If you want to Travel to other Countries (Border-Control), you should know some things: Buy a older Acer Laptop with Micro SSD Harddisk and SATA CDROM Slot Buy a SATA CDROM Adaptor for 10$, open the Laptop and remove the SATA Drive put it into the SATA Adaptor Don’t put Screws into the Laptop to the Adaptorslot so that you can pull out quick the SSD drive Install Ubuntu Linux with LUKS Disk full encryption! DOWNLOAD here Buy a privacy Shield-Sticker onto the TFT To extend security use USB-WIFI Dongle for WIFI Connections! (MAC Address Spoofing) Or: Buy a older […]
Category: Armbian
Linux: Raise Security Level by removing Software
If you use Linux you should monthly check which Software you haven’t used last weeks. Background: Every additional Software put Load on your PC Every additional Software uses libraries which can be affected by zero day exploits The Developers doesn’t know all bugs of their dependencies Third parity Software parts like “Github” or “PPA-Sources” they can be a security hole, by confusing Developers! If a Projekt is closed, remove unneeded Software to reduces the count of securitry holes! Run Cleanups after uninstall to purge changed Configs read here
Linux Security: create, mount, lock Luks Encrypted Container Files
Howto create encrypted Container Files for private Photos? REMARKS: EVERY unlocked and active mounted Luks Drive could be read out by attackers! Use long Passwords for Luks! dismount and LOCK unused luks drives/containers if NOT used! Create and mount Script: #!/bin/bash # Script creates 4GB Encrypted File Container, set Password # and mount it to /mnt/photos-private change your username!!! # # check free loop device set as variable loop=`losetup -f` # move existing container to old as BACKUP sudo mv container container.old # create container 4G sudo dd if=/dev/urandom of=container bs=1M count=4096 # bind raw container disk to free a […]
Bug: XDM Login Manager fails start on Boot
Seen on ubuntu 22.04 after do-release-upgrade the xdm Login Manager fails to start, cause a old xdm.pid file hangs from last shutdown on “/run/xdm.pid”. XDM prevent start on a old PID File!! Workaround edit Roots crontab to purge it: sudo crontab -e @reboot rm -rf /run/xdm.pid > /dev/null 2>&1 quit and save with “:wq!” ..reboot
Ubuntu: Chromium install without snap
Howto: Remove all snaps and install chromium on ubuntu 20.XX-24.XX sudo snap remove "package-name" (first all gtk-XX,gnone-xx and all "base+core") sudo apt-get remove snap snapd sudo add-apt-repository ppa:xtradeb/appsĀ (Answere Question ENTER) sudo apt-get update sudo apt-get install chromium
Linux: find files modified in special Month
If you want to free space on Backups you can use find to select a special month: find -newerct "1 Sep 2023" ! -newerct "1 DEC 2023" -delete This command removes files created from 01.Sep.2023 to 01.Dec.2023. ..very useful..
Seafile Photo Cloud Server Problems (must KNOW)
If you plan to setup a small private Photo Cloud Server and you try to setup “Seafile Community Edition” there are some MAJOR Points (disadvantages) to know: Seafile Community Edition has limited Functions (5 Users) The Photo Files saved on “Data Blocks Files” like on “IPFS” with hash Keys as Names You need a MYSQL Database, MAJOR if broken by Updates all Photos lost! Seafile is based on Python Framework Software if any SPECIAL needed Python-Module is broken by a Update your Photos lost! I have tested many Setups, the big OS-RELEASE Changes often a big Trap cause broken Dependencies […]
Ubuntu Debian MAJOR Bug: WIFI randomly disconnected at 100% Signal no internet
Ubuntu Debian (All Linux OS) Bug: WIFI randomly disconnected at 100% Signal no internet System : ubuntu 18.04 LTS Kernel 5.7 amd64 Router openwrt LAN/WIFI: disabled ipv6 dhcp ! Bug: Wifi lost internet connection randomly on 100% Signal beside the Gateway-Router! Problem: No Error Logs, no Kernel Messages Tested: Replaced Mini-PCI WIFI 5/6 Cards various Brands ATH9/Intel no fix!! Replaces Drivers and Power Off Powermanagement of PCI-WIFI! no fix! Solution: edit /etc/sysctl.conf insert: net.ipv6.conf.all.disable_ipv6 = 1 net.ipv6.conf.default.disable_ipv6 = 1 net.ipv6.conf.lo.disable_ipv6 = 1 Bug Background Info: dhcp6 daemon got a expire time of IP Address but fails to renew the handshake […]
