You may have configured a certbot certificate to use the webroot validation method but wish to use the Cloudflare DNS method instead. Using the Cloudflare DNS method allows you to renew your certificate independent of your web server state and configuration. These instructions apply to Red Hat-style distributions e.g., AlmaLinux, Rocky Linux, and CentOS. Generate a Cloudflare API Token for […]
Overview Zen Astronave is a personal blog site. In this guide, we will implement a Linux, Apache, MariaDB, and PHP (LAMP) system and install WordPress for zenastronave.com. Since we are interested in the Confidentiality, Integrity, and Availability (CIA) triad, we will also implement a firewall, Transport Layer Secuirty (TLS) certificates, and daily backups. This example uses AlmaLinux but should also […]
In AlmaLinux (and Red Hat Enterprise Linux, Rocky Linux, and CentOS), libvirtd defaults to the user URI. When a regular user executes virsh list, they will see only the KVM virtual machines accessible to their user and will not see those started by the system. You can change this behavior so that regular users can list and interact with virtual […]
This is an example kickstart for a typical system with a single disk (nvme0n1) and a single network adapter (ens160). These values may need to be changed to suit your environment. It will copy additional Assets to the target system as described in Customizing the AlmaLinux Installer Media. The resulting system uses LUKS full-disk encryption (the LUKS and root user […]
This article shows you how to customize the AlmaLinux (or Red Hat Enterprise Linux, or Rocky Linux, or CentOS Linux) installer media to include a kickstart file and additional file assets. Commands prepended with # should be run as root while commands prepended with $ should be run as your regular user. Prerequisites A basic AlmaLinux workstation installation (temporary is […]
Rdiff-backup is a robust and well-documented tool for performing reverse differential backups. It is particularly well suited for using Linux and SSH to perform incremental backups of remote Linux systems. This onezeroone.dev script automates the use of rdiff-backup to perform incremental backups of one or more remote Linux systems over SSH to a dedicated local volume. It will: For documentation […]
Overview Emulate an ARM processor on Intel using CentOS 7 and Qemu. Prerequisite Packages Qemu Cross-compilation Acquire Resources Create a working directory in your unprivileged user home directory and clone the raspbian kernel source: Also get the Raspbian toolchain: Download a current version of Raspbian from downloads.raspberrypi.org and unpack. This example uses Raspbian Lite 2020-02-14: Inspect the Raspbian Image The […]
The linux kernel includes a capable hybrid Type I/II Hypervisor referred to as the Kernel Virtualization Modules (KVM) which forms the basis for enterprise-class virtualization solutions such as Red Hat Enterprise Virtualization. While it may lack some of the features of other commercial and non-commercial solutions like VMWare, Hyper-V or Virtualbox, KVM offers support for a plethora of guest operating systems and […]
Whether you are deploying, evaluating, testing, and/or developing a web-based application; experimenting with Apache configuration; learning about web-based security technologies; or any of many other possible scenarios, you may find yourself needing to secure a web site with a TLS certificate (commonly referred to as an SSL certificate). Securing a web server with TLS is a multi-step process. The general […]
Loading