Keresahan Hati

Dag dig dug,.. sudah beberapa hari ini perasaan hati saya sering gelisah secara tiba-tiba. degap degup jantung terasa kurang aman beberapa waktu lalu saya sudah cekin ke dokter, dokter bilang "hanya gejala magh".. Huuufff sedikit lega..

sudah beberapa minggu berlalu, namun perasaan tetap ngak karuan juga.. ya Allah ada apa ini. sampai sekarang saya menulis blog ini perassan tak menentu agak sedikit berkurang setelah saya membaca dari beberapa sumber di internet tentang gejala saya ini.

"semua itu hanya merupakan sebuah proses dari sebuah kehidupan" Hmmm... mungkin ada benernya juga. anehnya istri saya juga mengalami hal yang sama, lalu saya bilang persis sama seperti yang saya baca di internet,..

ya Allah.. baru sekali ini saya mengalamai hal yang semacam ini. mudah-mudahan ini hanya hal yang biasa. Insya Allah..

Saya, Internet & Gaya Hidup

teman : "Buka IE terus ketik google.com, nah ketikan keywordnya disana"
saya : "Keyword apaan.?"
teman : "ANdeehh.. (mengeluh dalam bahasa minang) keyword itu kata kunci"
saya : "oOo... iyalah"

(berhenti sejenak dengan mengetikan keyword yang di maksud)

saya : "udah saya ketik keywordnya, trus apalagi..?"
teman : "tinggal pilih situs yang valid, cari2 sendiri saja."
saya : "cara milihnya gimana..?"
teman : "Yaelah... kalo ada kaya tangan yang nempel di tulisan, tinggal kamu klik saja!!!!"
saya : "oOo.."

Hehhehe,.. sepenggal percakapan di atas antara saya dengan teman saya waktu baru pertama kali kenal yang namanya internetan. sampe sekarang saya masih tertawa dengan sendirinya ^_". mungkin sudah hukumnya, kalo untuk belajar sesuatu yang baru memang tidak mudah, kadang-kadang kita harus mengorbankan perasaan.

Tapi sejak kejadian itu, Alhamdulillah sekarang saya sudah menjadi konsultan IT, sekaligus merangkap teknisi jaringan, walaupun hanya di kantor saya sendiri. bumbunya hanya mengetikan keyword di dalam form pencarian situs google.com dan satu sendok makan buah fikiran.. hasilnya, lumayan juga buat nambah isi dompet.

mungkin ini hanya cerita singkat, kurang enak di baca, dan gaya penulisannya pun jauh dari para penulis yang sudah profesional. Tapi, tulisan ini benar adanya dengan kejadian dalam hidup saya, dan merubah cara pandang serta arti dalam kehidupan saya. Internet itu penting namun kepentingan akan internet itu sendiri masih menjadi hal yang langka di Indonesia. mungkin ini salah satu penyebab bahwa TIK kita masih jauh tertinggal dari negara lain.

terima kasih juga untuk bhinneka, yang sudah mempermudah saya dalam mencari solusi perangkat IT.

thanks teman.. sukses for [ bhineka dot com ]

For Garudafightsback

squad garuda bersedih hati melihat kegembiraan tim harimau malaya mengangkat piala AFF Cup Suzuki di kandang sendiri.. kecewa, marah, menangis semau bercampur dengan kekesalan atas supporter malaysia yang menghujamkan secernah sinar laser saat final leg 1 di stadion bukit jalil.

Penghargaan yang setinggi-tingginya terhadap suporter timnas garuda, yang sama sekali tidak sedikitpun membalas maupun membuat ricuh di saat "garuda tak mampu terbang sempurna di GBK".. ini adalah awal dari keberhasilan yang akan datang.

"GARUDA AKAN BANGKIT LAGI"

Freebsd base command

What are the absolute basic commands you have to know?  Something like
this:

   ls(1)    -- get a directory listing
   ls -l    -- get a long format directory listing

   pwd(1)   -- show your present working directory
   cd       -- change directory.  Note this is a shell builtin(1) rather
               than a standalone command

   cd ~     -- change directory to your accounts home directory

   mv(1)    -- rename files, move files into a different directory
   cp(1)    -- copy files
   rm(1)    -- delete files
   rm -r    -- delete a directory and all of its contents, recursively

   date(1)  -- show time and date
   time(1)  -- time how long a process takes to execute

   whoami(1) -- for the morning after a particularly wild party
   who(1)   -- who is logged into the system

   man(1)   -- read the system manual

   more(1)  -- page through a file
   ee(1)    -- easy editor
   vi(1)    -- difficult editor

   login(1) -- log into the system
   passwd(1) -- change your password
   exit     -- log out (
   logout   -- log out

Linux Base Command

mkdir - make directories

Usage

mkdir [OPTION] DIRECTORY

Options

Create the DIRECTORY(ies), if they do not already exist.

