Archive for the 'Debian' Category

Using a TOTP app for multi-factor SSH auth

Friday, May 6th, 2016

I’ve been playing around with enabling multi-factor authentication (MFA) on web services and went with TOTP. It’s pretty simple to implement in Perl, and there are plenty of apps for it including Google Authenticator, 1Password and others. I also wanted to use the same multi-factor auth for SSH logins. Happily, from Debian jessie onwards libpam-google-authenticator […]

Your Debian netboot suddenly can’t do Ext4?

Friday, February 5th, 2016

If, like me, you’ve just done a Debian netboot install over PXE and discovered that the partitioner suddenly seems to have no option for Ext4 filesystem (leaving only btrfs and XFS), despite the fact that it worked fine a couple of weeks ago, do not be alarmed. You aren’t losing your mind. It seems to […]

Installing Debian by PXE using Supermicro IPMI Serial over LAN

Friday, December 11th, 2015

Here’s how to install Debian jessie on a Supermicro server using PXE boot and the IPMI serial-over-LAN. Using these instructions you will be able to complete an install of a remote machine, although you will initially need access to the BIOS to configure the IPMI part. BIOS settings This bit needs you to be in […]

systemd on Debian, reading the persistent system logs as a user

Monday, July 20th, 2015

All the documentation and guides I found say that to enable a persistent journal on Debian you just need to create /var/log/journal. It is true that once you create that directory you will get a persistent journal. All the documentation and guides I found say that as long as you are in group adm (or […]

Paranoid, Init

Tuesday, November 18th, 2014

Having marvelled at the er… unique nature of MikeeUSA’s Systemd Blues: Took our thing (Wooo) blues homage to the perils of using systemd, I decided what the world actually needs is something from the metal genre. So, here’s the lyrics to Paranoid, Init. Default soon on Debian This doesn’t help me with my mind People […]

rsync: “Inflate (token) returned -5”

Thursday, November 17th, 2011

Today one of my rsync backups began failing with: inflate (token) returned -5 rsync error: error in rsync protocol data stream (code 12) at token.c(604) [receiver=3.0.3] rsync: writefd_unbuffered failed to write 373 bytes [generator]: Broken pipe (32) rsync error: error in rsync protocol data stream (code 12) at io.c(1544) [generator=3.0.3] It was repeatable when trying […]

Linux, IPv6, router advertisements and forwarding

Sunday, September 4th, 2011

By default, a Linux host on an IPv6 network will listen for and solicit router advertisements in order to choose an IPv6 address for itself and to set up its default route. This is referred to as stateless address autoconfiguration (SLAAC). If you don’t want a host to automatically configure an address and route then […]

Happy first Sunday of the month

Sunday, April 4th, 2010

On this day we reflect that one or more hard disk sectors may have died for your sins; the Debian mdadm checkarray script was created so that your array may have constant life. Debian loves you. Amen.

Recently updated gnutls then found you can’t connect to LDAP?

Saturday, November 21st, 2009

If you recently installed this update: gnutls26 (2.4.2-6+lenny2) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Fixed CVE-2009-2730: a vulnerability related to NUL bytes in X.509 certificate name fields. (Closes: #541439) GNUTLS-SA-2009-4 — Giuseppe Iuculano <> Sun, 01 Nov 2009 21:29:06 +0100 and then found that your applications began failing to connect to […]

New fileserver for home

Sunday, June 11th, 2006

Recently my fileserver, becks, was not only getting filled to capacity but was also undergoing some severe performance problems. It’s by no means a poorly-specced machine (not for home use anyway) but my use of rsnapshot has grown so much in the last 6 months that it was no longer up to the job. Read […]