ssh root@server 'cat /some/path/memory-day.png' | display
linux open/view image from remote
Leave a reply
Monthly Archives: March 2019
enable webp support in php GD library
If you are using directadmin and want enable webp support (Centos OS)
yum install libwebp-devel
vi /usr/local/directadmin/custombuild/custom/fpm/configure.php71
--with-webp-dir=/usr/lib64
./build php
If you have php 5.6 so use --with-vpx-dir
php -r 'var_dump(gd_info());'
array(12) {
["GD Version"]=>
string(26) "bundled (2.1.0 compatible)"
["FreeType Support"]=>
bool(true)
["FreeType Linkage"]=>
string(13) "with freetype"
["GIF Read Support"]=>
bool(true)
["GIF Create Support"]=>
bool(true)
["JPEG Support"]=>
bool(true)
["PNG Support"]=>
bool(true)
["WBMP Support"]=>
bool(true)
["XPM Support"]=>
bool(false)
["XBM Support"]=>
bool(true)
["WebP Support"]=>
bool(true)
["JIS-mapped Japanese Font Support"]=>
bool(false)
}
If you do not use fpm, so:
./build used_configs | grep configure.php
PHP (default) configuration file: /usr/local/directadmin/custombuild/configure/ap2/configure.php56
cd /usr/local/directadmin/custombuild
mkdir -p custom/ap2
cp -fp configure/ap2/configure.php56 custom/ap2/configure.php56
Unix.Trojan.DDoS_XOR-1 FOUND removal
If you find something running like /usr/bin/sywhksydor
or other strange name
You need check and remove /etc/crontab:
*/3 * * * * root /etc/cron.hourly/gcc.sh
then remove form init.d:
find /etc/ -name “*sywhksydor*” | xargs rm -fv
check if no more files created in similar time:
find /etc -mtime -3 -type f -print
Remove cron files:/etc/cron.hourly:
gcc.sh
wqcpplwrlsfby.sh
Remove /lib/libudev.so file
This should be enough, but you need keep monitor server and find the reason of the issue. In my case it was Magento:
$swvJgN7=”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
rsnapshot exclude by size
rsync_long_args- -max-size=1000m
cpanel user login list
grep -r username /usr/local/cpanel/logs/access_log | grep login
no matching cipher found: client arcfour server
Control socket connect: Connection refused
sshd -T | grep "\(ciphers\)"
ciphers [email protected],aes128-ctr,aes192-ctr,aes256-ctr,[email protected],[email protected],aes128-cbc,aes192-cbc,aes256-cbc,blowfish-cbc,cast128-cbc,3des-cbc
arcfour is disabled on Centos 7, its weak, but you can enable it to speed rsync or rnaspshopt
vi /etc/ssh/sshd_config
Ciphers [email protected],aes128-ctr,aes192-ctr,aes256-ctr,[email protected],[email protected],aes128-cbc,aes192-cbc,aes256-cbc,blowfish-cbc,cast128-cbc,3des-cbc,arcfour,arcfour128,arcfour256
strace httpd debug
strace -f $(for i in `ps aux | grep http | awk ' { print $2 }'`; do echo -n "-p $i "; done) $@ | tee /tmp/http_output
Sometimes helps to debug slow web
Policy server HTTP error: 500 Internal Error Temporary internal error: retry timeout exceeded
dovecot: auth: Error: policy(?,xx.xx.xx.xx): Policy server HTTP error: Connection lost: read(127.0.0.1:579) failed: EOF (Request queued 2.784 secs ago, 1 attempts in 2.784 secs, 2.784 in other ioloops, connected 21.780 secs ago)
This error is caused by cPhulkd of cPanel, so you can temporally disable it, while investigating.
Than check for errors:
/usr/local/cpanel/logs/cphulkd_errors.log
/usr/local/cpanel/logs/cphulkd.log
LMTP error after RCPT TO – Temporary internal error: retry timeout exceeded
LMTP error after RCPT TO:
451 4.3.0
dovecot: lmtp(5768): Error: fchown(/home/user/mail/domain.com/info/maildirsizesrv.domain.com.5768.87dedd4b02379106, group=12(mail)) failed: Operation not permitted (egid=507(user), group based on /home/user/mail/domain.com/info – see http://wiki2.dovecot.org/Errors/ChgrpNoPerm)
lmtp(6918): Error: safe_mkstemp(/home/user/mail/domain.tld/info/maildirsize) failed: Operation not permitted
Its cPanel issue, so you cha try update [email protected] mailbox quota to new: Allocated Storage Space
linux find reverse dns name servers – rDNS whois
Find IP PTR record name servers
host 8.8.8.8
8.8.8.8.in-addr.arpa domain name pointer google-public-dns-a.google.com
host -t ns 8.8.8.in-addr.arpa
8.8.8.in-addr.arpa name server ns2.google.com.
8.8.8.in-addr.arpa name server ns3.google.com.
8.8.8.in-addr.arpa name server ns1.google.com.
8.8.8.in-addr.arpa name server ns4.google.com.
phpmyadmin session_start(): open(SESSION_FILE, O_RDWR) failed: Permission denied (13)
chmod 1777 /var/lib/php/session
grep from file list
Useful to compare list of data
grep -f list.txt search_file.txt
mysql find database size
mysql -e 'SELECT table_schema 'Database Name', SUM(data_length + index_length) 'Size in Bytes', ROUND(SUM(data_length + index_length) / 1024 / 1024, 2) 'Size in MiB' FROM information_schema.tables WHERE table_schema = 'some_database';'
exim show config
exim show variables
exim -bP | grep size
mysql list all databases and size
mysql -e 'SELECT table_schema AS "Database name", SUM(data_length + index_length) / 1024 / 1024 AS "Size (MB)" FROM information_schema.TABLES GROUP BY table_schema;'