Debian 12. After a long time I’ve installed Debian 12 in a VM again. I used ssh-copy-id to copy the key files to the VM. When I tried logging in, I still had to supply my password. What was going on? Well, I’ll spare you the mindfuck and give you the solution. It wasn’t the…
Read ArticleCategory: Entwicklung
Webentwicklungg, Programmieren, Software, Server… irgendwie alles was in den Bereich Computer und Entwicklung fällt
Anything regarding web-development
Mastodon ohne Gendern und mit 5000 statt 500 Zeichenbeschränkung
Mich stĂśrt bei Mastodon diese Cancel Culture und auch und vor allem das Gendern. Das ist einfach eine schreckliche, unleserliche, politisch motivierte Verunstaltung der Sprache. Deshalb habe ich per Hand die Sprachdateien geändert. AuĂerdem gefällt mir nicht das man nur auf 500 Zeichen beschränkt sein soll bei der Länge der Posts. Darum habe ich die…
Read ArticleHow to have a nice looking prompt in Rocky Linux
Well, Gentoo isn’t all bad. It has a very nice prompt. It displays the root user in RED and the non-root user in GREEN. So in order to have a nice looking prompt in Rocky Linux, just copy the Gentoo /etc/bash/bashrc to /etc/bashrc in Rocky.
Read Articlesshd sftp chroot jail howto
Problem description: You would like to jail users to their home directories and not allow shell access, only sftp access. Solution: SFTP chroot jail 1. Create a system group. Here I call it sftponly.
|
1 |
groupadd -r sftponly |
2. edit the sshd_config file, usually residing in /etc/ssh/sshd_config (in weird opensuse it’s in /usr/etc/sshd/ ) and append (it needs…
Read ArticleToday I learned about NATS, microservice API and security
Actual security, as in identity, is still a 3rd party thing, aka you still need a OIDC IDP (or oauth2 in the broadest sense or similar). All NATS security does is validate that the credentials you pass the a client are valid and enforce limits, if configured. The microservice API was necessary, since simple request/reply…
Read Article