Boot your computer to a USB drive with the latest Arch Linux iso, then follow these steps:
Ping a public DNS or IP address to make sure you’re connected to the internet. ping 188.8.131.52 Turn NTP on timedatectl set-ntp true Prepare your disk Use lsblk to determine which disk to prepare. This example will use disk sda.
fdisk to set partitions fdisk /dev/sda Create new partitions. # Delete existing partitions, if needed d -- delete partition [Enter] -- default partition number # Repeat until no partitions exist # Boot partition n -- new partition p -- primary [Enter] -- default partition number [Enter] -- default first sector +200M -- last sector # Swap partition (change +8G to match 100% or 150% of your RAM size) n -- new partition p -- primary [Enter] -- default partition number [Enter] -- default first sector +8G -- last sector # Root partition n -- new partition p -- primary [Enter] -- default partition number [Enter] -- default first sector +50G -- last sector # Home partition n -- new partition p -- primary [Enter] -- default partition number [Enter] -- default first sector [Enter] -- uses the rest of the drive space # Write the changes to finish fdisk w Create filesystems mkfs.
For Pi-Hole servers, I have a post with some tips on How to Pi-Hole
Also check out my ASSSS – A Simple Server Sync Script for an example of a backup job that can be automated on your server to sync data to a backup repo.
Packages sudo apt-get install vim ranger tmux htop neofetch rsync msmtp curl my tmux config
mkdir -p ~/.config/tmux curl theatomheart.net/raw/.config/tmux/tmux.conf >~/.config/tmux/tmux.conf Setup msmtp for notifications Create a ~/.
How To SSH - 2018-12-11 00:27:03
Step 1: Create the RSA key pair on the connecting (client) computer ssh-keygen -t rsa You’ll be asked where to save the key. ‘~/.ssh/id_rsa’ is the default.
The entire keygen process should look similar to this:
ssh-keygen -t rsa Output Generating public/private rsa key pair. Enter file in which to save the key (/home/demo/.ssh/id_rsa): Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /home/demo/.
Syntax Linux crontab has six fields. 1-5 fields defines the date and time of execution. The 6’th fields are used for command or script to be executed.The Linux crontab syntax are as following:
[Minute] [hour] [Day_of_the_Month] [Month_of_the_Year] [Day_of_the_Week] [command]
Astrics (*) – Matches anything Define range – You can define range using the hypen like: 1-10 or 20-30 or sun-fri or feb-apr Define multiple range – You can define multiple ranges with command seprated like: jan-mar,jul-sep How to Add/Edit Crontab To add or update job in crontab, use below command.
Duplicate several drives concurrently dd if=/dev/sda | tee >(dd of=/dev/sdb) | dd of=/dev/sdc If you have some drive imaging to do, you can boot into any liveCD and use a commodity machine. The drives will be written in parallel.
To improve efficiency, specify a larger block size in dd:
dd if=/dev/sda bs=64k | tee >(dd of=/dev/sdb bs=64k) | dd of=/dev/sdc bs=64k To image more drives, insert them as additional arguments to tee:
Install curl -sSL https://install.pi-hole.net | bash Gravity Lists https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts https://mirror1.malwaredomains.com/files/justdomains http://sysctl.org/cameleon/hosts https://zeustracker.abuse.ch/blocklist.php?download=domainblocklist https://s3.amazonaws.com/lists.disconnect.me/simple_tracking.txt https://s3.amazonaws.com/lists.disconnect.me/simple_ad.txt https://hosts-file.net/ad_servers.txt https://smokingwheels.github.io/Pi-hole/allhosts http://someonewhocares.org/hosts/hosts https://www.malwaredomainlist.com/hostslist/hosts.txt https://s3.amazonaws.com/lists.disconnect.me/simple_malvertising.txt Fix static IP assignment Edit the file /etc/network/interfaces Make sure you have lines that look something like:
# The primary network interface allow-hotplug eth0 iface eth0 inet static address 192.168.1.2 netmask 255.255.255.0 gateway 192.168.1.1 Fixing HTTPS Issues That Cause Slow-Loading Pages Pi-hole is only handling the DNS queries and doesn’t know about the other protocols that are taking place.
Telnet to your mailserver
telnet mail.domain.com 25 EHLO domain.com MAIL FROM:<email@example.com> RCPT TO:<firstname.lastname@example.org> DATA Subject: This is a subject line Press Enter twice; a blank line is needed between the Subject field and the message body.
Type the rest of your message, then press Enter.
To finish the message, type a period ( . ) and press Enter
By Justin Ellingwood
How to Connect with SFTP By default, SFTP uses the SSH protocol to authenticate and establish a secure connection. Because of this, the same authentication methods are available that are present in SSH.
Although passwords are easy to use and set up by default, we recommend you create SSH keys and transfer your public key to any system that you need to access. This is much more secure and can save you time in the long run.
By Carla Schroder
Once upon a time we had legacy GRUB, the Grand Unified Linux Bootloader version 0.97. Legacy GRUB had many virtues, but it became old and its developers did yearn for more functionality, and thus did GRUB 2 come into the world.
GRUB 2 is a major rewrite with several significant differences. It boots removable media, and can be configured with an option to enter your system BIOS.
PPTP VPN - 2017-09-15 20:29:22
Install pptp-linux package
sudo apt-get install pptp-linux Create a PPTP connection profile
sudo pptpsetup --create <nameofvpn> --server <vpn.server.com> --username vpnuser When you hit ENTER you should be asked for the VPN password.
