As part of my small project of movng my Z-Wave Hub to a Raspberry PI, I got an X728 kit. This has:
The case has holes for wall-mounting.
The Geekworm X728 kit is …
This article tries to supplement the nginx documentations regarding the auth_request module and how to configure it. In my opinion, that documentation is a bit incomplete.
The documentation for this module says, it implements client authorization based on the result of a subrequest.
This …
This article is about erasing disc drives securely. Specially for SSD drives, writing zeros or random data to discs is not good enough and counterproductive.
One way to do secure erase (for disposal) is to begin with an encrypted disc. However, after the fact the following options are possible:
I made the switch to void linux. Except for compatibility
issues around glibc, it works quite well. Most compatibility
I have worked around with a combination of Flatpaks, chroots and
namespaces.
The high lights of void linux:
systemd …To prevent windows lockouts the following can be done:
Keep your data and accounts safe by using a secure open source password manager to store unique, complex passwords.
Maintaining complex, unique passwords for each site and service you use is among the most common pieces of advice that security professionals provide to the public every year.
Yet no matter …
THIS IS FOR ARCHIVAL PURPOSES. THIS IS OUT-OF-DATE
openshift getenv(USER) from OpenShift php
ssh to {user}@{app-domain} gear snapshot > file
Run gear app
OpenShift migration further notes
Encrypt a file using a supplied password :
$ openssl enc -aes-256-cbc -salt -in file.txt -out file.txt.enc -k …This article goes over how to implement Single-Sign-On on Linux. It goes over the integration around the Kerberos service and the applications, like for example FireFox.
To make sure that this is working, login to your workstation …
Here a few web-links to interesting web apps.
It covers stuff about password security and checking if web sites are down, etc etc.
If you're getting an error when visiting a certain site, it could be down or something could be wrong on your …
This simple mini how-to goes over the configuration of a linux system so it can use a Kerberos Realm server for authentication.
rpm -qa | grep pam command and seeing whether the pam_krb5 rpm files …Testing, code coverage, style enforcement are all check-in and merge requirements that can be automated and driven from Git.
If you're among the rising number of Git users out there, you're in luck: You can automate pieces of your development workflow with Git hooks. Hooks are a native Git mechanism …
Microsoft is now making available Windows VM image for testing Internet Explorer for free. You can find them at: Modern IE testing Currently the following versions are available:
Some useful tidbits to use when using the OpenWRT embedded web server (uHTTPD).
uHTTPd supports running Lua in-process, which can speed up Lua CGI scripts. It is unclear whether LuCI supports running in this embedded interpreter. LuCI seems to work fine (if not better) with the embedded Lua …
Kerberos is a network authentication protocol which works on the basis of "tickets" to allow nodes communicating over a non-secure network to prove their identity to one another in a secure manner. (Source Kerberos_(protocol) )
Create backup:
kdb5_util dump _dump_file_
Restore from dump file:
kdb5_util load _dump_file_
This article is about integrating OpenSSH in a kerberos environment. Allthough OpenSSH can provide passwordless logins (through Public/Private keys), it is not a true SSO set-up. This article makes use of Kerberos TGT service to implement a true SSO configuration for OpenSSH.
First off, you'll need to make …
Sometimes we need to connect two or more geographically distrubuted ethernet networks to one broadcast domain. There can be two different office networks of some company which uses smb protocol partially based on broadcast network messages. Another example of such situation is computer cafes: a couple of computer cafes can …
A collection of small useful recipes for using with Git.
if nobody has pulled your remote repo yet, you can change your branch HEAD and force push it to said remote repo:
git reset --hard HEAD^
git push -f
So in …
When using virtualisation it is very common to create template VMs that can be cloned from. This makes deployment much easier than having to install a new VM from scratch. Unfortunately, the cloned VMs lack any Active Directory memberships and the VMs have to be manually added to the AD …