Skip to main content

Linux images for Virtualization

Some notes about Linux images for Virtualization.

To test some network tools or configuration, it can be useful to use multiple virtual linux machine. They can run with as little as 256Mo RAM and even less, 64Mo have been reported to work.

There are mainly two solutions:  https://www.virtualbox.org/ (free and opensource) and VMWare Player (free but less open). Also, there are free cloud services available (Amazon EC2 is free for one year for tiny configurations).

They each have "virtual appliances" ready to use (http://virtualboxes.org/ ; VMWare-Store ...) but there are no useful way to select one interesting. I took one from http://www.thoughtpolice.co.uk/vmware/.

Here I use Ubuntu 12.04 / VMWare Player 5,  

  • Set the f## french keyboard. Run: sudo dpkg-reconfigure console-setup or sudo dpkg-reconfigure keyboard-configuration, depending on the Ubuntu version.
  • Set the f## proxy with authentication.
    • If Gnome is installed:
      • gsettings set org.gnome.system.proxy.socks host 'fckng.proxy.enterprise.com'
      • gsettings set org.gnome.system.proxy.socks port 8080
      • gsettings set org.gnome.system.proxy mode 'manual'
      • gsettings set org.gnome.system.proxy.http authentication-user 'silly'
      • gsettings set org.gnome.system.proxy.http authentication-password 'dumb'
    • Otherwise (See this forum)
      • Generally: vi /etc/environment and add http_proxy="...", https_proxy="...", no_proxy="..." ...
      • For APT: sudo gedit /etc/apt/apt.conf.d/02proxy and add the line:  Acquire::http::Proxy “http://username:password@yourproxy:yourport″;
      • For wget: use .wgetrc ...
  • Update Linux: sudo apt-get update ; sudo apt-get upgrade ; sudo apt-get install linux;
  • Install the VMWare tools:    
    • There are some dependencies: sudo apt-get install build-essential linux linux-headers-$(uname -r)
    • In the VMWare window, there is a "Virtual Machine" menu to install a CDRom with the right tool version. Mount the CDrom and launch the installation
    • Re-run  vmware-config-tools.pl each time the kernel is upgraded.
    • Ref:  https://help.ubuntu.com/community/VMware/Tools

That it.

Comments

Popular posts from this blog

VirtualBox, CentOS, Network and Template

I have been working with VirtualBox and CentOS recently, here are some notes about this experience.
I used VirtualBox 4.2 and CentOS 6.3, but most of this should work with other products too. I created the first headless, minimal CentOS via NetInstall.
I cover two points: create a template machine and configure the Network.
Configure the NetworkWe want Internet access and a LAN local to the host.
For background information read: Networking in VirtualBox by Fat Bloke on June 2012.
The easiest is to enable two Network Adapters: One will be "Host-only" and the second "Nat". In the "Preference" menu you can see the DHCP server range for the Host-only Network. So you may set fixed addresses outside this range.
Next: start the guest. There may be various results at first, depending on a lot of things. Some problem might be solved by rm -f /etc/udev/rules.d/70-persistent-net.rules and a reboot.
Anyway, configure the two interfaces (set your own IP and MAC addresses)…

One in six IT projects ends up ‘out of control’

http://www.ox.ac.uk/media/news_stories/2011/110822_1.html

A surprisingly high number of projects are 'ticking time bombs', according to researchers at the University of Oxford. They analysed 1,500 global projects that had revamped their information technology systems within the last 10 years. They discovered that one in six projects in the sample went over budget by an average of 200 per cent (in real terms) or over ran by an average of almost 70 per cent.

Their conclusion is similar to previous studies: http://brunovernay.blogspot.com/2009/10/excellent-studies-on-software-quality.html

TLS: Disabling legacy cipher suites

First: "cipher suite is a named combination of authentication, encryption, and message authentication code (MAC) algorithms".If you are using TLS (for HTTPS typicaly) you may want to remove some Cipher Suites.You maybe a little bit less compatible, but also a bit more secure. Things will be better when TLS1.2 is implemented everywhere.You can also claim to be FIPS 140 compliant: http://csrc.nist.gov/publications/nistpubs/800-52/SP800-52.pdf !How to do it:From the command line:  http://docs.oracle.com/javase/7/docs/technotes/guides/security/jsse/JSSERefGuide.html#CustomizationFrom code:  http://docs.oracle.com/javase/7/docs/api/javax/net/ssl/SSLSocket.html#setEnabledCipherSuites(java.lang.String%5B%5D)Jetty: http://wiki.eclipse.org/Jetty/Howto/CipherSuitesTomcat: Look at the "ciphers" attribute in  http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_SupportIf someone knows how to do it on the IBM J9 via configuration, I am interested.