[電子發票] 電子發票串接財政部回復錯誤訊息:javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated

此錯誤訊息為財政部需要回傳資料到return url.發現憑證與domain不match或是handsharking不過造成.

解決方式:
                調整Apache Web server 設定 SSL的protocols及Cipher Suite.
             
                到https://www.ssllabs.com/ssltest/測試調整結果.

                Java 6u45  至少要可以handshake通過

[CentOS 7.1 1503] install ssh

yum install openssh openssh-server openssh-clients openssl-libs

You might have selinux enabled. Try
getenforce


If it shows "Enforcing", try
setenforce 0

[swift 3] Hello world

[PHP] RSS 1.0 && 2.0

RSS 1.0

RSS 2.0

ubuntu install security updates

1.su to root
   su

2.Show security updates only
   apt-get -s dist-upgrade | grep "^Inst" | grep -i securi | awk -F " " {'print $2'} | xargs apt-get install

3.Install security updates only
   apt-get -s dist-upgrade | grep "^Inst" | grep -i securi | awk -F " " {'print $2'} | xargs apt-get install

ubuntu install MongoDB

1.開啟最高權限
    sudo su

2.更新package list
   apt-get update

3.安裝 mongodb
    apt-get install mongodb

4.啟用/停用 mongodb
   service mongodb start
   service mongodb stop

5.進入/離開 mongodb shell
   mongo
   exit

6.版本檢查
  mongod --version

7.移除mongodb
    沒指定版本安裝會是舊版的 2.x
    sudo apt-get remove mongodb* --purge 
   
    sudo rm -r /var/log/mongodb
  sudo rm -r /var/lib/mongodb

以下為指定版本安裝(參考官方https://docs.mongodb.com/manual/tutorial/install-mongodb-on-ubuntu/)

1.Import the public key used by the package management system.

   sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv 0C49F3730359A14518585931BC711F9BA15703C6

2.Create a list file for MongoDB.
   Create the /etc/apt/sources.list.d/mongodb-org-3.4.list list file using the command appropriate for your version of Ubuntu:


   Ubuntu 12.04
   echo "deb [ arch=amd64 ] http://repo.mongodb.org/apt/ubuntu precise/mongodb-org/3.4 multiverse" | sudo tee /etc/apt/sources.list.d/mongodb-org-3.4.list

   Ubuntu 14.04
    echo "deb [ arch=amd64 ] http://repo.mongodb.org/apt/ubuntu trusty/mongodb-org/3.4 multiverse" | sudo tee /etc/apt/sources.list.d/mongodb-org-3.4.list

    Ubuntu 16.04
    echo "deb [ arch=amd64,arm64 ] http://repo.mongodb.org/apt/ubuntu xenial/mongodb-org/3.4 multiverse" | sudo tee /etc/apt/sources.list.d/mongodb-org-3.4.list


3.Reload local package database.
   sudo apt-get update

4.Install the MongoDB packages
   sudo apt-get install -y mongodb-org

5.Start MongoDB.
   sudo service mongod start

6.Verify that MongoDB has started successfully
    check /var/log/mongodb/mongod.log for following line if included
   [initandlisten] waiting for connections on port <port>
7.Stop MongoDB.
    sudo service mongod stop

8.Restart MongoDB.
     sudo service mongod restart

9.version check
     mongod --version


檔案位置
    設定檔
   /etc/mongod.conf

    資料庫
  /var/lib/mongodb

      日誌檔
      /var/log/mongodb/mongodb.log

ubuntu vsftp

1.install vsftp
   sudo apt-get update
sudo apt-get install vsftpd

2.add firewall rule
   ...