Mandatory arguments to long options are mandatory for short options too.

-m, mode=MODE set permission mode (as in chmod), not rwxrwxrwx - umask

-p, parents no error if existing, make parent directories as needed

-v, verbose print a message for each created directory

-help display this help and exit

-version output version information and exit

cd - change directories

Use cd to change directories. Type cd followed by the name of a directory to access that directory.Keep in mind that you are always in a directory and can navigate to directories hierarchically above or below.

mv- change the name of a directory

Type mv followed by the current name of a directory and the new name of the directory.

Ex: mv testdir newnamedir

pwd - print working directory

will show you the full path to the directory you are currently in. This is very handy to use, especially when performing some of the other commands on this page

rmdir - Remove an existing directory

rm -r

Removes directories and files within the directories recursively.

chown - change file owner and group

Usage

chown [OPTION] OWNER[:[GROUP]] FILE

chown [OPTION] :GROUP FILE

chown [OPTION] --reference=RFILE FILE

Options

Change the owner and/or group of each FILE to OWNER and/or GROUP. With --reference, change the owner and group of each FILE to those of RFILE.

-c, changes like verbose but report only when a change is made

-dereference affect the referent of each symbolic link, rather than the symbolic link itself

-h, no-dereference affect each symbolic link instead of any referenced file (useful only on systems that can change the ownership of a symlink)

-from=CURRENT_OWNER:CURRENT_GROUP

change the owner and/or group of each file only if its current owner and/or group match those specified here. Either may be omitted, in which case a match is not required for the omitted attribute.

-no-preserve-root do not treat `/' specially (the default)

-preserve-root fail to operate recursively on `/'

-f, -silent, -quiet suppress most error messages

-reference=RFILE use RFILE's owner and group rather than the specifying OWNER:GROUP values

-R, -recursive operate on files and directories recursively

-v, -verbose output a diagnostic for every file processed

The following options modify how a hierarchy is traversed when the -R option is also specified. If more than one is specified, only the final one takes effect.

-H if a command line argument is a symbolic link to a directory, traverse it

-L traverse every symbolic link to a directory encountered

-P do not traverse any symbolic links (default)

chmod - change file access permissions

Usage

chmod [-r] permissions filenames

r Change the permission on files that are in the subdirectories of the directory that you are currently in. permission Specifies the rights that are being granted. Below is the different rights that you can grant in an alpha numeric format.filenames File or directory that you are associating the rights with Permissions

u - User who owns the file.

g - Group that owns the file.

o - Other.

a - All.

r - Read the file.

w - Write or edit the file.

x - Execute or run the file as a program.

Numeric Permissions:

CHMOD can also to attributed by using Numeric Permissions:

400 read by owner

040 read by group

004 read by anybody (other)

200 write by owner

020 write by group

002 write by anybody

100 execute by owner

010 execute by group

001 execute by anybody

ls - Short listing of directory contents

-a list hidden files

-d list the name of the current directory

-F show directories with a trailing '/'

executable files with a trailing '*'

-g show group ownership of file in long listing

-i print the inode number of each file

-l long listing giving details about files and directories

-R list all subdirectories encountered

-t sort by time modified instead of name

cp - Copy files

cp myfile yourfile

Copy the files "myfile" to the file "yourfile" in the current working directory. This command will create the file "yourfile" if it doesn't exist. It will normally overwrite it without warning if it exists.

cp -i myfile yourfile

With the "-i" option, if the file "yourfile" exists, you will be prompted before it is overwritten.

cp -i /data/myfile

Copy the file "/data/myfile" to the current working directory and name it "myfile". Prompt before overwriting the file.

cp -dpr srcdir destdir

Copy all files from the directory "srcdir" to the directory "destdir" preserving links (-poption), file attributes (-p option), and copy recursively (-r option). With these options, a directory and all it contents can be copied to another dir

ln - Creates a symbolic link to a file.

ln -s test symlink

Creates a symbolic link named symlink that points to the file test Typing "ls -i test symlink" will show the two files are different with different inodes. Typing "ls -l test symlink" will show that symlink points to the file test.

locate - A fast database driven file locator.

slocate -u

This command builds the slocate database. It will take several minutes to complete this command.This command must be used before searching for files, however cron runs this command periodically on most systems.locate whereis Lists all files whose names contain the string "whereis". directory.

