Author:
erics, Posted on Thursday, October 7th, 2021 at 10:36:10am
On Sept 30th 2021 Let’s Encrypts previous root certificate DST Root CA X3 (and it’s R3 intermediate) will expire. It has been replaced by their ISRG Root X1 certificate (and replacement R3 intermediate).
The version of the R3 intermediate signing certificate which chains to DST Root CA X3 expired September 29 19:21:40 2021 GMT.
The DST Root CA X3 root certificate expired September 30 14:01:15 2021 GMT.
|
|
yum update ca-certificates |
Then restart your web server (i.e. Apache and php-fpm) as appropriate.
Categories: Technology Tags: | 
No comments
Author:
erics, Posted on Wednesday, September 22nd, 2021 at 11:34:04am
vi wp-config.php
Add at the bottom:
|
|
define(‘WP_DEBUG’, true); define(‘WP_DEBUG_LOG’, true); define(‘WP_DEBUG_DISPLAY’, true); ini_set(‘display_errors’, 1); ini_set(‘display_startup_errors’, 1); error_reporting(E_ALL); |
You can also use this URL in later versions:
/wp-login.php?action=entered_recovery_mode
Categories: Technology Tags: | No comments
Author:
erics, Posted on Thursday, September 9th, 2021 at 7:57:25pm
The aws s3 sync command is slow and painful!
I needed a more efficient way to sync to large buckets (prod to dev).
Finally settled on RClone: https://rclone.org/docs/
|
|
cd {extracted zip dir} ./rclone config cat ~/.config/rclone/rclone.conf |
During rclone config I called remote “s3” ;-}
|
|
./rclone sync -v --progress --fast-list --checksum s3:wyzaerd-demo-prod s3:wyzaerd-demo-dev |
Categories: How-To's, Technology Tags: AWS, Bucket, howto, rclone, rsync, S3, s3s3, s3s3mirror, Sync, tips | No comments
Author:
erics, Posted on Wednesday, September 1st, 2021 at 3:50:30pm
There are three commands in Linux to easily get a reverse DNS lookup with:
dig, host and nslookup.
Here are examples of each:
shell> dig -x 3.214.2.238 +short
shell> dig -x 3.214.2.238
|
|
; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.86.amzn1 <<>> -x 3.214.2.238 ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 19300 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;238.2.214.3.in-addr.arpa. IN PTR ;; ANSWER SECTION: 238.2.214.3.in-addr.arpa. 300 IN PTR ns3.wyzaerd.info. ;; Query time: 8 msec ;; SERVER: 10.0.0.2#53(10.0.0.2) ;; WHEN: Wed Sep 1 19:43:56 2021 ;; MSG SIZE rcvd: 72 |
shell> host 3.214.2.238
|
|
238.2.214.3.in-addr.arpa domain name pointer ns3.wyzaerd.info. |
shell> nslookup 3.214.2.238
|
|
Server: 10.0.0.2 Address: 10.0.0.2#53 Non-authoritative answer: 238.2.214.3.in-addr.arpa name = ns3.wyzaerd.info. |
Categories: How-To's, Technology Tags: cli, Command, Command line, dig, dig -x, DNS, Host, howto, lookup, nslookup, Reverse, Reverse DNS, tips | No comments
Author:
erics, Posted on Thursday, August 12th, 2021 at 10:27:25am
My /etc/rc.local was not loading at boot time.
rc.local is a symlink to /etc/rc.d/rc.local
lrwxrwxrwx 1 root root 13 Jun 22 2020 rc.local -> rc.d/rc.local
I had to execute the following:
|
|
chmod a+x /etc/rc.d/rc.local |
Categories: How-To's, Technology Tags: boot, howto, Init, rc.local, Start, tips | No comments
Author:
erics, Posted on Thursday, August 12th, 2021 at 10:25:05am
vi /etc/postfix/main.cf
|
|
#inet_protocols = all inet_protocols = ipv4 |
service postfix restart
Categories: How-To's, Technology Tags: Email, Error, Gmail, howto, IPv4, IPv6, PostFix, Protocol, tips | No comments
Author:
erics, Posted on Wednesday, August 4th, 2021 at 2:02:08pm
I wanted to use the same SSH keys for multiple AWS regions. As it turns out, AWS simply stores the public key when you download the private key as a .pem file.
