Linux encryption middleware for mounting

I have an NFS share (or it can be any mounted file system)

I don't trust other readers of the NFS server

Is there a way to add an intermediate layer that encrypts writes and decrypts readings transparently to the network share?

Example:

to write

I create the secret.txt file
I save it in a certain folder
"Middleware" encrypts the file

Read

I open the secret.txt file (I found an encrypted mount point since the middleware has unencrypted file names)
"Middleware" decrypts the file
I can read the content as if I were in a normal FS.
The encrypted file is written in NFS

Unable to attach the SQL Server database with the shared folder in Docker on Linux

The problem I have is that my Linux SQL Server 2017 container cannot read my database files. I guess it has something to do with permissions and I'm sure I've missed something, but I can't find it.

I created a clone with the PowerShell module called dbaclone.
This module creates and connects a differentiation disk based on another VHD, which facilitates the provisioning of large databases.

The databases are available using a partition path that will look like this

enter the description of the image here

With in the folder, for example, "AW2017-C1" is a folder called "Data" and "Log" that contains the data and the log files respectively.

The permissions in the folder are "Everyone" to have "Full Control."

enter the description of the image here

I have a virtual machine in VMWare Workstation that is a Linux VM. The Linux virtual machine has Docker installed. I shared the cloning folder on the VM

enter the description of the image here

For ease of use, I added the share to / etc / fstab to mount it automatically when the VM starts.

enter the description of the image here

The permissions are set so that everyone can read it

enter the description of the image here

I have the following script to run the docker container

sudo docker run -e 'ACCEPT_EULA=Y' 
    -e 'SA_PASSWORD=Myp@ssw0rd' 
    -p 1433:1433 --name sql1 
    -v /home/sander/databases:/databases 
    -v /home/sander/shares/dbaclone:/var/opt/mssql/data/dbaclone 
    -d mcr.microsoft.com/mssql/server:2017-latest

The docker container will mount the directory and make it accessible to the container.

File permissions from the container look correct

enter the description of the image here

Everything looks good, but when I run the following script

USE master;

CREATE DATABASE AdventureWorks2017
ON PRIMARY
       (
           FILENAME = '/var/opt/mssql/data/dbaclone/AW2017-C1/Data/AdventureWorks2017.mdf'
       ),
       (
           FILENAME = '/var/opt/mssql/data/dbaclone/AW2017-C1/Log/AdventureWorks2017_log.ldf'
       )
FOR ATTACH;

This error returns

Msg 5120, Level 16, State 101, Line 3
The physical file "/var/opt/mssql/data/dbaclone/AW2017-C1/Data/AdventureWorks2017.mdf" cannot be opened. Operating system error 2: "2 (The system cannot find the file specified)."
Msg 1802, Level 16, State 7, Line 3
CREATE DATABASE failed. Some of the file names in the list could not be created. Verify related errors.
Completion time: 2020-02-19T13: 07: 36.1675676 + 01: 00

Obviously, this has something to do with permissions, but everything looks good and maybe someone else has some advice on how to fix it.

sql server: start MSSQL SSIS on Linux and make sure it works

I am trying to connect to SSIS that was installed on the MySQL server (in RHEL 7). It was installed and configured according to the documentation.

I can connect to the server using SSMS (as a database engine), but I cannot connect to it as a server type of the integration service.

I tried to create SSISDB (SSIS catalog), but I received an error:

The path to the catalog backup file could not be determined. Integration Services might not be installed on this server, or the user may not have the appropriate access permissions. (Microsoft.SqlServer.IntegrationServices.Common.ObjectModel)

On the server, port 135 is not in use (documentation suggests that SSIS uses it). I am not sure that the service is running (systemctl show alone ssis-telemetry)

too /var/opt/ssis/log/ it is empty.


For the above reasons, I think SSIS is not working, but I can't find any method to execute it. On the other hand I used dtexec and throw some errors to make it seem that something works:

Microsoft (R) SQL Server Execute Package Utility
Version 14.0.3015.40 for 64-bit
Copyright (C) 2017 Microsoft. All rights reserved.

Started:  11:45:14 AM
Error: 2020-02-19 11:45:18.53
   Code: 0xC0048020
   Source: Data Flow Task 1 Data Flow Task 1 (SSIS.Pipeline)
   Description: The version of Destination - 100 Records_out_csv is not compatible with this version of the DataFlow.
End Error
...

