Recent posts (paged)
Debian Curl/PHP/wget etc show an certificate error falsely
Problem: curl php wget and others show a cert error like the following since 6. Oct 2021, even though the cert has not expired: curl: (60) SSL certificate problem: certificate has expired More details here: https://curl.haxx.se/docs/sslcerts.html curl performs SSL certificate verification by default, using a "bundle...
Devuan / Debian Versions
Admins who prefer a Unix style operation system and don't like the centralized "one tool doing it all" approach of systemd, switch to Devuan. This mostly improves uptime over boot time. Admins of servers don't care about boot time and prefer uptime. This list keeps track of the related versions of Devuan and Debian....
Cisco ASR-1001-X Update
There are at least two pieces of software you can update in a Cisco ASR-1001-X. The ROMMON (firmware) and the IOS itself. This router uses "Cisco IOS XE Software". Which is an IOS process on a Linux kernel as far as I know. Cisco recommends specific ROMMON releases for different generations of software. You can look...
DHCP Relay on Linux
DHCP relaying is used to forward DHCP requests to a DHCP server if the client and the server are not on the same network. One standard implementation of this is isc-dhcp-relay which is part of the isc-dhcp package. Problem: The dhcrelay is forwarding the dhcp request to the dhcp server and the dhcp server is respond...
LS Style After Devuan 3 or Debian 10 Update
After Devuan 3 update ls output showed characters, that are not really in the directory listing. The reason is that "ls" draws quotes around filenames with spaces. This is a bug from my point of view, ls should never change the actual filenames. If a filename has quotes or double quotes it's even weirder . "ls" adds...
Time Format after Devuan 3 and Debian 10 Update
After updating to Devuan 3 the date command shows 12hours am/pm but my days have 24 hours. The locale was always en_US.UTF8 to keep sane command and error output. Debian 10 thinks they had to fix the correct hour display to the complicated one. Therefor all sysadmins like me have to apply the following workaround, t...
Mikrotik OSPF Routing Distance Ignored
Discussion: Every routing protocol has a default distance to help the router to decide which route to use in case of multiple routes for the same destination. For Mikrotik routers these distances are listed here: https://wiki.mikrotik.com/wiki/Manual:Route_Selection_Algorithm_in_RouterOS If you want to configure a b...
ARP and Broadcast Packets Missing
Problem: A Linux box with Debian 9 (kernel 4.9) on a HP server with Intel i40e (X710) network cards, is not reachable from neighbor machines, because ARP does not work. Discussion: while testing with tcpdump ARP worked, but later ARP stopped working again. When tcpdump is used with "-p" (non promiscuous mode) you ca...
MITMProxy and IOS 13
Problem: if you want to debug a IOS app with MITMProxy, the iPhone needs to trust the MITMProxy CA. This is done by going to http://mitm.it/ and clicking on the apple symbol. Then you have to accept the "profile" in Settings "downloaded profiles". Then you have to trust this new CA cert in "Settings" "General" "Abou...
Linux Live-boot Fails after Debian/Devuan Update
Problem: after updating from Debian 8 to Devuan 2 the overlay live-boot failes with "no such device" Discussion: I use a bootable USB stick combined with live-boot. In this case the USB stick partition 3 is a normal ext4 file system used as read only "plainroot" filesystem. Live-boot overlays this with an ramfs. As ...