a mostly private knowledge repository
Note: These posts are notes for me. These are not guides and you should not use these instructions as step-by-step instructions without knowing what they do.
Use the following statements in your conf files. IPs are in CIDR format. Replace with your IP ranges as needed. Apache 2.4 <FilesMatch ".*"> Require ip 192.88.134.0/23 Require ip 185.93.228.0/22...
To use a certificate in Windows for IIS usage, you can select the certificate in IIS bindings. It is a bit different to use a certificate for LDAPS. There are two things to keep in mind: Windows will...
These are instructions to create a shared directory amongst two or more users. This will only allow those users access to SFTP, but not the shell. They will also be "jailed" to the directory of your...
Duo offers a relatively simple way to add support Duo two-factor auth to SSH sessions in multiple Linux Distributions. Here are my steps for Ubuntu Server. Create...
Audit policy CLI commands to set the success or failure to enable (Enable – enables logging). auditpol /set /subcategory:”Network Policy Server” /success:enable /failure:enable Get the current...
LVM makes it easy to resize volumes in Linux. This can be done without unmounting drives or requiring a restart. First determine the free space of the group volume. First determine the partition...
These are the steps that need to be done when doing an in-place Ubuntu upgrade on a LibreNMS system using do-release-upgrade. Running daily.sh in /opt/librenms should give you most of the errors you...
Link Compilation Awesome Sys-admin - A curated list of amazingly awesome open source sysadmin resources. free-for.dev - A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to...
This is the method that can be used to allow SSH connections from certain IP networks. An example use for this is allowing SSH from certain public IP networks, as well as from my Tailscale network....
Use the following iptables command to rate limit connections per IP. This is useful for preventing a DDoS attack on DNS servers. However, for DDoS protection for your DNS servers, you should be...
When using yarn through the apt repo, the key might expire, giving you the following error when updating apt. W: An error occurred during the signature verification. The repository is not updated and...