Operation and maintenance
![Linux kernel local privilege escalation vulnerability (CVE-2022-25636) - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Today, I received an email from Tencent Cloud, reminding me that there is a high-risk vulnerability in a VPS. I quickly opened the email to deal with it. It has been repaired, and I would like to share it here. Generally speaking, the system and kernel should be upgraded to the latest version to prevent many security problems. 1、 Vulnerability description Vulnerability name: Linux kernel local privilege escalation leak
![How to change the RDP port on Windows VPS - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
If you ordered Windows VPS, you may need to consider changing the RDP port to a non-standard port. By default, the RDP protocol uses port 3389, which is usually brute force cracked and/or scanned. Changing the RDP listening port of Windows Server is an additional security you can take
![The coolest project ever: bashvm, creating, configuring and managing virtual machines - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Today we want to see a very cool project: bashvm.com. This project allows you to use (you guessed it) bash to create, modify, and manage virtual machines. The entire environment is coded as a bash shell script. It's really neat! At home, I have a medium VM environment running with i5-825
![Let Git become a single fact source for application and infrastructure delivery - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Suppose you have successfully extended the application infrastructure. You use DevOps for rapid collaborative software development, and extend the underlying application infrastructure through container orchestration such as Kubernetes or HashiCorp Nomad to meet current needs. Writing and deploying new code is going well... until it's not like
![Akamai's VPC is now fully available - Lao Tang's Notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Virtual private cloud is the latest product in our growing network product portfolio and is now fully available to customers. VPC is an important first step in providing a stronger web experience and a broader product vision, enabling customers to build, connect and extend applications using Akamai cloud computing. In this release, you can now customize private networks
![Ubuntu Firewall ufw (iptables) Add Rule Ineffective Problem and Solution - Old Tang Notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Recently, a website was written that a crawler has been crawling, but still crawling after blocking the IP address. I was very depressed. It is clear that the ufw display rules have taken effect, but it is impossible to block the IP address. This has seriously affected website access, so I will search on the Internet to find out why, and then find a bug in UFW, and record it here. i...
![NGINX blocked IP (IP segment) access method: modify the configuration file or. htaccess file - Laotang notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Recently, a website was frequently visited by a large number of people. After reading it, someone wrote a boring crawler, so this article will share how NGINX blocks an IP or IP segment. When your NGINX server wants to disable access to an IP or IP segment, you can use the configuration file to achieve the goal. This article introduces two commonly used
![Uptime Kuma: an easy to use self-management monitoring tool, with installation tutorial - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Uptime Kuma is a very convenient self managed monitoring tool that can be deployed by itself. This article introduces the introduction, features, and installation tutorials of Uptime Kuma. Uptime Kuma is beautiful after installation. It can be used to monitor the online rate of VPS or servers. 1、
![How fast is it to create Tar archive without Gzip- Old Tang's Notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
About Gzip and Tar Everyone on Linux and BSD seems to be using a program called gzip, which is often used in combination with another program called tar. Tar is named after Tape ARchive, which is a way to copy files and folders ("directory") into the original design
![Linux VPS One click Test Backtrace Routing Script Tutorial - Lao Tang's Notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
This article shares the tutorial of using the backtrace script for the Linux VPS one click test of the backtrace route. It is very simple to use. Copy and paste the command, and then press Enter. It is also very convenient to view the test results, which will directly output the most simple and understandable results. In addition, you can cooperate with BestTrace script
![Linux VPS common one click script collection: performance test/network test/routing test, etc. - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Today, someone shared an article about the collection of one click scripts commonly used by Linux VPS. This article reproduces, collects and collates some shell scripts for personal use. Related articles: "Sorting out common scripts of tile movers' VPS: one click evaluation, performance test, speed measurement, running score, etc." "Sorting out practical scripts of tile movers' VPS: one click..."
![One click test script for Linux VPS server GreenBench: basic information/hard disk read-write, etc. - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Today, I saw a Linux VPS server one click test script, which can test basic information such as VPS configuration, FIO hard disk read/write speed, network speed, Geekbench run score, etc. The script name is GreenBench. At present, we haven't seen the source introduction
![Initial server settings before using Rocky Linux 9 - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
When you first create a new Rocky Linux 9 server, you should perform some configuration steps early in the initial setup. This will improve the security and availability of the server and lay a solid foundation for you. Step 1 - Log in as root user To log in to your server, you need to know the public IP address of the server
![Time synchronization tutorial for DMIT VPS using Linux - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Since the DMIT network shields most NTP servers for security, we need to select appropriate NTP servers for time synchronization. At present, the open and unshielded NTP server is only the NTP server provided by Google. The address is time1-4.google.com (original) 1, D
![Ubuntu 22.04 LTS official release/new features/installation method/download address - Lao Tang's notes](https://oldtang.com/wp-content/themes/dux/assets/img/thumbnail.png)
Ubuntu 22.04 was officially released just a few days ago. Ubuntu has always been Tang's favorite Linux distribution. Ubuntu 22.04 is an LTS version, also known as Long Term Support, which provides up to five years of life cycle support. Feel