more - Allows file contents or piped output to be sent to the screen one page at a time

less - Opposite of the more command

cat - Sends file contents to standard output. This is a way to list the contents of short files to the screen. It works well with piping.

whereis - Report all known instances of a command

wc - Print byte, word, and line counts

bg

bg jobs Places the current job (or, by using the alternative form, the specified jobs) in the background, suspending its execution so that a new user prompt appears immediately. Use the jobs command to discover the identities of background jobs.

cal month year - Prints a calendar for the specified month of the specified year.

cat files - Prints the contents of the specified files.

clear - Clears the terminal screen.

cmp file1 file2 - Compares two files, reporting all discrepancies. Similar to the diff command, though the output format differs.

diff file1 file2 - Compares two files, reporting all discrepancies. Similar to the cmp command, though the output format differs.

dmesg - Prints the messages resulting from the most recent system boot.

fg

fg jobs - Brings the current job (or the specified jobs) to the foreground.

file files - Determines and prints a description of the type of each specified file.

find path -name pattern -print

Searches the specified path for files with names matching the specified pattern (usually enclosed in single quotes) and prints their names. The find command has many other arguments and functions; see the online documentation.

finger users - Prints descriptions of the specified users.

free - Displays the amount of used and free system memory.

ftp hostname

Opens an FTP connection to the specified host, allowing files to be transferred. The FTP program provides subcommands for accomplishing file transfers; see the online documentation.

head files - Prints the first several lines of each specified file.

ispell files - Checks the spelling of the contents of the specified files.

kill process_ids

kill - signal process_ids

kill -l

Kills the specified processes, sends the specified processes the specified signal (given as a number or name), or prints a list of available signals.

killall program

killall - signal program

Kills all processes that are instances of the specified program or sends the specified signal to all processes that are instances of the specified program.

mail - Launches a simple mail client that permits sending and receiving email messages.

man title

man section title - Prints the specified man page.

ping host - Sends an echo request via TCP/IP to the specified host. A response confirms that the host is operational.

reboot - Reboots the system (requires root privileges).

shutdown minutes

shutdown -r minutes

Shuts down the system after the specified number of minutes elapses (requires root privileges). The -r option causes the system to be rebooted once it has shut down.

sleep time - Causes the command interpreter to pause for the specified number of seconds.

sort files - Sorts the specified files. The command has many useful arguments; see the online documentation.

split file - Splits a file into several smaller files. The command has many arguments; see the online documentation

sync - Completes all pending input/output operations (requires root privileges).

telnet host - Opens a login session on the specified host.

top - Prints a display of system processes that's continually updated until the user presses the q key.

traceroute host - Uses echo requests to determine and print a network path to the host.

uptime - Prints the system uptime.

w - Prints the current system users.

wall - Prints a message to each user except those who've disabled message reception. Type Ctrl-D to end the message.

OpenVPN

Mudah Mudahan Ga Repost

Lets Go....
syarat2 nya
1. PC or Notebook
2. Koneksi Internet
3. Server serah mau DS or VPS seng penting akses e root
4. Rokok Sebungkus + Kopi tambah cemilan dikit

Langsung aja bagi yang udah punya VPS atau Dedicated Server SSH dengan akses root yang berbasis CENTOS ok Go Buka Putty nya sekarang

sebelum membuat vpn cek dulu apakah server nya udah didukung dev/tun apa belum
dan juga beberapa aplikasi yang mendukung untuk jalan nya openvpn

================================================== =
login as: root
root@orangperawang.com's password:
[root@orangperawang ~]# ls -al /dev/net/tun <<< command nya
crw------- 1 root root 10, 200 Feb 26 18:01 /dev/net/tun << berarti sudah di dukung dev tun
[root@orangperawang ~]#
================================================== =
selanjut nya install beberapa aplikasi yang di perlukan
ini beberapa paket yang di perlukan

1. gcc
2. rpm-build
3. autoconf.noarch
4. zlib-devel
5. pam-devel
6. openssl-devel
7. make

install langsung semua nya
================================================== ==========
[root@orangperawang ~]# yum install gcc rpm-build autoconf.noarch zlib-devel pam-devel openssl-devel make
================================================== ==========
setelah nanti di install download openvpn nya ke dalam server

================================================== ==========
[root@orangperawang ~]# wget http://openvpn.net/release/openvpn-2.0.9.tar.gz
[root@orangperawang ~]# wget http://openvpn.net/release/lzo-1.08-4.rf.src.rpm
================================================== ==========
jadiin rpm yang udah di download tadi

