society at large. Over 30 session tracks are made available.
Share amongst the open source community on new directions and latest innovations by the subject matter experts, thought leaders and industry gurus.
Provide a platform for conference participants to actively interact, share and exchange views, ideas, and tools on the latest trends and issues of Open Source.
Networking, learning and having great fun! Click here for more details

How to create a website statistic using AWSTATS

noreply@blogger.com (imshahmemyselfandi) — Wed, 13 May 2009 03:45:00 +0000

This post is based on my experience on setup and configuring the Awstats. configuration. I'm installing it on my Ubuntu server 8.10.

Step 1

Access to AWSTATS server by using SSH protocol.

IP address: 192.168.19.50

loginname: awstats

password: ********

awstats@ubuntu:~$ type cd /var/www/awstats/tools/

Step 2

awstats@ubuntu:/var/www/awstats/tools$ type ls

awstats_buildstaticpages.pl awstats_updateall.pl maillogconvert.pl xslt

awstats_configure.pl httpd_conf urlaliasbuilder.pl

awstats_exportlib.pl logresolvemerge.pl webmin

Step 3

awstats@ubuntu:/var/www/awstats/tools$ sudo ./awstats_configure.pl

[sudo] password for awstats:

----- AWStats awstats_configure 1.0 (build 1.8) (c) Laurent Destailleur -----

This tool will help you to configure AWStats to analyze statistics for

one web server. You can try to use it to let it do all that is possible

in AWStats setup, however following the step by step manual setup

documentation (docs/index.html) is often a better idea. Above all if:

- You are not an administrator user,

- You want to analyze downloaded log files without web server,

- You want to analyze mail or ftp log files instead of web log files,

- You need to analyze load balanced servers log files,

- You want to 'understand' all possible ways to use AWStats...

Read the AWStats documentation (docs/index.html).

-----> Running OS detected: Linux, BSD or Unix

Warning: AWStats standard directory on Linux OS is '/usr/local/awstats'.

If you want to use standard directory, you should first move all content

of AWStats distribution from current directory:

/var/www/awstats

to standard directory:

/usr/local/awstats

And then, run configure.pl from this location.

Do you want to continue setup from this NON standard directory [yN] ? press y

-----> Check for web server install

Enter full config file path of your Web server.

Example: /etc/httpd/httpd.conf

Example: /usr/local/apache2/conf/httpd.conf

Example: c:\Program files\apache group\apache\conf\httpd.conf

Config file path ('none' to skip web server setup):

> type /etc/apache2/apache2.conf

-----> Check and complete web server config file '/etc/apache2/apache2.conf'

All AWStats directives are already present.

-----> Update model config file '/var/www/awstats/wwwroot/cgi-bin/awstats.model.conf'

File awstats.model.conf updated.

-----> Need to create a new config file ?

Do you want me to build a new AWStats config/profile

file (required if first install) [y/N] ? press y

-----> Define config file name to create

What is the name of your web site or profile analysis ?

Example: www.mysite.com

Example: demo

Your web site, virtual server or profile name:

> type the name of website or profile eg; lbjt,insken,bankrakyat etc..

-----> Define config file path

In which directory do you plan to store your config file(s) ?

Default: /etc/awstats

Directory path to store config file(s) (Enter for default):

> Just press Enter here

-----> Create config file '/etc/awstats/awstats.lbjt.conf'

Config file /etc/awstats/awstats.lbjt.conf created.

-----> Add update process inside a scheduler

Sorry, configure.pl does not support automatic add to cron yet.

You can do it manually by adding the following command to your cron:

/var/www/awstats/wwwroot/cgi-bin/awstats.pl -update -config=lbjt

Or if you have several config files and prefer having only one command:

/var/www/awstats/tools/awstats_updateall.pl now

Press ENTER to continue... Just press Enter here

A SIMPLE config file has been created: /etc/awstats/awstats.lbjt.conf

You should have a look inside to check and change manually main parameters.

