$ find plugins -type d -exec chmod g+w {} \;

In this case, we’re changing the group permissions on the plugins directory and all sub-directories.

# grep avc /var/log/audit/audit.log | audit2allow -M mypol
# semodule -i mypol.pp

find ./ -iname \*.htm\* -exec sed -i 's/www\.example\.com/www2\.example\.com/g' {} \;

Note that you must denote special characters with the backslash character (e.g., the dots in www.example.com).

find /var/ -type d -perm -o+w -exec ls -ld {} \;

The syntax may vary depending on the flavour of Unix/Linux you’re using, but this worked on Ubuntu for me.

rsync -ave ssh --delete myhost.example.com:Documents/ Documents/

The −−delete option ensures that any files or directories that no longer exist on the source are also removed from the destination.

(2009-12-04 Update: This does not work with RHEL 5.4. The mysql ruby gem requires ruby 1.8.6 and RHEL 5.4 only ships with ruby 1.8.5)

Using yum install ruby and mysql. The command below does not list all the required packages, but due to dependencies, the additional packages will be installed (or should be – this is all from memory).

[bm@app3 ~]$ sudo su -
[root@app3 ~]# yum install ruby ruby-devel ruby-libs ruby-irb \
> ruby-rdoc subversion-ruby mysql-server mysql-devel
[....]

Complete the basic configuration of MySQL.
[root@app3 ~]# /sbin/chkconfig mysqld on
[root@app3 ~]# service mysqld start
[root@app3 ~]# mysql_secure_installation


Download and install RubyGems. As of the date this post was written, the latest version is 1.1.1.
[root@app3 ~]# wget http://rubyforge.org/frs/download.php/35284/rubygems-1.1.1.zip
[root@app3 ~]# unzip rubygems-1.1.1.zip
[root@app3 ~]# cd rubygems-1.1.1
[root@app3 rubygems-1.1.1]# ruby setup.rb
[root@app3 ~]# cd ..
[root@app3 ~]# rm -rf rubygems-1.1.1


Now install Rails, Mongrel, the Ruby MySQL interface, Capistrano
[root@app3 ~]# gem install rails --include-dependencies --no-rdoc --no-ri
[root@app3 ~]# gem install mongrel --include-dependencies --no-rdoc --no-ri
[root@app3 ~]# gem install mysql -- --with-mysql-config=/usr/bin/mysql_config
[root@app3 ~]# gem install capistrano --include-dependencies --no-rdoc --no-ri


Phusion’s passenger gem provides a “mod_rails” module for Apache. The installation is very straight forward.
[root@app3 ~]# gem install passenger
[root@app3 ~]# passenger-install-apache2-module


Just follow the on-screen instructions to finish the installation.

Environment
Ok, so let’s set the scene:

• vmhost is a RHEL 5 server running several virtual machines using the Xen virtualization technology. Each virtual machine is allocated a 60 GB logical volume within an LVM volume group. One of these virtual machines, “win2k3vm”, needs to be moved to a new server.
• new-vmhost is almost identical to vmhost, but has updated hardware and more memory. This is the server that “win2k3vm” will be moved to.

Migrate the Virtual Machine
1. Create a snapshot of virtual machine LVM volume. This can be run on a live virtual machine, but it is probably safer to perform a graceful shutdown of your virtual machine first.

[root@vmhost]# lvcreate -s -L 300m -n win2k3vm-snap VolGroup01

2. Export the snapshot of the guest VM to a file that can be moved between physical servers.

[root@vmhost]# dd if=/dev/VolGroup01/win2k3vm-snap of=/mnt/temp/win2k3vm.img bs=4096

3. Remove the snapshot LVM volume.

[root@vmhost]# lvremove /dev/VolGroup01/win2k3vm-snap

4. Copy the file to the new VM host. Make sure you have sufficient free drive space.

[root@vmhost]# scp /mnt/temp/win2k3vm.img user@new-vmhost:/mnt/temp/

5. On the new VM host, create an LVM volume that is at least as big as the guest VM file.

[root@new-vmhost]# lvcreate -n win2k3vm -L 60G VMGroup

6. Transfer the guest VM file to the new LVM volume.

[root@new-vmhost]# dd if=win2k3vm.img of=/dev/VMGroup/win2k3vm bs=4096

7. Copy the VM config file from the old VM host to the new VM host server.

[root@vmhost]# scp /etc/xen/win2k3vm user@new-vmhost:

8. Copy the file to the appropriate directory.

[usr@new-vmhost]$ sudo mv ~/win2k3vm /etc/xen/

Summary of Commands
[root@vmhost]# lvcreate -s -L 300m -n win2k3vm-snap VolGroup01
[root@vmhost]# dd if=/dev/VolGroup01/win2k3vm-snap of=/mnt/temp/win2k3vm.img bs=4096
[root@vmhost]# lvremove /dev/VolGroup01/win2k3vm-snap
[root@vmhost]# scp /mnt/temp/win2k3vm.img user@new-vmhost:/mnt/temp/
[root@new-vmhost]# lvcreate -n win2k3vm -L 60G VMGroup
[root@new-vmhost]# dd if=win2k3vm.img of=/dev/VMGroup/win2k3vm bs=4096
[root@vmhost]# scp /etc/xen/win2k3vm user@new-vmhost:
[usr@new-vmhost]$ sudo mv ~/win2k3vm /etc/xen/


Download the latest stable version from the phpMyAdmin web site, and extract it to a location of your choice. I prefer to keep the installation outside of the web root and use an apache alias to reference it.

