Simple Postfix Hardening

Posted on 30th May 201922nd September 2019 by michaelf

ADD TO /etc/postfix/main.cf vi /etc/postfix/main.cf # Hardening SSL configuration# # enable opportunistic TLS support in the SMTP server and clientsmtp_tls_security_level = maysmtp_tls_loglevel = 1 # only offer authentication after STARTTLSsmtpd_tls_auth_only = yes # Disable SSL compressiontls_ssl_options = NO_COMPRESSION # Disable SSLv2 and SSLv3 leaving TLSv1, TLSv1.1 and TLSv1.2 enabled.smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3smtpd_tls_protocols = !SSLv2 Read more about Simple Postfix Hardening[…]

Add Cron Jobs – Linux / Suse

Posted on 6th November 2017 by michaelf

Login to your server with SSH Type crontab -l to display list of cron jobs, Type crontab -e to edit your crontab, Add 0 4 * * * /etc/init.d/mysqld restart to restart Mysql everyday at 4 AM, Add 0 5 * * * /etc/init.d/httpd restart to restart Apache everyday at 5 AM and Add 0 Read more about Add Cron Jobs – Linux / Suse[…]

Remount a read only file system – Linux

Posted on 24th June 2016 by michaelf

I had an issue that occured when a FSCK scan was forced but then failed with a memory shortage issue – To get the OS back up and running and my services i did this (i will run the fsck again but i needed a server back in production) #mount -o remount,rw \ #init 1; Read more about Remount a read only file system – Linux[…]

Using PS in Suse

Posted on 11th May 201611th May 2016 by michaelf

ps The command ps produces a list of processes. If the parameter r is added, only processes currently using computing time are shown: $ ps r PID TTY STAT TIME COMMAND 22163 pts/7 R 0:01 -zsh 3396 pts/3 R 0:03 emacs new-makedoc.txt 20027 pts/7 R 0:25 emacs xml/common/utilities.xml 20974 pts/7 R 0:01 emacs jj.xml 27454 Read more about Using PS in Suse[…]

How To Find OpenSuse / SUSE Linux Version

Posted on 10th May 201610th May 2016 by michaelf

You need to use the following commands to find out Suse / Open Suse Linux version. Open a terminal and type in $ cat /etc/SuSE-release This is now deprecated, so use the below $ cat /etc/os-release