R.I.P. Ringling Bros. and Barnum & Bailey Circus

Author: , Posted on Sunday, January 15th, 2017 at 8:33:04am

ap7003061160

R.I.P. William Christopher

Author: , Posted on Sunday, January 1st, 2017 at 9:30:05am

Mash - 1972-1983
Scene from M*A*S*H

R.I.P. Debbie Reynolds

Author: , Posted on Thursday, December 29th, 2016 at 8:40:23am

1280_debbie_reynolds_singin_in_the_rain_MGM

R.I.P. Carrie Fisher

Author: , Posted on Wednesday, December 28th, 2016 at 8:02:20am

carrie-fisher-star-wars-c7315baa-c949-4116-99f6-73d244d4c955

How To Get a List of Changed Files in git

Author: , Posted on Monday, December 19th, 2016 at 1:59:00pm

To get just a list of files changed since the last commit:
git diff --name-only

To create a global alias called ‘git changed’:
git config --global alias.changed 'diff --name-only'

How To Enable Legacy Key Type Support in SSH 7

Author: , Posted on Friday, December 9th, 2016 at 12:00:40pm

Recently I had to launch an Ubuntu instance in AWS because i needed to run alien to convert a .rpm into a .deb package.

When I added my SSH keys as usual, I found I was still unable to login. This is the error from the /var/log/auth.log file:

Dec 9 16:47:55 localhost sshd[1550]: userauth_pubkey: key type ssh-dss not in PubkeyAcceptedKeyTypes [preauth]

A little research showed that ssh-dss keys are no longer supported by default in OpenSSH 7.0 and above.

Of course, the best thing to do would be to generate and use new keys with rsa, ecdsa or ed25519. RSA keys will give you the greatest portability while ed25519 is the most secure but requires more recent versions of ssh and sshd.

If you are stuck with DSA keys, you can re-enable support by adding the following line to /etc/ssh/sshd_config:

PubkeyAcceptedKeyTypes=+ssh-dss

More information: http://www.openssh.com/legacy.html

Original article: https://www.gentoo.org/support/news-items/2015-08-13-openssh-weak-keys.html

How To Fix Safari Using https instead of http

Author: , Posted on Friday, September 30th, 2016 at 7:21:14pm

For the Mac, you need to do three things in a row:
1. Quit Safari
2. Delete ~/Library/Cookies/HSTS.plist
3. Reboot

How To Change the umask for Apache on AWS Linux

Author: , Posted on Thursday, September 22nd, 2016 at 6:24:19pm

echo "umask 002" >> /etc/sysconfig/httpd
service httpd restart

How To Block an Entire TLD in Postfix

Author: , Posted on Tuesday, September 13th, 2016 at 2:14:33pm

Step 1. Execute the following two commands:
postconf -e smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains
postconf -e reject_unauth_destinations=pcre:/etc/postfix/rejected_domains

If that doesn’t work, you may hand-edit main.cf and add/edit these lines:

1
2
smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains
reject_unauth_destinations=pcre:/etc/postfix/rejected_domains
smtpd_sender_restrictions=pcre:/etc/postfix/rejected_domains
reject_unauth_destinations=pcre:/etc/postfix/rejected_domains

Step 2. Create the regex filter file:

vim /etc/postfix/rejected_domains

1
2
/\.top$/           REJECT No spam allowed from the .top TLD
/\.stream$/           REJECT No spam allowed from the .stream TLD
/\.top$/           REJECT No spam allowed from the .top TLD
/\.stream$/           REJECT No spam allowed from the .stream TLD

Step 3. Signal Postfix to reread the config:

postfix reload

NOTE: Do NOT use the postmap command for the rejected_domains file, postmap is only for hash or lmdb files.

R.I.P. Gene Wilder

Author: , Posted on Tuesday, August 30th, 2016 at 3:29:04pm
Gene Wilder, June 11, 1933 -  August 29, 2016 at 83 years old

Jerome Silberman aka Gene Wilder
June 11, 1933 – August 29, 2016
(83 years old)