How to reset a error in bind zone serial number

If you misstype the serial number in a bind zone file you might be in a lot of trouble . Especially if you misstype it like this:
2014300101 instead of 2014030101 . Yet there is a way to fix it:

According to the docs :
Add to the current serial number 2147483647 and rndc reload, then put the correct serial and rndc reload again.

Yii framework – installing

Yii Framework it’s a php framework that will help developing Web 2.0 applications.

First step in using this framework would be to install it.  What you will typically need for developing a decent application: an apache / php / mysql  / memcache server.

If you are using TFM server all requirements are already met .

Download the framework itself from: http://www.yiiframework.com/download/ and unpack  it in /www/yii directory.
Add an apache vhost to point to /www/yii. A typical vhost would look like this ( modify yii.tfm.ro to reflect your host or domain :

        ServerName yii.tfm.ro
        ServerAlias *.yii.tfm.ro
        DocumentRoot /www/yii
        DirectoryIndex index.php index.html
        ServerAdmin admin@tfm.ro
        ServerSignature On

            AllowOverride All
            Options -Indexes +FollowSymLinks -Multiviews
            Allow from All
            Rewriteengine on
            RewriteBase /

        LogLevel warn
        CustomLog /var/log/apache2/yii.tfm.ro-access.log combined
        ErrorLog  /var/log/apache2/yii.tfm.ro-error.log

Restart your apache.
Next create your application using :

./framework/yiic webapp mytest
Create a Web application under '/www/yii/mytest'? (yes|no) [no]:

Answer yes and it will generate your skeleton application that will be the base of your application.
Navigate to http://yyi.tfm.ro/mytest and you should see something like this:

after-install

You should also see this video regarding the installation of yii framework:

Searching for Central Authentication Service

We are  searching for CAS (Central Authentication Service) for a project .

The Central Authentication Service (CAS) is a single sign-on protocol for the web. Its purpose is to permit a user to access multiple applications while providing their credentials (such as userid and password) only once. It also allows web applications to authenticate users without gaining access to a user’s security credentials, such as a password

We are evaluating CAS solution from:

In this post I’ll try to explain how to get jasig CAS up and running.I’m assuming that all CAS related programs will be in /opt/CAS , if you need them in other location you will have to slightly adjust the paths.

To get it up and running you will need:

    • Apache maven (http://maven.apache.org/). I used version 3.0.5 ( latest at the time of the post writing ) . Instalation of apache maven is straight forward .
mkdir -p /opt/CAS
cd /opt/CAS
wget http://mirrors.hostingromania.ro/apache.org/maven/maven-3/3.0.5/binaries/apache-maven-3.0.5-bin.tar.gz
tar xf apache-maven-3.0.5-bin.tar.gz
export PATH=$PATH:/opt/CAS/apache-maven-3.0.5/bin
cd /opt/CAS
wget http://mirrors.hostingromania.ro/apache.org/tomcat/tomcat-7/v7.0.41/bin/apache-tomcat-7.0.41.tar.gz
tar xf apache-tomcat-7.0.41.tar.gz
cd /opt/CAS
wget http://downloads.jasig.org/cas/cas-server-3.5.2-release.tar.gz
tar xf cas-server-3.5.2-release.tar.gz
cd /opt/CAS
wget http://dev.mysql.com/get/Downloads/Connector-J/mysql-connector-java-5.1.25.tar.gz
tar xf mysql-connector-java-5.1.25.tar.gz

Now we have everything we need for the build. Let’s start configure it

Edit the file: cas-server-3.5.2/cas-server-webapp/pom.xml

And change commons-dbcp version from 1.2.2 to 1.4 . Otherwise the CAS will give some obscure null errors after startup. After athat add the following:

<dependency>
 <groupId>mysql</groupId>
 <artifactId>mysql-connector-java</artifactId>
 <version>5.1.25-bin</version>
 <scope>provided</scope>
 </dependency>

Edit the file cas-server-3.5.2/cas-server-webapp/target/cas-server-webapp-3.5.2/WEB-INF/deployerConfigContext.xml and add the following ( required for mysql support and changed default demo authentication to mysql auth)

