Here’s a quick guide on how to patch some of the many Linux distros against the Meltdown and Spectre vulnerabilities! After spending the week monitoring each distribution, and deciding the best time to patch (after waiting for results). Don’t forget to reboot your machine/server after applying the updates! CentOS 7 x86_64 $ sudo yum clean all && yum install kernel-3.10.0-693.11.6.el7.x86_64 $ sudo reboot Patched Kernel : kernel-3.10.0-693.11.6.el7.x86_64 Source: https://lists.centos.org/pipermail/centos-announce/2018-January/022696.html CentOS 6 x86_64 $ sudo yum clean all && yum install kernel-2.…

The problem? For weeks, I’ve been battling with an issue with a new CentOS 7 template for cPanel and Plesk, I built for the OpenVZ hypervisor. Even when setting the HOSTNAME= in the /etc/vz/.conf the container still rebooted with the hostname which was used when the template was created. Meaning the new and correct hostname would never be remembered. Causing various issues with BIND, Apache etc. Even trying to set the hostname with the following failed!…

After seeing apache using all it’s threads, and connections not timing out as they should, I looked at the apache error_log and found the following error. Message: collection_store: Failed to write to DBM file “/var/cache/modsecurity/ip”: Invalid argument I not only saw this on cPanel servers, but on Plesk and plain LAMP (with mod_security and comodo waf installed). It looks like Comodo somehow released a broken update, that caused the /var/cache/modsecurity/ip.pag to corrupt (that’s my guess).…