To secure it further I just recently installed fail2ban.
The software basically detects login attempts and blocks the IP for some limited time in the future. This prevents a depletive password guessing for server logins.
I was interested in the password-guessers` country of origin. Now I can confirm, at least for my Raspberry Pi, that most attacks come from China.
Ich habe angefangen zu podcasten.
Der Podcast an dem ich mitwirke heisst mur.strom. Wir besprechen diverse Themen zu Technik und Gesellschaft und senden in unregelmässigen Abständen. Die erste Folge mit meiner Komoderation ist Folge 13. In Folge 3 war ich einmal als Gast vertreten. Unsere Werke sind unter der CC-BY Creative Commons Lizenz auf der Webseite herunterzuladen und dürfen natürlich frei (unter Namensnennung) im Netz verteilt werden. So sehen wir es natürlich gerne wenn ihr unseren Podcast per BitTorrent herunterladet und zum download anbietet. 🙂
Wer gerne regelmässig zuhören möchte, dem kann ich die Android App AntennaPod empfehlen. Hier kann man unserem Podcast-Feed automatisch ‘zuhören’. Einfach die mur.strom URL eingeben und abonnieren. In den Einstellungen das automatische Herunterladen aktivieren und die neuesten Episoden sind dann automatisch auf dem Handy und lassen sich abspielen wenn man Zeit hat sich diese anzuhören.
Die aktuelle Episode, die erste mit mir, behandelte Bitcoin, das derzeit sehr gefragte online Geld. Die Folge kann man sich auf der Podcast Webseite herunterladen. Hier der direkte Link zur Bitcoin Episode. Und für alle Torrent Freunde: hier ist der Magnet Link zur aktuellen Bitcoin Episode. Wer Themenvorschläge hat oder Interviewpartner zu einem spannenden Thema sein will, darf sich gerne bei mir melden.
Die nächste Episode ist auch schon im Kasten und sollte demnächst erscheinen. Viel Spass beim hören.
I’ve been setting up a new server at hetzner.de.
I ran into problems when configuring the network. The server is running Debian (wheezy).
note the last line: “The additional route to the gateway is now no longer necessary.” not only that: it will not work.
The basic configuration looked like this:
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16
## /etc/network/interfaces example Hetzner root server
# Loopback-Adapter
auto lo
iface lo inet loopback
#
# LAN interface
auto eth0
iface eth0 inet static
# Main IP address of the server
address 192.168.0.250
# Netmask 255.255.255.255 (/32) independent from the
# real subnet size (e.g. /27)
netmask 255.255.255.255
# explicit host route to the gateway
gateway 192.168.0.1
pointopoint 192.168.0.1
I added DNS servers at the end (use your DNS servers here or pick an open DNS server)
1
dns-nameservers X.X.X.X Y.Y.Y.Y
at the end since I’ve resolvconf installed.
eth0 did not come up correctly.
When trying ‘ifdown eth0; ifup eth0’ I kept getting:
1 2 3
ifdown: interface eth0 not configured
RTNETLINK answers: File exists
Failed to bring up eth0.
This error would show up at boot time or when trying to start eth0 by hand.
The setup would look fine otherwise, IP was correct network seemed to work, but the DNS-servers were not added correctly. Weird!
‘ifdown –force eth0; ifup eth0’ worked. Server went off for a second but came back. with DNS-servers setup correctly. Interesting!
I started to comment out lines from /etc/network/interfaces.
Et voilá!
It turns out: It is deadly to try to configure ‘gateway’ in /etc/network/interfaces!
Finally I used this:
1 2 3
## /etc/network/interfaces working Hetzner root server
auto lo
iface lo inet loopback
auto eth0
iface eth0 inet static
address 192.168.0.250
netmask 255.255.255.255
# next line optional
network 192.168.0.0
## never EVER use the next line! you have been warned!
## gateway 192.168.0.1
pointopoint 192.168.0.1
dns-nameservers X.X.X.X Y.Y.Y.Y
I hope this post will save others some time to fix this issue with their setup.
More than a year ago I came across a designer lego lamp. I really liked the idea but the price tag was a little hefty. Back then the lamp cost $800 and now it is at $995. But to be honest there is no designer product like this lego lamp that really says “do it yourself” like that!
So I built one myself. I designed the basic form with Lego Digital Designer. The plan can be found here[1]. The base of the lamp uses about 800 pieces. The final build varies from the my first plan, especially in the base where I first planned to hide the foot of the old Ikea lamp. I finally just used the lamps main rod and electrical wire. The arrangement of the bricks varies to give the lamp more structural integrity and was improvised.
The parts were ordered from three different shops on BrickLink. They offered the green I wanted for the lamp at a fraction of the price of the original Lego™ store. The total price for all parts was about 60€. The lamp I had laying around was ‘free’ and the new lamp shade was about 30€. Total of about 100€ – well below the price point of the original.
[1] 2014-11-22, 18:30:
I was asked by the designer Sean Kenney, to remove the LDD plans for the lamp. He argued that the plans would hinder his ability to sell these lamps online.
Although I do not agree with Sean’s argument, that his sales might be influenced by a simple Lego™ scetch for a similar lamp, I’ve respect for the work that went into the lamps Sean designed and did take the plans down for now.
If you’re using transmission’s web interface to manage your torrent downloads, and you are doing this remotely (from outside your LAN), you might want to add some privacy.
As previously posted there are ways to use magnet links with transmission’s web interface. This webinterface works well when you are on your local network aka LAN and don’t have to fear prying eyes.
The moment you’re using the transdroid android app or your laptop in a coffee shop the commands and responses of your transmission daemon at home can be read by anyone.
Luckily the transdroid android app offers an SSL option. All you have to do is configure a proxy on your transmission daemon machine.
Here is how:
Install nginx (a lightweight http/https server):
The Bitcoin Paper Wallet Treasure Chest One of the challenges with bitcoin is to store them securely. There have been severalwellknownincidentswhere Bitcoins have been stolen. It is no mystery. Bitcoin IS money! It’s the same with Euros or Dollars, when you have it lying around it will eventually be missing.
There is a twist with bitcoin to regular money. With Bitcoin one single piece ofinformationis enough for the thief to steal your Bitcoins: Your private key. With Bitcoin it’s about keeping this piece of information secret.
We wanted to paint one wall in our vestibule to add a little more color to the room. As we could not settle on a specific color, I thought of wallpaper. And is there any better theme than OpenStreetMap Data¹?
The theme was settled. It had to be a map, but which tiles? I thought of the beautiful pencil drawn MapBox tiles I saw some time ago:
OpenStreetMap Pencil Tiles by MapBox
We wanted some redish color so I had to convert the image with ImageMagick:
Magnet Link zur aktuellen Bitcoin Episode
