I was a little busy with work and baby prep so I really wasn’t on the computer all that much however, I am really liking the shear number of applications that are at my finger tips. I started using workspaces a bit more. At home I only have a single 17″ monitor, I know I know. Hopefully it’s only temporary. I’m used to having duals at work so it’s a bit of a change.

I will say that I am liking Rhythmbox as my music player and started using Miro for my video podcasts or videocasts…whatever you want to call them. I really only watch Hak5 so far but I’m sure I’ll be adding more in the future.

I had been having some problems staying connected to my VPN at work via the Cisco VPN app so I really haven’t been interfacing to my work from home a lot except from my eeePC. I want to do a site to site from home to work but I’m sure my employeer wouldn’t want that. Sorry for the boring update, hopefully some good stuff coming up.

Tonight was a little rocky for Mr. Ubuntu.  I was trying to help my father out with an Outlook Express issue obviously on a Windows machine.  My typical remote access solution would not work as it requires Windows as the support PC.  However, I went ahead and tried to do a terminal server connection to a server on his network and then launch the application.  In this case ShowMyPC.  The connection was SLOW!!!  I then started searching around for something that was cross compatible.  I found YuuGuu but apparently am too dumb to figure it out.

Does anyone have a recommendation for remote support TO Windows and OS X workstations and servers FROM linux?  Preferably Ubuntu.  I prefer free solutions but would be willing to pay a small fee if needed as long as it also supported support from Windows as I could use it from my job.

On a softer note, I do like RhythmBox.  I want to get Pandora playable inside there but that can come later.

Setting up VPNC and the Network Manager VPN piece was pretty easy.  All through apt-get…  I needed this to connect into my work place and do time entries and remote support stuff.

So far so good.  With the exception to remote support to Windows based clients, I’m pretty rock solid on Ubuntu.

Seventy-five percent of the servers I have been working on over the last few months have been Linux.  Mostly Ubuntu.  This due to the fact that my company has allow me to start migrating over and building new servers on this platform.  With that, we need secure ways to access the servers.  On occasion I’ll use webmin but mostly just SSH and whatever website is running on it (management, applications, etc).  Webmin takes care of itself with a self signed certificate and SSH creates its own keys.  Pretty easy there.  Now, for the website that is running on the box, out of the gate it’s unencrypted TCP/80 traffic running from an Apache 2 web server.  This short tutorial will cover how to create a CSR with OpenSSL for use when getting a certificate from one of the CA’s.  I won’t explain everything here but you may use Ubuntu’s https-help guide if you need more info found here.

First, let’s make sure we have the right packages installed.

apt-get install openssh apache2 apache2.2-common php5

Now let’s enable SSL for apache2

sudo a2enmod ssl

Now lets create the server SSL key.

cd /etc/ssl/private
openssl genrsa -des3 -out dns.server.com.key 1024

Ok, now that we have the key, let’s create the CSR to be given to the CA.

openssl req -new -key dns.server.com.key -out dns.server.com.csr

It will prompt you for the passphrase and some other bits of information.  The most important one is site name.  This must match the name of your server.  Something like mail.domain.com or www.domain.com would be appropriate here.

The CSR can now be uploaded to whatever CA you choose.  I use GoDaddy because they are so cheap.

If you do not want to purchase a certificate you can create your own self signed cert with the following command.

openssl x509 -req -days 365 -in dns.server.com.csr -signkey dns.server.com.key -out dns.server.com.crt
cp /etc/ssl/private/dns.server.com.crt /etc/ssl/certs

Now that we have the cert created, let’s configure Apache to use it. Add the following 3 lines to your website configuration.  The default one is located in /etc/apache2/sites-available/default.

SSLEngine on
SSLCertificateFile /etc/ssl/certs/dns.server.com.crt
SSLCertificateKeyFile /etc/ssl/private/dns.server.com.key

Save that config file and enable Apache to listen on 443 for HTTPS traffic.  Add the following line to /etc/apache2/ports.conf

Listen 443

Restart your Apache2 process and you should have a fully functional SSL enabled website.

/etc/init.d/apache2 force-reload && /etc/init.d/apache2/restart

vi is neat.  Most of the engineers I work with like nano or pico but I like vi.  For some reason it makes me feel more like a geek when I’m using it.  In fact, I’ve been using it so often lately that I have been trying to use vi command in notepad (obviously without success).  This tutorial will cover only the basics but that should be enough to get you started.  A much better tutorial is available here.

vi /etc/network/interfaces - opens /etc/network/interfaces in vi

i - insert
/ - search
G - [Shift] g - go to bottom of page
dd - delete the line
d <- or d -> - d [left or right arrow] delete 1 character in that direction
10G - 10 [Shift] g - move to line 10 (obviously number can be replaced)
10dd - delete 10 lines from cursor and below (again, number can be changed)
:q - quit (no changes may have been made)
:q! - quit (do not save changes)
:wq - write quite (save and quit)
:w - write (save)

Ok, now that you have mastered the basics of vi, please refer all other needs to the link provided above.  Hope you like vi as much as I do.

NOTE:  Ubuntu (and maybe debian) have a few things that the built in vi program have that seem a little strange.  I usually install vim just to be safe.  to do this run sudo apt-get install vim-full.