2 tools for creating packages
2 tools for creating RPMs, DEBs, etc easily: fpm & checkinstall
Archive of entries posted by james
Using ssh agent for sudo authentication on debian
Using this ubuntu guide with 2 changes. 1. Change the configure line to ./configure –libexecdir=/lib/x86_64-linux-gnu/security/ –with-mantype=man 2. Instead of editing the sudoers file, create a file under sudoers.d (more modular): echo “Defaults env_keep += SSH_AUTH_SOCK” > /etc/sudoers.d/ssh_auth Also note that the latest version of this module on sourceforge is more recent than linked.
Cleaning up repos in cobbler
Here’s a cobbler snippet that disables the default repomirror (presuming you are serving the rpms yourself) and adds the updates channel # disable Centos Base Repo (get updates elsewhere) sed -i -e ‘s/^/#/g’ /etc/yum.repos.d/CentOS-Base.repo # download updates repo file wget -O – http://$http_server/cobbler/repo_mirror/Centos6-UPDATES/config.repo > /etc/yum.repos.d/Centos6-Updates.repo sed -i -e ‘s/\${http_server}/$http_server/’ /etc/yum.repos.d/Centos6-Updates.repo Change the name of the …
cliget :: Add-ons for Firefox
Download files using curl or wget. This addon generates curl/wget commands that emulate the request as though it’s coming from your browser allowing you to download protected files directly to a separate machine (e.g. server). via cliget :: Add-ons for Firefox. Very useful for downloading ISOs directly to your server that you have to log …
calm-forest for emacs 24
My favourite colour theme for emacs, ported to emacs 24.
SSH’ing via a gateway host using Putty
(or Kitty to be more exact, which is Putty on steroids) 1. Set up key authentication to your host with PuttyGen & Pageant (ssh-agent for Putty) – or KittyGen & Kageant if you’re using Kitty. Paste your public key into authorized_hosts on the gateway & destination box. 2. Set up your configuration, IP address in …
Cobbler & tftp
On centos 6.5 is broken for me unless I comment out flags = IPv4 in /etc/xinetd.d/tftp, which is best done in the /etc/cobbler/tftpd.template otherwise it will be broken with a cobbler sync
List connections going through openwrt router
(or indeed on any linux system). ssh in and cat /proc/net/*conntrack | grep dport=22 | grep dst=1.2.3.4 to check ssh connections to 1.2.3.4 for example
OpenSSL / CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. via CVE …
Manage your inbox with imapfilter
I’ve been looking for something to manage my inbox, I already use procmail to file mails into folders as they arrive, but I end up with a lot of emails that need tidying up later. For example, I receive the weekly BBC 4 progamme guide email – after a week the programmes have been shown …