Other « BrakertechBrakertech

Neo4j Couldn’t get file lock

posted this in neo4j on May 8th, 2013

Problem

A non-root user is running Neo4j and you are seeing locking errors in the log file

Symptom

May 8, 2013 6:20:31 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode
WARNING: Could not lock User prefs.  Unix error code 2.
May 8, 2013 6:20:31 PM java.util.prefs.FileSystemPreferences syncWorld
WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock.
May 8, 2013 6:21:01 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode
WARNING: Could not lock User prefs.  Unix error code 2.
May 8, 2013 6:21:01 PM java.util.prefs.FileSystemPreferences syncWorld
WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock.
May 8, 2013 6:21:31 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode
WARNING: Could not lock User prefs.  Unix error code 2.
May 8, 2013 6:21:31 PM java.util.prefs.FileSystemPreferences syncWorld
WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock."

May 8, 2013 6:20:31 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode

WARNING: Could not lock User prefs. Unix error code 2.

May 8, 2013 6:20:31 PM java.util.prefs.FileSystemPreferences syncWorld

WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock.

May 8, 2013 6:21:01 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode

WARNING: Could not lock User prefs. Unix error code 2.

May 8, 2013 6:21:01 PM java.util.prefs.FileSystemPreferences syncWorld

WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock.

May 8, 2013 6:21:31 PM java.util.prefs.FileSystemPreferences checkLockFile0ErrorCode

WARNING: Could not lock User prefs. Unix error code 2.

May 8, 2013 6:21:31 PM java.util.prefs.FileSystemPreferences syncWorld

WARNING: Couldn't flush user prefs: java.util.prefs.BackingStoreException: Couldn't get file lock."

Cause

The non-root ID that is being used to start the Neo4j instance does not have a user_home directory. Therefore this non-root ID is unable to access the root user’s “/etc/.java/.systemPrefs”. This produces the aforementioned . . . → Read More: Neo4j Couldn’t get file lock

convert valid godaddy cert key to java keystore for tomcat

posted this in Linux, Redhat Centos, Server Setup, Tomcat, Ubuntu on April 30th, 2013

I spend hours trying to figure this out and here are the fruits of my labor

Howto: Import valid cert and key into a java keystore

note: use the same password in each step

Step 1: Export your key and cert to pkcs12 format

openssl pkcs12 -export -inkey some.key -in some.crt -out some.p12

1	openssl pkcs12 -export -inkey some.key -in some.crt -out some.p12

Step 2: Import p12 file to java key store

keytool -importkeystore -srckeystore some.p12 -srcstoretype PKCS12 -destkeystore truststore.jks

1	keytool -importkeystore -srckeystore some.p12 -srcstoretype PKCS12 -destkeystore truststore.jks

phone laws driving headphones

posted this in Other on April 6th, 2013

By State: phone laws driving headphones

Ever wondered if it is legal to wear headphones while driving in a particular state? Wonder no more!

Alabama

No prohibition on wearing of headsets while driving.

Alaska

Wearing an audio headset or earplugs is not permitted while driving.

Exempts headsets when used and designed to improve a driver’s . . . → Read More: phone laws driving headphones

Mandiant Highlighter – Log and Text File Viewer Review

posted this in Apache, Defense, Forensics, Security on March 25th, 2013

Product Review - Mandiant Highlighter

Today we are looking at Mandiant Highlighter; Log and Text File Viewer

Product home page can be found here

Cost: Free!