How can I check if SSIS is running? And how can I start it?

networks – How to mount TP-Link "Network environment" (SMB) on Linux with mount.cifs

What are the "right" options to mount TP-Link "Network Neighborhood" (SMB) on Linux with mount.cifs? Apparently, using default values ​​is not enough:

mount.cifs //hostname/sda1/ /mnt/n -v -o user=xxx,pass=yyy
mount.cifs kernel mount options: ip=192.168.0.1,unc=\hostnamesda1,user=xxx,pass=********
mount error(2): No such file or directory
Refer to the mount.cifs(8) manual page (e.g. man mount.cifs)

redhat enterprise linux – What is the driver update image file?

I am running an installation of RHEL 5.11 on my server. Since my server's DVD-ROM does not work, I have decided to create a multi-boot USB disk using YUMI. Everything works during disk creation, I select the RHEL5 ISO file to load it into the USB disk.

Problems that occur after starting on the RHEL installation page. You are asking me to select the driver disk source, which I have no idea on which device the USB disk is mounted. I tried to randomly select all the options and it seems that device / dev / sda4 works for me. But then he asks me to choose the driver update image file, I have no idea what it is.

Can anyone help me with this?

linux – the apache web server website is not accessible through https

I am running Apache web server over https in rhel.

I can access the index.html file of the apache website using

curl https://server.domain.com

When I try to access the website using the IP address of the web server, the site does not appear.
curl https: // serverIPAddress

In the httpd.conf
ServerName Server FQDN
I also tried replacing FQDN with the server's IP address without luck.

I appreciate any help
Thank you
Nate

Turnkey Internet: * 30% discount * 10G VPS PRO SERIES in the cloud | Unmetered bandwidth of 10 Gbps | Linux or Windows

*** Introducing the new TurnKey Internet. PRO 10G SERIES VPS cloud servers ***

BONUS DISCOUNT for a limited time: 30% additional discount for Life, use coupon code P30 on the way out to get more discounts on our already amazing offers. This additional discount is FOR LIFE, but only if you register now! Limit of 1 per customer, only new orders.

Turnkey Internet Provides dedicated servers, placement, web hosting, cloud and virtual servers from its ecological data center owned and operated by the company. Since 1999, TurnKey Internet has built a reputation for excellent personalized service, reliability and value. Owning our own data center allows our qualified 5-star staff to answer your questions quickly and provide complete solutions directly from our team of experts located in the same building as your servers. We are experts in the Cloud Hosting and Data Center space with a true dedication to your online success every step of the way.

FREE migration of websites and servers : TurnKey Internet makes migration to our web and cloud hosting services easier than ever by handling all migration work for your websites and servers, including all emails, databases, websites and applications . More information

The fastest cloud VPS: optimized for speed and performance: Our Pro Series VPS nodes use the latest Intel Xeon E5 DDR4 CPU, SSD and RAM. Together with a 10 Gbps network uplink, this is our fastest configuration.

10G PRO SERIES VPS Special Cloud Server

  • 6 CPU
  • 8 GB of RAM guaranteed
  • 100GB SSD RAID-10 storage space
  • 10 Gbps network uplink
  • Bandwidth Not Measured
  • IPv4: 1 Usable IP
  • IPv6: / 64 subnet included
  • Choice of Linux or Windows (more than 60 templates and ISO)
  • 30 day money back guarantee
  • NO CONFIGURATION FEES

$ 45 / month * The | ORDER NOW

* The discount price reflects a 30% discount on the promotional code P30 (1 per customer / New orders only) combined with an additional 10% discount for annual prepayment. Optional monthly prices available: see the order page for details of the offer.


The 10G Pro Series VPS cloud servers include the following:

  • KVM Virtualization – Without oversold, all resources guaranteed!
  • Linux or Windows (and custom operating systems such as BSD and more)
  • More than 60 ready-made Linux and Windows templates and ISO to choose from
  • Guaranteed RAM: no bursts, no oversold servers, fully allocated RAM!
  • RAID-10 ultrafast SSD storage
  • National level 1 trunk connections through the redundant central network with Juniper BGP4 power
  • Automated weekly backups (updates to daily backups and continuous R1Soft data protection available)
  • Access to the VPS TurnKey administration panel (web-based)
  • Automated Restarts (FREE)
  • Automated operating system recharge (FREE)
  • Access to the KVM console to all VPS included for free!
  • Versions of pre-installed Windows Server licensed images available
  • Bring your own license versions for Windows Server and Windows 7-10
  • Control panels available: cPanel, Plesk, DirectAdmin and Webmin
  • 1 IP address (IPv4) included, buy up to 32 if desired.
  • IPv6 / 64 address block
  • 100% network guarantee and uptime
  • Free phone 24 hours a day, 7 days a week, live chat and technical support
  • 30 day money back guarantee
  • NO term contract (month to month)
  • NO installation fees
  • Free data migration from your old host to our servers

