VirtualHost unter Apache2 mit SSL

von | Dez 27, 2012 | BSD, GNU/Linux

# mkdir /etc/apache2/ssl
# cd /etc/apache2/ssl
# openssl req -new -x509 -days 3650 -nodes -out /etc/apache2/ssl/server.pem -keyout /etc/apache2/ssl/server.pem
# vi /etc/apache2/ports.conf

Listen 443

# a2enmod ssl
# vi apache2.conf

<VirtualHost IPDesServers:443>
ServerName FQDN
DocumentRoot  /Wo/Auch/Immer/
SSLEngine On
SSLCertificateFile /etc/apache2/ssl/server.pem
</VirtualHost>

# /etc/init.d/apache2 force-reload

OpenBSD Netzwerktuning

von | Dez 27, 2012 | BSD

Manchmal kann es bei bestimmten ISPs und schnellen Verbindungen zu einer verdächtig langsamen Verbindung kommen:

# sysctl -w net.inet.tcp.recvspace=65535
# sysctl -w net.inet.tcp.sendspace=65535
# sysctl -w net.inet.udp.recvspace=65535
# sysctl -w net.inet.udp.sendspace=65535

hilft bisweilen

Greylisting mit milter-greylist an OpenBSD 4.2

von | Dez 27, 2012 | BSD

# pkg_add ..milter-greylist.x.x

# vi /etc/rc.local

if [ X“${milter_greylist}“ != X“NO“ -a \
-x /usr/local/libexec/milter-greylist ]; then
echo -n ‚ milter-greylist‘
/usr/local/libexec/milter-greylist ${milter_greylist}
fi

# vi /etc/mail/greylist.conf

socket „/var/db/milter-greylist/milter-greylist.sock“
dumpfile „/var/db/milter-greylist/greylist.db“
#acl whitelist default
acl greylist default

# cd /usr/share/sendmail/cf
# cp openbsd-proto.mc nospam.mc
# vi nospam.mc

INPUT_MAIL_FILTER(`greylist‘,
`S=local:/var/db/milter-greylist/milter-greylist.sock‘)
define(`confMILTER_MACROS_CONNECT‘, `j, {if_addr}‘)
define(`confMILTER_MACROS_HELO‘, `{verify}, {cert_subject}‘)
define(`confMILTER_MACROS_ENVFROM‘, `i, {auth_authen}‘)
define(`confMILTER_MACROS_ENVRCPT‘, `{greylist}‘)

# m4 ../m4/cf.m4 nospam.mc > sendmail.cf
# mv sendmail.cf /etc/mail/sendmail.cf
# kill -1 `head -n1 /var/run/sendmail.pid`