You can then manually update your statistics for 'lbjt' with command:

> perl awstats.pl -update -config=lbjt

You can also read your statistics for 'lbjt' with URL:

> http://localhost/awstats/awstats.pl?config=lbjt

Press ENTER to finish... Just press Enter here

Step 4

awstats@ubuntu:/var/www/awstats/tools$ type sudo pico /etc/awstats/awstats.lbjt.conf

** To find the value that need to be edited as represent by the red colour below, simply press the “Page Down” button on the keyboard **

# If there are several log files from load balancing servers :

# Example: "/pathtotools/logresolvemerge.pl *.log |"

LogFile="/var/log/apache2/lbjt.skali.my-access_log" change to this from default “/var/log/httpd/mylog.log”

# LogFormat = 1

# LogFormat = "%host %other %logname %time1 %methodurl %code %bytesd %refererqu$

# Example for IIS:

# LogFormat = 2

LogFormat=4 change to this value from default “ 1 ”

# If analyzing mail log, enter here the domain name of mail server.

# Example: "myintranetserver"

# Example: "www.domain.com"

# Example: "ftp.domain.com"

# Example: "domain.com"

SiteDomain="lbjt" make sure this is value is entered

# Example: "/var/lib/awstats"

# Example: "../data"

# Example: "C:/awstats_data_dir"

# Default: "." (means same directory as awstats.pl)

DirData="/var/www/awstats" change to this from the default “/var/lib/awstats”

Step 4

awstats@ubuntu:/var/www/awstats/tools$ type sudo /var/www/awstats/wwwroot/cgi-bin/awstats.pl config=lbjt -update

Create/Update database for config "/etc/awstats/awstats.lbjt.conf" by AWStats version 6.9 (build 1.925)

From data in log file "/var/log/apache2/lbjt.skali.my-access_log"...

Phase 1 : First bypass old records, searching new record...

Searching new records from beginning of log file...

Phase 2 : Now process new records (Flush history on disk after 20000 hosts)...

Jumped lines in file: 0

Parsed lines in file: 1788

Found 0 dropped records,

Found 0 corrupted records,

Found 0 old records,

Found 1788 new qualified records.

awstats@ubuntu:/var/www/awstats/tools$

Step 5

Open browser using Internet Explorer or Mozilla FireFox. At the URL address type the below address;

http://192.168.19.50/awstats/awstats.pl?config=lbjt and the web page as below will be displayed and your awstats configuration is successful. Replace the lbjt name with other website profile. Let say if you are creating a profile for Bank Rakyat, then type, bankrakyat after config= (eg; config=bankrakyat) and so on for other profile.

PFSense: Basic Installation Tutorial for Dummies Like Me :-)

noreply@blogger.com (imshahmemyselfandi) — Wed, 15 Apr 2009 06:28:00 +0000

Taken from PFSense website :-)

Welcome to the home page of the pfSense project!

pfSense is a free, open source customized distribution of FreeBSD tailored for use as a firewall and router. In addition to being a powerful, flexible firewalling and routing platform, it includes a long list of related features and a package system allowing further expandability without adding bloat and potential security vulnerabilities to the base distribution. pfSense is a popular project with more than 1 million downloads since its inception, and proven in countless installations ranging from small home networks protecting a PC and an Xbox to large corporations, universities and other organizations protecting thousands of network devices.

This project started in 2004 as a fork of the m0n0wall project, but focused towards full PC installations rather than the embedded hardware focus of m0n0wall. pfSense also offers an embedded image for Compact Flash based installations, however it is not our primary focus.

Click here for details

This simple tutorial is based on my experience. This software is awesome with a lot of features in it. The main reason I'm installing this software is for creating a Squid proxy server. Since this software have a lot of add-on so why not I'm trying to install it. Actually, I had installed this PFSense in my SUN VirtualBox. On the moment I'm posting this post, I'm using the latest PFSense version 1.2.2. To download the software click here

Configure Console > Choose "Change Video Font (Default)"

Select Task > Choose "Install pfSense"

Select Disk > Select your desired disk, default is "ad0"

Select Geometry > I didn't change anything here, just proceed with the default, "choose Use this Geometry"

ABOUT TO FORMAT! Proceed? > Verified it first and then "choose Format ad0"

Partition Disk? > Read this first and choose Partition Disk if you satisfied :)

Edit Partitions > I'm using this default and choose Accept and Create

Partitions Anyway? > "Choose Yes, partition ad0"

Information > The disk was successfully partitioned, ahaaaa OK

Select Partition > Select the primary partition, I choose 1:blablabla ;)

Are you SURE? Choose OK if you dare to format your disk

Information > Primary partition #1 was formatted.

