Generate Self-Signed SSL Key Pair with OpenSSL
openssl req -new -newkey rsa:2048 -days 365 -nodes -x509 -keyout key.pem -out cert.pem -sha256
openssl req -new -newkey rsa:2048 -days 365 -nodes -x509 -keyout key.pem -out cert.pem -sha256
I was trying to set up a fail2ban jail for wordpress inside a FreeBSD jail, but I just couldn’t get the rules to match. The fail2ban instance was running on the host machine, checking a log inside the jail. Turns out the time zone in the jail was incorrect, and fail2ban was not matching log …
When fail2ban just won’t match… check the time and time zone. Read More »
If you are running a transparent HTTP proxy on your network, you may have trouble with running Internet Recovery and Apple Hardware Test on Macs that support it. You’ll see a “-4403D” or “-4403F” error. For some reason, Apple’s servers return a 403 when they see the “via” header that many proxy servers send. Here’s …
By default, Squid sends HTTP headers on every request that can give away information about your internal network. Here’s an example of these headers: HTTP_VIA:1.1 proxyserver.local (squid/3.1.16) HTTP_X_FORWARDED_FOR:192.168.0.123 That’s three pieces of information you may not want to give away: The host name of your proxy server, the version of Squid it’s running, and the …
If you have a switch, access point or other piece of network hardware that supports 802.1q VLAN tagging, and you’d like to your FreeBSD system to recognize them, it’s a pretty straight-forward configuration. I’ll use examples from my network to illustrate. My goal in this case, which I may write about in a separate post, …
I previously discussed configuring JungleDisk on FreeBSD. It’s not quite the easiest to install since FreeBSD isn’t officially supported. To take that a step further, I’m now going to show what I do to back up my FreeBSD box at home. Update, November 2009: I am no longer using JungleDisk to back up my FreeBSD …