flag Germany flag Great Britain flag France

High-End Linux Consulting and Security

System Administration
Feeds   Linux Videos
  RSS Feed Linux Videos
  Linux Tutorials
  RSS Feed Linux System Administration
  Atom Feed Linux System Administration

Top Downloads   RPM NRPE server
  RPM NRPE plugin
  Dumpsplit
  Testing Snort
  Allrights
  Whoisonline

Contact   Email: Norbert Klein
  Tel: 49 (0)1724728123
  ICQ: 218595557
  Google Maps


Profile Norbert Klein

Linux System Administrator

* SLES (Novell Suse Linux Enterprise Server)
* GPFS (IBM General Parallel File System)
* Nagios and Cacti
* Apache hardening
* IDS/IPS systems with Snort
* Training
Personal Data
Contact
IT knowledge / experience
Projects
Permanent positions
Advanced training


Personal Data

Year of birth: 1974
Degree: Diplom-Informatiker(FH)
Certification: Novell CLP/CLE 10
Foreign languages:
  English (fluent)
  French (advanced)
IT experience since: 2000

Hourly rate:
  65€ + VAT, all-inclusive, on location
  55€ + VAT, remote

Daily rate:
  520€ + VAT, all-inclusive, on location
  440€ + VAT, remote

Contact

Web: http://www.infosecprojects.net/
Email: norbert.klein@infosecprojects.net
Mobile: 0172 4728123

IT knowledge / experience

Operating systems
SLES 10, 11
openSUSE
Debian

Programming languages
Bash, Perl, PHP, C
XHTML, CSS
SQL

Products / standards
Apache, mod_security, mod_rewrite, mod_proxy
MySQL
Bind
Nagios, NRPE, NSCA, NConf, PNP4Nagios, NagVis
Cacti, Weathermap-Plugin
iptables
Postfix
syslog-ng
Confluence
LVS/Keepalived Cluster
Subversion
XEN
Snort
Cfengine
SELinux
LVM
OTRS
SNMP
ITIL (basic knowledge)
OpenVPN

Hardware
Dell PowerEdge Server
IBM xSeries-Server
WatchGuard Firebox

Projects

2009-11-29
(A web hoster)
Programming of a bash script for cleaning the web content of customers on a hacked web server.


2009-11-11 – ca. Dec. 2009
DB Systel GmbH Erfurt
Design of a redundant monitoring architecture with Nagios 3 and NRPE for about 1800 servers distributed over several data centers.
Writing of spec files and RPM package building.


2009-11-27
Carpe diem GmbH Wiesbaden
Nagios 3 training on SLES 11, with NConf, PNP4Nagios and NagVis.
Workshop with ready-to-run Nagios VMware images for all participants.


2009-11-05
eXstor GmbH Wiesbaden
Translation of the whole web presence into English.


2009-10-20 – 2009-10-26
Mario Größler
OS and web server hardening. Setup of a web application firewall.
Adjustment of the WAF rule set to various web applications.


15.09.2009 – 01.10.2009
Deutsche Bausparkasse Badenia AG Karlsruhe
Design and test of a deployment for a hardened Apache reverse proxy.
The absolute maximum of security was required with modifications of the source code, the deployment of a web application firewall, etc.


2009-09-07
Carpe diem GmbH
Training for Cacti, rrdtool and snmp on SLES 10.


2009-07-27
esacom GmbH
Set-up of GPFS for a HA cluster on SLES 10.
udev configuration for IBM tape and changer.


2009-06-22 – 2009-07-06
AVL Deutschland GmbH
General consulting regarding Nagios and Cacti.
Creating of special data templates and their associated data queries in Cacti for temperature and fan speed measuring.
Programming of PHP scripts to import these snmp values into Cacti.
The challenge here was that the snmp data was not provided in an index-based structure and could not be walked. Additionally there was the requirement that several IP addresses had to be associated with one single device in Cacti.
Training for the Cacti plugins Discovery and Weathermap along with detailed documentation.


2009-06-10 - 2009-06-16
eXstor GmbH
Setting up the hardware raid for an IBM xSeries 306m server.
New installation and configuration of SLES 11.
Manual installation of the IBM tape driver lin_tape, installation of the daemon lin_taped and the tape utilities IBMtapeutil.


2008-09-01 - 2009-06-09
www.infosecprojects.net
I have worked on my own server and my web site including marketing and SEO. I improved my skills in Linux security.


2008-08-30 - 2008-08-31
Newline-Medien GbR
Setup of a monitoring solution based on Cacti and Nagios on Ubuntu Linux.
Configuration of the local Postfix mail server as relay client.


2008-07-01 - 2008-08-08
Fox Mobile Distribution GmbH (formerly known as Jamba! GmbH) Berlin
Reconfiguration of Cacti and Nagios on Debian Linux for about 300 servers.
Automatic integration of new servers into the monitoring environment.

* Basic installation of Debian Etch
* Compiling of Nagios and Cacti
* Creating and configuration of databases in MySQL
* Modification of the Debian packages of Groundwork Monitor Community Edition
* Writing of a bash script for mass importing new servers into Nagios and Cacti
* Writing of Nagios checks as bash scripts
* Modification of existing Perl Nagios checks
* Debugging of the Spine source code (C)
* Testing of existing Cacti plugins
* Writing of a Cacti plugin (just the framework, no access to the Cacti API)
* Direct queries of Cacti archives with rrdtool
* Creating of snmp requests for an Isilon-MIB of an Isilon Storage Cluster
* Writing of a detailed documentation in Confluence


2008-03-01 - 2008-03-31
Satyamitra Network
PHP / YAML / MySQL project for the administration of audio recordings.

Permanent positions

2005-10-01 - 2007-10-30
//SEIBERT/MEDIA GmbH Wiesbaden
Linux/UNIX system administrator

Focus: web servers
Operating systems: Gentoo, FreeBSD
Daemons/Applications: Apache, Lighty, MySQL, Bind, Postfix, Qmail, Nagios, Cacti

* Setup and operation of the Nagios monitoring server
* Apache web server with several hundred domains
* Writing of mod_rewrite rules
* Relocations of web servers
* Setup of a LVS cluster with redundant load balancers
* Web server with PHP load balancing
* Installation of web software like OTRS, forums, CMS
* MySQL Master-Master replication
* Running Bind with more than 1000 domains
* Writing of scripts in Bash and Perl
* Writing of a small program in C which detects malicious processes
* Configuration of a Watchguard Firebox
* Firewalls with iptables
* Analysis of hacked servers
* Administration of SSL certificates
* Research and tests to increase the security of the servers
* Log analysis of Qmail logs
* Writing of a whitelist patch for the ra-plugin rblchecks of Qmail (C)
* Support for customers and employees
* Trainings given for SELinux and Cfengine
* Setup of DELL servers and integration in our rack in the data center
* I investigated procedures in our IT department to split them to processes
* Surveys with LimeSurvey
* Evaluation of hardware and software products
* On-call duty


2004-01-26 - 2005-09-30
1&1 Internet AG Zweibrücken
1st-Level-Support

* Support for Linux and Windows servers
* Official contact person for English customers
* Support for DSL, DSL hardware, domains und sales

Advanced training

To stay up-to-date I take part in various training courses.

2009-11-17 - 2009-11-18
IBM Deutschland Research & Development GmbH Böblingen‎
FCM Workshop (Flash Copy Manager)



Profile download: MS Word, PDF, OpenOffice