Просмотрено
Метка: Linux & Unix

WireGuard on Kernel 5.6. Quick start

WireGuard on Kernel 5.6. Quick start

Install all downloaded deb’s Reboot server/PC by command reboot After startup check the kernel version^ Test Wireguard on server Add repository for ubuntu 18.04 Make some changes to Firewall on server Simple script for generating key pairs and base cofigs for server and client Or download here: Put wg0.server as /etc/wireguard/wg0.conf on Server side and wg0.client on Client side in the same place Startup interface on machines For Android clients you can use config file as QR code

Mikrotik as OpenVPN server in 3 steps

Mikrotik as OpenVPN server in 3 steps

Connect to Mikrotik via SSH and start writing text below Set global VARs Make server and client CRT Create pool, profile, interface, firewall Goto menu Files in Mikrotik admin panel and download ca.crt + client.crt + client.key Then make file SomeName.ovpn with content: Put your key and crt and change host:port vars and file auth.cfg with this two files you can start client

Configure Apache for A-rating on SSLLabs

Configure Apache for A-rating on SSLLabs

Just add following lines to vhost.conf SSLEngine on SSLProtocol TLSv1.2 TLSv1.1 SSLProxyProtocol TLSv1.2 TLSv1.1 SSLHonorCipherOrder on SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-GCM-SHA256:AES256+EDH:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA25

QRencode

QRencode

Забавна программа якщо треба перенести якийсь текст на телефон, а під рукою нема ніяких штатних месенджерів echo "text_string" | qrencode -t UTF8 -o – █████████████████████████████ █████████████████████████████ ████ ▄▄▄▄▄ █▀▄█▀▄█ ▄▄▄▄▄ ████ ████ █ █ █▀▄█▀██ █ █ ████ ████ █▄▄▄█ █▀▀ ▄ █ █▄▄▄█ ████ ████▄▄▄▄▄▄▄█▄█ ▀ █▄▄▄▄▄▄▄████ ████ ▄▄▄ ▀▄▄ ██ ▄█▄▀ ▀▄▀████ █████▀▄▄▄█▄█▀█▀▄█▀▄▀█ ▄█████ ████▄▄▄▄█▄▄▄ ▀▄▄▀█ █▀▄█ ▀████ ████ ▄▄▄▄▄ █▄ ▄█▄ ██▀▀ ▄█████ ████ █ █ █ ▄ █▀▀ ▄▀ ▀▄▄████ ████ █▄▄▄█ █ ▄▀▀▄▀▄█▀▀ ██████ ████▄▄▄▄▄▄▄█▄▄█▄▄█▄█▄▄▄▄█████…

Читать далее Читать далее

SSH client stuck on connect

SSH client stuck on connect

This is probably an issue with D-Bus and systemd. If the dbus service is restarted for some reason, you will also need to restart systemd-logind restart systemd-logind service: systemctl restart systemd-logindsystemctl restart systemd-logind I had this same issue on CentOS 7, because the messagebus was restarted (which is how the D-Bus service is called on CentOS).

Add CA certifice from Let’s Encrypt to Java 8

Add CA certifice from Let’s Encrypt to Java 8

For add cert to Java 8 you need use keytool cd /tmp/ && \ curl -O https://letsencrypt.org/certs/letsencryptauthorityx1.der && \ sudo $JAVA_HOME/bin/keytool -noprompt -importcert -alias letsencryptauthorityx1 -keystore $JAVA_HOME/jre/lib/security/cacerts -file letsencryptauthorityx1.der -storepass changeit && \ curl -O https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.der && \ sudo $JAVA_HOME/bin/keytool -noprompt -importcert -alias lets-encrypt-x3-cross-signed -keystore $JAVA_HOME/jre/lib/security/cacerts -file lets-encrypt-x3-cross-signed.der -storepass changeitcd /tmp/ && \ curl -O https://letsencrypt.org/certs/letsencryptauthorityx1.der && \ sudo $JAVA_HOME/bin/keytool -noprompt -importcert -alias letsencryptauthorityx1 -keystore $JAVA_HOME/jre/lib/security/cacerts -file letsencryptauthorityx1.der -storepass changeit && \ curl -O https://letsencrypt.org/certs/lets-encrypt-x3-cross-signed.der && \ sudo $JAVA_HOME/bin/keytool -noprompt…

Читать далее Читать далее