Step By Step Ubuntu 10.04 (Lucid Lynx) LAMP Server Setup :-

In around 15 minutes, the time it takes to install Ubuntu Server Edition, you can have a LAMP (Linux, Apache, MySQL and PHP) server up and ready to go. This feature, exclusive to Ubuntu Server Edition, is available at the time of installation.The LAMP option means you don’t have to install and integrate each of the four separate LAMP components, a process which can take hours and requires someone who is skilled in the installation and configuration of the individual applications. Instead, you get increased security, reduced time-to-install, and reduced risk of misconfiguration, all of which results in a lower cost of ownership.New pre-configured installation options have been added to the postgreSQL Database options join existing Mail Server, Open SSH Server,Samba File Server, Print Server, Tomcat Java Server,Virtual Machine Host,Manual Package selection,LAMP and DNS options for pre-configured installations, easing the deployment of common server configurations.

Ubuntu LAMP server Install the following Versions

Ubuntu 10.04 (Lucid)

Apache 2.2.14

Mysql 5.1.41

PHP 5.3.2

Read more :- http://www.ubuntugeek.com/step-by-step-ubuntu-10-04-lucid-lynx-lamp-server-setup.html

====================================================================

Enjoy Linux !!!

Hi All,

Today we had the pleasure of playing a little with the new Ubuntu installer, present in the latest daily build of the upcoming Maverick Meerkat (Ubuntu 10.10) operating system, due for release in October 10th, 2010. The installer is completely revamped and accessible by Linux beginners.

A month ago we’ve presented the new installer of the upcoming Ubuntu 10.10 (Maverick Meerkat) release, in an interview with Evan Dandrea, Software Engineer on the Foundations Team at Canonical.

The new installer offers users the possibility of downloading software updates or/and installing proprietary drivers for wireless cards, support for MP3 files, Adobe Flash Player, Java and DVD playback support.

Without any further ado, we’ll let you take a look at the first screenshots of the new Ubuntu 10.10 installer!

Read More :- http://news.softpedia.com/news/The-New-Ubuntu-10-10-Installer-Is-Live-152167.shtml

=====================================================

Enjoy Linux !!!

Hi All,

Recently by mistake I deleted some useful data. After that I started searching any tool to retrieve my all deleted files. I search various document and tools if any of them recover my files and data. Finally, I find 5 best recovery tool for linux.

They all are OpenSource softwares and licensed under the terms of the GNU Public Licence(GPL).But I prefered “TestDisk & PhotoRec” most,becasue TestDisk can recover lost partitions and also can make non-booting disks bootable again.PhotoRec can recover lost files including video, documents and archives from Hard Disks and CDRom and lost pictures from digital camera memory.PhotoRec can be used on existing partitions, or can be used to recover files on deleted partitions without having to recover the underlying partitions.Both PhotoRec and TestDisk can be run on Linux,DOS, Windows,FreeBSD, NetBSD, OpenBSD, Sun Solaris, and Mac OS X, and, their developers claim, can be compiled and run on most Unix systems.

Data recovery is the process of retrieving data from corrupted or damaged storage media when it cannot be accessed. The storage media in question will often be a hard disk, but it can also be removable media such as CDs, DVDs, Blu-rays, and storage tapes. There are many different reasons why a system administrator may need to use data recovery tools.

At boot up, mainstream Linux distributions perform routine scans to identify and fix any inconsistencies in the file system. A damaged file system might be caused by the computer not shutting down in an orderly fashion, which can occur say in the event of a power cut. However, such routine scans will not detect hardware failure which might exist for a long period without being noticeable to users. Accesses to bad sectors on the media can make the situation worse, and with further usage as well as the passage of time, the media can eventually become unreadable.

A.) Mondo Rescue :- Tool for configuring and maintaining network machines
B.) TestDisk :- Partition scanner and disk recovery tool
C.) Safecopy :- Copy utility ignoring errors
D.) PhotoRec :- Digital Picture and File Recovery
E.) Ddrescue :- GNU data recovery tool

===========================================

To Download :-

1. TestDisk :-  http://www.cgsecurity.org/wiki/TestDisk_Download
2. Safecopy  :- http://www.safecopybackup.com/
3. PhotoRec  :- http://www.cgsecurity.org/wiki/TestDisk_Download
4. Ddrescue  :- ftp://ftp.gnu.org/gnu/ddrescue/ddrescue-1.12.tar.bz2
5. MondoRescue  :- http://www.mondorescue.org/downloads.shtml

===========================================

Enjoy Linux !!!

How to prevent from DDoS Attacks:-

Implement security features in your server like:

1) DDOS protection using CSF through “SYNFLOOD”.
2) Install apache modules like mod_dosevasive and mod_security in your server.
3) The best,free & open sources solution to protect from DDOs :- http://deflate.medialayer.com/
4) Configure APF and IPTABLES to reduce the DDOS.

