Sysorchestra

Monday 18 Jul 2016
travis-ci, Bash, Shell, ubuntu, shellcheck, bashate, tdd, test-driven, development

Introduction on how to use shellcheck and bashate with Travis-CI

Introduction Some time ago i've written about test-driven development, or TDD, for shell scripts using shunit2 and Travis-CI. This time i want to show you how you can further enhance your shell script testing capabilities with two useful tools for static analysis and style checking. TL;DR For anyone who…

Friday 13 May 2016
proxmox, KVM, subscription

Remove Proxmox 4.2 “No Valid Subscription” message

If you're trying out Proxmox in your Homelab it is very annoying to see this "No valid Subscription" message unless you've purchased a subscription from Promox which i really recommend. You support them to keep up the development of Proxmox VE and have access to support and the enterprise repository.…

Sunday 12 Jul 2015
sophos utm, astaro security gateway, IPv4, IPv6, DS-lite, kabeldeutschland, router advertisement, prefix assignment

Configuring IPv6 with Sophos UTM 9 and KabelDeutschland

With almost every private customer contract from KabelDeutschland (KD) you'll get DS-Lite with a Carrier-grade IPv4 NAT and an IPv6 Prefix routed to your very own IPv6 Gateway - in most cases this is just your cable modem or router. I'am using a Sophos UTM - formerly known as Astaro…

Saturday 20 Jun 2015
aes, golang, keepass, aes-256-ecb, go, aes-256-cbc

gokeepasslib - Reading a Keepass 2 file with Go

One can certainly argue about the security of Keepass. I for one am currently using it to store my passwords, mainly because I do not necessarily trust any web service to handle my passwords. At least with Keepass I can make sure that my file only goes to places where…

Tuesday 24 Mar 2015
go, challenge, splice, binary

The Go Challenge - a fun way to learn and improve

There are many ways to learn a language and to improve your skills in it. Some gophers came up with the Go Challenge, a coding contest in which you have to solve an exercise using Go and send in your solution. All solutions will be reviewed and the best can…

Tuesday 17 Mar 2015
SSL, TLS, CA, certificate, challenge, chain, intermediate

SSL/TLS: Certificate chain challenges

Update #1: I've updated the part "Get them into our webserver" by adding a link back to the first SSL/TLS Post where i describe how to correctly create the bundle files! In my last post i've described what you need to do with the new site and intermediate certificates…

Tuesday 03 Mar 2015
SSL, TLS, freak, vulnerability, cve20150204, nagios

SSL/TLS: FREAK vulnerability and a Nagios check for that!

TL;DR Today a new SSL/TLS vulnerability has been made public which uses the old EXPORT ciphers to drive MITM (Man-in-the-middle) Attacks. Detailed information? You can find much more detailed information about that vulnerability at Matthew D. Green's Blog and at Akamai. The check for all of you! I've…

Sunday 15 Feb 2015
apache2, CA, certificate, CSR, simple guide, tutorial, howto, TLS, SSL, https, Nginx

SSL/TLS: How do i get HTTPS for my site with a valid certificate?

For me using SSL/TLS for websites or connections between servers and clients in general - think of PostgreSQL connections or OpenLDAP - is no rocket science and my daily business. But in the last months i read a lot of tweets and articles about that topic and talked to…