Skip to content

Instantly share code, notes, and snippets.

View dunderrrrrr's full-sized avatar
🦄

Emil dunderrrrrr

🦄
13 followers · 24 following
View GitHub Profile
@dunderrrrrr
dunderrrrrr / Search-domains-ubuntu.md
Created August 16, 2023 06:04
Adding search domain in ubuntu 22.04

Edit /etc/systemd/resolved.conf, set option Domains= (space separated list of domains) according to docs and then restart systemd-resolved.

$ systemctl restart systemd-resolved
@dunderrrrrr
dunderrrrrr / Multiple CORS urls in Caddy.md
Last active July 12, 2023 07:57
Multiple CORS urls in Caddy

/etc/caddy/Caddyfile

(cors) {
        @{args.0} header Origin {args.0}
        header @{args.0} Access-Control-Allow-Origin {args.0}
        header Access-Control-Allow-Methods "GET, POST, PUT, PATCH, DELETE, OPTIONS"
        header Access-Control-Allow-Headers "Content-Type, Authorization, Time-Zone"
        header Access-Control-Max-Age "3600"
        header Access-Control-Allow-Credentials true
}
@dunderrrrrr
dunderrrrrr / SSH and FIDO authentication in Ubuntu 20.04 LTS.md
Created April 22, 2022 06:43
SSH and FIDO ssh authentication

# SSH and FIDO authentication in Ubuntu 20.04 LTS

The following section demonstrates how users can generate new key types and use them to perform authentication. First, users have to attach a device to the system. Next, they need to generate a new key and specify one of the new types. During this process users will get prompted to tap the token to confirm the operation.

user@client:~$ ssh-keygen -t ecdsa-sk  
Generating public/private ecdsa-sk key pair.  
You may need to touch your authenticator to authorize key generation.  

Enter file in which to save the key (/home/user/.ssh/id_ecdsa_sk):
@dunderrrrrr
dunderrrrrr / Mount VMDK in Linux.md
Created January 14, 2022 18:55

If you need to mount a VMDK-file and browse around.
You will need guestmount. My VMDK is a linux based disk.

Installation

guestmount is contained in following packages per distro:

Ubuntu: libguestfs-tools
OpenSuse: guestfs-tools

CentOS / Fedora: libguestfs-tools-c

@dunderrrrrr
dunderrrrrr / NGINX Self-Signed Cert with 301 redirect (and reverse proxy).md
Created September 16, 2021 18:02

NGINX Self-Signed Cert with 301 redirect (and reverse proxy)

First, generate your cert. Make sure your FQDN is matching your url. This is the easy way, if production you should also get yourself a DH-key and make some other changes to your SSL configuration. More reading here.

$ sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt

Once you're done filling all cert-information, add certs and the 302 redirect (from http to https) to the nginx configuration. Here's a sample.

@dunderrrrrr
dunderrrrrr / GeoIP Block NGINX Ubuntu 20.04.md
Created April 19, 2021 08:28
Allow or block GeoIP in Nginx on Ubuntu 20.04

GeoIP Block NGINX Ubuntu 20.04

Block or filter IPs based on location in Nginx (tested on 1.18.0) on Ubuntu 20.04.

Install Nginx modules

To make use of the geographical filtering, we must first install the Nginx GeoIP module as well as the GeoIP database containing the mappings between visitors’ IP addresses and their respective countries. To do so, let’s execute:

$ sudo apt install libnginx-mod-http-geoip geoip-database
@dunderrrrrr
dunderrrrrr / Move docker data directory to another location on Ubuntu.md
Created April 16, 2021 08:09

Move docker data/volumes directory to another location on Ubuntu

The standard data directory used for docker is /var/lib/docker, and since this directory will store all your images, volumes, etc. it can become quite large in a relative small amount of time.

Here's a guide how to change that folder to another location, for example another disk.

  1. Stop docker daemon
$ sudo service docker stop
@dunderrrrrr
dunderrrrrr / Backup Ubuntu 20.04 to GoogleDrive using rclone.md
Last active March 6, 2022 05:37
Create backup of important files & folders and send to GoogleDrive.

Backup Ubuntu 20.04 to GoogleDrive using rclone

We'll be using rclone and a cronjob which will trigger a custom made bash script.

Install and configure rclone

Install rclone

$ sudo apt install rclone
$ sudo rclone config
@dunderrrrrr
dunderrrrrr / Creating isolated networks with Ubiquiti UniFi.md
Last active December 28, 2020 12:17

img1

1. Configuring an Isolated Network

To set up an isolated Network, log into your controller and go to Settings->Networks and click on the +Create New Network button. This opens up the “Create New Network” page, where you need to provide a few details. First off, give the network a name and select Corporate as the Network Purpose. I left the default Network Group of LAN1 in place, since I don’t have anything connected to the LAN2 port of my USG.

1.1 Define a VLAN

Next up, define a VLAN ID that you want to use for this network. This can be any number from 0 to 4095, and you can pick whatever you want here (as long as it’s not 0, which is the default VLAN for everything that doesn’t have one defined).

@dunderrrrrr
dunderrrrrr / unifi_ubuntu_2004.sh
Created November 28, 2020 17:22
Install Ubiquiti Unifi Controller on Ubuntu 20.04
# Install Ubiquiti Unifi Controller on Ubuntu 20.04.
# As tested on a fresh install of ubuntu-20.04.1-live-server, August 22nd 2020.
# Thanks to https://gist.github.com/tmuncks for posting the updated install steps.
sudo apt update
sudo apt install --yes apt-transport-https
echo 'deb https://www.ui.com/downloads/unifi/debian stable ubiquiti' | sudo tee /etc/apt/sources.list.d/100-ubnt-unifi.list
sudo wget -O /etc/apt/trusted.gpg.d/unifi-repo.gpg https://dl.ui.com/unifi/unifi-repo.gpg