20. Feb 2019

Install Proxmox on HP DL380 Gen8

UPDATE I had to learn it the hard way… Just don’t do what I did and get yourself an HBA controller right away! Otherwise you will run into (performance) problems sooner or later. I was in the situation to install Proxmox on a second hand HP DL380 Gen8 Server with a P420i RAID controller. Since Proxmox supports installation to ZFS out of the box I wanted to make use of that.

8. Sep 2018

Use Exiftool to shift time for a specific camera

This is a quick reminder for myself because even though I was able to find quite some information online, nothing really fit. The situation was that a session was shot with two cameras. Unfortunately the clocks were off by about 25 minutes between the cameras. To make matters more complicated the files of both cameras were in the same directory sharing the same naming scheme. Because of this it was not as easy as applying exiftool to a certain directory or file naming scheme.

3. May 2018

NGINX GeoIP testing

At work I had the task to implement a redirection based on the visitors country for the company website. I came to use this answer as a base for my implementation. But how do I test this? In order to test the behavior I need to fake IP adresses from all over the world. iptables to the rescue! Faking the source IP address To test this I had the NGINX running in a virtual machine.

16. Jan 2018

I3 Scratchpad to access often used applications

I do have a few applications that I need many times throughout the day but usually only for a very short time. One of the prime examples for this is my password manager. Others are a go to terminal or some note taking application. You might have some other needs like a messenger or who knows what. Since over a year I am using I3 as my window manager.

5. Dec 2017

Sync Linux File Permissions

I ran into the situation where I had a directory tree restored from backup but the permissions were all messed up. The directory with the corrupted files still existed and the permissions there were intact. So the idea was to sync the permissions of the one directory tree to the other. I found the solution to my problem in this Serverfault thread. The way this works is to read the permissions recursively with getfacl, store the result in a file, change the path with sed and then run setfacl with the file as input.

17. Nov 2017

MSSQL Accross Subnets

A was faced with the situation that a client could not connect to it’s MSSQL named instance in another subnet. There is a firewall in between those subnets. The firewall rule allowed TCP 1433, 1434 and Pings. The client was able to ping the server. So far so good. But the SQL client could not connect to the server. A nmap scan of the server showed that port 1433 or 1434, the classical MSSQL ports, were not open.

19. Oct 2017

Tomcat behind reverse proxy

I had to set up a system for Atlassian’s Jira and Confluence that would be accessed by at least two different URLs. The Tomcat servers are behind an NGINX server that handles the whole SSL stuff. In the past, when such a system would have only one very specific URL I would set the proxyName=<FQDN/URL> in the connector section in the server.xml and be good. Jira or Confluence would generate the right URLs.

17. Oct 2017

Migrate a VirtualBox OVA to ESXi

I had to migrate an OVA exported by VirtualBox to an ESXi 6. TL;DR: Untar the OVA, copy the vmdk file to ESXi, migrate the vmdk with vmkfstools and create a new VM using the new vmdk file for the HDD. You got time to read it all An OVA file is a tarball of the VMs vmdk and the OVF file containing all the settings in XML format.

17. May 2017

Start i3lock on Sleep with SystemD

Ever wondered how to automatically lock your screen when you put your laptop to sleep? Like me you most likely found a SystemD unit file looking a lot like the one below. What annoyed me though was that the lock command would be executed after the system reached the sleep target, ergo when waking up. This resulted in a brief flicker where my screen was visible before i3lock kicked in.

18. Apr 2017

Arch Linux on an encrypted ZFS root system

Note as of October 2019 The native ZFS encryption introduced in version 0.8 is working quite fine and you can use it for a root file system. With this in mind this guide is probably a bit outdated. This blog entry is my personal documentation. If it helps others even better. I will try to keep it as up to date as possible. What helped me when I tried this the first time was the github gist by codedreality.