… to have DNS top level domains for bargains (.bargain), the bible (.bible), black friday (.blackfriday) and marketing and social networking (.buzz), but it is not possible to have a TLD reserved for documentation and testing purposes. Instead, examples that use „example.com“ are in widespread circulation, a domain which is owned by IANA but points […]
Artikel in Kategorie "Technik"
Determining User Access on a Linux Filesystem with „Classic Permissions“
10. April 2020 in Administration, GNU/Linux.
Introduction Looking at a Linux filesystem, checking if a certain file or directory is accessible for reading, writing or executing by certain users or groups poses interesting challenges. Let the basic and seemingly simple question be: „Given a user X and a file Y, can it be determined if X has access to Y, and […]
The Backport of Bugfix #4864 to Squid Version 4
8. März 2020 in GNU/Linux.
With SSL-bumping enabled, with an unpatched version of Squid, the service can crash with this errormessage: !Comm::MonitorsRead assertion in HttpStateData::maybeReadVirginBody() This bug is fixed in Squid version 5, which was a sponsored effort by the developers of Squid. There is an effort of getting a bugfix into v4, which can be followed here. There also […]
Taking an Online Backup of a SAMBA-4 ActiveDirectory
7. Dezember 2019 in Administration, GNU/Linux.
Notes: The following procedure is available starting with SAMBA version 4.9. The procedure can be performed on a host that is unrelated to the domain, but one domain controller must be reachable, must be used as a nameserver at the time of the backup and have open ports for DNS (53/tcp and /udp) SSH (22/tcp), […]
Neue Foto-Galerie (mit alten Fotos)
4. Dezember 2019 in Multimedia, Sonstiges.
Ich habe alle Fotos aus meiner alten Galerie in PhotoShow gekippt. →Zur neuen Galerie
Re-Enable TLS 1.0 for OpenSSL-based Clients on Debian Buster
8. März 2020 in GNU/Linux.
OpenSSL shipped with Debian 10 „Buster“ disables TLS protocol versions below 1.2. The web-browsers Chromium and Firefox ship with an embedded SSL implementation and are not affected (they will issue warnings about legacy websites), but it can cause problems with curl, Squid and other clients that are linked against the OpenSSL. To re-enable TLS version […]
AD-Precreation using ktutil, kinit and adcli
4. Dezember 2019 in Administration, GNU/Linux.
Using computer object precreation you can enable machines to join an Active Directory domain with knowledge of just one dedicated one-time-password. Combined with delegation you can offload management of computer objects to an otherwise unprivileged AD user.
Das hoffentlich nervigste Cookie-Banner von allen.
11. September 2019 in Multimedia.
Ich habe mal wieder das nervigste Cookie-Banner von allen aktiviert, dies in der Hoffnung, dass ich solchermaßen meine Webseite weiterhin selbst hosten darf, und nicht gezwungen bin, auf einen Hoster mit ausreichender Rechtsabteilung auszuweichen.