Thursday, July 5, 2007

setup a CA to self-sign the SSL cert.

1. download a Openssl For windows binaries and source package
http://sourceforge.net/project/showfiles.php?group_id=23617&release_id=188569

2. unzip both of the OpenSSL packages to temporary folders. From the binaries package "bin" folder, copy the files "openssl.exe" and the two DLLs into the source package's "apps" folder.

In the "apps" folder is a file called CA.pl. Open this perl script in a text editor and change the line

$SSLEAY_CONFIG=$ENV{"SSLEAY_CONFIG"};
to
$SSLEAY_CONFIG="-config openssl.cnf";

3. Copy the cert request file to into this "apps" directory, and rename it to "newreq.pem".

Next, open a command prompt window in the apps directory, and run the following commands:

* perl CA.pl -newca
* perl CA.pl -signreq



$ perl CA.pl -newca

sg22785@maximus-a7juw9u ~/openssl-0.9.7c-src/src/openssl-0.9.7c/apps
$ perl CA.pl -signreq
Using configuration from openssl.cnf
Check that the request matches the signature
Signature ok
Certificate Details:
Serial Number: 1 (0x1)
Validity
Not Before: Jul 5 20:24:25 2007 GMT
Not After : Jul 4 20:24:25 2008 GMT
Subject:
countryName = US
stateOrProvinceName = California
localityName = Los Angeles
organizationName = MAXIMUS
organizationalUnitName = Education
commonName = lasttmp1.schoolmax.net
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
OpenSSL Generated Certificate
X509v3 Subject Key Identifier:
D2:AD:D2:27:2A:52:BD:67:1A:BF:4A:65:8E:E8:52:6E:D6:E7:B9:30
X509v3 Authority Key Identifier:
DirName:/C=AU/ST=QLD/CN=SSLeay/rsa test CA
serial:04

Certificate is to be certified until Jul 4 20:24:25 2008 GMT (365 days)
Sign the certificate? [y/n]:y


1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
Signed certificate is in newcert.pem

Thursday, June 28, 2007

ORA-01555 error.

Under the help from Wenson, the following ora-01555 has been fixed.


Errors in file D:\ora81\RDBMS\TRACE\ORA16184.TRC:
ORA-00604: error occurred at recursive SQL level 1
ORA-01555: snapshot too old: rollback segment number with name "" too small

Fix:

shutdown immeidate
startup mount
recover database
alter database open
or alter database open resetlogs

Monday, June 25, 2007

The Thinking from Wii

An article on this month's issue of Fortune arouses my interests about Wii. The success story about Wii is really impressive - battling on the indifference of people who have no interest in video games. Wii focuses on delivering experiences with lower price rather than other gaming industry giants do, such as SNE and MSFT. Good game experience is not necessary to be expensive!

The first time I knew Wii was from a friend, Diedian's home. The little box is really something that is very attractive. The way that a player is playing the game and the sensitivity to the player's body movements are more accurate than I thought. I heard that Wii was also hard to get.

The target of the Wii's marketing segment is bald and I am not sure how long the successful trend can last. Since the target consumers are not game-sensitive, and this segment usually is composed of low value users of traditional electronic games. I am interested in how the product information can be spread to those people, and how much the target consumer are willing to pay for this box. Currently the list price is less than 300 US.

The "little" company's revenue is unbelievable-- 8.36 B with only 3,400 employees, almost 8 times of that of the company I work at, and just a little less than Mattel ( Barbie doll company) which has been in Market for more than 50 years, 2.5M per employee whereas 1M per employee at Google. I checked their website (http://www.nintendo.com) and wanted to check out how to invest this company. But they seem to be only traded in Japan. In US, we have to purchase ADR ( America Depository Receipt) from some banks. Never done any ADR trade before. Might investigate it more later on.

RHEL AS4 NFS client can not mount volum during the boot time.

Symptom:

Got the following error in the /var/log/messages file during the boot. But after the boot manually mount is OK.