3.change current user's home directory
     edit /etc/passwd

4.user accout add to www-data group
  sudo usermod -a -G www-data username
  sudo chgrp -R www-data /var/www/html
 sudo chmod -R g+w /var/www/html


5. edit /etc/vsftpd.conf

  chroot_local_user=YES
  local_umask=022

ubuntu enable firewall and add rules

1.開啟最高權限模式
   sudo su
2. 啟動firewall
      ufw enable

3.新增允許ssh 規則
     ufw allow ssh

4.新增允許網站80 port 規則
       ufw allow  in 80
5.新增允許網站443 port (ssl)規則
   ufw allow in 443


6.新增允許網站vsftp port 規則

   ufw allow 20/tcp
   ufw allow 21/tcp
   ufw allow 990/tcp
   ufw allow 4000:5000/tcp

ubuntu 16.04 install apache2 php7 & mariadb

1.切換最高權限
   sudo su
2.安裝mariadb server & client
   apt-get -y install mariadb-server mariadb-client
3.資料庫安全設置
   mysql_secure_installation


  Enter current password for root (enter for none): <-- press enter
  Change root password? [Y/n] <-- y
  New password: <-- Enter the new MariaDB root password here
  Re-enter new password: <-- Repeat the password
  Remove anonymous users? [Y/n] <-- y
  Disallow root login remotely? [Y/n] <-- y
  Reload privilege tables now? [Y/n] <-- y

   mysql -u root -p  使用新密碼登入測試

4.安裝apache 2.4
     apt-get -y install apache2
5.安裝php 7.0
     apt-get -y install php7.0 libapache2-mod-php7.0

   systemctl restart apache2 重啟apache


   nano /var/www/html/info.php

<?php
phpinfo();
?>

   chown www-data:www-data /var/www/html/info.php


   瀏覽器打開 http://192.168.x.xx/info.php  (ip查詢 ifconfig)

   apt-cache search php7.0


  apt-get -y install php7.0-mysql php7.0-curl php7.0-gd php7.0-intl php-pear php-imagick php7.0-imap php7.0-mcrypt php-memcache  php7.0-pspell php7.0-recode php7.0-sqlite3 php7.0-tidy php7.0-xmlrpc php7.0-xsl php7.0-mbstring php-gettext

  
6.新增url rewrite
    sudo a2enmod rewrite
systemctl restart apache2

   打開 http://192.168.x.xx/info.php 檢查是否有mod_rewrite
7.
   apt-get -y install php-apcu
  systemctl restart apache2
8.Enable the SSL website in apache
   a2enmod ssl
  a2ensite default-ssl
  systemctl restart apache2
9.Install phpMyAdmin
   apt-get -y install phpmyadmin

  Web server to configure automatically: <-- Select the option: apache2
Configure database for phpmyadmin with dbconfig-common? <-- Yes
MySQL application password for phpmyadmin: <-- Press enter, apt will create a random password automatically.
 如果http://192.168.x.xx/phpmyadmin/ 找不到

1.apache 2的環境設定檔內加

  <Directory />
AllowOverride All </Directory>

2.加路徑關聯
  sudo ln -s /usr/share/phpmyadmin /var/www/html/

ubuntu install ssh and disable root login

1.更新page
   sudo apt-get update

2.install ssh
  sudo apt-get install ssh

3.修改設定
   sudo nano /etc/ssh/sshd_config

   permitrootlogin prohibit-password => permitrootlogin no 禁止root登入
   AllowUsers XXX   允許XXX帳號登入

4.重開機
  sudo reboot

ubuntu vm安裝完畢,安裝vmware tools

1.sudo mkdir /mnt/cdrom
2.sudo mount /dev/cdrom /mnt/cdrom or sudo mount /dev/sr0 /mnt/cdrom
3.ls /mnt/cdrom
4.tar xzvf /mnt/cdrom/VMwareTools-x.x.x-xxxx.tar.gz -C /tmp/
5.cd /tmp/vmware-tools-distrib/
6.sudo ./vmware-install.pl -d
7.sudo reboot

ubuntu reset default password

ubuntu 剛安裝完畢重設 root passwd

sudo passwd root