DenisZ's questions -server

DenisZ

Asked: 2021-12-01 08:34:11 +0800 CST

How to disable crontab list entries in cron log?

0

I have a script on server that runs every few min, and among other things checks if some malicious crontab entries have been injected. In order to do this I check crontabs of all users, which works all good, but my /var/log/cron file gets filled up with entries of the all crontab listings, so everytime I run the script it would log all crontab lists like this:

Nov 30 17:16:02 myserv crontab[348610]: (root) LIST (root)
Nov 30 17:16:02 myserv crontab[348611]: (root) LIST (bin)
Nov 30 17:16:02 myserv crontab[348612]: (root) LIST (daemon)
Nov 30 17:16:02 myserv crontab[348613]: (root) LIST (adm)
Nov 30 17:16:02 myserv crontab[348614]: (root) LIST (lp)
Nov 30 17:16:02 myserv crontab[348615]: (root) LIST (sync)
Nov 30 17:16:02 myserv crontab[348616]: (root) LIST (shutdown)
Nov 30 17:16:02 myserv crontab[348617]: (root) LIST (halt)
Nov 30 17:16:02 myserv crontab[348618]: (root) LIST (mail)
Nov 30 17:16:02 myserv crontab[348619]: (root) LIST (operator)
Nov 30 17:16:02 myserv crontab[348620]: (root) LIST (games)
Nov 30 17:16:02 myserv crontab[348621]: (root) LIST (ftp)
Nov 30 17:16:02 myserv crontab[348622]: (root) LIST (smb)
Nov 30 17:16:02 myserv crontab[348623]: (root) LIST (named)
Nov 30 17:16:02 myserv crontab[348624]: (root) LIST (postgres)
Nov 30 17:16:02 myserv crontab[348625]: (root) LIST (mysql)
.....

so it fills up log file unnecessarily. I played with different selectors but it seems when choosing cron.info it shows all info, whereas cron.notice it doesn't show when crontab has been edited nor executed, which again I like in my logs.

# Log cron stuff
cron.*                                                  /var/log/cron

cron.* seems to be the same as cron.info Any Ideas how to exclude "LIST" entries? so /var/log/cron would look like:

Nov 30 17:24:02 mysrv CROND[349831]: (root) CMDEND (/etc/cron.b/check nout >/dev/null 2>&1)
Nov 30 17:28:01 mysrv CROND[350781]: (root) CMD (/etc/cron.b/check nout >/dev/null 2>&1)

DenisZ

Asked: 2021-11-30 12:45:20 +0800 CST

How to utilize second gateway on the same network

0

I couldn't find solution to add 2nd gateway from main router.
I have a C class local network 192.168.5.0/24 with Linux server A at 192.168.5.1 acting as default gateway, dhcp, smb... server. I would like to route some clients/servers (ie. client with ip 192.168.5.30) via another gateway B in the same subnet (192.168.5.5).
Is it possible to solve this via ip route or ip rule on the Linux server (192.168.5.1)? I presume it's possible to make a DHCP reservation with different default gateway on the server side, so client gets different default gateway, but I would like to avoid this if possible. I was thinking another solution could be creating tunnel between gateways A and B so that there would be another interface on Server A, and I could route through clients that I prefer.
I'm looking for a solution that I can modify on the fly on serverside when Gateway A is overloaded.

--------------------
|  192.168.5.0/24  |     Server A
|  clients         \____192.168.5.1___  ===> ISP1 => Internet 
|  ....            /  
|  192.168.5.30    |  Gateway B
|  ...            192.168.5.5 =====> ISP2 ==> Internet
--------------------

DenisZ

Asked: 2021-06-01 03:37:20 +0800 CST

Howto start and detach screen with user environment on startup?

