hackacad.net

Secure Elasticsearch without X-Pack or SSL/TLS

Posted on March 1, 2019 | 1 minutes | 161 words | hackacad

HowTo Secure Elasticsearch using spiped on FreeBSD, Debian and CentOS Spiped makes it really easy to secure connections between clients and Elasticsearch databases. Keep in mind that the symmetric key (once compromised) can be used to intercept/mitm all connections. install spiped FreeBSD pkg install spiped Debian/Ubuntu apt install spiped CentOS vim /etc/yum.repos.d/spiped.repo [lsde-spiped] name=Copr repo for spiped owned by lsde baseurl=https://copr-be.cloud.fedoraproject.org/results/lsde/spiped/> epel-7-$basearch/ type=rpm-md skip_if_unavailable=True gpgcheck=1 gpgkey=https://copr-be.cloud.fedoraproject.org/results/lsde/spiped/pubkey.gpg repo_gpgcheck=0 enabled=1 enabled_metadata=1 install spiped [Read More]

Logstash 5 not starting on FreeBSD

Posted on December 3, 2018 | 1 minutes | 40 words | hackacad

Logstash services failes on FreeBSD (11.x)

[2018-11-06T12:24:56,663][INFO ][logstash.modules.scaffold] Initializing module {:module_name=>"fb_apache", :directory=>"/usr/share/logstash/modules/fb_apache/configuration"}
[2018-11-06T12:24:56,664][INFO ][logstash.modules.scaffold] Initializing module {:module_name=>"netflow", :directory=>"/usr/share/logstash/modules/netflow/configuration"}

Did you add procfs/fdesc in /etc/fstab?

vim /etc/fstab

fdesc   /dev/fd      fdescfs       rw    0    0
proc    /proc        procfs        rw    0    0

mount -a

Saltstack 2018.x fails to start after OS upgrade

Posted on October 30, 2018 | 1 minutes | 80 words | hackacad

If your Salt Minion fails to start with [salt.utils.process:754 ][ERROR ][5542] An un-handled exception from the multiprocessing process > ‘SignalHandlingMultiprocessingProcess-1:59’ was caught: Traceback (most recent call last): File “/usr/local/lib/python3.5/dist-packages/salt/utils/process.py”, line 747, in _run return self._original_run() […] File “/usr/lib/python3.5/asyncio/base_events.py”, line 411, in run_forever ‘Cannot run the event loop while another loop is running’) RuntimeError: Cannot run the event loop while another loop is running You might be running Tornado version 5+ [Read More]

Run Elasticsearch 6.x in a FreeBSD Jail

Posted on October 28, 2018 | 1 minutes | 47 words | hackacad

If you try to run Elasticsearch in a Jail without an external IP address you might get an error like:

No up-and-running loopback addresses found, got [name:lo1 (lo1)]

How to solve it?

You need to bind your Elasticsearch to your primary IP address:

vim /usr/local/etc/elasticsearch/elasticsearch.yml:

network.host: 10.10.10.2

Shared object “libdl.so.1” not found

Posted on October 3, 2018 | 1 minutes | 52 words | hackacad

If you see the following error after pkg upgrade or pkg install Shared object “libdl.so.1” not found

Your FreeBSD version might be outdated. This currently happens on FreeBSD 11.1 if you use the latest/qarterly pkg mirror.

How to fix it?

freebsd-update -upgrade -r 11.2-RELEASE 
reboot 
freebsd-update install 
pkg update && pkg upgrade

FreeBSD: pw: user ‘username’ disappeared during update

Posted on September 10, 2018 | 1 minutes | 13 words | hackacad

pw: user 'username' disappeared during update

How to fix it?

/usr/sbin/pwd_mkdb -p /etc/master.passwd