This is an update to the previous CentOS installation of OSSEC 3.6 ( here https://cheesefather.com/2020/06/install-ossim-ossec-agent-centos-7/), updating it to 3.7. You need one more library installed before OSSEC can update: dnf -y install systemd-develwget https://github.com/ossec/ossec-hids/archive/3.7.0.tar.gztar xzf 3.7.0.tar.gzcd ossec-hids-3.7.0/./install.sh Or to install from scratch, just change the first command and add the other requirements: dnf -y install […]

This is surprisingly simple if you don’t want to mess around with multiple versions and just switch to 7.4. Run as root: # dnf -y module reset php# dnf -y module install php:7.4 Then in my installation a few pecl modules needed to be reinstalled (zip needs the extra step below): # pecl uninstall imagick […]

I recently needed to have a look at moving some services to a different VPS provider for redundancy so I decided to benchmark my options to compare them. The plan selected was whichever had 16GB of RAM (though Google is 15GB). The selected datacenter was always London (Azure only says UK South). The fastest storage […]

I couldn’t find proper instructions on doing this anywhere so here are mine: In your OSSIM portal go to Environment -> Assets & Groups -> Add Assets and enter the name/IP of the asset you want to add. On the agent run: yum -y install libevent-devel pcre2-devel openssl-develwget https://github.com/ossec/ossec-hids/archive/3.6.0.tar.gztar xzf 3.6.0.tar.gzcd ossec-hids-3.6.0/./install.sh …select the defaults […]

I was looking at VPS providers for batch video encoding runs. These numbers are in no way a comprehensive test, I was just surprised by some of them so I thought I’d share. My source file is a 04:17 1080p mp4 and I ran it through HandbrakeCLI to create an optimised 720p version – I […]

I’ve seen a variety of discussions about this and none of them quite worked for me, so here is my version – working on the current (0.8.9) version. $(“#summernote”).summernote({ //your options }).on(“summernote.enter”, function(we, e) { $(this).summernote(“pasteHTML”, “<br><br>”); e.preventDefault(); }); We intercept the enter key, insert 2 breaks (required for new line) and prevent it from […]

Right, installing PHP 7.1 is simple, just get the Webtatic repo and install it # rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm # yum install -y mod_php71w php71w-cli php71w-common php71w-gd php71w-mbstring php71w-mcrypt php71w-mysqlnd php71w-xml php71w-opcache If you want to use FCGId instead of mod_php install and configure FPM and mod_fcgid (make sure you remove mod_php71w from the previous command!) […]

PHPmailer does not work with NTLM authentication and insists on using mhash() which is deprecated – so you need to edit the file in /extras called ntlm_sasl_client.php Find the code that checks if mhash() is installed and replace the 3 mhashes with hash instead: || !function_exists($function = “mhash”) ) { $extensions = array( “mcrypt_encrypt” => […]

Fail2ban hasn’t been working for me, I still have people running brute force attacks on my Postfix server, so I though I’d rig up something myself. This consists of a bash script that identifies multiple failures and bans them, run on cron every 10 minutes. It checks for both smtp and pop/imap login failures. #!/bin/sh […]