Select Subpartitions > I'm just selecting the default as below. Choose Accept and Create

Executing Commands

Install Kernel > Choose Uniprocessor kernel (one processor) if your system has only one processor. But, if you installed it on server maybe you should choose Symmetric multi processing blablabla

Cancelled? What the heck? I dont know why this happen but I Retry it and it works!!! Yeaa!

Install Bootblocks > I don't want headache so, I just keep the default and choose Accept and Install Bootblocks

Information > Bootblocks were successfully installed

Reboot > Choose Reboot

Reboot, bip! bip! will hear the bip bip sound

Open up the web browser FireFox or IE. Enter the default PFSense IP Address, 192.168.1.1, Username: admin and Password: pfsense to get to the page as below

General Information

Time Server Information

Time Server Information, choose Timezone

Configure WAN interface, I'm using DHCP at first.

Contd..

Configure LAN Interface

Set Admin WebGUI Password

Reload, click Reload button

A reload is now in progress. Please wait but if unpatient click on PFSense icon :-P

System Overview page

Installing Firewall on Ubuntu using Lokkit

noreply@blogger.com (imshahmemyselfandi) — Thu, 21 Aug 2008 11:12:00 +0000

I have searching on the Internet how to setup a my Ubuntu (8.04) machine as a firewall and I finally found a step that I need to do. Lokkit, yeah this is the firewall that I think suitable. What I need to do is to download it first to my Ubuntu machine, install and configure it as I need.

rootubuntu@myubuntu-vbox:~$ sudo apt-get install lokkit <---- type this command
[sudo] password for rootubuntu: type the root password, after that the below details will be displayed during the installation. (see below)
Reading package lists... Done
Building dependency tree
Reading state information... Done
Suggested packages:
ipmasq
Recommended packages:
gnome-lokkit
The following NEW packages will be installed:
lokkit
0 upgraded, 1 newly installed, 0 to remove and 1 not upgraded.
Need to get 128kB of archives.
After this operation, 811kB of additional disk space will be used.
Get:1 http://my.archive.ubuntu.com hardy/universe lokkit 0.50.22-7.1ubuntu2 [128kB]
Fetched 128kB in 6s (20.6kB/s)
Selecting previously deselected package lokkit.
(Reading database ... 138076 files and directories currently installed.)
Unpacking lokkit (from .../lokkit_0.50.22-7.1ubuntu2_i386.deb) ...
Setting up lokkit (0.50.22-7.1ubuntu2) ...
You must use lokkit or gnome-lokkit to configure the firewall. -end of installation-

After installation of Lokkit is finished enter below command to run Lokkit
rootubuntu@myubuntu-vbox:~$ lokkit <---- type this command

ERROR - You must be root to run lokkit. why I got this message? because I'm not run it as a root. use sudo

rootubuntu@myubuntu-vbox:~$ whoami
rootubuntu
rootubuntu@myubuntu-vbox:~$ sudo lokkit
[sudo] password for rootubuntu: type the root password, then the Lokkit window will be pop-up as below.

Managing Veritas Cluster Server using command line

noreply@blogger.com (imshahmemyselfandi) — Tue, 08 Jul 2008 12:32:00 +0000

Instead of using GUI (graphical user interface) to managing the VCS, user can also use command line too. As I am new to VCS, there is a few command that I know to monitor the status of VCS and switching the server services to another server.

To run the VCS
[root@MY-BEDB01]#hagui

To check the status of VCS
[root@MY-BEDB01]#hastatus -sum

To check GAB (Global Atomic Broadcast) status
[root@MY-BEDB01]# gabconfig -a
GAB Port Memberships
===============================================================
Port a gen 625e07 membership 012
Port d gen 625e08 membership 01
Port d gen 625e08 visible ; 2
Port h gen 625e0a membership 012

To check LLT (Low Latency Transport) connection
[root@MY-BEDB01]# lltstat -vvn

Managing Veritas Cluster Server in Unix

noreply@blogger.com (imshahmemyselfandi) — Tue, 08 Jul 2008 11:17:00 +0000

I was be given a task and responsibility to handling a Veritas Cluster Server (VCS) at my site office. Honestly, I didn't know what is VCS. I have heard it name before and I really don't care what it is. After this time come, I'm doing a reseacrh to know what is VCS. It is about High-Availability clustering and (also known as HA). From my simple understand, VCS providing the availability of application to run without any problem as it is mirroring or duplicating what server A has to server B and this help a lot to reduce and avoid downtime. If I'm wrong, please guide me. :-) This is what i have done to managing the VCS.

