As we've been improving our systems automation with ansible, that has included bringing 'foreign' devices with unknown states into consistency and management by ansible. This will look at some tricks used to survey and update EdgeMAX routers. First things first is having some idea of what…
I used to have acme.sh handling much of the routine work of updating SSL certificates, but as I've moved automation into ansible/AWX, that has included let's encrypt certificates. This post provides an example of updating certificates using acme-dns with DNS hosted through google cloud…
Intro We operate a proxmox cluster which is not exposed to the public internet, but we still wanted to secure the appliances with good certificates to avoid constantly clicking-through SSL warnings. Thanks to DNS acme challenge, let's encrypt is happy to issue valid certificates for domains that point…
One of the best aspects of ubiquiti hardware is that it tends to come with full linux root access. I've used this in the past to snoop packets traversing an access point in order to reverse engineer a WiFi LED protocol. But even before providing this unprecedented level…
Let's encrypt is incredibly exciting. For far too long, SSL has been too hard (manual process) and too expensive. Now everyone can get the green lock in the browser everywhere! for free! automagically! ish! As an IT technician, I've long been frustrated with the extra steps…