How to deploy Vger gemini server on OpenBSD
In this article I will explain how to install and configure Vger, a server for the Gemini protocol. Short introduction about Gemini: it’s a very recent protocol that is being simplistic and limited. Keys features are: pages are written in markdown like, mandatory TLS, no header, UTF–8 encoding only.
https://dataswamp.org/~solene/2020-11-30-gemini-vger-server.html
#vger #gemini
In this article I will explain how to install and configure Vger, a server for the Gemini protocol. Short introduction about Gemini: it’s a very recent protocol that is being simplistic and limited. Keys features are: pages are written in markdown like, mandatory TLS, no header, UTF–8 encoding only.
https://dataswamp.org/~solene/2020-11-30-gemini-vger-server.html
#vger #gemini
A mesh VPN using OpenBSD and WireGuard
I own a few VPS (hello Vultr, hello OpenBSD.amsterdam) that tend to be connected through filtered public services and/or SSH tunnels. And that’s neither efficient nor easy to manage. Here comes the wg(4) era where all those peers will communicate with a bit more privacy and ease of management.
https://www.tumfatig.net/20201202/a-mesh-vpn-using-openbsd-and-wireguard/
#wireguard #vpn #network
I own a few VPS (hello Vultr, hello OpenBSD.amsterdam) that tend to be connected through filtered public services and/or SSH tunnels. And that’s neither efficient nor easy to manage. Here comes the wg(4) era where all those peers will communicate with a bit more privacy and ease of management.
https://www.tumfatig.net/20201202/a-mesh-vpn-using-openbsd-and-wireguard/
#wireguard #vpn #network
Wireguard Puffy to OPNsense.
WG Tunnel between OpenBSD and OPNsense. How to Setup an WG Tunnel between OpenBSD and OPNSense ? That’s quite simple…
https://puffy.nolink.ch/posts/wireguard_opnsense/
#wireguard #vpn #opnsense
WG Tunnel between OpenBSD and OPNsense. How to Setup an WG Tunnel between OpenBSD and OPNSense ? That’s quite simple…
https://puffy.nolink.ch/posts/wireguard_opnsense/
#wireguard #vpn #opnsense
Block abusive IP addresses with Pf-badhost in OpenBSD.
Pf-badhost is a very practical, robust, stable and lightweight security script for network servers. It prevents potentially-bad IP addresses that could possibly attack your servers (and waste your bandwidth and fill your logfiles), by blocking all those IPs contacting your server, and therefore it makes your server network/resources lighter and the logs of important services running on your server become simpler, more readable and efficient...
https://ozgur.kazancci.com/block-abusive-ip-addresses-with-pf-badhost-in-openbsd-a-must-have-security-tool/
https://www.geoghegan.ca/pfbadhost.html
#pf #firewall #feedback
Pf-badhost is a very practical, robust, stable and lightweight security script for network servers. It prevents potentially-bad IP addresses that could possibly attack your servers (and waste your bandwidth and fill your logfiles), by blocking all those IPs contacting your server, and therefore it makes your server network/resources lighter and the logs of important services running on your server become simpler, more readable and efficient...
https://ozgur.kazancci.com/block-abusive-ip-addresses-with-pf-badhost-in-openbsd-a-must-have-security-tool/
https://www.geoghegan.ca/pfbadhost.html
#pf #firewall #feedback
Self-host a password manager on OpenBSD
https://www.tumfatig.net/20210105/self-host-a-password-manager-on-openbsd/
#security #password
https://www.tumfatig.net/20210105/self-host-a-password-manager-on-openbsd/
#security #password
Secure WireGuard VPN server setup on OpenBSD (and configure Windows 10 clients to connect through it).
https://ozgur.kazancci.com/secure-fast-vpn-server-wireguard-setup-on-openbsd-and-configure-windows-10-clients-to-connect-through-it/
#wireguard #network
https://ozgur.kazancci.com/secure-fast-vpn-server-wireguard-setup-on-openbsd-and-configure-windows-10-clients-to-connect-through-it/
#wireguard #network
List of some Shell goodies for OpenBSD
I'm sharing here some practices I'm following and some small tips/tools which facilitate my usage of OpenBSD in my day to day. Some a really specific to my usage, others could be re-used.
https://www.vincentdelft.be/post/post_20210102
#shell #cli
I'm sharing here some practices I'm following and some small tips/tools which facilitate my usage of OpenBSD in my day to day. Some a really specific to my usage, others could be re-used.
https://www.vincentdelft.be/post/post_20210102
#shell #cli
Syncthing server setup on OpenBSD.
I go over how to setup a Syncthing server on OpenBSD. Syncthing is not necessarily a backup server specifically as it is a peer-to-peer file synchronization program, but it does a great job of fulfilling that function in an easy way. These steps should apply to OpenBSD 6.7 or greater.
https://daulton.ca/2020/09/openbsd-syncthing-server/
#syncthing
I go over how to setup a Syncthing server on OpenBSD. Syncthing is not necessarily a backup server specifically as it is a peer-to-peer file synchronization program, but it does a great job of fulfilling that function in an easy way. These steps should apply to OpenBSD 6.7 or greater.
https://daulton.ca/2020/09/openbsd-syncthing-server/
#syncthing
Hexo on OpenBSD.
