GnuPG security token has arrived

I have started learning more about the GnuPG security tokens fairly recently in the post about GitHub automatic commit signing. Links in that post provide for some great read too, go check it out if you are interested. GnuPG security token is a device that stores the keys on the …

Nginx on Arch using Ansible pt.3

See also part 1 and part 2. Digging deeper after successfully made use of the template for the nginx.conf.j2 in the previous post I tried to utilize the virtual hosts template accessible in vhosts.j2 by copying the template and referencing it locally (the thing same I did with wi…

Nginx on Arch using Ansible pt.2

This is an update to the post I made a week earlier. Issue got no reaction whatsoever on GitHub so far. For short, The original issue described the fact, that running the associated Ansible Galaxy role would fail on every subsequent run on Arch based systems, because of the dupli…

White hat hacker contacted me

Today I was contacted by a person claiming to be a white hat hacker, reporting a vulnerability and hoping for the bounty for his ethical Disclosure. I am not a business owner (at least not yet) to be able to pay a bounty from the revenue and the vulnerability reported looks like …

Nlbwmon: per-client bandwidth monitor for OpenWRT

A quick update about my OpenWRT router. I have installed luci-app-nlbwmon into it. It neatly helps keep track of who consumed which chunk of bandwidth when using metered connection. This happens usually when traveling in pair. Sometimes friends pay a visit too. Here's how it look…

Comprehensive guide to pkgfile

Let's consider some examples of how to get the package file names and paths on Arch based system. Let's start with the command that is a bread-and-butter, pacman package manager. Determine which package(s) own a file To find out which package owns a file, two very similar approac…

Wildcard certificate with acme.sh

This post is a sequel to my previous post. The post demonstrated how to setup HTTPS for Nginx by obtaining a certificate via 3rd party client called acme.sh. There is also some basic underlying theory about these terms. Consider reading it if feeling uncertain. Start by creating …