Recently i've been developing apps and hacks for ClearOS

You can find a summary of these below:-

Webconfig eAccelerator

Zarafa Webmail & Groupware

Bandwidth Rule Monitor App

I have rebuilt Zarafa so that it runs on ClearOS using the updated version of ldap. The RPM's are now rebuilt using the maintained SRPM's from Fedora (courtesy of Robert Scheck).

The following will install and configure the webmail so that it authenticates against ClearOS users defined in the webconfig. It will configure Postfix so that all mail is delivered to the Zarafa inbox. The contacts list and calendars will function

Instructions below to upgrade PHP to 5.3.6

Please note these are not the official packages, and have been put together by http://rpms.famillecollet.com/ for RHEL5 distributions (thank you!). I have rebuilt these so they install for ClearOS with the addition of two RPM's (libedit and sqlite2).

Thefore please consider these as beta / testing quality

1. SETUP THE REPO

You can now also get PHP5.2.17 for ClearOS5.2.

You can now get the PHP rpm's from ftp://www.timburgess.net/repo/clearos/5.2/os/

Note these are compiled from the REMI repo (http://blog.famillecollet.com/), and are pretty much untested however they do work on my VM, so use at your own risk.

To install from the command line

HOWTO - Add yum priorities plugin to ClearOS5.1 / ClarkConnect 5.0 so that additional repositories and additional packages can be added without fear of breaking your existing install
INSTALL

Cribbed from this page
http://wiki.centos.org/AdditionalResources/Repositories?action=show&redi...

Grab the yum-priorities package from
http://mirror.centos.org/centos-5/5.5/extras/i386/RPMS/yum-priorities-1....

UPDATE!: You can now get hold of these drivers via RPM if you wish, they are recompiled from the elrepo sources.
ftp://starlane.gotdns.org/elrepo-kmod/

Below are the latest Realtek drivers compiled for ClarkConnect5.0 - and all the chipsets outlined for each driver. See README files for instruction on installation

The grub bootloader is particularly useful, especially when upgrading and testing new kernels. I recently found a way to modifiy the default boot config to make it useful when you wish to remotely upgrade a kernel and boot into it once only without being at the console to change the default back.

My current grub config:-

Sometimes, there comes a time when a high bandwidth host is taking up valuable precious resources on your server, and snort is struggling to keep up with the demand. This is a simple way to block snort from seeing / processing that traffic and save the resources for catching bad traffic from other hosts.

This also helps if you happen to have your IDS behind a firewall and your LAN traffic passes through that same interface

To do this simply create a file, named whatever you like (mine is /etc/snort/bpf.conf)

add: (changin the IP for the host you wish to ignore)

Some examples of the power of iptables..the ip is defined as 123.123.123.123, substitute with your own. You can find out more by looking at the iptables manpage. Depending on your firewall configuration, not all setups have an explicit 'drop' at the end of the chain, therefore you maybe able to append the rules rather than insert using -A

Block single external host (change ethX for your WAN interface)

iptables -I INPUT -s 123.123.123.123 -i ethX -j DROP

I've had a bit of time on my hands recently, so I've put together a little script which compiles all the Clarkconnect system setup information, and then creates an html output file which can then be copied / pasted into the forum or for your own information. Saves having to remember all those funny commands to generate the output! It also parses the config files to remove commented lines and spaces giving you the real config parameters.

I would be pleased to know of any feedback / comments etc.

It summarises the following info: