Enforcing SSL/TLS

I started offering SSL/TLS on my site with lets encrypt beta certificates, now I wanted to move to enforcing SSL/TLS.

For this I will be using mod_rewrite.

First I enabled mod_rewite

sudo a2enmod rewrite

Then edit /etc/apache2/apache2.conf and add

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule …
more ...

SMTP Via telnet

If mailx is just not hardcore enough for you you have to do your SMTP via telnet.

In all seriousness though sometimes you do really want to walk though a SMTP session or validate a mail server. SMTP is a pretty simple Protocol and you can reasonable send simple emails …

more ...

Automatic updates with Debian

Though I am taking some risk by automatically updating my servers. I prefer that they always update so that security patches are applied very quickly. Here is how I configured my Debian servers (jessie) to update on a daily bases.

I created a shell script in /root/update.sh

apt-get …
more ...

Dovecot autocreate plugin to mailbox { auto }

With dovecot 2.2 Autocreate was deprecated. and the very helpful message started popping up in my logs

Warning: autocreate plugin is deprecated, use mailbox { auto } setting instead

Dovecot’s wiki does have a page on this http://wiki2.dovecot.org/MailboxSettings but its not very helpful.

So here is …

more ...

Read .pem cert file

I needed to take a look at a .pem cert file to take a look at the expiration dates.

What do you know openssl makes it somewhat easy to do this.

openssl x509 -in invoke.coffee.pem -text

There you go all the signing info. expiration, signing algorithms etc.

more ...

rsyslog failure

I ran into an issue with rsyslog on debian.

when running apt-get install (in this case git) I would get this back.

Setting up git (1:2.1.4-2.1) …
Errors were encountered while processing:
rsyslog
fail2ban
E: Sub-process /usr/bin/dpkg returned an error code (1)

So I removed …

more ...

Resetting the root Password on Ubuntu

It’s not very common but at some point everyone needs to get back into a Linux box they do not know the password to.

The procedure below is for Ubuntu 14.04 with Grub.

Reboot the Linux machine

When you get to the Grub screen select the “Advanced options …

more ...

Pages

  • Emacs Doom emacs
  • Git Advanced Cheetsheet

  • i