Hexo can be used for blogging op OpenBSD. Hexo converts your markdown files into a html blog, similar to mkdocs, hugo, pelican and others...
https://bsdnerds.org/hexo-on-openbsd/
#hexo
Hexo can be used for blogging op OpenBSD. Hexo converts your markdown files into a html blog, similar to mkdocs, hugo, pelican and others...
https://bsdnerds.org/hexo-on-openbsd/
#hexo
How to Compile OpenVAS on OpenBSD.
The Open Vulnerability Assessment System (OpenVAS) security tool is great! It's a free fork of the Nessus project. It is a network security scanner with a graphical front end, and it applies many thousands of vulnerability tests to machines across a network...
https://cromwell-intl.com/open-source/compiling-openvas-on-openbsd.html
#openvas #security
The Open Vulnerability Assessment System (OpenVAS) security tool is great! It's a free fork of the Nessus project. It is a network security scanner with a graphical front end, and it applies many thousands of vulnerability tests to machines across a network...
https://cromwell-intl.com/open-source/compiling-openvas-on-openbsd.html
#openvas #security
How to Compile OpenCV on OpenBSD.
The OpenCV (Open Computer Vision) package is great! It lets you very quickly develop code for dealing with arbitrary image file formats...
https://cromwell-intl.com/open-source/compiling-opencv-on-openbsd.html
#opencv #graphics
The OpenCV (Open Computer Vision) package is great! It lets you very quickly develop code for dealing with arbitrary image file formats...
https://cromwell-intl.com/open-source/compiling-opencv-on-openbsd.html
#opencv #graphics
Block spammers/abusive IPs with Pf-badhost in OpenBSD. A 'must have' security tool!
Pf-badhost is a very practical, robust, stable and lightweight security script for network servers.
https://www.undeadly.org/cgi?action=article;sid=20210119113425
#network #security
Pf-badhost is a very practical, robust, stable and lightweight security script for network servers.
https://www.undeadly.org/cgi?action=article;sid=20210119113425
#network #security
LWJGL 3 for Minecraft on OpenBSD.
This repository is an attempt to make Minecraft >= 1.13 work on OpenBSD. As of this moment, Minecraft 1.16.5 has been tested to work on my T450s OpenBSD 6.8 -stable.
https://github.com/octeep/lwjgl3
#desktop #games
This repository is an attempt to make Minecraft >= 1.13 work on OpenBSD. As of this moment, Minecraft 1.16.5 has been tested to work on my T450s OpenBSD 6.8 -stable.
https://github.com/octeep/lwjgl3
#desktop #games
Calibrate your touch-screen on OpenBSD
I didn’t expected it but my refurbished T460s came with a touch-screen. It is recognized by default on OpenBSD and not well calibrated as-is. But that’s really simple to solve.
https://www.tumfatig.net/20210122/calibrate-your-touch-screen-on-openbsd/
#desktop #system
I didn’t expected it but my refurbished T460s came with a touch-screen. It is recognized by default on OpenBSD and not well calibrated as-is. But that’s really simple to solve.
https://www.tumfatig.net/20210122/calibrate-your-touch-screen-on-openbsd/
#desktop #system
OpenBSD Authentication Bypass | HTTP Header Tampering | Kernel OS Local Root Exploit
Summary. User - This machine is running an OpenBSD httpd site which has a login portal with only a sign-in feature working. Upon research, it was found to have a vulnerability that exposes the user’s private key enabling us to login using SSH. Root - A local exploit was found for openbsd; executing which gave me the root!
https://medium.com/bugbountywriteup/htb-openkeys-writeup-531264648200
#security
Summary. User - This machine is running an OpenBSD httpd site which has a login portal with only a sign-in feature working. Upon research, it was found to have a vulnerability that exposes the user’s private key enabling us to login using SSH. Root - A local exploit was found for openbsd; executing which gave me the root!
https://medium.com/bugbountywriteup/htb-openkeys-writeup-531264648200
#security
AAA gaming on OpenBSD with Google Stadia
robert@ updated OpenBSD's chromium port to enable Stadia. This significantly expands what is possible in terms of gaming on OpenBSD. In this video, I provide some game footage from OpenBSD with discussion of performance, pros, cons, and the implications for users with different interests in gaming and OpenBSD.
https://marc.info/?l=openbsd-ports-cvs&m=161147252332522&w=2
https://www.youtube.com/watch?v=WMTmUfcILso&feature=emb_title
#desktop #games
robert@ updated OpenBSD's chromium port to enable Stadia. This significantly expands what is possible in terms of gaming on OpenBSD. In this video, I provide some game footage from OpenBSD with discussion of performance, pros, cons, and the implications for users with different interests in gaming and OpenBSD.
https://marc.info/?l=openbsd-ports-cvs&m=161147252332522&w=2
https://www.youtube.com/watch?v=WMTmUfcILso&feature=emb_title
#desktop #games
Enable multi-factor authentication on OpenBSD
In this article I will explain how to add a bit more security to your OpenBSD system by adding a requirement for user logging into the system, locally or by ssh. I will explain how to setup 2 factor authentication (2FA) using TOTP on OpenBSD.
https://dataswamp.org/~solene/2021-02-06-openbsd-2fa.html
#ssh #totp #security
In this article I will explain how to add a bit more security to your OpenBSD system by adding a requirement for user logging into the system, locally or by ssh. I will explain how to setup 2 factor authentication (2FA) using TOTP on OpenBSD.
https://dataswamp.org/~solene/2021-02-06-openbsd-2fa.html
#ssh #totp #security