OpenBSD | firewall | port ranges
10000><20000 excluding boundaries 10000:20000 including boundaries https://man.openbsd.org/pf.conf
Month: January 2022
poor quality after jitsi update
check the js console in chromes developer tools for something like this: BridgeChannel.js:88 WebSocket connection to ‘wss://jitsi.yourmachine.com/colibri-ws/default-id/6e93e6f16131917e//a6a42650?pwd=6iiknuitk9epkkh65n8q2ak1m3’ failed It seems your update process switches you poorly (incompletely) from multiplexing to bridge websockets. Check this: https://jitsi.github.io/handbook/docs/devops-guide/faq Additional hints: In /etc/turnserver.conf you can remove listening-port= Check the external-ip btw. In /etc/prosody/conf.avail/jitsi.yourmachine.com.cfg.lua you can remove the stun and […]
updating older ubuntus | 404 Not Found [IP:aaa.bbb.ccc.ddd]
In /etc/apt/sources.list replace xyz.archive.ubuntu.com with old-releases.ubuntu.com and security.ubuntu.com with old-releases.ubuntu.com and remove (comment out) all extras.ubuntu.com lines.
nginx + long lasting php process (zip): Bad Gateway
PHP (script himself): NGINX (http section): NGINX (location ~ \.php):
nginx + php
# apt-get install php php-common php-cli php-fpm Put this into your (virtual) servers nginx config file: … and … into the index line. create a test.php file: restart nginx and test it. Tune php.ini in /etc/php/…
korn shell alias with arguments
alias xxmaillogsearch=’_(){ ls /var/log/maillog* | sort -r | xargs zcat -f | grep -i “$@”; }; _’ Attention: All the spaces and semicola are important.
sshd not accepting ssh-rsa key auth after update on gentoo
Test shows, that ssh-rsa is available: It’s a bug. Workaround: Edit your /etc/sshd/sshd_conf: PubkeyAuthentication yesPubkeyAcceptedKeyTypes=+ssh-rsa
Firefox | GeckoMain eats your CPU
about:preferences#general: Performance: Uncheck them all. about:preferences#privacy: Disable Firefox telemetry
nginx | redirect https://domain to different https://domain without browser cert errors
Standard nginx redirect: server { listen 80; listen 443 ssl; server_name up-eleven.de http://www.domain-a.tld; return 301 https://www.domain-b.tld; } Produces browser ssl errors (wrong cert) cs before executing the redirecting order the https connection is established between your browser and the orig domain. Solution: Run certbot on the orig domain you redirect from: The bot inserts this […]
bytes and bones 
You must be logged in to post a comment.