IPv6 is great for everything that is (more or less) DIRECTLY connected to the internet (needs a public accessible address): firewalls / routers modems servers (using firewalls / routers and modems to connect) but it seems completely “overkill” and even […]
ip is the new ifconfig # show all network interfaces (physical and virtual) and their properties ip address show # or in short: ip a s 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback […]
update: 2024-04 changed 7590 (latest FritzOS) against 7390 (older FritzOS) there are no such DHCP problems per default FBs have [-] no protection against: https://www.prosec-networks.com/en/blog/dhcp-starvation-attack/, which of course is not easy but imho uncool because if user lose trust in […]
first some praise: the maintainers of grub did their best they could to bring about a great piece of software, no doubt about that. the question is: could less be more? when Greg Kroah-Hartman suggested to get rid of the […]
EDIMAX EW-7612UAn V2 THE ONLY (?) GNU Linux WIFI WLAN Adapter that works OUT OF THE BOX on all GNU Linux systems (ODROID RASPBERRY AND Desktop GNU Linux) ONLY BUY FROM HARDWARE VENDORS THAT SUPPORT FREE & OPEN […]
imho it would be great if mothers would know as much about their children’s online life as facebook & google do while at the same time (as predicted) EU GDPR is massively influenced by Facebook & Google lobby groups and […]
on the one hand – software biodiversity is good – if one system get’s hacked or virus infiltrated – the other’s – if “different enough” probably stay unaffected. on the other hand – if config files or procedures or command […]
first things first: if it happens to the user to have a gigabyte mainboard… with a PS2 keyboard connector and a BIOS UEFI that does not allow USB keyboards to be used right after start… get a PS2 keyboard (the […]
GNU Linux howto ssh sshd config hardening security guide per default Debian (unfortunately) does not log ssh logins (why? afraid of harddisk overflows?) every user and admin wants to see “who and what is going on” the system usefull also […]
No matter if docker repository called “hub”, Google’s App Store “PlayStore” or Apple’s App Store they are ALL facing the same security problems: https://www.bleepingcomputer.com/news/security/google-explains-how-android-malware-slips-onto-google-play-store/ plus: https://www.bleepingcomputer.com/news/security/thousands-of-android-apks-use-compression-trick-to-thwart-analysis/ what if… a malicious actor uploads an App or docker container that is totaly […]
So Tuxedo has no direct cooperation with System76 but maybe with this company: as the “TUXEDO InfinityBook S 14 Gen6” = “System76 Lemur Pro” = “CLEVO L141MU” = HYPERBOOK L14 ULTRA” Clevo sub company in Germany, main company in Poland […]
simplicity is key: what is definately great and a big plus is the “openness” of the Android (a by Google heavily modified GNU-Linux) environment. no need for extra software (itunes) to access the device a usb-c-cable will do connect it […]
details on the latest SanDisk Ultra 3.2Gen1 32GBytes stick Why this stick and not 1:1 dd copy a Debian (or other) Live iso on the stick? (Debian even provides Live.iso with a bunch of different desktops to chose from #NOICE!) […]
SecurityLab, [22.12.20 10:00] Google has explained the reasons for the massive failure of its services that took place last week. Recall that on December 14 of this year, users around the world for 47 minutes could not access Gmail, YouTube […]
Pure Beauty: “the glow” “IT JUST WORKS” 🙂 wifi works two-finger-scroll touchpad works sound works (hey! startup sounds are important 🙂 admitted: the keyboard will need some time of getting used to X-D (per default Macbook Pro A1278 would run […]
EDIMAX EW-7612UAn V2 THE ONLY (?) GNU Linux WIFI WLAN Adapter that works OUT OF THE BOX on all GNU Linux systems (ODROID RASPBERRY AND Desktop GNU Linux) https://www.mediatek.com/products/broadbandWifi/mt7662u hostnamectl; # tested on Static hostname: lenovo t440 Operating System: Debian […]
postgres borrows concepts from mysql (now mariadb) postgres and mariadb are borth great databases, thanks all involved. (how to setup postgres 12 on centos 8 (very very latest)) let’s dive into hit: how to postgres: hostnamectl; # tested on Virtualization: […]
here are the packages: https://download.postgresql.org/pub/repos/yum/ # updated: 2021-01 # the guide below is probably outdated # the official current howto https://www.postgresql.org/download/linux/redhat/ # tries to install postgres13 like this: # Install the repository RPM: dnf install -y https://download.postgresql.org/pub/repos/yum/reporpms/EL-8-x86_64/pgdg-redhat-repo-latest.noarch.rpm # Disable the […]
about MAC address(es) not every switch has an IP assigned (if it has no web management interface, it does not need to) but it will have a MAC address. MAC address are per vendor and per device unique identifiers that […]
firewall & pinguin: iptables where do thou go? it is said that when using “ip-sets” iptables and nftables achieve almost same performance (amounts of ips possible to block, without server becoming slow/unresponsive) Redhat and nftables on DDoS “so the only […]
kernel 3.10, software raid1 works fine… kernel 4.18, software raid1 seems to work fine… kernel 4.19, software raid1 miserably fails… it starts to sync raid1 discs becomes slower and slower and finally “120 seconds….” then comes to a halt. i […]
basically the advanced version of PiHole. WARNING! THIS IS not a complete OPNSense / PFSense tutorial it is rather just to get started. right now, one is (still) using iptables without any gui. there seems to be a lot of […]
What devices lurk in the user’s network? What computers are online what offline? quick arp scan with netdiscover (manpage: netdiscover.man.txt scanning with nmap What services/ports in what versions are online/open? over poorly or not so poorly documented LANs the user-admin […]
(checkout vnc section of this article) if one gets problem connecting with error message: “x11vnc error: socket: Address family not supported by protocol (97)” then probably ipv6 needs to be disabled on client (and even if it is not used, […]
if you try to play a video with 1080p and your CPU usage goes up almost 100% you know that the GPU is doin’ nuthin’ and all the encoding is done via CPU which also reduces framerate. luckily the fix […]
pci pass through nic and other hardware directly to vm? theoretically possible, but it’s pretty hard to setup 🙁 btw: stub was only a workaround until vfio is up and ready should have TWO! Graphic-Cards: one onboard for GNU Linux […]
tested on: hostnamectl Static hostname: DebianLaptop Icon name: computer-laptop Chassis: laptop Operating System: Debian GNU/Linux 8 (jessie) Kernel: Linux 3.16.0-4-686-pae Architecture: x86 i assume you have your laptop/pc LAN connected to a switch/router and your default network card is eth0. […]
Wifi Modes of an Access point: DLink has painted a nice overview over the possible different modes of an Accesspoint: cybersec: from great wifi modes that allow bridging two wifi networks, it would be GREAT if vendors test their products […]
in general programs = processes = tasks = job less is more (security) run as little software as you absolutely need – uninstall/disable all services you don’t need. less software = less lines of mistaken code = less security flaws. […]
passwd -l maria; # disables account maria passwd: password expiry information changed. grep maria /etc/shadow maria:!$6$w9DaelrP$/tJiXC2PU0B.XOupP0sFTySis5VfkMwv0DnoFy3.d.nC8gXJU.DSbU0Uryyex40P67keCFoQuxEjZ8RD9kDGU0:17325:0:99999:7::: passwd -u maria; # enable account maria passwd: password expiry information changed. /etc/passwd grep /bin/bash /etc/passwd; # output all interactive user accounts that use […]