[root@app3 ~]# cd /var/www
[root@app3 ~]# wget http://superb-west.dl.sourceforge.net/sourceforge/phpmyadmin/phpMyAdmin-2.11.5.2-all-languages-utf-8-only.tar.gz
[root@app3 ~]# tar xzf phpMyAdmin-2.11.5.2-all-languages-utf-8-only.tar.gz

Now that’s a lengthy directory name! Let’s create a link to that directory with a more friendly name.

[root@app3 ~]# ln -s phpMyAdmin-2.11.5.2-all-languages-utf-8-only phpMyAdmin


SELinux may generate a number of errors regarding this new directory that will be referenced by the apache web server. Let’s correct the security context of the entire phpMyAdmin directory structure.

[root@app3 ~]# chcon -R -h -t httpd_sys_content_t \
> phpMyAdmin-2.11.5.2-all-languages-utf-8-only


Configure the phpMyAdmin installation to use http authentication. We’ll make sure it is secure by forcing SSL encryption using apache directives in a later step.

[root@app3 ~]# cd phpMyAdmin
[root@app3 ~]# cp config.sample.inc.php config.inc.php
[root@app3 ~]# vi config.inc.php


Change the line:
$cfg['Servers'][$i]['auth_type'] = 'cookie';
to:
$cfg['Servers'][$i]['auth_type'] = 'http';

Now we need to configure the apache web server. To keep things modular, create a file phpmyadmin.conf in /etc/httpd/conf.d. Any configuration directives in this file will automatically be loaded into the main apache configuration when the daemon is restarted.

[root@app3 ~]# vi /etc/httpd/conf.d/phpmyadmin.conf


The phpmyadmin.conf file should contain the following directives. Just modify the paths to suit your installation.

Alias /phpmyadmin /var/www/phpMyAdmin
<Directory "/var/www/phpMyAdmin">
    Options FollowSymLinks
    AllowOverride None
    Order allow,deny
    Allow from all
    SSLRequireSSL
</Directory>

Restart apache and see if your installation works.

[root@app3 ~]# service httpd restart


If there are problems, check your logs. It is possible that SELinux may be complaining about something.

prompt# mount Fedora-8-x86_64-DVD.iso /mnt/isofile/ -o ro,loop=/dev/loop0

Ensure that the /mnt/isofile directory exists before trying to mount the ISO to that location.

On the server side:
First, we need to ensure the vncserver is actually running. SSH to the server or logon at the console as your regular user account. No root privileges are necessary. Once logged in, just type vncserver. You should see something like this:

[bm@app3 ~]$ vncserver 

You will require a password to access your desktops.

Password:
Verify:
xauth:  creating new authority file /home/bm/.Xauthority

New 'app3.domain.com:1 (app3)' desktop is app3.domain.com:1

Creating default startup script /home/bm/.vnc/xstartup
Starting applications specified in /home/bm/.vnc/xstartup
Log file is /home/bm/.vnc/app3.domain.com:1.log

If this is the first time you’ve run the application, you’ll be prompted to set a password for vnc clients, and it will also create default X Windows session configurations. You probably don’t want to use the defaults, so kill the current vnc server instance and edit those files.

[bm@app3 ~] vncserver -kill :1
Killing Xvnc process ID 29181
[bm@app3 ~]$ cat .vnc/xstartup
#!/bin/sh

[ -x /etc/vnc/xstartup ] && exec /etc/vnc/xstartup
[ -r $HOME/.Xresources ] && xrdb $HOME/.Xresources
xsetroot -solid grey
vncconfig -iconic &
xterm -geometry 80x24+10+10 -ls -title "$VNCDESKTOP Desktop" &
twm &


Uncomment the lines in bold and then start vncserver again.

On the client side:
Open up a shell window (on your Linux/Mac OS X client) and configure your tunnel to forward the server’s VNC port (e.g., 5901/tcp) to your localhost. Please note that the VNC port range starts at 5900 and increases by screen number. For example, if you are trying to connect to myserver.domain.com:23 (i.e., screen 23), you will need to reference port 5923/tcp. For the purpose of this article, we’re assuming there is only one VNC instance running on the server, and the screen number is :1.

client:~ user$ ssh remoteserver.domain.com -L 5901/127.0.0.1/5901

Now, use your VNC client to connect to localhost:1 or localhost port:5901.

There are several good VNC clients for Mac OS X and Windows, and most distributions of Linux already have VNC installed.

Free VNC Applications:

• TightVNC(multi-platform)
• Chicken of the VNC(Mac OS X)