1) Login to my Solaris 9 server using X-Manager Software

2) To run the VCS, type #hagui

3) Veritas Cluster Server windows will be displayed

4) Enter the username and password for VCS.

5) VCS is in progress to be shown

6) Successfully login into the VCS interface.

7) Displaying the AppService that is listed in Application Server

8) Displaying the OracleService that is listed in Application Server

9) Switching the AppService from Application server to Fail Over server. To do this, right click on the AppService > click Switch To menu > click on the desired Fail Over server.

10) User will be prompted to proceed switch the AppServer to the Fail Over server.

11) After AppServer is switching to the Fail Over server, VCS will show that the Application Server state is Partial Online. It is normal when the switching process is in progress.

12) To check the status of the switching process by using a command line, type #hastatus -sum in the console and the below result will be displayed. It will show that AppService at befo01 (stands for Fail Over server) is in STARTING|PARTIAL state. It means that the AppService is in process to start running in Fail Over server.

13) Finally, the AppService is running at the Fail Over server. See at the Group Status On Member System. befo01 is in Online state. Now, AppService is running at the Fail Over server.

14) To check the status of the switching process by using a command line, type #hastatus -sum in the console and the below result will be displayed.

XAMPP: Error 1! Couldn't start Apache!

noreply@blogger.com (imshahmemyselfandi) — Sun, 07 Oct 2007 02:45:00 +0000

Oppsss, I got this error message when I tried to edit the SSL certificate in XAMPP on my application server. Honestly, it makes me panic! Know what, I can't running the Apache services. When I tried to run the command it shows an error like this

[root@pknp ~]# /opt/lampp/lampp start
Starting XAMPP for Linux 1.5.3a...
XAMPP: Starting Apache with SSL (and PHP5)...
XAMPP: Error 1! Couldn't start Apache!
XAMPP: Starting diagnose...
XAMPP: Sorry, I've no idea what's going wrong.
XAMPP: Please contact our forum http://www.apachefriends.org/f/

I'm searching on the Internet and exactly I've found it from XAMPP website. It said that I need to type the below command:

[root@mybox ~]#tail -2 /opt/lampp/logs/error_log and then it shows what is the type of error

[root@pknp ~]# tail -2 /opt/lampp/logs/error_log
[Sun Oct 07 10:11:52 2007] [error] Unable to configure RSA server private key
[Sun Oct 07 10:11:52 2007] [error] SSL Library Error: 185073780 error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch

As I expect earlier, it is caused by the SSL editing. I didn't know how this thing happen.
Maybe there is some misconfigration or the XAMPP version compatibility. When i write this post, I'm using XAMPP for Linux 1.5.3a while the new version is available, XAMPP Linux 1.6.3b. After a few attempt to start the Apache in XAMPP is fail, I was thinking how stupid am I not backup the original certificates files. Now the things come worst. But, I was thinking, Hey, I've got another server (database) that also using XAMPP. Why not I copy that certificate file in that server and replace it back to the original state of my application server.
Fortunately, I still didn't make any configuration to that database server. So, I just copy the files (server.crt and server.key) and replace it to on my application server.
The I tried to restart the XAMPP back and YESSS!!!! It back on track again. So, the moral is, please BACKUP your original file first before you are going to edit it.
If not, then it will become a nightmare for you. :-P

Create A Self-signed SSL Certificate in XAMPP

noreply@blogger.com (imshahmemyselfandi) — Fri, 05 Oct 2007 03:54:00 +0000

I have added a plugins for my webmail (Squirrelmail).
It is Secure Login plugins.
This plugins enables a secure HTTPS/SSL-encrypted connection
for my SquirrelMail login page. So, it can secure my email access.
As I'm using Apache in XAMPP, the generated SSL certificate are using the default setting.
When I view the certificate, it show's a default XAMPP Apache setting like below :

Issued To
Common Name (CN)           localhost
Organization (O)               Apache Friends
Organization Unit (OU)
Serial Number                   00

Issued By
Common Name (CN)           localhost
Organization (O)               Apache Friends
Organization Unit (OU)

So, to create my own self-signed SSL certificate, I need to edit the certain file make a few tuning. So that, the certificate will be no longer using a default XAMPP setting.