TurnKey's 10 Gbps Internet cloud servers are built on a next-generation architecture with specific hardware, which provides our servers with significantly faster performance. The servers are connected to the recently updated TurnGornet 100G Juniper edge network and network infrastructure switching components by Cisco, allowing our servers in the cloud to use 10 Gigabit network speeds, which is up to 1,000 times faster than typical broadband cable services.

About turnkey Internet:

All servers are housed in our company-owned and operated ecological data center, with SSAE-18 SOC 1 and SOC 2 certification, HIPAA-compliant, ENERGY STAR certified, in the Tech Valley region of New York. Alternative technologies such as solar power generation on site, SmartAisle cold containment, hydroelectricity and cooling capsules have completely eliminated our carbon footprint and made our data center the best of the best for energy efficiency across the country.

Since 1999, TurnKey Internet has built a reputation for excellent personalized service, reliability and value. We are experts in the Cloud Hosting and Data Center space with a true dedication to your online success every step of the way. TurnKey maintains an A + rating from the Better Business Bureau and was the winner of the 2012 Small Business Excellence Award from the US Small Business Administration. UU.

Don't just trust our word: see these testimonials from verified customers and our perfect 5-star Shopper Approved rating.

CONTACT US:

Live Chat: Live Sales Chat
Email: sales@turnkeyinternet.net
Web: www.turnkeyinternet.net
Facebook: Turnkey Internet
Twitter: @TurnKeyInternet

Kali Linux – Nmap with snmp-brute script freezes to 33.33%

I am currently in a penetration test course where I discover the basics and I have a task in which I need to perform the SNMP enumeration on an objective.

My work environment is as follows:
Host: Windows 10 (64 bits)
Oracle VM VirutalBox machines:

  • Kali Linux 2019.4 (64 bits): attacking machine, 4 GB of RAM, 4 vCPU, fully updated, NAT network 10.10.10.0/24 with address 10.10.10.11
  • Windows Server 2012R2 (64 bits): target machine, 5 GB of RAM, 2 vCPU, fully updated, the same NAT network 10.10.10.0/24 with address 10.10.10.12

On the target machine, the SNMP service was activated through the "Add roles and features" window and configured to have a basic "public" community chain and allow SNMP packets from any host.

The problem :

I need to use the following command: nmap -sU -p 161 --script=snmp-brute 10.10.10.12 in Kali Linux to apply brute force to the community chain of the target machine.

But when I do, the UDP scan continues smoothly, but the NSE script simply freezes to 33.33%. If I use the CTRL + X combination (I found it accidentally, I didn't know it was a thing) I get the following information:

Stats: 12:26:31 elapsed; 0 hosts completed (1 up), 1 undergoing Script Scan
NSE Timing: About 33.33% done; ETC: 04:57 (24:53:00 remaining)

and the "remaining time" continues to increase.

If I increase the debug level to 2 with d, I get these similar packages forever:

NSOCK INFO (47243.1930s) nsock_pcap_read_packet(): Pcap read request from IOD #2  EID 262533
NSOCK INFO (47243.4940s) nsock_trace_handler_callback(): Callback: READ-PCAP TIMEOUT for EID 262533 

Can anyone shed some light on this problem for me?
Thank you

Professional Linux Vps offshore hosting at NL + discounts!

LibertyVPS.net
Fast accommodation on the high seas

LibertyVPS is committed to protecting your data, privacy and providing high quality hosting. We offer KVM VPS that have the option of running Linux and Windows, we only use high quality hardware and high speed gigabit connections. All our VPS come with secure storage, high bandwidth limits and dedicated RAM. U.S accept bitcoin As one of our many payment methods for our bitcoin vps. Bitcoin is the best and easiest way to pay online and is completely anonymous to maintain your privacy. All Bitcoin payments are automatically processed through BitPay and will be credited once the payment has been made.

