Starting or stopping services when on AC or battery

I have been experimenting with Saltstack - more commonly known as just 'Salt' - and running the master on my laptop. Since it seems to be consuming CPU cycles all the time and I'd like to optimise my laptop's autonomy, I started looking into ways to disable it on battery, and enable …

Read More

Quick Debian repo setup with aptly

The right tool for the job

Aptly is a neat tool that allows you to quickly build Debian or Ubuntu repositories. You can grab it from Debian's repositories. Build a repo with the name 'zfs':

$ aptly repo create -distribution=jessie -component=contrib zfs

Add your packages. You can add separate …

Read More

SSL support in OpenWrt on devices with 4 MiB flash

I recently decided to move my remote firmware update process to HTTPS. The most obvious and ubiquitous candidate was the wget utility. The downside is it only supports OpenSSL. While modern routers with 8 MiB or more flash, like my Netgear WNDR3700, have no trouble accomodating the bigger library (libopenssl …

Read More

Unbound as a secondary DNS resolver

If you're looking on how to implement Unbound as your primary DNS resolver, read on here.

Dnsmasq configuration

Dnsmasq requires a bit more work in this scenario.

  • First, we comment the resolvfile line, since that file will contain your ISP's DNS servers.
  • The noresolv option needs to be set to …
Read More

Implementing DNSSEC on OpenWrt

DNSSEC is a set of extensions to DNS. As Wikipedia states, it is

a set of extensions to DNS which provide to DNS clients (resolvers) origin authentication of DNS data, authenticated denial of existence, and data integrity, but not availability or confidentiality.

While it is by no means a perfect …

Read More

Adding Gainstrong MiniBox v1.0 support to OpenWrt 15.05

OpenWrt supports a plethora of devices. Recently, a fellow OpenWrt user with Gainstrong's MiniBox v1.0 - a mini router from some Chinese manufacturer - was wondering if he should try his hand at OpenWrt's upcoming release (15.05 codename 'Chaos Calmer'), or stick with 14.07 and keep important packages like …

Read More

Fighting bad sleep with Redshift

There is a lot of fuss nowadays about how modern human behaviour influences our sleep pattern in a bad way. We watch TV in bed, use our smartphone or tablet before we go to sleep. Not everyone is affected in the same way - some people still sleep well, others turn …

Read More

Selectively disabling password authentication with OpenSSH

You have a server you'd like to manage remotely, so you open up a port in the router to log in directly. However, you don't want your server exposed, so you set up your SSH daemon to only accept keys, not passwords. Yet - dilemma - for local access you still want …

Read More

« Page 2 / 5 »