Post tagged: domain

Stupid SSL tricks

Some hints and tips foor doing SSL related things:

Netcat for SSL

This command lets you connect to a SSL server (a-la netcat):

cat request.txt | openssl s_client -connect server:443

Creating self-signed certificates

This is a single command to generate a self-signed certificate:

openssl req -new \
      -newkey rsa:4096 …

Free Clipart sites

In 2014, Microsoft killed and buried Clipart in the digital graveyard.

Clipart had outlived its usefulness as users relied more on search engines than Microsoft' somewhat limited supply through the Office suite.

Today' clipart needs to be modern, colorful, and less cartoonish. An online search for clip art images will …

CyberWorld 2017.1

Development - travis cordova build - travis ionic build

  • owx
  • common
    • muninlite (can it support plugins?)
    • flock, pwgen, ifstat
  • ow1
    • diags&tools: usbutils, netstat-nat
    • sniffer: tcpdump[-mini] 317K/617K, libpcap 191K
  • owX

    • FW/NAT
    • DNSMASQ: DHCP + DNS
    • NTP server
    • Dynamic DNS updating (mushu porker)
    • NFS
    • IPv6 tunnel
    • Provisioning server: (PXE, TFTP, NFS …

OpenShift notes

THIS IS FOR ARCHIVAL PURPOSES. THIS IS OUT-OF-DATE

backup OpenShift

openshift getenv(USER) from OpenShift php
ssh to {user}@{app-domain} gear snapshot  > file

Run gear app

OpenShift migration further notes

Encrypt a file using a supplied password :

$ openssl enc -aes-256-cbc -salt -in file.txt -out file.txt.enc -k …

Deploying Kerberos based SSO

This article goes over how to implement Single-Sign-On on Linux. It goes over the integration around the Kerberos service and the applications, like for example FireFox.

Pre-requisites

  • Kerberos Domain Controller (KDC)
  • User accounts in the KDC
  • KDC based logins

To make sure that this is working, login to your workstation …

Let's Encrypt

This is a service that let's you get SSL certificates for HTTPS. These certificates are trusted by major browsers. See Let's Encrypt This is a barebones howto to get SSL certificates:

git clone https://github.com/letsencrypt/letsencrypt
cd letsencrypt

This contains the client software for let's encrypt.

./letsencrypt-auto certonly …

Kerberos howtos

Kerberos is a network authentication protocol which works on the basis of "tickets" to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. (Source Kerberos_(protocol) )

Backups

Create backup:

kdb5_util dump _dump_file_

Restore from dump file:

kdb5_util load _dump_file_

Master/Slave …

Native Kerberos Authentication with SSH

This article is about integrating OpenSSH in a kerberos environment. Allthough OpenSSH can provide passwordless logins (through Public/Private keys), it is not a true SSO set-up. This article makes use of Kerberos TGT service to implement a true SSO configuration for OpenSSH.

Pre-requisites

First off, you'll need to make …

Remote Bridging

Sometimes we need to connect two or more geographically distrubuted ethernet networks to one broadcast domain. There can be two different office networks of some company which uses smb protocol partially based on broadcast network messages. Another example of such situation is computer cafes: a couple of computer cafes can …

Automatically adding systems to an AD domain

When using virtualisation it is very common to create template VMs that can be cloned from. This makes deployment much easier than having to install a new VM from scratch. Unfortunately, the cloned VMs lack any Active Directory memberships and the VMs have to be manually added to the AD …