The solution is to simply generate the public key locally from the existing .pem, then import the public key using the same name in a different region.
Step 1: Generate public key from existing private key in .pem format:
|
|
ssh-keygen -y -f existing_private_key.pem > $HOME/.ssh/id_rsa_aws.pub |
Step 2: Import the generated public key into AWS:
Login to the AWS Console and navigate to EC2 -> Key Pairs, then choose Actions -> Import Key Pair in the upper-right corner of the page:
Finally, enter the name for the key pair, and either select the file or paste in the generated public key, then click “Import key pair” at the bottom right:
Reference: https://aws.amazon.com/premiumsupport/knowledge-center/ec2-ssh-key-pair-regions/
Categories: How-To's, Technology Tags: Amaon, AWS, Copy Key Pair, howto, key-pair, KeyPair, Linux, ssh-keygen, tips | No comments
Author:
erics, Posted on Thursday, July 29th, 2021 at 4:41:34pm
SUMMARY: Needed to create an AWS IAM Policy to allow a user access to create and delete EBS snapshots. This script also needed to be able to list volumes:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 |
{ "Version": "2012-10-17", "Statement": [ { "Sid": "VisualEditor0", "Effect": "Allow", "Action": [ "ec2:DeleteSnapshot", "ec2:ModifySnapshotAttribute", "ec2:CreateSnapshots", "ec2:ResetSnapshotAttribute", "ec2:CreateSnapshot" ], "Resource": [ "arn:aws:ec2:*:ACCOUNT_ID_HERE:volume/*", "arn:aws:ec2:*:ACCOUNT_ID_HERE:snapshot/*", "arn:aws:ec2:*:ACCOUNT_ID_HERE:instance/*" ] }, { "Sid": "VisualEditor1", "Effect": "Allow", "Action": [ "ec2:DescribeSnapshotAttribute", "ec2:DescribeVolumes", "ec2:DescribeSnapshots" ], "Resource": "*" } ] } |
Categories: How-To's, Technology Tags: Amazon, AWS, Create, Delete, howto, IAM, JSON, Policy, Snapshot, tips, User, volume | No comments
Author:
erics, Posted on Thursday, July 29th, 2021 at 1:55:51pm
I was getting error “You must specify a region” when running any aws CLI command. The fix:
Using the aws command:
|
|
aws configure set region us-east-1 --profile demo |
which will automatically add the following to the file ~/.aws/config:
|
|
[profile demo] region = us-east-1 |
You many simply edit the ~/.aws/config file yourself and append the same thing:
|
|
vi ~/.aws/config [profile demo] region = us-east-1 |
Categories: How-To's, Technology Tags: AWS, aws cli, aws command, aws configure, aws set, cli, Command, Config, configure, Error, Region, You must specify a region | No comments
Author:
erics, Posted on Wednesday, July 28th, 2021 at 12:34:08pm
SUMMARY: Needed to create an AWS IAM Policy to allow a user access to two buckets and their associated CDN’s in WordPress W3 Total Cache
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 |
{ "Version": "2012-10-17", "Statement": [ { "Sid": "VisualEditor0", "Effect": "Allow", "Action": "s3:ListBucket", "Resource": "arn:aws:s3:::wyzaerd-demo-prod" }, { "Sid": "VisualEditor1", "Effect": "Allow", "Action": [ "s3:PutObject", "s3:GetObject", "s3:DeleteObject", "s3:PutObjectAcl" ], "Resource": "arn:aws:s3:::wyzaerd-demo-prod/*" }, { "Sid": "VisualEditor2", "Effect": "Allow", "Action": "s3:ListBucket", "Resource": "arn:aws:s3:::wyzaerd-demo-dev" }, { "Sid": "VisualEditor3", "Effect": "Allow", "Action": [ "s3:PutObject", "s3:GetObject", "s3:DeleteObject", "s3:PutObjectAcl" ], "Resource": "arn:aws:s3:::wyzaerd-demo-dev/*" }, { "Sid": "VisualEditor4", "Effect": "Allow", "Action": [ "s3:ListAllMyBuckets", "cloudfront:ListDistributions" ], "Resource": "*" } ] } |
Categories: How-To's, Technology Tags: Amazon, AWS, Bucket, CDN, CloudFront, howto, IAM, JSON, Policy, S3, tips, User, W3 Total Cache | No comments