Apache2 evasive Problems with WordPress
If you use Apache2 / Apache24 and anti-hammering tools like the Modul evasive and security2 as addon fail2ban than you can fail blogging. Problems: Apache2 Module “evasive” must be fine tuned for WordPress go /etc/apache2/ if you use default enabled auto-safe drafts of posts can let you look like a Attacker so disable auto save by wp-config set “define(‘AUTOSAVE_INTERVAL’, 86400);” !! on small systems redis and other cache technics can generate too additional hidden “posts” traffic to the Apache2 & SQL checkout the system by disable all security addons and fine tune settings, if ok enable them again.. try wordpress […]
Apache2 evasive Problems with WordPress
If you use Apache2 / Apache24 and anti-hammering tools like the Modul evasive and security2 as addon fail2ban than you can fail blogging. Problems: Apache2 Module “evasive” must be fine tuned for WordPress go /etc/apache2/ if you use default enabled auto-safe drafts of posts can let you look like a Attacker so disable auto save by wp-config set “define(‘AUTOSAVE_INTERVAL’, 86400);” !! on small systems redis and other cache technics can generate too additional hidden “posts” traffic to the Apache2 & SQL checkout the system by disable all security addons and fine tune settings, if ok enable them again.. try wordpress […]
Firefox Bug more than a Feature no Sound after Update
If you use firefox for hamradio like openwebrx or kiwisdr the Sound will die after a Update! That’s NO Driver or NO Linux or a WEBSDR Problem, The Problem is DISABLED AUDIO startup on Firefox Fix: Enter at the URL-BAR “about:config” search entry “media.autoplay.block-webaudio” to false Restart Firefox and be happy.. If you are a Security Nerd then use 2 Firefox Profiles for Web and different for SDR-Radio..
Redis Monitoring command line
Open a Console to checkout the IO of the REDIS Socket on Ubuntu Linux do: redis-cli -s /var/run/redis/redis-server.sock at the Prompt enter “MONITOR” ! redis /var/run/redis/redis-server.sock > MONITOR Lines run should be seen.. like 1643798561.129268 [0 unix:/var/run/redis/redis-server.sock] "EXPIRE" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/5cd93670745f7ff4ef4b456cc9c8b126" "3600" 1643798561.130843 [0 unix:/var/run/redis/redis-server.sock] "INCRBY" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/262023e9d503ea4158010bfebc4124bd" "1" 1643798561.131158 [0 unix:/var/run/redis/redis-server.sock] "EXPIRE" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/262023e9d503ea4158010bfebc4124bd" "3600" 1643798561.132725 [0 unix:/var/run/redis/redis-server.sock] "INCRBY" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/84b5072ee7801482b6bf7d661003df87" "1" 1643798561.133044 [0 unix:/var/run/redis/redis-server.sock] "EXPIRE" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/84b5072ee7801482b6bf7d661003df87" "3600" 1643798561.138752 [0 unix:/var/run/redis/redis-server.sock] "WATCH" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/84b5072ee7801482b6bf7d661003df87" 1643798561.139097 [0 unix:/var/run/redis/redis-server.sock] "GET" "98f4dfa05f67a630e9a828ad8a7c30d9/lockfiles/84b5072ee7801482b6bf7d661003df87"
Android OS vs Linux Widevine Support on ARM64
If you use a odroid device like my odroid n2 you should know that the OFTEN needed DRM Browser Plugin “Widevine” in NOT available by default for ARM64. Google free Browser Chromium does not support Widevine without hacking (extracting from a Chromebook OS Recovery ARMHf/32bit Image.) I was not able to get it to run on Armbian or ubuntu for odroid. Its much simpler to setup Android and use the Apps like Amazon Video or else.. Google does NOT offer a Widevine to ARM64 CPU Support by default. Try x86 TV Sticks or Boxes like the intel tv stick if […]