Category Archives: Linux

PaulPetring\audiobook-feeds

I love podcasts.

I use them frequently and automatically downloaded by the Podcatcher BeyondPod onto my smartphone. In contrast to podcasts, I transfered my audiobooks to my smartphone by cable – which usually was very annoying. Therefore I wrote a little script that is able to close the gap by converting all my audiobooks into subscribable podcast feeds!

Of course it is open source and can be found here:  https://github.com/PaulPetring/audiobook-feeds

Some adittional facts:

  • it serves a website to browse your audiobooks and subscribe to certain books
  • serves rss and atom feeds for import
  • it offers a simple password protection to prevent copy right issues
  • runs in docker container (see MakeFile and DockerFile)
  • works when placed in subdirs example.com/audio/ (e.g. reg for ssl without wildcard)
  • allows custom theming and uses material design as default theme
  • handles encoding of filenames at best effort
default

Screenshot of the first available version of my audiobook-feeds project

I use it on regular basis and would like others to enjoy it as much as I do. So please feel free to use, spread and contribute to it. And see you soon 🙂

Brace yourself, Windows Updates are coming… …aaaand they’re gone :)

Certain programs (e.g. sketchup) and games (surprisingly just a few worth the effort) require to maintain a windows computer or virtual machine. Therefore updates on a regular basis are non optional. But why do I have to watch them, blocking the computer for hours and finally failing completely ?

… not a very valuable post, but sitting in front of an 3h force updating computer softens the sense for time wasting.

DNSSec DANE and hosteurope – impossible to host secure services.

They do not support  DNSSec.  That’s bad.

I host my families E-Mail server, which is a combination of dovecot, postfix, postgrey, nginx, webmailer, etc. It highly depends on CA trusted SSL/TLS-encryption and in order not to be filtered by spam filters the credibility of not beeing  spam.  Therefore I also host my own nameserver with a glue record an set several important records in it, and offer several DNSSec records to provide a reliable chain of trust.  –  with one point of failure: hosteurope.

Not capable to connect my chain to the registrar authothority by publishing my DS Record.
Therefore every authority, bad mood admin or hacker can interrupt the dns pathfinding of clients or usual mail server and man-in-the-middle my setup, generate fake certificates and read my families mail. Thanks to ‘beeing economicly not relevant and therefore nothing we offer’- hosteurope.

In conlusion, all the things I’ve done to increase security have been for nothing – at least until I change my domain host. Which I will do, and highly would advise to everyone who wants to harden their infrastructure after the nsa scandal.

Create .ovpn file from openVPN configuration files

The .ovpn file format is an embedded version of the usual 3-4 files openvpn format. It can be very handy when dealing with mobile setups like android or iOS or on some mac applications like Tunnelblick. According to my recent openvpn post you only need to follow this code:

Remember to transfer that key securely, do NOT send this via unencrypted email to you external device 🙂

 

OpenVPN Server with easy-rsa on Ubuntu 14.04 easy setup

In case you want to run an simple openVPN server on your own host, but like me think most of the tutorials do not focus enough on plain commands, feel free to follow this little instruction set:

Set your /etc/openvpn/server.conf to:

Back in the terminal we will now start the crypto-foo:

And now you are basically done. In cases of firewalls remember to open the openVPN port (which is set in /etc/openvpn/server.conf and defaults to 1194).

To add a client with an own keypair use distinct key-name values:

or in case you want it password protected (which requires to enter the password everytime you’ll connect):

Now safely(!) distribute the keys to your client machines, using PGP, secure USB sticks or printed paper 🙂 according to the following scheme:

Original by yed licensed under CC BY-SA 4.0

You might

Do not forget to start your server:

If you want to use these files on the client with your Network-Manager, install the required plugin:

and set the following options:

openVPN-NetworkManagerIt is also possible to generate a .conf or .ovpn file, which is required by some apps e.g. on android and iOS but will be handled in a separate post soon.