1. Open a terminal/console at local or do it remotely through SSH access

2. The first thing that need to do is, create a RSA Private Key by using the below command.

[root@mybox ~]#openssl genrsa -des3 -out server.key 1024

Generating RSA private key, 1024 bit long modulus
.........................................................++++++
........++++++
e is 65537 (0x10001)
Enter PEM pass phrase: enter the desired pass phrase
Verifying password - Enter PEM pass phrase: same as a above

3. The next step is to create a Certificate Signing Request (CSR). CSR is a message sent from an applicant to a certificate authority in order to apply for a digital identity certificate. User will be prompt to enter an information that related to CSR certificate. To create a CSR, enter the below command.

[root@mybox ~]#openssl req -new -key server.key -out server.csr

Country Name (2 letter code) [GB]:type your 2 letter country code
State or Province Name (full name) [Berkshire]:type your state or province name
Locality Name (eg, city) [Newbury]:type your city name
Organization Name (eg, company) [My Company Ltd]:type your company name
Organizational Unit Name (eg, section) []:type your department
Common Name (eg, your name or your server's hostname) []:type your server hostname
Email Address []:type your email address
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:type your password
An optional company name []:type your company name

4. The next step is to remove the passphrase key. It is because if you enable the passphrase, Apache will ask for the pass-phrase each time the web server is started. It will be a problem if the server is restarted as the user always need to type the passphrase. The below command will remove the passphrase.

[root@mybox ~]#cp server.key server.key.org
[root@mybox ~]#openssl rsa -in server.key.org -out server.key

5. To generating a Self-Signed Certificate, enter the below command. As this certificate is not verified by Certificate Authority such as Thawte or Verisign, your browser will notice an error inform you that the signing certificate authority is unknown and not trusted. Bear in mind that this is self-signed certificate. So, you should ignore that error message.

[root@mybox ~]#openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

6. Installing the Private Key and Certificate is simple. All you need to do is to know where are your XAMPP Apache directory. I assume that, we are using the default XAMPP directory, /opt/lampp. So, copy the two below files, ssl.crt and ssl.key to the XAMPP directory.

[root@mybox ~]#cp server.crt /opt/lampp/etc/ssl.crt
[root@mybox ~]#cp server.key /opt/lampp/etc/ssl.key/server.key

When you are being asked to overwritten the file, just type yes and hit Enter.

7. Restart Apache and test to access your site. Check the certificate and make sure the information that you have insert is correct.

8. Finish! Your configuration is done. Good luck :-)

Linux Intrusion Discovery

noreply@blogger.com (imshahmemyselfandi) — Mon, 17 Sep 2007 02:53:00 +0000

THIS GUIDE IS TAKEN FROM SANS INSTITUTE

Purpose
System Administrators are often on the front lines of computer security. This guide aims to support System Administrators in finding indications of a system compromise.

What to use this sheet for
On a periodic basis (daily, weekly, or each time you
logon to a system you manage,) run through these
quick steps to look for anomalous behavior that
might be caused by a computer intrusion. Each of
these commands runs locally on a system.
This sheet is split into these sections:
• Unusual Processes
• Unusual Files
• Unusual Network Usage
• Unusual Scheduled Tasks
• Unusual Accounts
• Unusual Log Entries
• Additional Supporting Tools

• Unusual Processes
Look for running processes:
# ps –aux
Get familiar with “normal” processes for the machine.
Look for unusual processes. Focus on processes with
root (UID 0) privileges.
If you spot a process that is unfamiliar, investigate
unusual processes, getting more detail using:
# lsof –p [pid]
This command shows all files and ports used by the
running process.