[root@orangperawang ~]#rpmbuild --rebuild lzo-1.08-4.rf.src.rpm
[root@orangperawang ~]#rpm -Uvh /usr/src/redhat/RPMS/x86_64/lzo-*.rpm
[root@orangperawang ~]#rpmbuild -tb openvpn-2.0.9.tar.gz
[root@orangperawang ~]#rpm -Uvh /usr/src/redhat/RPMS/x86_64/openvpn-2.0.9-1.x86_64.rpm

perhatikan bahwa nama direktori mungkin saja berbeda, apabila mesin nya 32bit maka direktorinya biasanya: /usr/src/redhat/RPMS/i386/

cara cek mesin cukup ketik uname -a pada server nanti nya akan keluar tulisan seperti ini

[root@orangperawang ~]# uname -a
Linux orangperawang.com 2.6.18-028stab059.6 #1 SMP Fri Nov 14 14:01:22 MSK 2008 x86_64 x86_64 x86_64 GNU/Linux <<< mesin 64bit
[root@orangperawang ~]#

copy file konfigurasi nya menuju folder /etc/openvpn (biar gampang ngecek nya)

[root@orangperawang ~]#cp -r /usr/share/doc/openvpn-2.0.9/easy-rsa/ /etc/openvpn/
[root@orangperawang ~]#cp /usr/share/doc/openvpn-2.0.9/sample-config-files/server.conf /etc/openvpn/

Building certificate (membuat sertifikat)
caranya, kita masuk direktori /etc/openvpn/easy-rsa/2.0

[root@orangperawang ~]#cd /etc/openvpn/easy-rsa/2.0
[root@orangperawang ~]#source ./vars
[root@orangperawang ~]#./vars
[root@orangperawang ~]#./clean-all
[root@orangperawang ~]#./build-ca
akan muncul tulisan2 aneh seperti ini:
Generating a 1024 bit RSA private key
………………………++++++
…………………….++++++
writing new private key to ‘ca.key’
dsb..... dll

ga usah bingung enter enter aja, yang perlu diisi hanyalah pada field “Common Name” itu aja.

buat key server nya

[root@orangperawang ~]#./build-key-server server

buat Diffie Hellman

[root@orangperawang ~]# ./build-dh

Sekarang copy sertifikat2 tersebut menuju /etc/openvpn/keys

[root@orangperawang ~]#cp /etc/openvpn/easy-rsa/2.0/keys /etc/openvpn/keys -R

sekarang kita ke direktori /etc/openvpn/

[root@orangperawang ~]# cd /etc/openvpn/
[root@orangperawang openvpn]#

lihat apa yang aja isi dari direktori openvpn nya
[root@orangperawang openvpn]# ls -al
drwxr-xr-x 4 root root 4096 Feb 26 17:25 easy-rsa
-rw------- 1 root root 0 Feb 26 17:35 ipp.txt
drwx------ 2 root root 4096 Feb 26 17:30 keys
-rw-r--r-- 1 root root 9 Feb 28 17:36 server.conf
[root@orangperawang openvpn]#

backup dulu server.conf nya

[root@orangperawang openvpn]# cp server.conf server.conf.bak

trus edit server.conf nya hapus juga ga apa apa

[root@orangperawang openvpn]# rm -rf server.conf
[root@orangperawang openvpn]#

buat baru lagi server.conf nya bisa pake command vi, pico, nano
[root@orangperawang openvpn]# vi server.conf

isi aja di situ tulisan "dev tun" tanpa tanda petik

nah sekarang buat config 443.conf juga 53.conf
sesuai kebutuhan hehehehehhe

ini isi config nya 443.conf
================================================== =========
port 443
proto tcp
dev tun
ca /etc/openvpn/keys/ca.crt
cert /etc/openvpn/keys/server.crt
key /etc/openvpn/keys/server.key
dh /etc/openvpn/keys/dh1024.pem

plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
client-cert-not-required
username-as-common-name

server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1"
push "dhcp-option DNS 4.2.2.1"
push "dhcp-option DNS 4.2.2.2"
keepalive 5 30
comp-lzo
persist-key
persist-tun
status server-tcp.log
verb 3
================================================== =========

isi config 53.conf

================================================== =========
port 53
proto udp
dev tun
ca /etc/openvpn/keys/keys/ca.crt
cert /etc/openvpn/keys/keys/server.crt
key /etc/openvpn/keys/keys/server.key
dh /etc/openvpn/keys/keys/dh1024.pem

plugin /usr/share/openvpn/plugin/lib/openvpn-auth-pam.so /etc/pam.d/login
client-cert-not-required
username-as-common-name