<!--                <bean
 class="org.jasig.cas.authentication.handler.support.SimpleTestUsernamePasswordAuthenticationHandler" />
 -->
<bean class="org.jasig.cas.adaptors.jdbc.SearchModeSearchDatabaseAuthenticationHandler">
 <property  name="tableUsers">
 <value>users</value>
 </property>
 <property name="fieldUser">
 <value>username</value>
 </property>
 <property name="fieldPassword">
 <value>password</value>
 </property>
 <property name="passwordEncoder">
 <bean class="org.jasig.cas.authentication.handler.DefaultPasswordEncoder">
 <constructor-arg value="MD5" />
 </bean>
 </property>
 <property name="dataSource" ref="dataSource" />
 </bean>

And at the end of file before /beans add the mysql configuration:

<bean id="dataSource" class="org.apache.commons.dbcp.BasicDataSource">
 <property name="driverClassName">
 <value>com.mysql.jdbc.Driver</value>
 </property>
 <property name="url">
 <value>jdbc:mysql://localhost:3306/cas</value> <!-- Replace this line with the database containing the users table -->
 </property>
 <property name="username">
 <value>REPLACE_ME</value> <!-- Replace this line with the MySQL username -->
 </property>
 <property name="password">
 <value>REPLACE_ME</value> <!-- Replace this line with the actual MySQL password -->
 </property>
 </bean>

On your mysql server create the database and table where the users will be kept and insert a test user :

create database cas;
 grant all on cas.* to REPLACE_ME@127.0.0.1 identified by 'REPLACE_ME';
 CREATE TABLE users (username char(20) PRIMARY KEY NOT NULL, password char(64));
 INSERT INTO users(username, password) VALUES ('Test44',MD5('passTest'));

Now the building part:

1. First install mysql connector

mvn install:install-file -DgroupId=mysql -DartifactId=mysql-connector-java -Dversion=5.1.25-bin -Dpackaging=jar -Dfile=../../mysql-connector-java-5.1.25/mysql-connector-java-5.1.25-bin.jar

2. Next build the war file

mvn package install

Install the package into tomcat directoy:

cp cas-server-3.5.2/cas-server-webapp/target/cas.war /opt/CAS/apache-tomcat-7.0.41/webapps

And after this restart your tomcat and point a browser to http://localhost:8080/cas  and you should have a CAS instance up and running.

Things to test from this point forward:

  1. Test custom table structure
  2. Configure tomcat for SSL
  3. How to add custom password encryption
  4. How to add custom SQL auth string
  5. Attribute releasing from database
  6. Integration with a website
  7. Facebook login , oAuth login

 

JAVA implementation of mysql password() function

Here is a quick JAVA implementation of mysql password() function:

public static String MySQLPassword(String plainText)
                  throws UnsupportedEncodingException
{
    byte[] utf8 = plainText.getBytes("UTF-8");
    byte[] test = DigestUtils.sha(DigestUtils.sha(utf8));
    return "*" + convertToHex(test).toUpperCase();
}

This is usefull when you have a table with a user password that is updated with mysql password and needs to be changed to JAVA implementantion. I needed it when i started looking at jasig CAS .

Work in progress. Getting TFM Workstation up to date . Part 1

For a long time we didn’t got time to get TFM Workstation up to date. The old version served it’s purpose but now some packages are simply too old and new features are now missing. This is a tedious work since we have to maintain certain level of compatibility with Fedora core.

At this point we are working on KDE and we are here:

 

