Enable root login via SSH on Linux/Unix systems

Most Linux/Unix systems have root login disabled by default.

It is a huge security risk to allow root login via SSH, so if for some particular reason you need root login via SSH, enable it temporarily to perform need tasks, then disable it right away to secure your system.

FreeNAS:

  • go to Services -> SSH config
  • enable Login as Root with password
  • OK to save

Linux/FreeBSD:

  • edit the /etc/ssh/sshd_config file
    • $ sudo nano /etc/ssh/sshd_config
  • set PermitRootLogin yes
  • restart sshd
    • $ systemctl restart sshd

For more information on sshd_config settings read the man page.

The Biomass Distribution on Earth

Article published in the Proceedings of the National Academy of Sciences of the United States of America, reveals that the global biomass pyramid contains more consumers than than producers. It also highlights the impact of humanity on the global biomass of other taxa, such as mammals, fish and plants.

http://www.pnas.org/content/early/2018/05/15/1711842115

The Guardian – Article

https://www.theguardian.com/environment/2018/may/21/human-race-just-001-of-all-life-but-has-destroyed-over-80-of-wild-mammals-study

 

 

Firmware update for iDRAC6 on Dell PowerEdge R710

This tutorial is for iDRAC on a Dell PowerEdge R710.

Get the latest firmware for the iDRAC from Dell Support.

Go to www.dell.com -> Support -> Drivers & Downloads -> Choose from all Products -> View Products -> Servers, Storage, & Networking -> PowerEdge -> PowerEdge R710 -> Category -> Embedded Server Management -> Dell iDRAC Monolithic Release.

The latest version as of May 18th, 2018 is 2.90.

Click on the latest driver to expand the view and then click on View full driver details.

From Available formats download the:

  • Release Notes — read this before updating the firmware
  • Application format file: iDRAC6_2.90_A00_FW_IMG.exe

Note: if you run Microsoft Windows on your server, you can download the ESM_Firmware file designed to run on MS Window 64-bit Operating Systems

For this tutorial iDRAC6 is being upgraded via the iDRAC Web GUI.

Run the file to unzip. The firmware file is called firmimg.d6. Read the release notes before upgrading the firmware.

Login into the iDRAC.

Go to iDRAC Settings -> Update -> Firmware Update and click on the Browse button to select the firmware file, then click on Upload.

Screen will display File upload in progress … (wait until completed!; it will take a while)

Make sure the Current Version is lower than the New Version.

Preserve iDRAC Configuration Settings checkbox should be checked.

Click Next button to proceed with the firmware upgrade or Cancel to cancel the upgrade. Click Yes to confirm.

Wait until the upgrade is complete at 100%.

You don’t have to reboot the server. Close the browser window and reconnect to the iDRAC using a new browser session.

Congratulations! You are done.

 

 

Inspiring Quotes …

Shakespeare said …

I always feel happy. You know why? Because I don’t expect anything from anyone. Expectations always hurt. Life is short. So love your life. Be Happy & Keep smiling. Just live for yourself and before you speak, listen. Before you write, think. Before you spend, earn. Before you pray, forgive. Before you hurt, feel. Before you hate, love. Before you quit, try. Before you die, live.

 

Java error: Unsigned application requesting unrestricted access to sytem

Starting with Java version 8 Update 131, Oracle decided to treat applications that are signed with the MD5withRSA or MD5withDSA algorithms as unsigned, therefore JNLP (Java Network Launch Protocol) with not run them.

When I try to access one of my Dell servers via the iDRAC interface, I get this error:

The reason for this is that the application was signed with a weak cryptographic algorithm (such as MD5witRSA ) and Java will not run the application due to security reasons since it sees it as unsigned.

To allow applications signed with a weak cryptographic algorithm to run, you need to disable jdk.jar.disabledAlgorithms property in the Java master security properties file, called java.security. Do this at your own risk!