LibertyVPS offshore VPS are great for running websites, game servers, bitcoin wallets, email servers, file servers and much more. All of our Linux servers come with a wide variety of operating system templates that you can choose to install and all resources are dedicated. The best option for beginners or professionals is LibertyVPS offshore VPS. Our offshore VPS are in our NL data center. Our data center is protected and located on the high seas for the best privacy and security. You can use your server to host websites, download files and more! We use the Ecatel Datacenter, located in Amsterdam. Ecatel uses the best network, hardware and transit equipment providers. All bandwidth is premium bandwidth that results in very low ping and very fast speeds.

Check out OUR OFFSHORE Linux VPS hosting packages:

VPS bronze plan
CPU cores: 1 core
Dedicated RAM: 1 GB
Disk space: 25 GB
Monthly bandwidth: 2 TB
Virtualization – Linux KVM
ORDER NOW$ 19.99 / month

Silver VPS Plan
CPU cores – 2 cores
Dedicated RAM: 2 GB
Disk space: 50 GB
Monthly bandwidth: 4 TB
Virtualization – Linux KVM
ORDER NOW$ 39.99 / month

VPS Gold Plan
CPU cores – 4 cores
Dedicated RAM: 3 GB
Disk space: 75 GB
Monthly bandwidth: 8 TB
Virtualization – Linux KVM
ORDER NOW$ 59.99 / month

VPS Platinum Plan
CPU cores: 8 cores
Dedicated RAM: 4 GB
Disk space: 100 GB
Monthly bandwidth: 10 TB
Virtualization – Linux KVM
ORDER NOW$ 79.99 / month

Payment methods
You can request our VPS using the following payment methods: PayPal, Bitcoin (anonymous shared wallet), Perfect Money, OKPAY. If you need another payment method, we are flexible. Feel free to contact us!

Support / contact
You can contact us in our ticket system, or Click here To use our contact form!

Terms of Service
We do not allow: Illegal porn, DDoS / DoS, Malware, SPAM / Phishing, Terrorism.

Why risk your Linux server when you have SSH remote staff? Configure the SSH Jump server and comply with PCI

How Ezeelogin Improve the security of your servers when ssh staff remotely and therefore protect your business? How does it help you manage multiple Linux servers?

How does Ezeelogin help you meet various requirements such as PCI DSS 3.2, HIPPA,
SOX, SOC2, FFIEC, NERC CIP, ISO 27001, GDPR when staff log in to your server via ssh remotely?

What is Ezeelogin?
It is a secure SSH Gateway software, also known as Linux jump server software, that would help you easily manage and manage multiple Linux cpanel / WHM servers with greater security. It would also allow you to manage your employees' SSH access to Linux servers. It would allow you to provide your customers with faster and superior customer service. Ezeelogin would save any company thousands of dollars a year when it has multiple Linux servers and has multiple employees to manage them. Set up your SSH Jump box today.

Is Ezeelogin a hosted solution?
No, it is not a hosted solution. The software must be installed on your Linux servers. This gives you better control and security.

  • No more Excel sheets or Google or Dropbox documents or shared documents to share your server details.
  • Don't worry about resetting the root password on all your servers when an employee leaves.
  • Don't worry anymore about removing ssh keys on all your servers when an employee leaves.
  • Record SSH sessions of your staff. This feature records all SSH sessions, including inputs and outputs in SSH. The details of time and date of access are also recorded. Subsequently, you can search the history of your company's critical systems.
  • Provide root SSH access to your servers without giving root passwords of your Linux servers.
  • Provide privileged access Grant access in such a way that your staff log in to the server as a & # 39; user without privileges & # 39; specific and not like & # 39; root & # 39;

  • Provide WHM or other access to Control Panel to your servers without revealing your root password. This can be done not only for cpanel / whm but for almost any other control panel such as plesk ensim webmin and much more.
  • SSH user access control allows you to easily grant or deny users, ssh access to the servers you select.
  • Two factor authentication Like Yubikey, DUO security, Google 2fA are supported.
  • Automated User Change (su) Login that would improve security without the hassle of remembering passwords.
  • Automatic root password reset in all or group of servers with the click of a mouse. This can be configured for automatic periodic restart, as it is good to continue changing your root passwords regularly.
  • Automatic ssh key reset With the click of a mouse.
  • Automatic ssh key reset With the click of a mouse.
  • Command line filter It helps prevent accidental execution of commands such as rm -rf / etc. Filter any command with regular expression
  • SSH using your browser for quick and easy access to your remote Linux server.
  • RDP using your browser for quick and easy access to your remote Windows servers.
  • Record RDP sessions

Ezeelogin automations to manage and manage multiple Linux servers

The world's first parallel shell integrated into the ssh gateway so that commands can be executed on all or groups of servers easily. This is a really cool ssh trick and we tip it as one of the ingenious features of ezeelogin.

