Setup Tor Hidden Service in Ubuntu/Debian
Setup Tor Hidden Service on CentOS 7
Tor onion sites
Tor Hidden Service in Ubuntu/Debian
To install tor on Ubuntu/Debian, run
|
1 |
apt install tor |
Default configuration file for tor is /etc/tor/torrc
To enable hidden service, edit /etc/tor/torrc
|
1 |
vi /etc/tor/torrc |
uncomment lines
|
1 2 |
HiddenServiceDir /var/lib/tor/hidden_service/ HiddenServicePort 80 127.0.0.1:80 |
Create folder for your hidden service
|
1 2 3 |
mkdir /var/lib/tor/hidden_service/ chmod 700 /var/lib/tor/hidden_service/ chown -R debian-tor:debian-tor /var/lib/tor/hidden_service/ |
You need to install Apache/Nginx etc.. to serve your web application. Make sure to configure web application listen on 127.0.0.0:80
Now restart tor with command
|
1 |
systemctl start tor@default |
Ubuntu/Debian support multiple instances of tor. You can use command “/usr/sbin/tor-instance-create” to create new tor instance. Configuration for instanced tor available at /etc/tor/instances/INSTANCE_NAME/torrc
To see URL for your Hidden service, run
|
1 |
cat /var/lib/tor/hidden_service/hostname |
Example
|
1 2 3 |
root@lab:~# cat /var/lib/tor/hidden_service/hostname 3w2pkr2qcusd6rx7zq4rulq7kt4xjpsgv7nxubcy2bdbgipy4wto4aid.onion root@lab:~# |
You should be able to visit the application using .onion link in Tor Browser.
You need to take backup of tor folder (/var/lib/tor/hidden_service) as it contains your secret keys, this is needed to use the .onion domain name. If you lose this, you will lose the .onion url.
To start the service on boot, run
|
1 |
systemctl enable tor@default |
See Tor
Proxmox 6 disable No valid subscription notice
To disable No valid subscription notice from proxmox, edit file
|
1 |
vi /usr/share/javascript/proxmox-widget-toolkit/proxmoxlib.js |
Find
|
1 |
if (data.status !== 'Active') { |
This is on line 380. inside function checked_command
Replace with
|
1 |
if (false) { |
Resart pveproxy
|
1 |
systemctl restart pveproxy |
Zimbra webmail not working on port 80/443
On Zimbra mail server, webmail stopped working on Port 80/443. Admin interface worked properly on url https://hostname:7071/. There is no errors displayed under monitor tab of Zimbra Admin.
To fix, run
|
1 2 3 4 5 6 |
su - zimbra zmprov ms `zmhostname` zimbraReverseProxySSLToUpstreamEnabled FALSE zmprov ms `zmhostname` zimbraMailMode both zmprov ms `zmhostname` zimbraReverseProxyMailMode both ./libexec/zmproxyconfig -e -w -o -a 8080:80:8443:443 -x both -H `zmhostname` zmcontrol restart |
After running this, netstat -lntp start showing nginx running on port 80 and 443
|
1 2 3 4 5 6 7 8 |
root@zim:~# netstat -lntp | egrep "80|443" tcp 0 0 127.0.0.1:10663 0.0.0.0:* LISTEN 10980/zmlogger: zmr tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 11354/nginx.conf tcp 0 0 127.0.0.1:8080 0.0.0.0:* LISTEN 11098/java tcp 0 0 116.203.102.86:8080 0.0.0.0:* LISTEN 11098/java tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 11354/nginx.conf tcp6 0 0 :::7780 :::* LISTEN 11707/httpd root@zim:~# |
virt-manager
virt-manager is a GUI tool to manage virtual machines.
On CentOS desktop, install it with
|
1 |
yum install virt-manager |
For installing on Ubuntu, see Install virt-manager on Ubuntu
Connect to remote KVM server
To connect to remote KVM server from virt-manager, Go to File > Add Connection
If SSH port is not 22, use IP:PORT format to connect to KVM installation.
Once connected, you will see all VMs. Here we have 1 VM with name “foo”
You can double click on a VM to access its console/desktop.
See kvm
Install virt-manager on Ubuntu
virt-manager is a GUI tool used to manage KVM virtial machines. To install virt-manager on Ubuntu, run
|
1 |
apt install virt-manager |
Clone VM on VMware ESXi using vmkfstools
Free version of VMware ESXi don’t provide option to clone virtual machine. If you want to clone a VM, you need to purchase expensive vSphere license.
There is a work around for this, you need to clone disk of an existing Virtual machine using vmkfstools.
To make clone of a VM disk, SSH into your VMWare ESXi server as user root. Then create clone of disk with
|
1 |
vmkfstools -i "source.vmdk" "destination.vmdk" |
For new VM, i created a directory. Path to datastore directory may be differnt on your server, you can find it using “df -h” command and checking the file system.
|
1 |
mkdir /vmfs/volumes/disk2/ubuntu-clone/ |
Shutdown the Virtual Machine you want to clone the disk from. Run
|
1 2 3 4 5 |
[root@ns3048991:~] vmkfstools -i "/vmfs/volumes/disk2/Ubuntu/Ubuntu.vmdk" "/vmfs/volumes/disk2/ubuntu-clone/ubuntu-clone.vmdk" Destination disk format: VMFS zeroedthick Cloning disk '/vmfs/volumes/disk2/Ubuntu/Ubuntu.vmdk'... Clone: 100% done. [root@ns3048991:~] |
In screenshot below, i first tried to clone with out creating destination folder. That resulted in error. After creating destination folder, vmkfstools command worked.
