Search Results

(2017-05-30) Problem I don't want to get prompted for sudo access. Solution Run visudo At the end of the file, add: myusername ALL=NOPASSWD: ALL For some reason it doesn't work if you add it before the end of the file. (Learned, later: the last definitio...

(2015-02-18) Problem Jessie not fully integrated with Hyper-V out of the box. Solution /usr/bin/hv_get_dhcp_info #!/bin/bash # This example script retrieves the DHCP state of a given interface. # In the interest of keeping the KVP daemon code free of distro s...

(2016-02-19) Problem Veeam can't connect to the target Debian server, fails with: Server does not support diffie-hellman-group1-sha1 for keyexchange Solution Add the following to /etc/ssh/sshd_config: KexAlgorithms diffie-hellman-group1-sha1,curve25519-sha256@...

(2023-10-31) DH Group to OAKLEY_GROUP values DH Oakley DH Group 1 768-bit MODP Group DH Group 2 1024-bit MODP Group DH Group 5 1536-bit MODP Group DH Group 14 2048-bit MODP Group DH Group 15 3072-bit MODP Group DH Group 16 4096-bit MODP Group ...

2023-06-30 About generating dhparams with 4096 bits instead of 2048 bits When you use dhparam, OpenSSL not only generates DH parameters; it also wants to assert his social status by taking care to use for the modulus a so-called "strong prime", which is usele...

Log to a file with enough information to make it useful. CAUTION: there's no built in log rotation, you get to roll your own. logging { channel named_log { file "/var/log/named.log"; severity debug; print...

(2013-03-28) Problem I want to tell a BIND server that a particular DNS zone can be resolved at some arbitrary DNS server. I do not want to forward all requests through this arbitrary DNS server. Solution In /etc/named.conf: zone "myzone.local" { type for...

(24 January 2012) So years ago we get called into this small company working out of I don't remember where. We were doing some network discovery so that we could estimate some professional services work, mostly Windows work, which is why I wasn't involved. All...

(2018-10-16) Problem What is CAA record Solution CAA record is a DNS record that indicates who is permitted to issue SSL certs for a domain. Information. bind entry: xdroop.com. IN CAA 128 issue "letsencrypt.org" In action: # dig @n1 caa xdroop.com ; <<>> D...

(2016-05-09) Problem Show IPs getting denied responses to queries on my local DNS server, sorted by the number of denies in the log file. Solution # grep denied named.log.1 | awk '{print $4}' | awk -F '#' '{print $1}' | sort | uniq -c | sort -n | less Comment...

(12 October 2012) Problem: I need to delegate part of my /24 to another name server. Solution This is known as the RFC-2317 solution. Basically for each address you are delegating, you put in a CNAME to a subdomain zone. Then you put in a NS record indicating ...

Problem You want to know what the current content of a DNS zone is. Possible Solution This will work if your DNS server is friendly: $ dig -t AXFR @$SERVER $ZONE A reader pointed out an error I made, and adds… The @ is important because it tells dig which dn...

(2019-09-11) I've only been doing this for 25 years, I guess it's high time I learned what it all means [root@n2 log]# dig +short soa xdroop.com n1.gridway.net. info.gridway.net. 2019050703 86400 3600 604800 7200 The numeric values are: SOA Value Name Desc...

dnstop is a tool for monitoring dns requests on a particular network. It is a libcap snooper, so all the snoop rules apply. Get it here: http://dnstop.measurement- factory.com

Interesting: [dave@store01 ~]$ dig +trace xdroop.com ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-20.P1.el5_8.1 <<>> +trace xdroop.com ;; global options: printcmd . 3600 IN NS g.root-servers.net. . 3600 IN ...

This also applies to situations with eXceed 8 where the screen saver engages, but never goes into powersave mode. DISCUSSION: Customer says that when running Exceed 7, his Windows screen saver no longer engages. This did not happen with earlier versions of Exc...

If you need to put more physical disk into the physical volume, do that: # vgextend fedora /dev/sdb1 Create the new logical volume: # lvcreate -n owncloud -l 100%FREE fedora (Examples bodged from here)

(2020-02-25) Problem The module command doesn't work in cron jobs. Solution You have to source the module init script before the aliases can be used. eg: #!/bin/bash . /etc/profile.d/modules.sh [...]

(2020-02-11) Creating A Bridge Interface for KVM VMs # nmcli connection add type bridge autoconnect yes con-name br0 ifname br0 # nmcli connection modify br0 ipv4.addresses 10.255.0.5/24 ipv4.method manual ipv4.gateway 10.255.0.1 # nmcli connection modify br0 ...

(2020-03-13) KVM Briefly # virsh list # virsh list --all # virsh start <name> # virsh dominfo <name> # virsh shutdown <name> # virsh destroy <name> $ virsh undefine <name> (Source)