0

I want to start screen and put a couple of programs running inside on startup. I've seen many similar posts but none answered my question. so I put in rc.local following 2 lines:

  screen -dmS scr bash -c 'ytop; exec bash'
  screen -S scr -X screen 1 bash -c 'nvtop; exec bash'

which works fine, but when I enter this screen, once logged in to the server, and want to create new screen, it doesn't have environment variables in it. How can I start it in the way that would have all root's envars?
new window looks like this:

sh-5.1#

$PATH in window is
/usr/bin:/bin

Yet in the rc.local created windows $PATH (/usr/bin:/bin) is the same, but the prompt is normal, so it looks that it reads /etc/profile
Window initialized by rc.local has normal prompt:

[root@mysrv ~]#

PATH is also a bit more than fresh window, but not same as if I start screen manually from the terminal as root

echo $PATH
usr/lib64/qt-3.3/bin:/usr/bin:/bin

When I start screen by myself it's normal prompt.

[root@mysrv ~]#

and

echo $PATH
/usr/lib64/qt-3.3/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin

Interestingly if I exit ytop it shows me proper prompt. Only when creating new screen somehow looses this envars.
I tried also running:

su - root -c `screen -dmS scr bash -c 'ytop; exec bash'`

but I get the same result.
Regards

DenisZ

Asked: 2021-05-31 05:08:57 +0800 CST

Howto create custom service in systemd?

0

Running Fedora 33/34 on multiple machines. I successfully activated rc-local.service which works fine. I have couple of other scripts that I need to run in /etc/init.d/ and I created similar service files as rc-local.service, but I can't enable it, whereas rc-local.service can be enabled/disabled/stared/stopped without any troubles.
I know, that I have an option (which I currently use) to call those scripts from rc.local file, but would rather called them separately as service. So my service file looks like this:
#cat net-scr1.service

[Unit]
Description=Network check service
ConditionFileIsExecutable=/etc/init.d/net-scr1
After=network.target 

[Service]
Type=forking
ExecStart=/etc/init.d/net-scr1 start
TimeoutSec=3
ExecStop=/etc/init.d/net-scr1 stop
RemainAfterExit=yes
GuessMainPID=no
StandardOutput=tty

[Install]
 WantedBy=multi-user.target

systemctl enable net-scr1

Synchronizing state of net-scr1.service with SysV service script with /usr/lib/systemd/systemd-sysv-install.
Executing: /usr/lib/systemd/systemd-sysv-install enable net-scr1
service net-scr1 does not support chkconfig

I moved the script out of init.d thinking maybe systemd assumes it's an old sysv script, but no change. What should I have in my script to work properly?
My script looks like:

#!/bin/bash
[email protected]
[email protected]
dv0=p1p1
ipdv0=`ifconfig $dv0 | grep "inet " | awk '{print $2}'`
if [ "$1" = "stop" ]; then
  cat $msg | mail $EMFR -s "$srv-shut_down-ip-$ipdv0" $eml
fi
if [ "$1" = "start" ]; then
  cat $msg | mail $EMFR -s "$srv-booted_up-ip-$ipdv0" $eml  

fi

Should I include Functions from the old sysv system or something else? Thanks

DenisZ

Asked: 2021-05-25 22:32:27 +0800 CST

How to clone PMBR disk with bad sectors?

0

I'm trying to clone 1TB disk with PMBR partition and bad sectors. Which has working Windows partitions on it, and is bootable via MBR.
blkid doesn't recognize partitions

/dev/sdc: PTTYPE="PMBR"

gdisk /dev/sdc

    GPT fdisk (gdisk) version 1.0.7

Caution: invalid main GPT header, but valid backup; regenerating main header
from backup!

Caution! After loading partitions, the CRC doesn't check out!
Warning: Invalid CRC on main header data; loaded backup partition table.
Warning! Main and backup partition tables differ! Use the 'c' and 'e' options
on the recovery & transformation menu to examine the two tables.