Creating VM using cloned disk
Login to VMware ESXi web interface. Create a new VM. On the step where you select hardware, delete existing Disk. Add a new disk, browse and select the newly created clone disk. In this case – “/vmfs/volumes/disk2/ubuntu-clone/ubuntu-clone.vmdk”
Once the VM creation is finished, you will be able to start the new VM. You can create a VM, then use it as template for creating new virtual machines.
See VMWare
vmstat
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 |
[root@server70 ~]# vmstat -S M 1 10 procs -----------memory---------- ---swap-- -----io---- --system-- -----cpu----- r b swpd free buff cache si so bi bo in cs us sy id wa st 0 0 11 770 1009 3119 0 0 28 22 53 51 4 1 94 1 0 3 0 11 727 1009 3120 0 0 52 2504 8387 2624 12 1 86 1 0 0 0 11 755 1009 3120 0 0 4 157 4619 1841 12 1 86 1 0 0 0 11 755 1009 3120 0 0 136 4 9405 1595 2 1 98 0 0 0 0 11 755 1009 3120 0 0 0 33 4564 875 0 0 99 0 0 1 0 11 761 1009 3120 0 0 60 0 3151 1157 2 1 97 0 0 0 0 11 798 1009 3120 0 0 12 984 2937 898 0 0 99 0 0 0 1 11 828 1009 3120 0 0 0 321 3108 1002 3 0 96 1 0 0 0 11 813 1009 3120 0 0 4 0 6065 1512 6 1 93 0 0 1 0 11 848 1009 3120 0 0 4 100 7311 1628 3 1 95 2 0 [root@server70 ~]# |
vmstat 1
* High values in “wa” column mean: IO problem
* High values in “si”, “so” mean: excessive swapping
Sustained high swap rates (si and so) are usually bad. The system will start spending all of its time swapping, and make no progress on any actual work. You will also see the number of runnable (r and b) processes increase. If the situation gets bad enough and free memory gets too low, the Out-of-memory (oom) logic will start killing random processes. At this point, either reducing the number of processes that normally run or adding additional RAM are about the only options.
vmstat – Report virtual memory statistics
|
1 2 3 4 5 6 |
vmstat [-a] [-n] [delay [ count]] vmstat [-f] [-s] [-m] vmstat [-S unit] vmstat [-d] vmstat [-p disk partition] vmstat [-V] |
vmstat reports information about processes, memory, paging, block IO, traps, and cpu activity.
The first report produced gives averages since the last reboot. Additional reports give information on a sampling period of length delay. The process and memory reports are instantaneous in either case.
FIELD DESCRIPTION FOR VM MODE
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 |
Procs r: The number of processes waiting for run time. b: The number of processes in uninterruptible sleep. Memory swpd: the amount of virtual memory used. free: the amount of idle memory. buff: the amount of memory used as buffers. cache: the amount of memory used as cache. inact: the amount of inactive memory. (-a option) active: the amount of active memory. (-a option) Swap si: Amount of memory swapped in from disk (/s). so: Amount of memory swapped to disk (/s). IO bi: Blocks received from a block device (blocks/s). bo: Blocks sent to a block device (blocks/s). System in: The number of interrupts per second, including the clock. cs: The number of context switches per second. CPU These are percentages of total CPU time. us: Time spent running non-kernel code. (user time, including nice time) sy: Time spent running kernel code. (system time) id: Time spent idle. Prior to Linux 2.5.41, this includes IO-wait time. wa: Time spent waiting for IO. Prior to Linux 2.5.41, included in idle. st: Time stolen from a virtual machine. Prior to Linux 2.6.11, unknown. |
FIELD DESCRIPTION FOR DISK MODE
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
Reads total: Total reads completed successfully merged: grouped reads (resulting in one I/O) sectors: Sectors read successfully ms: milliseconds spent reading Writes total: Total writes completed successfully merged: grouped writes (resulting in one I/O) sectors: Sectors written successfully ms: milliseconds spent writing IO cur: I/O in progress s: seconds spent for I/O |
FIELD DESCRIPTION FOR DISK PARTITION MODE
|
1 2 3 4 |
reads: Total number of reads issued to this partition read sectors: Total read sectors for partition writes : Total number of writes issued to this partition requested writes: Total number of write requests made for partition |
FIELD DESCRIPTION FOR SLAB MODE
|
1 2 3 4 5 6 7 |
cache: Cache name num: Number of currently active objects total: Total number of available objects size: Size of each object pages: Number of pages with at least one active object totpages: Total number of allocated pages pslab: Number of pages per slab |
Related commands
* iostat
* sar
* mpstat
* ps
* top
* free
See Linux Commands