System & Network Admin

An unofficial guide to using Mastodon and the Fediverse

Learn to install Distrobox on Debian 12 with ease. Click for a step-by-step guide and enhance your Linux experience today!

is there a way to use exiftool command on all files with specific extensions inside a folder? E.g. exiftool -overwrite_original -all= *.jpg *.png *.jpeg The problem of the command above is that it

This article explains how to set up Portainer with automatic HTTPS certificates (via Caddy) and OAuth single sign-on (via Authelia).

With a versatile key management system and access to several public key directories, GPG is a must-have for security-minded Linux users.

This article explains the rsyslog logging service and compares it to the newer journald system. It uses practical command examples to manage the services and update configuration files.

SSHFS mounts remote directories to a local machine using secure encryption, with a connection that is far more secure than your standard FTP.

In this tutorial, you will learn how to extract the metadata of a video file in Python. Two methods of extracting the metadata are here.

Installing NixOS on a Raspberry Pi

A comprehensive guide to NetBSD, FreeBSD, OpenBSD, and DragonFlyBSD

TL;DL This Wiki explains how to enable https connections between hosts in a LAN with automatically renewed certificates. Just scroll down and go over the example Caddyfiles. They hopefully have enough comment to understand the idea 😉 Introduction If you have successfully followed the Wiki Using Caddy as a reverse proxy in a home network by @Matt, you have setup a reverse proxy that provides a TLS encrypted connection from the internet to that reverse proxy. This is mandatory and you should...

Create LXC Templates Every time inspiration struck or I saw a blog post with something I wanted to try, it was frustrating and time consuming to get the base operating system set up to the way I like it before proceeding with the project. Now I just update the template each point release or when I add something substantial to my dotfiles so it's ready to go whenever I need to spin up a fresh container.

1. Forward HTTPS traffic to Ubuntu machine First we need to redirecting the communication addressed to the public IP address to the static IP of our host Ubuntu machine. In my case, that address is the 192.

This article explains the role of command-line package managers, examines the package manager options for various distributions and demonstrates how to manage software with some of the most common tools.

Sorry for the delayed response, hope it helps. Documenting anyway as it might help others as well. The idea is to have a systemd target (tailscale-online.target) that we ensure is enabled if and only if tailscale is up and vice versa. To do that write and enable tailscale-dispatcher.timer: [Unit] Description=Checks for tailscale state and syncs with `tailscale-online.target` BindsTo=tailscaled.service After=tailscaled.service [Timer] OnBootSec=0 OnUnitInactiveSec=10 AccuracySec=1 [Install]...

I installed NixOS on a Raspberry Pi 3B. Here’s a write-up on the process, the problems I encountered and what I learned. Let me tell you: the Pi’s boot process is weird. Also it’s too slow to even evaluate my NixOS config so I had to build and deploy it remotely, and some other fun stuff.

The launch of the new version of Nebula 1.5 has just been announced, which is positioned as a collection of tools ...

Learn the step-by-step process to upgrade a Ubuntu Linux system to the latest version of the distribution.

Learn how to start a shell in a new or running Alpine Docker container.

I have a directory containing only two files, Dockerfile and sayhello.sh: . ├── Dockerfile └── sayhello.sh The Dockerfile reads FROM alpine COPY sayhello.sh sayhello.sh CMD ["sayhello.sh&quot...

tcpdump is the world’s premier network analysis tool—combining both power and simplicity into a single command-line interface. This guide will show

I'm trying to run tcpdump on linux machine, which needs to write pcap on the remote server with file rotation every 10 seconds. tcpdump -s0 -i eth0 -G 10 -w - | ssh {remote_ip} "cat > capture_%...

Imagine if we could establish a level of trust that in our network, we can verify with certainty that a computer really is who it says it is. By bringing mutual authentication and trust into networking, we can better make security decisions on when connections should be allowed. This can enable our services to talk to each other securely over the global internet, and reduce the dependence on a a trusted perimeter.

In my previous blog post, I delved into the powerful combination of Node Exporter, Prometheus, and Grafana for robust monitoring. This…

If you’ve read this blog for any length of time, you’ll know that I’m a big fan of Splunk, and using Splunk to solve everyday problems. But…

A collection of awesome resources for running your own federated social media website.

Make your web services secure by default with BunkerWeb, the open source and next generation WAF.

I have created Nix Flake for Livebook if you are interested. This Flake takes care of all dependencies that you would need I plan on expanding it with more OTP-related projects to be more like Fenix but for OTP related stuff.