ginmaster

How to setup Let's Encrypt for Nginx on Ubuntu 18.04 (including IPv6, HTTP/2 and A+ SLL rating)

---

Virtual hosts

Let's say you want to host domains first.com and second.com.

Create folders for their files:

fishphhd

Private Mailserver with Postfix, Dovecot and Fetchmail on macOS Big Sur M1

This is a simple installation and configuration manual to setup a private mailserver. The instructions will be continued in future...

Requirements

• Apple M1 with macOS Big Sur but it should working at Intel Macs 64-bit too.
• Replacement for the missing mail and imap services in the macOS Server
• Receiving and sending emails of all accounts (private and business)
• Using Postfix, Dovecot and Fetchmail

eRQee

clear
##############
# Am I root? #
##############
if [ "x$(id -u)" != 'x0' ]; then
    echo 'Error: this script can only be executed by root.'
    echo 'Try re-run the script after switched to root account by type "sudo su"'
    exit 1
fi

ismailyenigul

# docker network create nextcloud

NOTES:
1. certificatesresolvers.myresolver.acme.email=myemail@gmail.com 
2. TRUSTED_PROXIES values based on your 'nexcloud network'
3. remove traefik.http.middlewares.nextcloud.headers.contentSecurityPolicy and  
traefik.http.middlewares.nextcloud.headers.customFrameOptionsValue if you don't want to allow iframe your domain
3

# cat docker-compose.yml

Skn0tt

version: "3.7"

services:

  nextcloud:
    restart: unless-stopped
    image: nextcloud:16.0.6
    depends_on:
      - minio
      - postgres

MrDrMcCoy

yourhost.com {
  redir / https://cloud.yourhost.com 301
}

cloud.yourhost.com {
  tls admin@yourhost.com
  header / Strict-Transport-Security "max-age=31536000;"
  root /var/www/html
  fastcgi / nextcloud:9000 php {
    connect_timeout 1h

Jabarabo

Awesome Piracy

A curated list of arrrrrrrrr!

Contents

• Preamble
• Mirrors
• How to use this list
• Emoji
• Background Information

huntrar

Arch Linux Full-Disk Encryption Installation Guide

This guide provides instructions for an Arch Linux installation featuring full-disk encryption via LVM on LUKS and an encrypted boot partition (GRUB) for UEFI systems.

Following the main installation are further instructions to harden against Evil Maid attacks via UEFI Secure Boot custom key enrollment and self-signed kernel and bootloader.

Preface

You will find most of this information pulled from the Arch Wiki and other resources linked thereof.

Note: The system was installed on an NVMe SSD, substitute /dev/nvme0nX with /dev/sdX or your device as needed.

kvnxiao

Awesome-Selfhosted

Selfhosting is the process of locally hosting and managing applications instead of renting from SaaS providers.

This is a list of Free Software network services and web applications which can be hosted locally. Non-Free software is listed on the Non-Free page.

See Contributing.

ixdy

Setting up ssh public key authentication on macOS using a YubiKey 4

I largely followed Florin's blog post, but have a few notes to add regarding issues I encountered:

Basic setup notes

1. I used a YubiKey 4, while the blog describes using a YubiKey NEO. I'm sure a YubiKey 5 would also work. I'm also running macOS 10.13.6.
2. I installed GPGTools as recommended. However, as I'll note later, it seems that gpg-agent only automatically starts when gpg is used; for ssh, you'll need to ensure it's running.
3. Before generating your keys, decide what key size you want to use. If you run the list command inside gpg --edit-card, look for the Key attributes line to see what is currently selected. On my YubiKey 4, it defaulted to 2048 bits for all keys:

Key attributes ...: rsa2048 rsa2048 rsa2048