The profile will be saved in /etc/ppp/peers/
To enable the VPN connection
sudo pon <profilename> You can see your PPTP connection using ifconfig -s. It should be listed under ppp0.
To kill the VPN connection
In order to mount the drive, you need to have cifs-utils installed on your system.
sudo pacman -S cifs-utils sudo apt-get install cifs-utils Mounting network folders You might have public folders on your network drive that can be accessed by anyone without having to provide any credentials. These are mounted in the same way as password-protected folders (we will mount these in the next section), but with a few different options.
C:\Windows\system32>hostname dcserver01 C:\Windows\system32>ntdsutil ntdsutil: m c metadata cleanup: co server connections: connect to server localhost Binding to localhost ... Connected to localhost using credentials of locally logged on user. server connections: q metadata cleanup: s o t select operation target: list domains Found 1 domain(s) 0 - DC=demodomain,DC=theatomheart,DC=net select operation target: select domain 0 No current site Domain - DC=demodomain,DC=theatomheart,DC=net No current server No current Naming Context select operation target: list sites Found 6 site(s) [site details listed] select operation target: select site 0 Site - [site details] Domain - DC=demodomain,DC=theatomheart,DC=net No current server No current Naming context select operation target: list server in site Found 5 server(s) [server details listed] select operation target: select server 1 Site - [site details] Domain - DC=demodomain,DC=theatomheart,DC=net Server - [server details] DSA object - [details] DNS host name - server.
sudo pacman -S --noconfirm x11vnc Store VNC password to a file
x11vnc -storepasswd By default this will store your password at ~/.vnc/passwd Add this command to your startup script
x11vnc -forever -rfbauth /home/[username]/.vnc/passwd For Raspberry Pi If the Raspberry Pi is headless, you may want to add the following lines to /boot/config.txt
hdmi_force_hotplug=1 hdmi_group=1 hdmi_mode=16
All modern multi-tasking operating systems, including Linux, run a series of processes for each of the tasks being executed. A notepad application is a process, a terminal window is a process, the SSH server is a process, each SSH connection is a process and so on. Linux schedules the various system resources (CPU time, memory, I/O) so that each process get an opportunity to run.
To see the list of current processes running, you can use the ps command.
This example provides steps for encrypting an existing home directory Install eCryptfs
apt-get install ecryptfs-utils Backup existing Home directory
cp -pfr /home/[username]/ /tmp/ Mount /home/[username] with the file system type ecryptfs
mount -t ecryptfs /home/[username] /home/[username] Select cipher: aes Select key bytes: 16 Enable plaintext passthrough (y/n) [n]: <-- ENTER Enable filename encryption (y/n) [n]: <-- ENTER Would you like to proceed with the mount (yes/no)? : <-- yes Would you like to append sig.
Know Your FSMO Locations Make sure that the DC you are removing is not holding any of the FSMO Roles
On any health domain controller, click Start, click Run, type Ntdsutil in the Open box, and then click OK Type roles, and then press ENTER Type connections, and then press ENTER Type connect to server , where is the name of the server you want to use, and then press ENTER Type quit, and then press ENTER Type select operation target, and then press ENTER Type list roles for connected server, and then press ENTER Review the listed roles and their host, if the DC that wish to remove is not listed proceed to step 4 Seizing FSMO Roles (The Last Resort) If for what ever reason you can not do a clean transfer you will need to seize it
If you’ve ever customized the design of your HTML website, or tried changing the background color of your social profiles, you’ve probably encountered Hexadecimal color codes. These are a string of 6 characters - like “0066FF” - that you know represent colors but we rarely make the effort to understand them.
Here is a simple guide to help you recognize web colors more quickly from their RGB codes. No more guessing or consulting the color palettes.
This guide provides information that can be used to configure a Cisco PIX/ASA device running firmware version 7.x to support IPsec VPN client connectivity. If you have a PIX device running firmware version 6.x, please consult the HowtoCiscoPix. The Shrew Soft VPN Client has been tested with Cisco products to ensure interoperability.
Overview The configuration example described below will allow an IPsec VPN client to communicate with a single remote private network.
Preparation Create OU for RDS Server in Active Directory. Create security group for users who will use Remote Desktop Host (i.e. RDS Users). Create GPO (i.e. RDS Server Lock Down). In Security Filtering delete Authenticated Users, add RDS Server Computer Account, and the security group created in previous step.
Configure users who can connect to the server remotely: Log in to RDS Server >>> Run >>> control system >>> Remote Settings >>> Remote tab >>> Select users >>> Delete any groups/users >>> Add security group for RDS users
The dd command utility is a simple yet powerful and useful command available in Unix and Linux systems which is used to convert and copy files. Unix like systems treat all devices as files and these device files are located in the /dev directory in your system. So typically your hard disk drive is a file in the /dev directory with the prefix of hd or sd (depending on IDE or SCSI driver).
Change Windows 10’s product key using Settings Open Settings Click on Update & security Click on Activation Click the Change product key link Type the 25-digit product key for the version of Windows 10 you want Click Next to complete the process If the activation process completes successfully, you’ll get the “Windows is activated” message.
Change Windows 10’s product key using Control Panel Use the Windows key + X keyboard shortcut to open the Power User menu and select System Click the Change product key link under the Windows activation section Type the 25-digit product key for the version of Windows 10 you want Click Next to complete the process Similar to the Settings app, if the activation process completes successfully, you’ll get the “Windows is activated” message.