Arbitrary tweets made by TheGingerDog up to 09 September 2018
Arbitrary tweets made by TheGingerDog up to 05 April 2015
Arbitrary tweets made by TheGingerDog up to 30 November 2014
I needed a variant of Squid which supported transparent SSL interception (i.e via iptables redirection) so I could log outgoing HTTPS requests without the client being aware.
The stock wheezy variant doesn’t support SSL (see : Debian Bug Report).
Even after recompiling Wheezy’s squid3 it didn’t seem to work (perhaps my stupidity) so I ended up moving to the latest-and-greatest squid (3.4.9 at the time of writing) and getting that to work. Brief notes follow.
Arbitrary tweets made by TheGingerDog up to 23 November 2014
Need to set a HTTP proxy within a Debian system ?
Assuming your proxy server is on 192.168.0.1 and listening on port 3128, then the below may help …
( If you need authentication you can use username:password@ like you would in an old style web browser – e.g. http://username:email@example.com:3128. )
/etc/wgetrc and add
http_proxy = http://192.168.0.1:3128
(some system commands rely on wget, and may not otherwise use an environment variable, e.g. debootstrap; the http_proxy setting should be present by default but commented out).
(This is all, in a round about way, relayed to the http proxy security vulnerability announced in July 2016 – see httpoxy.org for more info)
It’s an Intel i5 4250U processor (dual core, laptop processor). Supports up to 16gb of RAM and the Intel 5000 graphics thing in it.
The box itself is really small – and silent. A laptop size hard disk can fit into it (2.5″ hdd).
- BIOS needs updating before it can be installed (apparently); See Intel’s website – currently here – it’s just a case of downloading the .BIO file and sticking it on a USB stick and pressing F7 on boot and following through the prompts.
- Most Linux distros do not yet support the network card (Intel 559/I218-V) – I had to netboot a Debian unstable netboot iso image (from here )
Good things –
- BTRFS root filesystem + booting etc just worked with Jessie.
- X configuration just works – even though it’s quite a new graphics chipset.
- Boot time is VERY fast – currently <5 seconds.
Some random bits and pieces related to SpamAssassin and Amavis
Sometimes NFS breaks, and gives helpful messages like :
mount.nfs: connection timed out
Stale NFS handle on clients.
While I’m confident that my /etc/exports and other configuration files are correct, it still insists on misbehaving.
Below is a random shell script I seem to have created to fix the NFS server –
#!/bin/bash set -e /etc/init.d/nfs-kernel-server stop /etc/init.d/nfs-common stop /etc/init.d/rpcbind stop rm -Rf /var/lib/nfs mkdir /var/lib/nfs mkdir /var/lib/nfs/v4recovery /var/lib/nfs/rpc_pipefs for f in /var/lib/nfs/etab \ /var/lib/nfs/rmtab \ /var/lib/nfs/xtab; do [ -e $f ] || touch $f done /etc/init.d/rpcbind start sleep 2 /etc/init.d/nfs-common start sleep 2 /etc/init.d/nfs-kernel-server start echo "NFS may now work" exportfs -f
Yes… “NFS may now work” … that sums it up about right.
One new feature of VirtualBox 4.2 is that it has support for auto-starting vm’s on bootup of the host server (via init etc). This means I can remove my hackish ‘su – vbox -c “VBoxHeadless –startvm VMName &”‘ additions in /etc/rc.local, and the VM’s will also hopefully be terminated gracefully on shutdown.
The docs/guides online which I could find were a bit cryptic, or incomplete, so here’s what I ended up doing :