LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Blogs
Reload this Page serafean
User Name
Password

Notices


Old

systemd yacy "hardened" unit

Posted 08-31-2016 at 01:51 PM by serafean
This is more of an archive for my yacy service file
Code:
[Unit]
Description=Yacy distributed search engine

[Service]

#Service
Type=forking
GuessMainPID=yes
ExecStart=/opt/yacy/startYACY.sh
ExecStop=/opt/yacy/stopYACY.sh
User=yacy
Group=yacy
WorkingDirectory=/opt/yacy

# Hardening
PrivateTmp=yes
PrivateDevices=yes
ProtectSystem=full
ProtectHome=yes
NoNewPrivileges=yes
...
Continue reading...
Member
Posted in Uncategorized
Views 105 Comments 0 serafean is offline
Old

systemd 219 && systemd-networkd changes

Posted 02-22-2015 at 07:45 AM by serafean
Tags systemd
The recent update to systemd sent it to version 219. Per the changelog, .network files gained two new configuration values
Code:
IPForward
IPMasquerade
After the upgrade, my Gentoo box stopped routing packets to the internet. NAT was setup correctly, so the issue couldn't be there.

It appears that systemd by default sets the forwarding sysctl of each interface to 0. In order for packets to be forwarded, this must be set to 1. /etc/sysctl.conf was of no help.
...
Continue reading...
Member
Posted in Uncategorized
Views 832 Comments 0 serafean is offline
Old

nftables series - part 1 - baby steps

Posted 12-24-2014 at 07:53 AM by serafean
Updated 12-24-2014 at 07:55 AM by serafean
Nftables introduction

I assume a kernel >=3.18 and nft >= 0.4.

I decided to try out nftables, the would-be iptables successor on my home router/server PC.
As a basic guide I used this guide and the pretty good basic documentation on wiki.nftables.org.

Nft comes with a completely empty ruleset. Meaning no predefined tables, chains or rules.
You as a user create tables, populate those with chains (which hook into kernel netfilter hooks)...
Continue reading...
Member
Posted in nftables
Views 655 Comments 0 serafean is offline
Old

Slow DNS lookups

Posted 11-16-2012 at 05:11 PM by serafean
Since quite some time I had been experiencing slow DNS lookups on some linux boxes. Today I finally got around to fixing it.
Symptoms : KDE fails to load google/wikipedia sometimes. firefox too, less often.

ping was the main tool in this case.
What I found was that
Code:
ping www.google.com
got an IP to ping very fast, however before anything appeared onscreen, it took up to 5 seconds. Pinging the IP address however returned immediately.
On a hunch, I tried disabling...
Continue reading...
Member
Posted in Random fixes
Views 800 Comments 0 serafean is offline
Old

Lirc & xbmc time

Posted 09-21-2011 at 12:34 PM by serafean
Tags htpc, imon, lirc, xbmc
The Enna media center project stagnating, and the KDE Plasma Media center being developed in GSoC bursts, I got back to using xbmc. xbmc supports lirc, and having an imon panel with a remote, I finally decided to set it up.

The key here was understanding that the iMon device is now supported in the kernel using the new infrastructure. What this did is make the iMon device send normal input events. (I think this is mostly because it does the IR decoding directly in hardware). What...
Continue reading...
Member
Views 1237 Comments 0 serafean is offline
Page 1 of 3 1 23

  



All times are GMT -5. The time now is 06:48 PM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration