Thursday, November 28, 2019

How To Install xrdp and enable remote desktop on CentOS 8 / Red Hat Enterprise Linux 8

xrdp is a free and open-source Remote desktop Protocol server which allows you to take remote desktop sessions of Linux server from Windows machine / Linux Machine. It is capable of accepting remote connections from rdesktop, freerdp, and remote desktop clients.
This post will help you to install xrdp on CentOS 8 / RHEL 8.

Prerequisites

Setup EPEL Repository

xrdp package is available on EPEL repository. So, we need to enable the EPEL repository on CentOS 8 / RHEL 8 to install xrdp.

CentOS 8

yum install -y epel-release

RHEL 8

yum install -y https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm

Install Gnome Desktop

Before installing the xrdp server, you would need to install the Gnome desktop using YUM command.

Install xrdp on CentOS 8 / RHEL 8

Install xrdp with TigerVNC package.

yum install -y tigervnc-server xrdp


Output:
Last metadata expiration check: 1 day, 5:23:26 ago on Wed 25 Sep 2019 06:04:22 AM EDT.
Dependencies resolved.
===============================================================================================================
 Package                       Arch                 Version                      Repository               Size
===============================================================================================================
Installing:
 tigervnc-server               x86_64               1.9.0-9.el8                  AppStream               252 k
 xrdp                          x86_64               1:0.9.11-1.el8               epel                    440 k
Installing dependencies:
 xorgxrdp                      x86_64               0.2.11-1.el8                 epel                     70 k
 xrdp-selinux                  x86_64               1:0.9.11-1.el8               epel                     20 k

Transaction Summary
===============================================================================================================
Install  4 Packages

Total download size: 782 k
Installed size: 3.0 M
Downloading Packages:
(1/4): xorgxrdp-0.2.11-1.el8.x86_64.rpm                                         59 kB/s |  70 kB     00:01
(2/4): xrdp-selinux-0.9.11-1.el8.x86_64.rpm                                    256 kB/s |  20 kB     00:00
(3/4): xrdp-0.9.11-1.el8.x86_64.rpm                                            329 kB/s | 440 kB     00:01
(4/4): tigervnc-server-1.9.0-9.el8.x86_64.rpm                                  179 kB/s | 252 kB     00:01
---------------------------------------------------------------------------------------------------------------
Total                                                                          126 kB/s | 782 kB     00:06
warning: /var/cache/dnf/epel-6519ee669354a484/packages/xorgxrdp-0.2.11-1.el8.x86_64.rpm: Header V3 RSA/SHA256 Signature, 
key ID 2f86d6a1: NOKEY
Extra Packages for Enterprise Linux 8 - x86_64                                  87 kB/s | 1.6 kB     00:00
Importing GPG key 0x2F86D6A1:
 Userid     : "Fedora EPEL (8) <epel@fedoraproject.org>"
 Fingerprint: 94E2 79EB 8D8F 25B2 1810 ADF1 21EA 45AB 2F86 D6A1
 From       : /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-8
Key imported successfully
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transaction
  Preparing        :                                                                                       1/1
  Installing       : xorgxrdp-0.2.11-1.el8.x86_64                                                          1/4
  Installing       : xrdp-selinux-1:0.9.11-1.el8.x86_64                                                    2/4
  Running scriptlet: xrdp-selinux-1:0.9.11-1.el8.x86_64                                                    2/4
  Installing       : xrdp-1:0.9.11-1.el8.x86_64                                                            3/4
  Running scriptlet: xrdp-1:0.9.11-1.el8.x86_64                                                            3/4
  Installing       : tigervnc-server-1.9.0-9.el8.x86_64                                                    4/4
  Running scriptlet: tigervnc-server-1.9.0-9.el8.x86_64                                                    4/4
  Running scriptlet: xrdp-1:0.9.11-1.el8.x86_64                                                            4/4
  Running scriptlet: tigervnc-server-1.9.0-9.el8.x86_64                                                    4/4
  Verifying        : tigervnc-server-1.9.0-9.el8.x86_64                                                    1/4
  Verifying        : xorgxrdp-0.2.11-1.el8.x86_64                                                          2/4
  Verifying        : xrdp-1:0.9.11-1.el8.x86_64                                                            3/4
  Verifying        : xrdp-selinux-1:0.9.11-1.el8.x86_64                                                    4/4

Installed:
  tigervnc-server-1.9.0-9.el8.x86_64       xrdp-1:0.9.11-1.el8.x86_64       xorgxrdp-0.2.11-1.el8.x86_64
  xrdp-selinux-1:0.9.11-1.el8.x86_64

Complete!
 
