Author: Hidden User

Avoid Speed Traps with Trapster

Trapster is a website that uses Google Maps to show you where police speed traps are located. Combine this with a GPS-enabled cell phone and you can get a warning whenever you are approaching a “speed trap”. Users of the website can mark new speed traps they encounter to warn other users of the site. Here is a video demo of Trapster in action:

http://www.trapster.com

Trapster website screenshot

How to Configure CentOS for Graphical X11 or Multiuser Mode on Boot

Sometimes when I install CentOS it does not start up in “graphical mode” – that is it starts up directly at the command prompt rather than automatically starting up X Windows. You can configure CentOS to start up in whatever mode you want including graphical mode by editing the file /etc/inittab. To change the startup mode of CentOS open that file with a text editor.

# nano /etc/inittab

The file should look like the following:

# Default runlevel. The runlevels used by RHS are:
# 0 - halt (Do NOT set initdefault to this)
# 1 - Single user mode
# 2 - Multiuser, without NFS (The same as 3, if you do not have networking)
# 3 - Full multiuser mode
# 4 - unused
# 5 - X11
# 6 - reboot (Do NOT set initdefault to this)
id:3:initdefault:

As you can see, the file gives you the number-to-mode mapping at the top. All you need you do is change the number in the last line listed above. So for me I needed to change the 3 to a 5:

id:5:initdefault:

So my final /etc/inittab file looked like the following:

# Default runlevel. The runlevels used by RHS are:
# 0 - halt (Do NOT set initdefault to this)
# 1 - Single user mode
# 2 - Multiuser, without NFS (The same as 3, if you do not have networking)
# 3 - Full multiuser mode
# 4 - unused
# 5 - X11
# 6 - reboot (Do NOT set initdefault to this)
id:3:initdefault:

Reboot your computer and it should now start up in whatever mode you specified.

How to Fix the Problem of an Album Appearing Multiple Times in the Zune Software

There is a problem with the Zune software in how it handles some albums. In particular compilation albums which contains songs from different artists. The problem is that the same album will appear many times in the album listing in the Zune software. This can be very annoying. To fix the problem of an album appearing multiple times in the Zune software perform the following steps:

  1. Download and install the free MP3Tag program
  2. Launch MP3Tag and navigate to the folder on the hard drive which contains your MP3 or .wma files.
  3. Select all files in the album
  4. Click the “Actions (Quick)” button
  5. Select action “Format Value”
  6. Select the value “BAND” in the top drop down box
  7. In the bottom text box, specify: %album%
  8. Click OK to commit the changes
  9. Relaunch your Zune software and now you should only see one listing for your album

Zunes

How to Install an ipsCA SSL Certificate in OS X

ipsCA is a company that sells SSL certificates. Their SSL certificates are recognized by all the major browsers so you don’t need to worry about manually installing additional Certificate Authority (CA) certificates into your users’ web browsers like you have to do with CA companies whose certificates are not included by default in the major web browsers. What is great about ipsCA is that they offer free 2 year SSL certificates for educational institutions such as Universities. If your domain ends in .edu then you qualify for a free 2 year SSL certificate.

ipsCA certificates are a little unusual in that you need to install two certificates onto your server before it will work. I couldn’t find a documented set of procedures for installing ipsCA certificates on a MacOS X 10.4 server so I wrote some up:

Installing an ipsCA SSL Certificate in OS X 10.4

Generate the CSR

  1. In Server Admin, select the server you would like to secure.
  2. Click “Settings” > “Certificates” tab > “Add(+)” button.
  3. A dialog box will appear to enter your certificate information. Please refer to vs7313 for detailed CSR requirements.
  4. Enter starting and ending validity dates.
  5. Select private key bit length size (1024 is recommended and required for three year certificates)
  6. Enter a passphrase (“password”) for your private key.
    • Apple recommends “use at least 20 characters, include mixed case, numbers and/or punctuation, have no characters repeat, and having no dictionary terms.”
  7. Click “Save”. Now, “Request Signed Certificate From CA” can be selected.
  8. A dialog box will appear. Drag the certificate icon onto your desktop. This will create your CSR file.
  9. copy and paste the text of the CSR file into the certificate request form on the ipsCA website.
  10. Submit the request and wait for ipsCA’s email response.

Import the Signed Certificate

  1. In Server Admin, select the server the certificate needs to go on.
  2. Click “Settings” > “Certificates” tab
  3. Highlight the certificate the signed certificate corresponds to.
  4. Click the “edit” icon.
  5. Click the “Add Signed Certificate…” button.
  6. Paste the contents of the signed certificate text file you received from ipsCA into the text box that appears. Press OK to import the signed certificate.
  7. Quit and restart the Server Admin app to make sure it refreshes the status of the signed certificate.
  8. When you try to edit the certificate all the fields should be greyed out to indicate the certificate is signed and the import was successful.
  9. You may need to redesignate the newly signed certificate in the web server and/or restart it before Apache will start using the newly signed certificate.

Install the ipsCA Intermediate Certificates

1. Copy the ipsCA intermediate certificates bundle file into the /etc/certificates/ directory on the web server. At the time of this writing this file was named “IPS-IPSCABUNDLE.crt. The file is available on the ipsCA website.

2. Change the permissions on the certificate bundle to “640”.

  • cd /etc/certificates
  • sudo chmod 640 IPS-IPSCABUNDLE.crt

3. Navigate to the folder /etc/httpd/sites/ and locate the .conf file that corresponds to the the SSL virtual host that the certificate belongs to. Usually the filename of the .conf file will be named in the format “someNumber_IPAddress_443_fullyQualifiedHostName.conf”

4. Once you locate the file, open it in a text editor at locate the part of the virtual host section that covers the SSL certificate settings. The section you are looking for will look something like this:

SSLEngine On
SSLLog "/var/log/httpd/ssl_engine_log"
SSLCertificateFile "/etc/certificates/www.foo.com.crt"
SSLCertificateKeyFile "/etc/certificates/www.foo.com.$
SSLCipherSuite "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:!SSLv2:+EXP$

5. Add the following setting in between the “SSLCertificateKeyFile” and “SSLCipherSuite” setting:

SSLCertificateChainFile /etc/certificates/IPS-IPSCABUNDLE.crt
  • When you are done the certificate section should looking something like this:
SSLEngine On
SSLLog "/var/log/httpd/ssl_engine_log"
SSLCertificateFile "/etc/certificates/www.foo.com.crt"
SSLCertificateKeyFile "/etc/certificates/www.foo.com.$
SSLCertificateChainFile /etc/certificates/IPS-IPSCABUNDLE.crt
SSLCipherSuite "ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:!SSLv2:+EXP$

6. Save your changes and restart the web service. You should now be able to navigate to your SSL website and receive no “invalid” certificate errors. You can test your web server by using the ipsCA test website at: http://certs.ipsca.com/checkserver/

SSL Certificate