-
Recent Posts
Recent Comments
- systemd unit hardening followup followup | the world needs more puppet! on systemd unit hardening followup
- systemd unit hardening followup | the world needs more puppet! on systemd unit hardening
- Andreas on Dovecot: Apply sieve filter to existing emails
- Feiko Nanninga on Short Tip: Install shellcheck on an outdated CentOS
- Computerkid/Grayson Penland on Linux Short Tip: systemd-networkd and DNS servers
Archives
- February 2022
- January 2022
- August 2020
- June 2020
- January 2019
- November 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- January 2016
- December 2015
- November 2015
- October 2015
- September 2015
- August 2015
- July 2015
- June 2015
- May 2015
- April 2015
- March 2015
- February 2015
- January 2015
- December 2014
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- March 2014
- February 2014
- December 2013
- November 2013
- October 2013
- September 2013
- August 2013
- July 2013
- June 2013
- April 2013
- March 2013
- February 2013
- January 2013
- December 2012
- November 2012
- October 2012
- September 2012
- August 2012
- July 2012
- June 2012
- May 2012
- April 2012
- March 2012
- July 2011
Categories
Meta
Author Archives: bastelfreak
systemd unit hardening
Systemd provides many hardening options for units. systemd-analyze security provides a nice overview for all services and their exposure level: What do those levels mean and how can we improve it? Let’s take a closer look (Screenshot of my already … Continue reading
Puppet control repo layout for puppet apply and agent/server Setup
The control repository in a Puppet context is usually a git repository that contains your Puppetfile. The Puppetfile has links to all modules in your environment and their version that shall be deployed. Besides the Puppetfile, Hiera data is often … Continue reading
Setup a Raid 10 with mdadm
In the past I already blogged a few times about mdadm. Today we’ve a short article about creating a Raid 10 with mdadm on new disks. First we need to identify the two disks. lsblk is always a good indicator … Continue reading
Automate let’s encrypt with systemd timer
A long long time ago I wrote a blog post about let’s encrypt automation with systemd timers that triggers letsencrypt: https://blog.bastelfreak.de/2016/05/lets-encrypt-automation-the-awesome-way/ Much changed this 2016. letsencrypt CLI is now called certbot, it can do auto renew via it’s own service … Continue reading
Posted in General, Linux
Leave a comment
Vox Pupuli Tasks – The solution to manage your git modules!
Who is not aware of the following problem. It’s Sunday afternoon, you’re bored. You want to do something useful, you want to contribute to the community – you want to review a pull request! This might be a more or … Continue reading
Posted in General, Linux, Puppet
Leave a comment
Dovecot: Apply sieve filter to existing emails
I recently restructured my email setup and updated my sieve filter (server side email filtering). I now have a sieve configuration file that’s way stricter. Many of the emails in my INBOX would now be sorted into subfolders, but Dovecot … Continue reading
Posted in General, Linux, Short Tips
1 Comment
Arch Linux installation guide
A long time ago I wrote a blog post about installing Arch Linux: I’m aware of the fact that there isn’t one definitive guide for installing it. This highly depends on your hardware, your use case for the system and … Continue reading
Vox Pupuli – Code of the Week 2
This is a new blog series that we would like to introduce. At Vox Pupuli, we receive many Pull Requests. We receive so much awesome code, that isn’t really appreciated. In the past, some of our members sent out tweets if … Continue reading
Thunderbird: Hide local hostname in mailheaders
By default, thunderbird uses the local hostname within the SMTP-Submission dialog with the mailserver. There might be situations where you have a hostname that exposes private data, like a company name. Sometimes this is very helpful for debugging, but sometimes … Continue reading
Vox Pupuli – Code of the Week 1
This is a new blog series that we would like to introduce. At Vox Pupuli, we receive many Pull Requests. We receive so much awesome code, that isn’t really appreciated. In the past, some of our members sent out tweets … Continue reading