Martin Klier


run Cisco VPN client as non-root-user

Hello, if you want to run the vpnclient as non-root-user (very desirable), you probably will get privsep: unable to drop privileges: group set failed. since the cvpnd needs to be run with root privileges. Just give it the setuid root-Flag: chmod 4111 /opt/cisco-vpnclient/bin/cvpnd and have fun with yout user-built VPN tunnel. Regards, Usn […]

read more

new GNU bash forum rising

Hi, TheBonsai started a brand-new bash forum at http://forum.bash-hackers.org. Since I know him as a real skilled bash poweruser it should be fun to learn from the site. Just have a look. Yours, Usn […]

read more

Apache 2.2 – “unable to include potential exec”

Hi, recently I’ve seen ugly error pages (e.g.for 404 or 403) on my Apache 2.2 server: The supplemental text blocks have been there, but instead of header, footer and spaces “[an error occured while processing this directive]” was shown. For these accesses, the Apache error.log showed “unable to include potential exec ‘include/top.html’ in parsed file […]

read more

Prepare IPtables for the Cisco VPN Client

Hi out there, installing the Cisco VPN Client 4.8.00 should be no problem (just run “vpninstall” with kernel headers installed). But running it from the notebook in an insecure environment needs a host firewall on the mobile device. I love setting the default policies of a chain to “DROP”! But the VPN Client communicates via […]

read more

How to create a self-signed OpenSSL certificate

Hi folx, if you want to create a self-signed certificate with OpenSSL (useful for encryption-only purposes, e.g. your own mailserver) just do the following: openssl req -x509 -nodes -days 365 -subj ‘/C=DE/ST=Bayern/L=Munich/CN=www.example.com’ -newkey rsa:2048 -keyout key4cert.pem -out cert.pem It means: “-nodes” makes the key unencrypted “-days” makes it valid for n days “-subj” provides your […]

read more

Lost, deleted or corrupted a voting disk (quorum) in Oracle RAC 10.2 ?

Hi Folx, whenever you lost, deleted or corrupted a quorum aka voting disk in Oracle Real Application Cluster (RAC) 10.2, you have three options: 1) Reinstall your Clusterware, see Metalink Note 279793.1 2) Replay a backup taken with “dd if=/dev/votingdisk of=/backup/votingfile bs=4k” 3) Have a look at Metalink Note 399482.1 and the RAC Administration and […]

read more

How to move or add a controlfile when ASM is involved

Hi folx, sometimes, you may want to add or move a controlfile. On OS file system, this is no problem. Just “shutdown immediate”, change the CONTROL_FILES init parameter, copy or move the controlfile, and startup again. With ASM involved this is not possible, since the ASM does not allow direct move or copy commands. You […]

read more

Grid Control Agent install without Metalink Access

Hi folx, if you ever need to install Grid Control Agent 10g, there will be no option to avoid configuration of your Metalink Access Data. But you may want to avoid this. The trick is simple: Just decline the License Agreement in the middle of the runInstaller process. The function of agent will be installed, […]

read more