Uberleet

Linux Systems Articles for better insights

Posts


FreeIPA admin account reset

Sometimes the 'admin' account can get locked with FreeIPA which will immediately shutdown the administration site with '500: Internal Server Error' and other symptoms. You will know a lockout is in effect if you run kinit admin on the IPA host and get kinit: Clients credentials have been revoked while …

Xen Hints

Add local iso images SR mkdir -p /var/opt/xen/iso_import/ xe sr-create name-label=ISO_IMAGES_LOCAL type=iso device-config:location=/var/opt/xen/iso_import/ device-config:legacy_mode=true content-type=iso host-uuid=ENTER SOMETHING HERE wget https://buildlogs.centos.org/rolling/7/isos/x86_64/CentOS-7-x86_64-Minimal-1609-01.iso Clone a VM VM must be halted …

Creating Readonly LDAP Service Accounts for FreeIPA

Often times I need to create a read-only service account for performing searches and authentication. You could delegate the permissions to a regular user account, but there are limitations: User accounts are too powerful for auth. User accounts password are subject to expiration. It's a better idea to create a …

Quickshell deploy AuditD

I'd run Ansible but the environment I'm in is too unpredictable for that right now. So here's some shell scripts I wrote to quickly activate auditd on hosts. Ubuntu 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18#!/bin/bash # ausearch …

The single biggest gripe I have with pfSense.

The single biggest gripe I have with pfSense. I install pfSense in network situations where I want to protect servers in a datacenter or colo, and have no clients on the LAN side. You can turn on SSH by the vga console, but getting the web GUI is a different …