Derek Neely

...notes for thyself, but useful for all...

Chicken of the VNC - Unknown authType 18

Aug 02, 2016 by derek

Was setting up some remote access to my Xubuntu 14.04 box tonight. While trying to connect using Chicken of the VNC I received this error:

Unknown authType 18

To fix, hop on the server and disable the encryption:

gsettings set org.gnome.Vino require-encryption false

Should be able to connect now.


Linux, Mac

Verifying SSL Certificate, Key, and CSR

Jun 22, 2016 by derek

Use these openssl commands to verify that your SSL key, certificate, and certificate signing request (CSR) all match up.

openssl x509 -noout -modulus -in certificate.crt | openssl md5
openssl rsa -noout -modulus -in privateKey.key | openssl md5
openssl req -noout -modulus -in CSR.csr | openssl md5

If they all match up, you're good to go!

And to check the certificate's expiration date:

openssl x509 -enddate -noout -in server.crt
Security, Linux, SSL

heartbeat - cloned Linux servers

Jun 13, 2016 by derek

With virtualization so prevalant these days it's so easy get one server all setup the way you like and then clone it on off for the next server. The linux heartbeat daemon is still very prevalent in use to keep various services up and running during maintenance, hardware failure, etc. However when you clone one box that has heartbeat up and running to create that next node that will be joined into the cluster, there is a small issue that becomes problematic. Of course after adding the new node you have to do your necessary configs to /etc/ha.d/haresources and /etc/ha.d/ to get the new box on, but if you look at the logs after adding it, you may see some of these flying by and filling up your ha logs.

Jun 13 10:35:24 server1 heartbeat: [1141]: WARN: nodename server1 uuid changed to server2
Jun 13 10:35:24 server1 heartbeat: [1141]: debug: displaying uuid table
Jun 13 10:35:24 server1 heartbeat: [1141]: debug: uuid=6cefa610-ef8c-4f1f-b9fe-55de41b1168f, name=server1
Jun 13 10:35:24 server1 heartbeat: [1141]: ERROR: should_drop_message: attempted replay attack [server2]? [gen = 1450123238, curgen = 1450123239]

This has to do with the fact that you cloned server1 to make server2, changed and updated some configs and then fired everything back up. At the time of heartbeat starting for the first time it generates a uuid on the server to identify itself in the cluster. Since you just spun up server2 from server1, this uuid has already been generated. No fear though. Easy fix

#> service heartbeat stop
#> rm /var/lib/heartbeat/hb_uuid
#> service heartbeat start

You can do this on one or both of the servers. It doesn't hurt to re-do it.

Clustering, Linux, Networking
<<< Page 6 of 10 >>>


Tweet Tweet Tweet

© 2016 Derek Neely