How To Downgrade PIP After Upgrade on Amazon Linux

Author: erics, March 25th, 2020

I tried upgrading pip when prompted to do so: sudo pip install –upgrade pip This worked, but removed the system install in /usr/bin/pip and replaced it with /usr/local/bin/pip – NOT GOOD! The solution is as follows:

/usr/local/bin/pip uninstall pip  
yum remove python27-pip
yum install python27-pip

1

2

3

/usr/local/bin/pip uninstall pip

yum remove python27-pip

yum install python27-pip

Categories: How-To's, Technology Tags: Amazon, Amazon Linux, AWS, CentOS, Downgrade, howto, Install, Linux, pip, pip install, pip uninstall, tips, Uninstall, upgrade, Yum | No comments

How To Show the Origin in Git

Author: erics, January 30th, 2020

Recently, I wanted to see the “origin” of the git repository I was working in. The command is: git remote -v For example:

theUser@theHost$ git remote -v
origin	git@localhost:/volumes/data/git/thePlugin.git (fetch)
origin	git@localhost:/volumes/data/git/thePlugin.git (push)

1

2

3

theUser@theHost$ git remote -v

origin git@localhost:/volumes/data/git/thePlugin.git (fetch)

origin git@localhost:/volumes/data/git/thePlugin.git (push)

Categories: How-To's, Technology Tags: cli, Command, Display, git, git remote, howto, Linux, Show, tips | No comments

How To Block All Traffic From China Using iptables and ipset on Amazon Linux

Author: erics, October 24th, 2019

All credit to Matt Wilcox for this excellent article, for which this post is based – thank you, Matt! https://mattwilcox.net/web-development/unexpected-ddos-blocking-china-with-ipset-and-iptables/ All commands run as root!

yum install -y ipset
vi blockchina (see below for contents)
chmod 755 blockchina
./blockchina

1

2

3

4

yum install -y ipset

vi blockchina (see below for contents)

chmod 755 blockchina

./blockchina

Do this once only:

iptables -A INPUT -p tcp -m set --match-set china src -j DROP; service iptables save

1	iptables -A INPUT -p tcp -m set --match-set china src -j DROP; service iptables save

Then add blockchina to the root cron

#!/bin/sh
#
# blockchina
#
DIR=/etc

# Create the ipset list
ipset -N china hash:net

# remove any old list that might exist from previous runs of this script
rm $DIR/cn.zone

# Pull the latest IP set for China
wget -P $DIR http://www.ipdeny.com/ipblocks/data/countries/cn.zone

# Add each IP address from the downloaded list into the ipset 'china'
for i in $(cat $DIR/cn.zone ); do ipset -A china $i; done

# Update iptables
service iptables restart

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

#!/bin/sh

#

# blockchina

#

DIR=/etc

# Create the ipset list

ipset -N china hash:net

# remove any old list that might exist from previous runs of this script

rm $DIR/cn.zone

# Pull the latest IP set for China

wget -P $DIR http://www.ipdeny.com/ipblocks/data/countries/cn.zone

# Add each IP address from the downloaded list into the ipset 'china'

for i in $(cat $DIR/cn.zone ); do ipset -A china $i; done

# Update iptables

service iptables restart

Categories: How-To's, Technology Tags: Amazon, Amazon Linux, AWS, Block, China, DDOS, dos, Firewall, ipset, IPTables, Linux, root, traffic | No comments

How To Upgrade PHP on AWS Linux

Author: erics, August 22nd, 2019

As root:

PACKAGES=`yum list installed | grep php | awk -F. '{print $1}' | tr "\n\r" " "`
echo $PACKAGES
yum remove -y $PACKAGES

1

2

3

PACKAGES=`yum list installed | grep php | awk -F. '{print $1}' | tr "\n\r" " "`

echo $PACKAGES

yum remove -y $PACKAGES

~or~

yum remove php56 php56-cli php56-common php56-devel php56-gd php56-jsonc php56-jsonc-devel php56-mbstring php56-mcrypt php56-mysqlnd php56-pdo php56-pecl-imagick php56-process php56-xml

1	yum remove php56 php56-cli php56-common php56-devel php56-gd php56-jsonc php56-jsonc-devel php56-mbstring php56-mcrypt php56-mysqlnd php56-pdo php56-pecl-imagick php56-process php56-xml

THEN:

yum install php72 php72-bcmath php72-cli php72-common php72-devel php72-gd php72-imap php72-json php72-mysqlnd php72-pdo php72-pecl-apcu php72-pecl-imagick php72-pecl-imagick-devel php72-pecl-memcache php72-php-bcmath php72-php-common php72-php-json php72-process php72-runtime php72-xml php72-mbstring php72-pecl-mcrypt

1

yum install php72 php72-bcmath php72-cli php72-common php72-devel php72-gd php72-imap php72-json php72-mysqlnd php72-pdo php72-pecl-apcu php72-pecl-imagick php72-pecl-imagick-devel php72-pecl-memcache php72-php-bcmath php72-php-common php72-php-json php72-process php72-runtime php72-xml php72-mbstring php72-pecl-mcrypt

Be sure to restart your web server!!

