Using Cloudflare as a domain registrar only (without delegating DNS to Cloudflare)

June 19, 2020
Cloudflare
0 Comment

Cloudflare Registrar Services allows for the registration of many TLD at wholesale pricing.

Traditionally this came with the requirement to use Cloudflare services, at least the free tier to manage the domain. In other words the domain was delegating to Cloudflare’s name servers and this was not……

Read More

Ubuntu 20.04 LTS with fully encrypted ZFS root FS ? Yes, please!

May 15, 2020
Ubuntu
0 Comment

Release notes state that ZFS on Linux is shipping with Ubuntu 20.04. Nice.

But encryption capability is not integrated into ubiquity – the graphical installer. OOB ZFS is not available with root FS encryption.

But making it work is super easy thanks to Sean Reifschneider who modified …

Read More

Microsoft finally roll out IPv6 on Azure – sort of.

April 30, 2020
Azure
0 Comment

Last month Microsoft announced the general availability of IPv6 on Azure.

I thought this was excellent news. I had been waiting for this a long time and with much enthusiasm I logged into our Azure Portal. They have indeed taken IPv6 out of beta but there are……

Read More

Cloudflare – Security Best Practices

May 21, 2019
CloudflareSecurity
0 Comment

Citadelo have published this excellent post on how to optimize security when using Cloudflare to “protect” a domain.

Some very good points re: OSINT mitigation are outlined. A good read!

Read More

Fail2Ban 0.8.x and OpenVPN 2.4.x – correctly detecting OpenVPN brute force attempts in FreePBX 14

February 10, 2019
FreePBXOpenVPN
1 Comment

Issue:
On an install of FreePBX 14 with responsive firewall and OpenVPN server enabled there is no mitigation against brute force attacks against the OpenVPN server. /var/log/messages is getting spammed with failed handshakes:

Feb 3 16:17:19 voipserver234 openvpn: Sun Feb 3 16:17:19 2019 103.37.x.x:49060 TLS: Initial packet from [AF_INET]103.37.x.x:49060, sid=6a22eb44 5adb63fe
Feb 3 16:17:19 voipserver234 openvpn: Sun……

Read More

Installing yourls on Ubuntu 18.04 with MariaDB 10.1.x Uncaught PDOException: SQLSTATE[42000]: Syntax error or access violation: 1071 Specified key was too long; max key length is 767 bytes

December 8, 2018
MySQL/MariaDBUbuntu
1 Comment

Issue:
When installing yourls and clicking the INSTALL button under /admin/install.php you get a server Error 500 and the following error shows up in the log:

2018/12/08 21:22:10 [error] 21768#21768: *2 FastCGI sent in stderr: “PHP message: PHP Fatal error: Uncaught PDOException: SQLSTATE[42000]: Syntax error or access violation: 1071 Specified……

Read More

Cursor issues in ssh sessions to Linux hosts from Windows Subsystem for Linux (WSL) on on Windows 10

December 7, 2018
bash
0 Comment

Issue:
Using Windows Subsystem for Linux (WSL) on on Windows 10
to establish an ssh session to a Linux host the cursor is acting strangely. You may be in vi or nano editing some file and your backspace suddenly makes the cursor jump or space bar acts like it is in edit……

Read More

CentOS 7 fix for “perl: warning: Please check that your locale settings are supported and installed on your system.”

December 4, 2018
bashCentOS / RHEL
4 Comments

Issue:
Logging in via SSH you are greeted with:

perl: warning: Setting locale failed.
perl: warning: Please check that your locale settings:
LANGUAGE = (unset),
LC_ALL = (unset),
LC_CTYPE = “en_US.UTF-8”,
LANG = “C.UTF-8”
are supported and installed on your system.
perl: warning: Falling back to the standard locale (“C”).

Solution:

Edit /etc/environment and add the following. Replace……

Read More

Public NTP Servers

September 4, 2018
Uncategorized
0 Comment

time1.google.com 216.239.35.0 time.apple.com 17.253.82.253 time.nist.gov 129.6.15.29

Read More