Once xrdp is installed, start the xrdp server service using the systemctl command.

systemctl start xrdp

 
xrdp should now be listening on 3389. You can confirm this by using the netstat command.

netstat -antup | grep xrdp

Output:
tcp        0      0 127.0.0.1:3350          0.0.0.0:*        LISTEN      8067/xrdp-sesman
tcp        0      0 0.0.0.0:3389            0.0.0.0:*        LISTEN      8068/xrdp

By default, xrdp server service won’t start automatically after a system reboot. Execute the below command to enable the service at system startup.

 systemctl enable xrdp

Firewall

Configure the firewall to allow RDP connections from external machines. The below command will add the exception for RDP port (3389).

firewall-cmd --permanent --add-port=3389/tcp 

 firewall-cmd --reload

Access CentOS 8 / RHEL 8 Machine via xrdp

Now, take an RDP session from any windows machine using Remote Desktop Connection program.

 



Posted by at No comments:

Tuesday, November 26, 2019

How DNS Over HTTPS (DoH) Will Boost Privacy Online

Companies like Microsoft, Google, and Mozilla are pushing forward with DNS over HTTPS (DoH). This technology will encrypt DNS lookups, improving online privacy and security.

What Is DNS Over HTTPS?

The web has been pushing towards encrypting everything by default. At this point, most of the websites you access are likely using HTTPS encryption. Modern web browsers like Chrome now mark any sites using standard HTTP as “not secure.” HTTP/3, the new version of the HTTP protocol, has encryption baked in.
This encryption ensures that no one can tamper with a web page while you’re viewing it or snoop on what you’re doing online. For example, if you connect to Wikipedia.org, the network operator—whether that’s a business’s public Wi-Fi hotspot or your ISP—can only see that you’re connected to wikipedia.org. They can’t see which article you’re reading, and they can’t modify a Wikipedia article in transit.
But, in the push towards encryption, DNS has been left behind. The domain name system makes it possible to connect to websites through their domain names rather than by using numerical IP addresses. You type a domain name like google.com, and your system will contact its configured DNS server to get the IP address associated with google.com. It will then connect to that IP address.
Until now, these DNS lookups haven’t been encrypted. When you connect to a website, your system fires off a request saying you’re looking for the IP address associated with that domain. Anyone in between—possibly your ISP, but perhaps also just a public Wi-Fi hotspot logging traffic—could log which domains you’re connecting to.
DNS over HTTPS closes this oversight. When DNS over HTTPS, your system will make a secure, encrypted connection to your DNS server and transfer the request and response over that connection. Anyone in between won’t be able to see which domain names you’re looking up or tamper with the response.
Today, most people use the DNS servers provided by their internet service provider. However, there are many third-party DNS servers like Cloudflare’s 1.1.1.1, Google Public DNS, and OpenDNS. These third-party providers are among the first to enable server-side support for DNS over HTTPS. To use DNS over HTTPS, you’ll need both a DNS server and a client (like a web browser or operating system) that supports it.

Who Will Support It?

Google and Mozilla are already testing DNS over HTTPS in Google Chrome and Mozilla Firefox. On November 17, 2019, Microsoft announced it would be adopting DNS over HTTPS in the Windows networking stack. This will ensure every application on Windows will get the benefits of DNS over HTTPS without being explicitly coded to support it.
Google says it will enable DoH by default for 1% of users starting in Chrome 79, expected for release on December 10, 2019. When that version is released, you’ll also be able to go to chrome://flags/#dns-over-https  to enable it.
Enabling secure DNS lookups via a Google Chrome flag.
Mozilla says it will enable DNS over HTTPS for everyone in 2019. In the current stable version of Firefox today, you can head to menu > Options > General, scroll down, and click “Settings” under Network Settings to find this option. Activate “Enable DNS over HTTPS.”
Enabling DNS over HTTPS in Mozilla Firefox's network settings.
Apple hasn’t yet commented on plans for DNS over HTTPS, but we expected the company to follow and implement support in iOS and macOS along with the rest of the industry.y
It’s not enabled by default for everyone yet, but DNS over HTTPS should make using the internet more private and secure once it’s finished.

Posted by at No comments:

Thursday, November 14, 2019

How do I add text to the beginning and end of text file in Bash- Centos ?

First of All if you have Munltipe Files and you need to combine them all use

[root@centos /] # cat file 1 file2 file3 >combinedfile

Alos if you installed moreutils as described in below you can yuse

[root@centos /] # combine file1 and file2 and file3 >combinedfile

If you need to Add txt to begining of file

 Let us say the combinedfile you may use one of the below two options

Method 1

 1-[root@centos /] # echo 'first line text you want to add' | cat - combinedfie > temp && mv -f temp combinedfile

Method 2

 a- Install moreutils
[root@centos /] # sudo yum install moreutils

b- Use sponge tool as following

[root@centos /] # echo 'first line text you want to add' | cat - combinedfie | songe  combinedfile



If  you need to Add txt to end of File 

 [root@centos /] #cat <<EOT>> file1
test
test1 
EOT

[root@centos /] #

Posted by at No comments:
Subscribe to: Posts (Atom)