Categories: How-To's, Technology Tags: Amazon, AWS, Install, Linux, php, php7, upgrade, Yum, yum install, yum list, yum remove, yum search | No comments

How To Obtain a Public Key from an AWS .pem Private Key on Linux and Mac

Author: erics, February 4th, 2019

Use the ssh-keygen command on a computer to which you’ve downloaded your private key .pem file; for example: First, ensure permissions will allow ssh-keygen to work: chmod 600 /path/to/the/file/your-key-pair.pem Then generate an RSA public key: ssh-keygen -y -f /path/to/the/file/your-key-pair.pem > your-key-pair.pub

Categories: How-To's, Technology Tags: .pem, .pub, Amazon, apple, AWS, cli, howto, key, key-pair, KeyPair, Linux, Mac, MacOS, macosx, Pubkey, public, Public Key, ssh-keygen, tips | No comments

How To Move Around in Linux CLI Mail

Author: erics, May 7th, 2018

h Shows you a screenful of message headers (a “header” being the number, sender, date, size and subject). h with no message number shows the current screenful of messages (the number that make up a screenful is set with the screen variable, described below). h$ shows you the last screenful of messages — which is […]

Categories: How-To's, Technology Tags: cli, CLI Mail, howto, Linux, mail, Move, tips | No comments

How To Locate Attached Disk Devices in Linux

Author: erics, April 24th, 2018

https://linux.die.net/man/8/lsblk # lsblk -a

NAME          MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
nvme1n1       259:0    0  100G  0 disk /volumes/data
nvme0n1       259:1    0   20G  0 disk 
├─nvme0n1p1   259:2    0   20G  0 part /
└─nvme0n1p128 259:3    0    1M  0 part

1

2

3

4

5

NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT

nvme1n1 259:0 0 100G 0 disk /volumes/data

nvme0n1 259:1 0 20G 0 disk

├─nvme0n1p1 259:2 0 20G 0 part /

└─nvme0n1p128 259:3 0 1M 0 part

Categories: How-To's, Technology Tags: Amazon, Attached, AWS, Device, Disk, Drive, Find, howto, Linux, Locate, lsblk, tips | No comments

How To Reduce the Size of a PDF Using Ghostscript

Author: erics, February 4th, 2017

Make sure you have Ghostscript installed, then:

gs -dNOPAUSE -dBATCH -sDEVICE=pdfwrite -dCompatibilityLevel=1.4 -dPDFSETTINGS="/ebook" -sOutputFile=output.pdf input.pdf

1	gs -dNOPAUSE -dBATCH -sDEVICE=pdfwrite -dCompatibilityLevel=1.4 -dPDFSETTINGS="/ebook" -sOutputFile=output.pdf input.pdf

-dPDFSETTINGS={value} where {value} is one of: /screen – the lowest resolution and lowest file size, fine for viewing on a screen /ebook – mid-range resolution and file size /printer – high-quality setting used for printing PDFs /prepress – high-quality setting used for printing PDFs As always, YMMV…

Categories: How-To's, Technology Tags: Adobe, cli, Command line, Ghostscript, gs, howto, Linux, macosx, PDF, Reduce, Resize, Smaller, tips | No comments

How To Enable Legacy Key Type Support in SSH 7

Author: erics, December 9th, 2016

Recently I had to launch an Ubuntu instance in AWS because i needed to run alien to convert a .rpm into a .deb package. When I added my SSH keys as usual, I found I was still unable to login. This is the error from the /var/log/auth.log file: Dec 9 16:47:55 localhost sshd[1550]: userauth_pubkey: key […]

Categories: How-To's, Technology Tags: DSA, howto, Linux, OpenSSH, PubkeyAcceptedKeyTypes, RSA, ssh, ssh-dss, ssh-rsa, ssh7, sshd, sshv7, tips, Ubuntu | No comments

How To Block an Entire TLD in Postfix

Author: erics, September 13th, 2016

Step 1. Execute the following two commands: postconf -e smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains postconf -e reject_unauth_destinations=pcre:/etc/postfix/rejected_domains If that doesn’t work, you may hand-edit main.cf and add/edit these lines:

smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains
reject_unauth_destinations=pcre:/etc/postfix/rejected_domains

1 2	smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains reject_unauth_destinations=pcre:/etc/postfix/rejected_domains

Step 2. Create the regex filter file: vim /etc/postfix/rejected_domains

/\.top$/           REJECT No spam allowed from the .top TLD
/\.stream$/           REJECT No spam allowed from the .stream TLD

1 2	/\.top$/ REJECT No spam allowed from the .top TLD /\.stream$/ REJECT No spam allowed from the .stream TLD

Step 3. Signal Postfix to reread the config: postfix reload NOTE: Do NOT use the postmap command for the […]

Categories: How-To's, Technology Tags: Amazon Linux, AWS, Block, Filter, howto, Linux, PostFix, tips, TLD | No comments

How To Downgrade PIP After Upgrade on Amazon Linux

How To Show the Origin in Git

How To Block All Traffic From China Using iptables and ipset on Amazon Linux

How To Upgrade PHP on AWS Linux

How To Obtain a Public Key from an AWS .pem Private Key on Linux and Mac

How To Move Around in Linux CLI Mail

How To Locate Attached Disk Devices in Linux

How To Reduce the Size of a PDF Using Ghostscript

How To Enable Legacy Key Type Support in SSH 7

How To Block an Entire TLD in Postfix

Our Link Network

Business

Client Websites

Fine Dining

Friends & Family

Galleries

Health

Resources

Technology

Travel

The Archives

Latest Ramblings…

Various Topics of No Interest