Jun 25 14:58:03 laappt6 mount: mount: mount to NFS server 'laappt3' failed:
Jun 25 14:58:03 laappt6 mount: System Error: No route to host.

Cause:

The NFS mount script runs during the network initialize phase.

Solution :


Found two solutions from web.

1. append "/bin/mount -a " in /etc/rc.d/rc.local

2. insert the following line in to /etc/rc.d/init.d/netfs file.


before :

[ ! -f /var/lock/subsys/portmap ] && service portmap start
action $"Mounting NFS filesystems: " mount -a -t nfs,nfs4

after :
[ ! -f /var/lock/subsys/portmap ] && service portmap start
#added by David W.
action $"Sleeping for 30 secs:" sleep 30
#end of added by David W.
action $"Mounting NFS filesystems: " mount -a -t nfs,nfs4


Reference:

1. CrazyToon,
http://crazytoon.com/2007/05/11/centos-and-redhat-problem-nfs-mount-at-boot-up-fails-with-error-system-error-no-route-to-host/

Friday, June 22, 2007

Use Microsfot iSCSI Initiator to access Openfiler

The steps are straightforward .

1. download microsoft iscsi initiator and install it.
2. configure the target.
3. click target tab and make sure the disk is connected , otherwise, click logon.
4. use disk management on windows to format to assign a drive letter.

Thursday, June 21, 2007

How to install kernel source on RHEL4

http://kbase.redhat.com/faq/FAQ_79_8848.shtm

up2date --get-source kernel

Fetching all package list for channel: rhel-i386-as-4...
########################################

Fetching package list for channel: rhel-i386-as-4...
########################################

kernel-2.6.9-55.EL.src.rpm...

[root@RH4 up2date]# rpm -ivh kernel-2.6.9-55.EL.src.rpm
error: cannot create %sourcedir /usr/src/redhat/SOURCES
[root@RH4 up2date]# mkdir -p /usr/src/redhat/SOURCES
[root@RH4 up2date]#
[root@RH4 up2date]# rpm -ivh kernel-2.6.9-55.EL.src.rpm
1:kernel warning: user brewbuilder does not exist - using root
warning: group brewbuilder does not exist - using root

how to Mount iSCSI snapshot from openfiler

after create the snapshot from the openfiler console. Check the /dev/vol1/ dir. found the snapshot device file name is :

of.snapshot.crs.snap

edit /etc/iedt.conf file to share the volume.

Target iqn.2006-01.com.openfiler:vol1.crs
Lun 0 Path=/dev/vol1/crs,Type=fileio
Lun 1 Path=/dev/vol1/of.snapshot.crs.snap,Type=fileio

Write out your changes and run the following:
# service iscsi-target restart
Stopping iSCSI target service: [ OK ]
Starting iSCSI target service: [ OK ]

Refresh / rescan your iSCSI initiator so it sees the snapshot as another drive.

[root@RH4 /]# fdisk -l

Disk /dev/sda: 8589 MB, 8589934592 bytes
255 heads, 63 sectors/track, 1044 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes

Device Boot Start End Blocks Id System
/dev/sda1 * 1 13 104391 83 Linux
/dev/sda2 14 1044 8281507+ 8e Linux LVM

Disk /dev/sdb: 1006 MB, 1006632960 bytes
31 heads, 62 sectors/track, 1022 cylinders
Units = cylinders of 1922 * 512 = 984064 bytes

Device Boot Start End Blocks Id System
/dev/sdb1 1 1022 982111 83 Linux

Disk /dev/sdc: 1006 MB, 1006632960 bytes
31 heads, 62 sectors/track, 1022 cylinders
Units = cylinders of 1922 * 512 = 984064 bytes

Device Boot Start End Blocks Id System
/dev/sdc1 1 1022 982111 83 Linux


Then mount the partition with mount command.

Reference:
https://www.openfiler.com/community/forums/viewtopic.php?id=1124 by dtuneman