If you're looking on how to implement Unbound as your primary DNS resolver, read on here.
Dnsmasq requires a bit more work in this scenario.
- First, we comment the
resolvfile line, since that file will contain your ISP's DNS servers.
noresolv option needs to be set to …
DNSSEC is a set of extensions to DNS. As Wikipedia states, it is
a set of extensions to DNS which provide to DNS clients (resolvers) origin authentication of DNS data, authenticated denial of existence, and data integrity, but not availability or confidentiality.
While it is by no means a perfect …Read More
OpenWrt supports a plethora of devices. Recently, a fellow OpenWrt user with Gainstrong's MiniBox v1.0 - a mini router from some Chinese manufacturer - was wondering if he should try his hand at OpenWrt's upcoming release (15.05 codename 'Chaos Calmer'), or stick with 14.07 and keep important packages like …Read More
Quilt is a handy tool to manage patches, and I discovered its value while porting a router to a newer OpenWrt version. The diff from the 14.07 codebase would apply with some adjustments, but patch would still give some messages about offsets etc.:
$ patch -Np1 -i ../patch
patching file …
There is a lot of fuss nowadays about how modern human behaviour influences our sleep pattern in a bad way. We watch TV in bed, use our smartphone or tablet before we go to sleep. Not everyone is affected in the same way - some people still sleep well, others turn …Read More
You have a server you'd like to manage remotely, so you open up a port in the router to log in directly. However, you don't want your server exposed, so you set up your SSH daemon to only accept keys, not passwords. Yet - dilemma - for local access you still want …Read More
I have set up a basic guest access point with limited bandwidth. There's two parts to it: setting up the AP, then setting the limits. This is a quick walkthrough, based on the OpenWrt wiki, to which I have added the instructions for a multi-device setup (ie a network configuration …Read More
NFS has very basic security checks - up till v3, it relies on IP whitelists, from v4 on you can use the Kerberos protocol for security. We'll be looking at a default standard NFS v3/v4 setup, with just the regular whitelisting in Read More
/etc/exports. I assume you already have this …
This is just a quick post to explain how to set up a Cherry G83-6744 smart card keyboard on Debian Linux. The keyboard comes with a driver CD (for a binary PCSC driver) and printed instructions, but you can also grab them on Cherry's site if needed.
First, install …Read More
The Beagleboard project maintains its own kernel for the Beaglebone Black, so you can build your own kernels without too much effort. Their git tree tracks the upstream kernel releases though, so as time progresses, their kernels will be more and more recent than the 3.16 kernel Debian settled …Read More
« Page 2 / 4 »