Description here :-

1.) DDOS protection using CSF through “SYNFLOOD”. & Connection tracking :- Please modify these option through CSF
:-
# Enable SYN Flood Protection. This option configures iptables to offer some
# protection from tcp SYN packet DOS attempts. You should set the RATE so that
# false-positives are kept to a minimum otherwise visitors may see connection
# issues (check /var/log/messages for *SYNFLOOD Blocked*). See the iptables
# man page for the correct –limit rate syntax
SYNFLOOD = Default: 0
SYNFLOOD_RATE = 100/s
SYNFLOOD_BURST = 150

# Connection Tracking. This option enables tracking of all connections from IP
# addresses to the server. If the total number of connections is greater than
# this value then the offending IP address is blocked. This can be used to help
# prevent some types of DOS attack.
#
# Care should be taken with this option. It’s entirely possible that you will
# see false-positives. Some protocols can be connection hungry, e.g. FTP, IMAPD
# and HTTP so it could be quite easy to trigger, especially with a lot of
# closed connections in TIME_WAIT. However, for a server that is prone to DOS
# attacks this may be very useful. A reasonable setting for this option might
# be arround 300.
#
# To disable this feature, set this to 0
CT_LIMIT = Default: 50 (means 50 connections per ip address)
# Connection Tracking interval. Set this to the the number of seconds between
# connection tracking scans
CT_INTERVAL = Default: 30
# Send an email alert if an IP address is blocked due to connection tracking
CT_EMAIL_ALERT = Default: 1
# If you want to make IP blocks permanent then set this to 1, otherwise blocks
# will be temporary and will be cleared after CT_BLOCK_TIME seconds
CT_PERMANENT = Default: 0
# If you opt for temporary IP blocks for CT, then the following is the interval
# in seconds that the IP will remained blocked for (e.g. 1800 = 30 mins)
CT_BLOCK_TIME = Default: 1800
# If you don’t want to count the TIME_WAIT state against the connection count
# then set the following to “1″
CT_SKIP_TIME_WAIT = Default: 0
# If you only want to count specific states (e.g. SYN_RECV) then add the states
# to the following as a comma separated list. E.g. “SYN_RECV,TIME_WAIT”
#
# Leave this option empty to count all states against CT_LIMIT
CT_STATES =
# If you only want to count specific ports (e.g. 80,443) then add the ports
# to the following as a comma separated list. E.g. “80,443″
#
# Leave this option empty to count all ports against CT_LIMIT
CT_PORTS = 80,443

======================================================
2) Install apache modules like mod_dosevasive and mod_security in your server= :-

mod_evasive and mod_security modules are used to secure Apache Web Server from DDoS and brute force attacks by implementing web application firewall.

The mod_evasive authoring site (zdziarski.com) states that mod_evasive is an evasive maneuvers module for Apache to provide evasive action in the event of an HTTP DoS or DDoS attack or brute force attack. It is also designed to be a detection and network management tool, and can be easily configured to talk to ipchains, firewalls, routers, and etcetera..

*Note: mod_evasive module has been known to cause problems with frontpage server extensions. If you use frontpage server extension, you should thoroughly test your mod_evasive installation before deploying a production server.

[root@map007~]# cd  /usr/local

[root@map007 local]#  wget http://www.zdziarski.com/blog/wp-content/uploads/2010/02/mod_evasive_1.10.1.tar.gz
[root@map007 local]# tar -xvzf mod_evasive_1.10.1.tar.gz
[root@map007 local]#  cd mod_evasive
[root@map007 mod_evasive]#  /usr/local/apache/bin/apxs -cia mod_evasive.c
[root@map007 mod_evasive]# mv mod_evasive.loT mod_evasive.lo
[root@map007 mod_evasive]# /usr/local/apache/bin/apxs -cia mod_evasive.c
[root@map007 mod_evasive]#  httpd -M|grep evasive

Edit httpd.conf with the following details
[root@map007 mod_evasive]# vi /etc/httpd/conf/httpd.conf

<IfModule mod_evasive20.c>
DOSHashTableSize   3097
DOSPageCount   2
DOSSiteCount   50
DOSPageInterval   1
DOSSiteInterval   1
DOSBlockingPeriod   600
</IfModule>

[root@map007 mod_evasive]# cd /usr/local/apache/modules/
Then download mod_evasive20.so through web and place it in modules directory and change the permission with 755.

[root@map007 ~]#  /etc/init.d/httpd restart

======================================================

3) The best,free & open sources solution to protect from DDOs :-

http://deflate.medialayer.com/ :-

(D)DoS Deflate is a lightweight bash shell script designed to assist in the process of blocking a denial of service attack. It utilizes the command below to create a list of IP addresses connected to the server, along with their total number of connections. It is one of the simplest and easiest to install solutions at the software level.

netstat -ntu | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n

IP addresses with over a pre-configured number of connections are automatically blocked in the server’s firewall, which can be direct iptables or Advanced Policy Firewall (APF). (We highly recommend that you use APF on your server in general, but deflate will work without it.)
Notable Features :-

* It is possible to whitelist IP addresses, via /usr/local/ddos/ignore.ip.list.
* Simple configuration file: /usr/local/ddos/ddos.conf
* IP addresses are automatically unblocked after a preconfigured time limit (default: 600 seconds)
* The script can run at a chosen frequency via the configuration file (default: 1 minute)
* You can receive email alerts when IP addresses are blocked.

Installation :-

[root@map007 ~]# wget http://www.inetbase.com/scripts/ddos/install.sh
[root@map007 ~]# chmod 0700 install.sh
[root@map007 ~]# ./install.sh

Uninstallation :-

[root@map007 ~]# wget http://www.inetbase.com/scripts/ddos/uninstall.ddos
[root@map007 ~]# chmod 0700 uninstall.ddos
[root@map007 ~]# ./uninstall.ddos

4) Configure APF and IPTABLES to reduce the DDOS.

======================================================

Enjoy Linux !!!