to protect and daemonize
17 posts with this tag
This runbook sets up the environment and installs the application.
None.
Restore gotosocial on OpenBSD from a backup done via the following procedure
None.
pkg_add gotosocial-- postgresql-server--rcctl stop gotosocialgit pull upstream <tag> --rebasegit rebasegit commit -a -m 'upgrade to <tag>'su -s /bin/ksh -l _netboxdoas rcctl stop netbox_rqdoas rcctl stop netboxgit pullbash upgrade.shdoas rcctl start netboxdoas rcctl start netbox_rqUse this for backing up your netbox instance. This is specific to my setup YMMV.
su -s /bin/ksh -l _netboxpg_dump -W postgres://netbox@127.0.0.1:5432/netbox | gzip > …When you want to backup docspell.
None.
pg_dump -W postgres://docspell@127.0.0.1:5432/docspell | gzip > backup/docsell_$(date +%Y%m%dT%H%M%S).psql.gzcp docspell-joex-0.41.0/conf/docspell-joex.conf …Backing up gotosocial.
None.
pg_dump -W postgres://gotosocial@127.0.0.1:5432/gotosocial | gzip > /var/tmp/gotosocial_$(date +%Y%m%dT%H%M%S).psql.gzgotosocial admin media list-attachments --config-path /etc/gotosocial.yaml …Use this procedure when you want to backup keycloak.
None.
rcctl stop keycloaksu -s /bin/ksh -l _keycloakcd keycloakbash bin/kc.sh export --file ../backup/keycloak-$(date …So I decided to give the unifi controller a shot on running on OpenBSD and most importantly the plan was to run it alongside all the other daemons on the system, so I don’t need to have a seperate VM / machine running just for the unifi controller. Spoiler: while I was able to get the unifi …
Nice little one-liner to restart all failed services on OpenBSD:
rcctl start $(rcctl ls failed | awk 'BEGIN{ORS=" "}{print}')
After running into more or less the same problem every damn keycloak upgrade it’s time to put some notes into place so I won’t struggle in the future anymore. At least not with the same problem.
Change into the root directory for keycloak
cd /var/www
Download the latest release …
This is more a personal reminder than anything else. Also this expects an installation following this guide.
rcctl stop netboxcd /var/www/netbox && git pullgit checkout v3.0.10diff --git a/upgrade.sh b/upgrade.sh
index …Ever since dywis0r made me aware of netbox I was planning on getting my hands dirty with it. But only after looking loads of videos on the topic and after being `forced’ to use it at work has I been able to finally get enough momentum going to start the journey for myself.
At the beginning of …
Update: Added some remarks about what DNS RPZ actually is, what my objective is and what the outcome will be.
A friend of mine and I tried to play w/ RPZ and knot yesterday and gravely failed. The fact that knot as well as RPZ had been new to us didn’t help. Discussing the failure later that …
There’s one thing that I am really missing under OpenBSD, a network manager which seemlessly handles running around with my laptop. So my main itches to scratch are doing magic things at boot and resume so I don’t have to bother with fiddling with hostname.if(5) ever.
My first take on …
I came up with the idea to utilize Open Source Threat Feeds, or OSINT on my private setup and quickly cooked up the shell script below in a rough, first try. The funny thing is that I more or less instantantly got hits from the 5346 IP addresses in the table:
@0 block drop log quick from …Update: I have corrected chown www /var/www/data
to be chown www /var/www/rainloop/data in getting rainloop ready to rock
installing php and php-curl (and unzip)
pkg_add -i php php-curl unzip
getting rainloop ready to rock
mkdir /var/www/rainloop
unzip ~/rainloop-community-latest.zip -d …Just in case somebody else is getting the cannot resolve getgrav.com error: just copy /etc/resolv.conf into the chroot:
mkdir /var/www/etc
cp /etc/resolv.conf /var/www/etc/
And I already feared that I need to create /dev/random and shit like that. Damn it that took too long to find out.