kinit: Password incorrect while getting initial credentials [SOLVED]

on August 3rd, 2017 by Hades

When I tried kinit -kt [email protected], I get “kinit: Password incorrect while getting initial credentials”

Read More »

Add a commercially signed SSL certificate to FreeIPA after installation

on June 6th, 2017 by Hades

FreeIPA is touted as a platform for centralized authentication/identity management, and it fills this role very well. One thing that it does not do well allows you to add a commercially signed certificate after the FreeIPA installation is complete. You have to either start with a commercially signed cert, or live with the self-signed cert forever. No switching sides!

Read More »

Live packet captures using MikroTik RouterOS and Wireshark

on April 26th, 2017 by Hades

Wireshark is commonly used network protocol analyzer for Unix and Windows, it’s available for free download from project homepage, http://www.wireshark.org/. This was tested on RouterOS v6.38.5 (mipsbe), but it should work mostly the same everywhere. I was using MacOS Sierra 10.12.5 Beta […]

Read More »

Exporting Suricata a Log File with an HIDS Agent to AlienVault

on April 25th, 2017 by Hades

In this process we will configure an HIDS Agent, installed on a Linux system with Suricata appliance, to read logs from a file. This can be useful when we try to grab data from an application that logs directly into […]

Read More »

Using OpenSwitch Appliance With GNS3

on April 24th, 2017 by Hades

What Is An OpenSwitch Appliance? The appliance is a virtual machine image (in OVA format) that could be run on VirtualBox or VMware (on this article I will focus on VirtualBox) and provides a software datapath (based in OVS right […]

Read More »

Enable or disable “mkhomedir” after install FreeIPA

on April 21st, 2017 by Hades

For change installation option (as few more) just adjusts parameters passed to authconfig utility:

Read More »

Workaround for wine on macOS Sierra

on April 16th, 2017 by Hades

Installation appears to proceed fine, but upon running, for example, winecfg with a clean prefix:

Read More »

Use SSH to Create an HTTP Proxy

on March 15th, 2017 by Hades

SOCKS is built in to OpenSSH, so it’s a trivial matter to set up a local SOCKS proxy with the -D flag. For example:

Read More »

How to install R1Soft Agent on CentOS 7

on February 28th, 2017 by Hades

The R1Soft Server Backup Manager is a backup application for Linux and Windows machines that runs nearly continuously and is developed by R1Soft. This application allows users to schedule disk-based backups of their server that essentially create a virtual disk […]

Read More »

Setting expires headers for static content served from Nginx

on February 26th, 2017 by Hades

This tutorial explains how you can configure Nginx to set the Expires HTTP header and the max-age directive of the Cache-Control HTTP header of static files (such as images, CSS and Javascript files) to a date in the future so […]

Read More »

Enable gzip compression

on February 26th, 2017 by Hades

You can use a site like gtmetrix.com to check if your site has gzip compression enabled properly. You can use these tools: http://www.whatsmyip.org/http-compression-test/ http://www.toolsiseek.com/gzip-compression-test/ check for gzip compression on HTML output of pages.

Read More »

How to fix Xiaomi YI Home Camera “This Camera can only be used within China”?

on February 25th, 2017 by Hades

Recently I bought a Xiaomi Xiao Yi (IP) camera (also known as Yi Home), Chinese version. The camera looks nice, a picture quality is ok, and worked fine on my local Wifi. However, I was unfortunate enough to receive and test the […]

Read More »

How to open port for a specific IP address with firewall-cmd on CentOS?

on February 23rd, 2017 by Hades

If you would like to open port 1234 for the IP address 1.2.3.4 with the firewall-cmd command on a CentOS 7.1 server:

Read More »

OpenVPN, FreeIPA and One Time Passwords

on February 22nd, 2017 by Hades

Having a comprehensive identity management solution is great but the real power comes when we integrate with other tools. Providing a safe channel for remote workers to access the company network is a particular challenge. Maintaining VPN certificates, users and […]

Read More »

Import single database from –all-databases dump

on February 7th, 2017 by Hades

Sometimes you can appear a question: “Is it possible to import a single database from an –all-databases mysqldump?”. Yeah, it’s possible…

Read More »