Warning! One or more CRCs don't match. You should repair the disk!
Main header: ERROR
Backup header: OK
Main partition table: ERROR
Backup partition table: ERROR

Partition table scan:
  MBR: hybrid
  BSD: not present
  APM: not present
  GPT: damaged

Found valid MBR and corrupt GPT. Which do you want to use? (Using the
GPT MAY permit recovery of GPT data.)
 1 - MBR
 2 - GPT
 3 - Create blank GPT

Your answer:

I tried in gdisk with (2) (r) (b) (w) but result didn't want to write

 Warning! Main partition table overlaps the first partition by 34 blocks!
You will need to delete this partition or resize it in another utility.

Warning! Secondary partition table overlaps the last partition by
17599083851618035976 blocks!
You will need to delete this partition or resize it in another utility.

Problem: partitions 121 and 119 overlap:
  Partition 121: 925735787758310161 to 13474437941687892909
  Partition 119: 11147454187938441805 to 15638604846186930334

Problem: partitions 121 and 120 overlap:
  Partition 121: 925735787758310161 to 13474437941687892909
  Partition 120: 3391649715396322562 to 7297187905800799496

Problem: partitions 122 and 120 overlap:
  Partition 122: 3391649715396322562 to 7297187905800799496
  Partition 120: 3391649715396322562 to 7297187905800799496

Problem: partitions 122 and 121 overlap:
  Partition 122: 3391649715396322562 to 7297187905800799496
  Partition 121: 925735787758310161 to 13474437941687892909

Problem: partitions 123 and 119 overlap:
  Partition 123: 925735787758310161 to 13474437941687892909
  Partition 119: 11147454187938441805 to 15638604846186930334

Problem: partitions 123 and 120 overlap:
  Partition 123: 925735787758310161 to 13474437941687892909
  Partition 120: 3391649715396322562 to 7297187905800799496

Problem: partitions 123 and 121 overlap:
  Partition 123: 925735787758310161 to 13474437941687892909
  Partition 121: 925735787758310161 to 13474437941687892909

Problem: partitions 123 and 122 overlap:
  Partition 123: 925735787758310161 to 13474437941687892909
  Partition 122: 3391649715396322562 to 7297187905800799496

Problem: partitions 124 and 119 overlap:
  Partition 124: 10336404087008029236 to 15113227714779688721
  Partition 119: 11147454187938441805 to 15638604846186930334

Problem: partitions 124 and 121 overlap:
  Partition 124: 10336404087008029236 to 15113227714779688721
  Partition 121: 925735787758310161 to 13474437941687892909

Problem: partitions 124 and 123 overlap:
  Partition 124: 10336404087008029236 to 15113227714779688721
  Partition 123: 925735787758310161 to 13474437941687892909
Aborting write operation!
Aborting write of new partition table.

clonezilla doesn't recognize partitions I tried gparted and Rescue system partitions but it was scanning all night and nothing.
using: cfdisk /dev/sdc works fine

                                                                              Disk: /dev/sdc
                                                        Size: 931.51 GiB, 1000204886016 bytes, 1953525168 sectors
                                                                    Label: dos, identifier: 0x9f9fd106

    Device                 Boot                              Start                   End               Sectors              Size            Id Type
>>  /dev/sdc1                                                    1                206846                206846              101M            ee GPT                        
    /dev/sdc2              *                                206848             617201663             616994816            294.2G             7 HPFS/NTFS/exFAT
    /dev/sdc3                                            617201664            1916342271            1299140608            619.5G             7 HPFS/NTFS/exFAT
    /dev/sdc4                                           1916342272            1953316862              36974591             17.6G            c0 unknown
    Free space                                          1953316864            1953525167                208304            101.7M

How can I mount partitions under fedora or PartedMagic live? Thanks

How to disable crontab list entries in cron log?

How to utilize second gateway on the same network

Howto start and detach screen with user environment on startup?

Howto create custom service in systemd?

How to clone PMBR disk with bad sectors?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?