Overview

MANDIANT Highlighter is a log file analysis tool. Highlighter provides a graphical component to log analysis that helps the analyst identify patterns. Highlighter also provides a number of features aimed at . . . → Read More: Mandiant Highlighter – Log and Text File Viewer Review

sed delete all lines after

posted this in Apache, bash, Linux, Redhat Centos on October 26th, 2012

Objective: Prep dev httpd.conf for production

Tasks:

Remove jenkins virtual host entry (which starts with a comment line “#Start Jenkins”) Replace .dev with nothing (ex: www.dev.example.com becomes www.example.com) Replace debug with error (ex: Loglevel debug becomes Loglevel error) Sed to remove lines after match

In this example we will use sed delete all lines after . . . → Read More: sed delete all lines after

rollback httpd.conf changes on error

posted this in Apache, Linux, Redhat Centos on October 26th, 2012

To rollback httpd.conf changes on error use this script:

#!/bin/bash
#File: deploy_new_httpd_conf.sh
#Define this
PATH_TO_NEW_HTTPD_CONF="~/new_httpd.conf"

#Backup old httpd.conf file
/bin/cp -f /etc/httpd/conf/httpd.conf /root/httpd.conf.bak

#Copy new httpd.conf over the existing one
/bin/cp -f ${PATH_TO_NEW_HTTPD_CONF} /etc/httpd/conf/httpd.conf

#Test the Syntax
/usr/sbin/apachectl -t

if [ $? != 0 ]
then
echo "apache syntax test failed!  Reverting back to old conf file"
/bin/cp /root/httpd.conf.bak /etc/httpd/conf/httpd.conf
exit 1
else
echo "restarting apache on $HOSTNAME"
/usr/sbin/apachectl -k graceful
fi

#!/bin/bash

#File: deploy_new_httpd_conf.sh

#Define this

PATH_TO_NEW_HTTPD_CONF="~/new_httpd.conf"

#Backup old httpd.conf file

/bin/cp -f /etc/httpd/conf/httpd.conf /root/httpd.conf.bak

#Copy new httpd.conf over the existing one

/bin/cp -f ${PATH_TO_NEW_HTTPD_CONF} /etc/httpd/conf/httpd.conf

#Test the Syntax

/usr/sbin/apachectl -t

if [ $? != 0 ]

then

echo "apache syntax test failed! Reverting back to old conf file"

/bin/cp /root/httpd.conf.bak /etc/httpd/conf/httpd.conf

exit 1

else

echo "restarting apache on $HOSTNAME"

/usr/sbin/apachectl -k graceful

Websphere Stop All Servers Script

posted this in Websphere on September 19th, 2012

Here’s a ksh script to stop all running websphere servers. Booyah!

#!/bin/ksh
#
# This script stops all running Websphere servers
#

cd /opt/ibm/WAS70/logs
servers=`echo *Node*`
cd /opt/ibm/WAS70/AppServer/profiles/AppSrv01/bin
for server in $servers; do
        pid=`ps -ef | grep $server | grep Cell01 | awk '{print $2}'`
        if [ ! -z "$pid" ]; then
                echo Stopping $server at PID $pid
                /opt/ibm/WAS70/AppServer/profiles/AppSrv01/bin/stopServer.sh $server &
        else
                echo $server is not running
        fi
done

#!/bin/ksh

# This script stops all running Websphere servers

cd /opt/ibm/WAS70/logs

servers=`echo *Node*`

cd /opt/ibm/WAS70/AppServer/profiles/AppSrv01/bin

for server in $servers; do

pid=`ps -ef | grep $server | grep Cell01 | awk '{print $2}'`

if [ ! -z "$pid" ]; then

echo Stopping $server at PID $pid

/opt/ibm/WAS70/AppServer/profiles/AppSrv01/bin/stopServer.sh $server &

else

echo $server is not running

done

mod_dav_svn.so undefined symbol: dav_register_provider

posted this in Apache, Redhat Centos on July 22nd, 2012

Recently, I attempted to install subversion on Centos6. Apache failed to start with this error:

mod_dav_svn.so undefined symbol: dav_register_provider

To fix this error simply add this in your httpd.conf:

LoadModule dav_module modules/mod_dav.so

1	LoadModule dav_module modules/mod_dav.so

Make sure you add the line above BEFORE these lines:

LoadModule dav_svn_module     modules/mod_dav_svn.so
LoadModule authz_svn_module   modules/mod_authz_svn.so

1 2	LoadModule dav_svn_module modules/mod_dav_svn.so LoadModule authz_svn_module modules/mod_authz_svn.so

multiple reverse proxy host broken

posted this in Apache, c#, IIS on April 13th, 2012

Nathan Bridgewater explained how to configure multiple reverse proxies properly with apache and IIS (without losing original domain name). I’m reposting this for myself to keep a record of this fine work.

multiple reverse proxy host broken iis serving up local server name instead of the ServerName that was originally passed to it. How to . . . → Read More: multiple reverse proxy host broken

copy teamsite user

posted this in Linux, python, Redhat Centos, Scripts, Teamsite on April 2nd, 2012

To copy teamsite user permissions i’ve written a python script.