— The following external packages were located on your system.
— This installation will have the extra features provided by these packages.
—————————————————————————–
* Perl – Needed for building kdelibs
* ZLib – Support for gzip compressed files and data streams
* X Rendering Extension (libXrender) – Support for compositing, rendering operations, and alpha-blending
* X Screensaver Extension (libXss) – Support for KIdleTime (fallback mode)
* X Sync Extension (libXext) – Efficient operation of KIdleTime
* OpenSSL – Support for secure network communications (SSL and TLS)
* Libintl – Support for multiple languages
* LibACL – Support for manipulating access control lists
* BZip2 – Support for BZip2 compressed files and data streams
* LZMA/XZ – Support for xz compressed files and data streams
* PCRE – Perl-compatible regular expressions in KJS
* UDev – UDev support for Solid
* Flex – Allows the Solid predicate parser to be updated
* Bison – Allows the Solid predicate parser to be updated
* LibXSLT – Required by the KDE help system to process DocBook XML
* LibXML2 – Required by the KDE help system to process DocBook XML
* xmllint – Required by the KDE help system to process DocBook XML
* DocBook XML – Required by the KDE help system to process DocBook XML
* DocBook XSL – Required by the KDE help system to process DocBook XML
* GSSAPI – Allows KIO to make use of certain HTTP authentication services
* shared-mime-info – Allows KDE applications to determine file types
* libjpeg – JPEG image format support
* libpng – PNG image format support
* JasPer – Support for JPEG-2000 images
* OpenEXR – Support for OpenEXR images

—————————————————————————–
— The following OPTIONAL packages could NOT be located on your system.
— Consider installing them to enable more features from this software.
—————————————————————————–
* Soprano (2.7.56 or higher)  <http://soprano.sourceforge.net>
Support for the Nepomuk semantic desktop system
* Soprano Raptor Parser  <http://soprano.sourceforge.net>
Support for the Nepomuk semantic desktop system
* Soprano Redland Backend  <http://soprano.sourceforge.net>
Support for the Nepomuk semantic desktop system
* Shared desktop ontologies (0.10 or higher)  <http://oscaf.sourceforge.net>
Support for the Nepomuk semantic desktop system
* QCA2 (2.0.0 or higher)  <http://delta.affinix.com/qca>
Support for remote plasma widgets
* PolkitQt-1  <http://techbase.kde.org/Polkit-Qt-1>
Support for executing priviledged actions in a controlled way (KAuth)
STRONGLY RECOMMENDED: Required to make KAuth work, and hence enable certain workspace functionalities
* FAM  <http://oss.sgi.com/projects/fam>
File alteration notification support via a separate service
Provides file alteration notification facilities using a separate service.
* Grantlee (0.1.0 or higher)  <http://www.grantlee.org>
ModelEventLogger code generation (part of the ProxyModel test suite)
Grantlee is used for generating compilable code by the ModelEventLogger. Without Grantlee, the logger will do nothing.
* HUPnP  <http://www.herqq.org>
UPnP support for Solid
Allows Solid to provide information about UPnP devices on the network
* media-player-info  <http://www.freedesktop.org/wiki/Software/media-player-info>
Enables identification and querying of portable media players
Runtime-only dependency of the udev solid backend. Support for m-p-i is included even if not found during build
* Aspell  <http://aspell.net/>
Spell checking support via Aspell
This is not needed for spell checking if Enchant is provided or only Hebrew spell checking is required
* HSpell  <http://ivrix.org.il/projects/spell-checker/>
Spell checking support for Hebrew
Hebrew support can also be provided via Enchant, providing the correct Enchant backends are installed
* Enchant  <http://www.abisource.com/projects/enchant/>
Spell checking support via Enchant
* Avahi  <http://avahi.org>
Facilities for service discovery on a local network (DNSSD)
Either Avahi or DNSSD is required for KDE applications to make use of multicast DNS/DNS-SD service discovery
* DNSSD  <http://avahi.org>
Facilities for service discovery on a local network
Either Avahi or DNSSD is required for KDE applications to make use of multicast DNS/DNS-SD service discovery

—————————————————————————–
— The following REQUIRED packages could NOT be located on your system.
— You must install these packages before continuing.
—————————————————————————–
* Strigi (0.6.3 or higher)  <http://strigi.sourceforge.net>
Desktop indexing and search support
Required by some critical kioslaves
* libattica (0.1.90 or higher)  <git://anongit.kde.org/attica>
Support for Get Hot New Stuff
* DBusMenuQt  <https://launchpad.net/libdbusmenu-qt>
Support for notification area menus via the DBusMenu protocol
* giflib  <http://sourceforge.net/projects/giflib>
GIF image format support
Required by khtml.

—————————————————————————–