The java.security file is located in C:\Program Files\Java\jre1.8.0_171\lib\security folder for the 64-bit systems and C:\Program Files (x86)\Java\jre1.8.0_171\lib\security folder for the 32-bit systems.

To edit the java.security file you must Run as administrator your favorite text editor, then open the file. Comment out the jdk.jar.disabledAlgorithms property and save the file.

Restart your browser and connect again. This time, the JNLP should run the application.

Flash Dell PERC H200 using the Dell 6Gbps SAS HBA Non-RAID Firmware

In this tutorial I am going to show how to flash a Dell PERC H200 RAID controller to a Dell 6Gbps SAS HBA Non-RAID Controller.

In my case, I have a Dell PowerEdge R710 server that I want to use with Proxmox and ZFS. ZFS needs to have individual access to each disk in order to create a RAID. The PERC H200 controller does not allow that, and therefore it needs to be flashed to a Non-RAID controler.

Download FreeDOS from:

http://www.freedos.org/

You need FreeDOS to boot the server and run the SAS2FLSH utility.

Download the Dell 6Gbps SAS HBA Firmware from:

http://www.dell.com/support/home/us/en/19/drivers/driversdetails?driverId=K161K

The files you need are:

  • the SASHBA_Firmware_6GBPS-SAS-HBA_07.03.06.00_A11_ZPE.exe in HARD-DRIVE format
  • SASHBA_Firmware_6GBPS-SAS-HBA_RELNOTES_07.03.06.00_A11.txt release notes

Run the .exe file. You will get a folder that contains 9 files.

Rename the folders to something short, like DELL and FW maybe. The FW folder should be inside the DELL folder.

Use Rufus to create a bootable FreeDOS USB drive. Upload the Dell folder on the FreeDOS USB drive.

Boot the server using FreeDOS. After bootup is complete, run the following commands:

C:\>cls
C:\>dir

cls will clear the screen. dir will list the current directory. Your screen should look somewhat like this (I have other folders present that you do not):

You should see your DELL folder in the root directory. To navigate in FreeDOS you use the cd command just like in Linux. Move into the DELL\FW folder and list the directory:

C:\>cd dell
C:\DELL\FW\>dir

You should see something similar to this:

The directory listing should include the 9 files listed above. Do not worry if your listing doesn’t look exactly like mine.

The utility you are going to use is called SAS2FLSH.

It is a good idea to read the LSI SAS2Flash Reference Guide to have an understanding of what you are doing.

Before flashing the controller, create a backup of the BIOS, firmware and NVDATA using the following commands:

sas2flsh2 -ubios bios.rom
sas2flsh -ufirmware firmware.fw
sas2flash -o -ufwbackup firmbk.fw
sas2flsh -o -uflash flash.rom
sas2flash -o -unvdata nvdata.img

In case you do something wrong, you can use the backup files to restore the controller.

 

Inspiring Quotes …

The world will not be destroyed by those who do evil, but by those who watch and do nothing. — Albert Einstein

No matter how talented, rich or intelligent you are, how you treat animals tells me all I need to know about you.

Maturity is when you have the power to destroy someone who did you wrong but you just breathe, walk away and let life take care of them.

Teach your daughters to worry less about fitting into glass slippers and more about shattering glass ceilings.

Religion is for people who are afraid of going to hell. Spirituality is for those who have already been there. — Vine Deloria, Sioux

PROMISES are worse than Lies. You don’t just make them Believe, you also make them Hope.

A superior man is modest in his speech, but exceeds in his actions.                        — Confucius

We try to hide our feelings, but we forgot that our eyes speak.

Integrity gives you real freedom because you have nothing to fear since you have nothing to hide. — Zig Ziglar

There is something wrong with your character if opportunity controls your loyalty.

The biggest coward is a man who awakens a woman’s love with no intention of loving her. — Bob Marley

A real man chooses to honor, love, respect, adore and be faithful to one woman.