You’ll need to replace the path with the path of your teamsite’s bin directory:

#!/usr/bin/python
#Script Name: copyTeamSiteUser.py
#Use: ./copyTeamSiteUser.py -s (source_user) -d (destination_user)
#Note: the bin bath of teamsite was hardcoded, please replace /opt/iw-home/TeamSite/bin
#      path of your teamsite's bin directory
#Author: Steve Stonebraker

import fileinput
import sys, re, getopt, os
import subprocess, traceback, inspect, re

def main(argv):
	user1 = ''
	user2 = ''
	try:
		opts, args = getopt.getopt(argv,"hs:d:")
	except getopt.GetoptError:
		print ('copyTeamSiteUser.py -s (source_user) -d (destination_user)')
		sys.exit(2)
	for opt, arg in opts:
		if opt == '-h':
			print ('copyTeamSiteUser.py -s (source_user) -d (destination_user)')
			sys.exit()
		elif opt == '-s':
			user1 = arg
		elif opt == '-d':
			user2 = arg
	print("Source User: " + user1)
	print("Destination User: " + user2)

	#export permissions entries for user1
	subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user1 + " > sourceUser.tmp", shell=True)

	#export permissions entries for user2
	subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " > destUser.tmp", shell=True)
	
	#dedupe permissions entries that do not match
        subprocess.call("fgrep -x -f destUser.tmp -v sourceUser.tmp > permissionsToAdd.tmp", shell=True)
	
	scriptPath=os.getcwd()

	#list permissions to process
	print("Permissions to process:")
        subprocess.call("cat permissionsToAdd.tmp", shell=True)
	text_file = open("permissionsToAdd.tmp", "r")
	line=0
	
	#Switch to teamsite dir
	os.chdir("/opt/iw-home/TeamSite/bin")

	#process permissions to add
	for lineTxt in text_file.readlines():
		re.sub("\s\s+" , " ", lineTxt)
		thePath = lineTxt.split( )
		theItems = lineTxt.replace(thePath[0],"")
		cleanItems = theItems.replace("\t","")
		cleanItems = cleanItems.replace("\n","")	
		arrItems = cleanItems.split(",")
		line=line+1 

		#process permissions for specific line
		print "processing line: " + lineTxt
		for permission in arrItems:
			print ("processing item: " + permission) 
			cmd="./iwaccess add-permission-entry " + thePath[0] + " -user " + user2 + " -role " + "'" +  permission + "'"
			print (cmd)
			subprocess.call(cmd, shell=True)
	text_file.close()

	#Switch to script dir
	os.chdir(scriptPath)
	print("current dir: " + os.getcwd())
	subprocess.call("rm *.tmp", shell=True)

	#export permissions entries for user1
	subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user1 + " > sourceUser.tmp", shell=True)

	#export permissions entries for user2
	subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " > destUser.tmp", shell=True)
	
	#dedupe permissions entries that do not match
        subprocess.call("fgrep -x -f destUser.tmp -v sourceUser.tmp > permissionsToAdd.tmp", shell=True)

	print("Processing complete, comparing " + user1 + " to " + user2)
	if os.path.getsize(scriptPath + "/permissionsToAdd.tmp") > 0:
		print(user2 + " is missing the following permissions")
		subprocess.call("cat permissionsToAdd.tmp", shell=True)
		print("Check permissions for each entry manually")
		print("example:")
		print("# /opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " | grep '/default/main/marlboro/cms'")

	else:
		print(user1 + " and " + user2 + " have equal permissions")

if __name__ == "__main__":
	main(sys.argv[1:])