• Unusual Files
Look for unusual SUID root files:
# find / -uid 0 –perm -4000 –print
Requires knowledge of normal SUID files
Look for unusual large files (greater than 10
MegaBytes):
# find / -size +10000k –print
Requires knowledge of normal large files
Look for files named with dots and spaces:
(“...”, “.. “, “. “, and “ “)
# find / -name “...“ –print
# find / -name “.. “ –print
# find / -name “. “ –print

On a Linux machine with RPM installed (RedHat,
Mandrake, etc.), run the RPM tool to verify packages
# rpm –Va
Checks size, MD5 sum, permissions, type, owner, and
group of each file with information from RPM
database
Output includes:
S – File size differs
M – Mode differs (permissions)
5 – MD5 sum differs
D – Device number mismatch
L – readLink path mismatch
U – user ownership differs
G – group ownership differs
T – modification time differs
Pay special attention to changes associated with
items in /sbin, /bin, /usr/sbin, and /usr/bin

• Unusual Network Usage
Look for promiscuous mode, which might indicate a
sniffer:
# ip link | grep PROMISC
Note that ifconfig doesn’t work reliably for detecting
promiscuous mode on Linux kernel 2.4

Look for unusual port listeners:
# lsof –i
# netstat –nap
Need to know which TCP and UDP ports are
normally listening on your system and look for
deviations from the norm

Look for unusual ARP entries, mapping IP address to
MAC addresses that aren’t correct for the LAN:
# arp –a
Requires detailed knowledge of what is supposed to
be on the LAN

• Unusual Scheduled Tasks
Look for cron jobs scheduled by root and any other
UID 0 accounts:
# crontab –u root –l
Look for unusual system-wide cron jobs:
# cat /etc/crontab

• Unusual Accounts
Look in /etc/passwd for new accounts, especially
with UID 0 or GID 0
# less /etc/passwd
# grep :0: /etc/passwd
Normal accounts will be there, but look for new,
unexpected accounts

• Unusual Log Entries
Look through your system log files for suspicious
events, including:
Promiscuous mode
“entered promiscuous mode”
Large number of authentication or login
failures from either local or remote access
tools (e.g., telnetd, sshd, etc.)
Remote Procedure Call (rpc) programs with a
log entry that includes a large number (> 20)
strange characters (-^PM-^PM-^PM-^PM-
^PM-^PM-^PM-^PM)
For web servers: Large number of Apache
logs saying “error”

• Additional Supporting Tools
The following tools are often not built into
Linux operating system, but can be used to
analyze its security status in more detail.
Each is available for free download at the
listed web site.
Chkrootkit looks for anomalies on systems
introduced by user-mode and kernel-mode
RootKits
www.chkrootkit.org - free
Tripwire looks for changes to critical system
files
www.tripwire.org - free for Linux for noncommercial
use
AIDE looks for changes to critical system files
http://www.cs.tut.fi/~rammer/aide.html

How to change network setting in Linux

noreply@blogger.com (imshahmemyselfandi) — Wed, 22 Aug 2007 05:16:00 +0000

I'm having a problem to access to my desktop using GUI. So, I decided to use command in console. I would like to share with people especially newbies how to configure Linux network using a command prompt based on my experience.

1. [root@localhost ~]#ifconfig eth0 172.20.30.30 netmask 255.255.255.0 up
2. [root@localhost ~]#route add default gw 172.20.30.254

How to disabling the Ctrl+Alt+Delete in Linux console

noreply@blogger.com (imshahmemyselfandi) — Mon, 13 Aug 2007 01:30:00 +0000

As usual, I'm coming to office and entering the server room and login to the portal to check in for my attendance system. But all of the sudden, the server is restart!!!! Oh my god! I was accidentally press the Ctrl+Alt+Delete!!! What I have done? Than, I tried to fix the problem. The solution that I can do is I need to disable the Ctrl+Alt+Delete key. I'm afraid that if anyone that accidentally press that key than everything will be horror. To disable that key is quiet simple actually. Below are the steps that I have done.

1. Backup the original etc/inittab file and named it as a inittab.ori
[root@localhost ~]# cp /etc/inittab /root/Desktop/backup/inittab.ori

2. Edit the original file in /etc/inittab
[root@localhost ~]#vi /etc/inittab

3. Find the the # Trap CTRL-ALT-DELETE line
You can see that there is a file that exactly look like this
ca::ctrlaltdel:/sbin/shutdown -t3 -r now

4. Now edit that line such below
ca:12345:ctrlaltdel:/bin/echo "CTRL-ALT-DEL is disabled"

5. Save the file that you have edit and quit from VI

6. In order to activate the changes, you need to run this command
[root@localhost ~]# init q

7. After that to make sure it is effective or not, try to press the Ctrl+Alt+Del key. Your screen should appear "CTRL-ALT-DEL is disabled"

8. Done :-)