The world's first clustered ssh gateway for redundancy so you have access to your server at all times.

The world's first ssh gateway That allows you to monitor both the input and output of all commands executed through ssh by your system administrators. All actions are fully registered and you can see what your technology and systems administrator are doing on the servers also in real time.

The world's first auto switch user login (su) That would improve security without the hassle of remembering passwords.

The world's first ssh user access control system integrated into the ssh gateway that would allow you to grant / deny ssh access to servers, thereby improving security.

The world's first command line filter Gives you control over the commands that a technician / administrator can execute on the servers. Accidentally prevent rm -rf / or any command you may think with full regexp support.

Access to control panel without password(almost all control panels you can think of) with just 1 click.

Data center portal without password access with just 1 click.

Locate and ssh easily on your servers with less time Check out interesting searches based on hostname, ip, description, etc.

Automatic root password reset It saves you the trouble of having to reset your root password on the server regularly to improve security.

Automated login in virtual containers using vzctl enter veid.

Automated ssh key reset of users on all servers.

Automatic root password generation
through servers.

and much more … check it out. and let us know if you still need some crucial functions and we will add them.

THE Ezeelogin Five Star Comments *****

"Our team manages hundreds of clustered systems in different data centers. We require a product that could securely manage our infrastructure servers in a PCI-compatible manner with console-based remote logging capabilities. The other two requirements involved a method to securely manage our SSH keys and allow us to issue remote commands on large groups of systems. Ezeelogin has saved us countless hours in administration and has simplified our processes by combining so many functions into a single product. Our technicians no longer have to switch between two or three different interfaces to obtain critical information. Our support and guard personnel can put the administration of the system and our customers first while allowing Ezeelogin to do all the heavy lifting. We highly recommend Admod's Ezeelogin product for any size environment. It is the most stable and affordable product available in this market that provides robust scalability that seems to adapt infinitely to the constantly changing IT environment."
Kevin Hatfield (CEO), serverorigin.com *****

"We really like Ezeelogin software and we believe it has great potential, no hosting company with multiple servers should run out of it. It certainly does what was announced. I love!!!"
Patrick Sanders
, www.040hosting.eu *****

"I'm so glad I found Ezeelogin. I own a small hosting company with more than 70 servers. Ezeelogin is incredibly useful and has reduced our response time in handling server problems and has allowed our employees to be more productive. It would be hard to imagine life without ezeelogin! "
Todd Reagor
CEO URLJet.com *****

"With the increasing number of servers, it was increasingly difficult to manage our servers. With Ezeelogin we find a perfect solution to reduce the time we need to manage our servers. Thanks to the incredible support, we were able to configure and configure ezeelogin in a very short time."
Michael Brunner
CTO NovaTrend Services GmbH *****

"Ezeelogin is really great software. We secure all our servers with a centralized interface. It's something we were already working on but we didn't have to do it, since it's much more profitable. The support is also very fast and responsive, they are very knowledgeable about what they do."
Richard K, KodoHost.com *****

"Ezeelogin is a great software and it is working very well for us, it saves a lot of time and the increased security is brilliant"
Toby Hewett
, Technical director, EtherClear Managed Hosting Limited, *****

"In the first weeks of using Ezeelogin we could see what a powerful system it is. Ezeelogin has saved us a great deal of time when managing servers, it is great to be able to log in to all our servers through 1 portal, instead of having to manually search for the relevant server details when a client has a problem. If you need a fast and secure way to manage multiple servers, I recommend Ezeelogin."
Dan thompson
director D9 Solutions Ltd *****

the ezeelogin user information
http://ezeelogin.com/downloads/brochure.pdf

the Ezeelogin Promise

We guarantee that ezeelogin will save you time and money every time you add a server or staff and help you make the most of your current human and hardware resources.

Go ahead and experience the change in the way multiple servers are managed. Get the best out of your existing technical support and system administrator by empowering them with this essential tool.

Check out
30 days free trial!

Ezeelogin trial @ EZEELOGIN: administration and administration of multiple servers, simplified and start saving money and time today.