#!/usr/bin/python

#Script Name: copyTeamSiteUser.py

#Use: ./copyTeamSiteUser.py -s (source_user) -d (destination_user)

#Note: the bin bath of teamsite was hardcoded, please replace /opt/iw-home/TeamSite/bin

# path of your teamsite's bin directory

#Author: Steve Stonebraker

import fileinput

import sys, re, getopt, os

import subprocess, traceback, inspect, re

def main(argv):

user1 = ''

user2 = ''

try:

opts, args = getopt.getopt(argv,"hs:d:")

except getopt.GetoptError:

print ('copyTeamSiteUser.py -s (source_user) -d (destination_user)')

sys.exit(2)

for opt, arg in opts:

if opt == '-h':

print ('copyTeamSiteUser.py -s (source_user) -d (destination_user)')

sys.exit()

elif opt == '-s':

user1 = arg

elif opt == '-d':

user2 = arg

print("Source User: " + user1)

print("Destination User: " + user2)

#export permissions entries for user1

subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user1 + " > sourceUser.tmp", shell=True)

#export permissions entries for user2

subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " > destUser.tmp", shell=True)

#dedupe permissions entries that do not match

subprocess.call("fgrep -x -f destUser.tmp -v sourceUser.tmp > permissionsToAdd.tmp", shell=True)

scriptPath=os.getcwd()

#list permissions to process

print("Permissions to process:")

subprocess.call("cat permissionsToAdd.tmp", shell=True)

text_file = open("permissionsToAdd.tmp", "r")

line=0

#Switch to teamsite dir

os.chdir("/opt/iw-home/TeamSite/bin")

#process permissions to add

for lineTxt in text_file.readlines():

re.sub("\s\s+" , " ", lineTxt)

thePath = lineTxt.split( )

theItems = lineTxt.replace(thePath[0],"")

cleanItems = theItems.replace("\t","")

cleanItems = cleanItems.replace("\n","")

arrItems = cleanItems.split(",")

line=line+1

#process permissions for specific line

print "processing line: " + lineTxt

for permission in arrItems:

print ("processing item: " + permission)

cmd="./iwaccess add-permission-entry " + thePath[0] + " -user " + user2 + " -role " + "'" + permission + "'"

print (cmd)

subprocess.call(cmd, shell=True)

text_file.close()

#Switch to script dir

os.chdir(scriptPath)

print("current dir: " + os.getcwd())

subprocess.call("rm *.tmp", shell=True)

#export permissions entries for user1

subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user1 + " > sourceUser.tmp", shell=True)

#export permissions entries for user2

subprocess.call("/opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " > destUser.tmp", shell=True)

#dedupe permissions entries that do not match

subprocess.call("fgrep -x -f destUser.tmp -v sourceUser.tmp > permissionsToAdd.tmp", shell=True)

print("Processing complete, comparing " + user1 + " to " + user2)

if os.path.getsize(scriptPath + "/permissionsToAdd.tmp") > 0:

print(user2 + " is missing the following permissions")

subprocess.call("cat permissionsToAdd.tmp", shell=True)

print("Check permissions for each entry manually")

print("example:")

print("# /opt/iw-home/TeamSite/bin/iwaccess all-permission-entries-of-user " + user2 + " | grep '/default/main/marlboro/cms'")

else:

print(user1 + " and " + user2 + " have equal permissions")

if __name__ == "__main__":

main(sys.argv[1:])

Brakertech

Neo4j Couldn’t get file lock

convert valid godaddy cert key to java keystore for tomcat

phone laws driving headphones

Mandiant Highlighter – Log and Text File Viewer Review

sed delete all lines after

rollback httpd.conf changes on error

Websphere Stop All Servers Script

mod_dav_svn.so undefined symbol: dav_register_provider

multiple reverse proxy host broken

copy teamsite user

Search Brakertech

dEFENSE

Hacking

Security

Search Brakertech

dEFENSE

Hacking

Tags

Security