server 10.9.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
push "redirect-gateway def1"
push "dhcp-option DNS 4.2.2.1"
push "dhcp-option DNS 4.2.2.2"
keepalive 5 30
comp-lzo
persist-key
persist-tun
status server-tcp.log
verb 3
================================================== =========

setelah semua nya selesai jalankan openvpn nya

[root@orangperawang openvpn]# openvpn /etc/openvpn/443.conf

[root@orangperawang openvpn]# openvpn /etc/openvpn/53.conf

Ok sekarang openVPN server sudah siap , sekarang tinggal bagaimana caranya supaya kita atau client dapat menikmati koneksi seakan-akan direct connection. Yang kita akan lakukan adalah setting firewall :

1. Enabling packet forwarding dengan command:
[root@orangperawang openvpn]#echo 1 > /proc/sys/net/ipv4/ip_forward

2.Edit NAT table untuk MASQUERADING Command berikut khusus untuk server Dedicated saja:

[root@orangperawang openvpn]#iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE

Sedangkan untuk VPS, command nya adalah sbb:
[root@orangperawang openvpn]#iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o venet0 -j SNAT --to 70.99.166.214 (ip disesuaikan dengan ip server anda kebetulan yang saya pakai ip 70.99.166.214)

Download openVPN berbasis GUI , biar gampang jalaninnya
http://openvpn.se/files/install_pack....3-install.exe

Copy sertifikat2 dari server tadi, yaitu file: ca.crt di direktori /etc/openvpn/keys/
biar gampang download aja Winscp buat download file ca.crt

Buat file konfigurasi client openvpn

untuk udp :
================================================== ==========
client
dev tun
proto udp
remote 70.99.166.214 53
resolv-retry infinite
route-method exe
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
auth-user-pass
comp-lzo
verb 3
================================================== ==========

untuk tcp port 443
================================================== ==========
client
dev tun
proto tcp
remote 70.99.166.214 443
resolv-retry infinite
route-method exe
resolv-retry infinite
nobind
persist-key
persist-tun
ca ca.crt
auth-user-pass
comp-lzo
verb 3
================================================== =========
copy file tersebut di c:\program files\openvpn\config

dah tinggal konekan nya work and tested by me 100% berhasil
tinggal anda yang coba



opss lupa ini cara add user buat openvpn
[root@orangperawang ~]# adduser "mo3slim" -m -s /bin/false <<<<<<< nama user tanpa tanda petik
[root@orangperawang ~]# passwd "mo3slim"
Changing password for user mo3slim.
New UNIX password: <<<< isi passnya" enter isi lagi 2 kali biasa nya

sumber : http://kaskus.us

Mematikan Service CENTOS

Mengatur Service

Matikan service yang tidak diperlukan! Tapi sebelumnya anda harus mengenal penjelasan setiap service/daemon yang akan anda matikan. Silahkan baca artikel Understanding your (Red Hat Enterprise Linux) daemons dari Redhat Magazine.

Contoh skrip yang biasa saya gunakan untuk mematikan service yang tidak diperlukan.

chkconfig --level 2345 apmd off
chkconfig --level 2345 atd off

# matikan service ini jika anda tidak mengaktifkan SELinux
# chkconfig --level 2345 auditd off

chkconfig --level 2345 autofs off
chkconfig --level 2345 bluetooth off
chkconfig --level 2345 cpuspeed off
chkconfig --level 2345 cups off
chkconfig --level 2345 firstboot off
chkconfig --level 2345 gpm off
chkconfig --level 2345 hidd off
chkconfig --level 2345 ip6tables off
chkconfig --level 2345 irqbalance off
chkconfig --level 2345 kudzu off

# matikan service ini jika anda tidak menggunakan LVM
#chkconfig --level 2345 lvm2-monitor off

chkconfig --level 2345 mcstrans off
chkconfig --level 2345 mdmonitor off
chkconfig --level 2345 microcode_ctl off
chkconfig --level 2345 netfs off
chkconfig --level 2345 nfslock off
chkconfig --level 2345 pcscd off
chkconfig --level 2345 portmap off
chkconfig --level 2345 readahead_early off
chkconfig --level 2345 readahead_later off

# matikan service ini jika anda tidak mengaktifkan SELinux
#chkconfig --level 2345 restorecond off

chkconfig --level 2345 rpcgssd off
chkconfig --level 2345 rpcidmapd off
chkconfig --level 2345 sendmail off
chkconfig --level 2345 smartd off
chkconfig --level 2345 yum-updatesd off