Strategic IT Consulting and Implementation Services

CategoryLinux

GLIBC Vuln Fix For Debian For Now

Cobbled together from For Debian-based systems this might be helpful until there is an update release Check if your system is vulnerable: From terminal/shell run: iconv -l | grep -E 'CN-?EXT' If you get: ISO-2022-CN-EXT// ISO2022CNEXT// You might be vulnerable. On Debian , check this file: /usr/lib/x86_64-linux-gnu/gconv/gconv-modules At around row 1286 you will see the grouping you need to...

Migrating an Existing Windows Wireguard VPN Peer Setup to Debian 12

Just recently migrated to Debian 12 on my laptop full-time. I run my own Wireguard VPN server as well and had my Windows laptop client running great on that. Basically, I just wanted to use that setup and keys the same since I know it worked. No great UI for the WireGuard setup on Debian yet from what I can tell and NetworkManager on Gnome is meh on this. Here is how I got it working. Get the...

Debian 12 Bookworm on Lenovo Carbon X1 Gen 10 Notes

Finally made the call here to go Debian 12 as my daily driver on the relatively new Carbon X1 I bought last year in 2022. Here are my notes around installation and making things work. Installation Installation off a USB installer with the standard 64bit installer ISO went very well. I did remove the stock nvme ssd that shipped with the laptop and replaced it with a 2TB Samsung SSD just to give me...

Nextcloud Cron Issues on Debian Fix

I started having problems with cron running as recommended on Debian because something changed and it makes sense that it would not be able to run because the webserver Debian user doesn’t have a default shell. I don’t know how this really was working technically at all ever, but I swear it was at one time. Anyway, it got annoying to see alerts on the cron task in NextCloud not...

Microsoft Teams on Debian Linux Install Fix

MS Teams Download From Microsoft Quick post here but if you are having issues playing an install of Microsoft Teams Desktop application for Linux on a Debian Buster system, like I initially was, it could be due to the use of su and sudo. I have always, just out of habit, immediately prefer dropping to root on all things when needed, but that is not helpful in Debian on default paths, etc. So...

Using fail2ban To Mitigate Excessive Apache 403, 404, 500, and 503 Attacks

I finally spent some time last weekend to address the botnets attacking my site and specifically looking for known exploits, bad WordPress plugins, and just general random stuff. I should disclaimer that messing around and systematically blocking hosts viewing your website generating 404s may or may not make sense for you. If you create a fail2ban filter, jail, and start picking off hosts that...

Fixing the fail2ban filter for Postfix unverified address / user unknown spam attacks

For whatever reason, the default distributed postfix filter I had on my fail2ban setup on ubuntu was not triggering on: 450 4.1.1 Receipient address rejected: unverified address: unknown user mail.log errors. The failregex line was in there for it, but it wasn’t hitting on the endless dictionary attack random attempts from spammer servers across the world. This was annoying because, in...

NUT ups.conf configuration for OMNIVS 1500XL USB

The Tripplite OmniVS 1500XL is a great home/SOHO USB UPS that is expandable with external battery packs. But, the NUT support on Debian-based linux distros is no bueno. They support Redhat-based with some software, but Debian users are stuck with NUT and tripplite_usb driver support. The unit doesn’t dish a few variables via the tripplite_usb driver so you kind of want to add a few...

Strategic IT Consulting and Implementation Services