Ah, the sweet smell of a production Linux container image… generously seasoned with sshd and a whole host of unwanted services you definitely didn't need. If only my "if" statements were as reliable as my morning coffee. Lmao. #linux#devops#sysadmin#life
This morning, a colleague (a sysadmin who works exclusively on Red Hat) needed to quickly create a VM for a reverse proxy. Among the requirements:
Minimal, only for nginx
Root file system on btrfs (I don't know why, but it's their internal policy)
Be online ASAP
I swiftly installed Alpine Linux for them. With just two commands, I set up the root on btrfs and got the setup running. Within a minute, the VM was up; in ten seconds, nginx was installed, and within two minutes, it was configured.
They were amazed by the speed and lightness of it all, as well as the updated kernel.
Alpine Linux remains, in my opinion, an excellent and flexible solution in the Linux environment.
J'ai quand même un peu galéré à mettre ça en place, donc j'ai fait un pense-bête-tuto : recevoir les mails adressés à root ou autre user dans ma boîte mail personnelle. J'ai testé sur 3 machines différentes, ça a marché directement sur les 3
Why updating iPhones in their sealed boxes might have some downsides, Amazon’s “AI” turned out to just be people, LLMs hallucinating imaginary dependencies is potentially a security risk, Aruba backs up its government data to the Internet Archive, and disk queue schedulers in Linux.
Fun in the morning....
My two #shelly plugs just went out - server rack and desktop.
I don't have a clue why they failed, let alone both at the same time.
The only thing that comes to mind is that there was a firmware upgrade.... #sysadmin fun for sure 😂
Every so often, I need to chase down some aspect of email validation (#SPF, #DMKIM, #DMARC, ...). This involves a number of #DNS records and queries, but I may forget just which ones. So here's a quick #SMTP/DNS cheatsheet:
:heart_trans: Request for IT assistance :heart_trans:
Hi friends! Our SysAdmins are still blocked by a network issue that prevents our migration to the new servers. We are running out of ideas and would appreciate any possible support. If you have or know someone who has experience with IPv6 networks, then please contact me or another member of our staff. We would earnestly appreciate any help or advice!
The problem, as I understand it, is that traffic fails to pass through our OPNSense firewall. We have a /48 block allocated on the WAN side, and want to expose a public IP from the LAN. See this reply for a longer description and some discussion.
Looking for a way to run a single command as user "www" on #FreeBSD.
Roundcube uses doveadm to compute password hashes, but the www user defaults to the nologin shell and /nonexistent home directory. I really, REALLY don't want to change that.
Anyone have something clever to let me run just this one command as www? #sysadmin
[edit to add: Roundcube is a web app. It runs as user www. I can't have another run the command as www: www needs to execute the process. www can't run sudo or doas without the sort of something that would let www run doveadm.]
Hm. I wonder if I can get any fediverse admins onboard to disable all images on their instance on the World Sight Day in October, so that only alt text shows up.
Cleaning up my HD get some storage space back and I'd like a script that goes through and removes the node_modules folder whenever the files in the parent folder haven't been touched in a month or more. Inactive project? No need for node_modules, just reinstall if it's ever worked on again.
Actually starting to wonder if there’s anything wrong with this idea. I’d scope it to a couple project directories for safety and speed. Seems like returning to an old project would want npm ci instead of npm install
Sanity check me, Mastodon, what else am I missing? #WebDev#SysAdmin