L3 routing with throttling

One of the best aspects of ubiquiti hardware is that it tends to come with full linux root access. I've used this in the past to snoop packets traversing an access point in order to reverse engineer a WiFi LED protocol. But even before providing this unprecedented level of access,…

Let's Encrypt Appliances!

Let's encrypt is incredibly exciting. For far too long, SSL has been too hard (manual process) and too expensive. Now everyone can get the green lock in the browser everywhere! for free! automagically! ish! As an IT technician, I've long been frustrated with the extra steps required to bypass self-signed…

hostname --fqdn

Recently I setup logcheck, but found it was sending email reports purporting to be from localhost, which is absolutely useless for anyone trying to manage multiple servers (aren't we all)! Digging into the cause, I found logcheck gets the local hostname by using either hostname --short or hostname --fqdn, depending…

sendmail (simply)

It's important to know when cron jobs fail. One way to do this is to put an entry in the crontab like MAILTO=me@example.com. But for this to work, the system needs a sendmail agent. A rather simplistic option is ssmtp; this is a good option for a…

SwapOff

To swap, or not to swap still seems to be a common question. Modern computers often provide massive amounts of memory, which is great because memory is fast. Swap, being disk based, is slow. The benefit of swap is that it provides more memory resources for a system with high…