Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more.
Squid can be configured to make SSL/TLS inspection (aka HTTPS interception) so the
proxy can decrypt proxied traffic (Squid calls this feature ssl bump).
Afaik the Squid package included in the Linux distros is not compiled with SSL/TLS inspection support but the good news is that
(its diladele github repo and Websafety documentation are useful resources) provides packages for Ubuntu and Centos, recompiled ( you can do by yourself) with support for HTTPS filtering and SSL/TLS inspection. This means that we have just to configure Squid. Not an easy task anyway 🙂
I provide to you a working config, follow next steps. Continue reading “Configure Squid proxy for SSL/TLS inspection (HTTPS interception)”
Since Ubuntu 18.10 I’m experiencing a weird bug on Terminator, the terminal I use because of its
The bug is
known and tracked on launchpad but not fixed ¯\_(ツ)_/¯ so I found a quick way to fix it (tested up to 20.04), enjoy!
sudo mv /usr/bin/terminator /usr/bin/terminator.SAVE
cat <<TERMINATOR > /tmp/terminator
sh -c "DBUS_SESSION_BUS_ADDRESS='' /usr/share/terminator/terminator"
chmod 755 /tmp/terminator
sudo mv /tmp/terminator /usr/bin
This is a memo-post for me, hope useful to someone else too.
The need is to have autoclick on your desktop to automate some recurring task.
To do this I installed
sudo apt-get install xdotool
Ater the installation place your mouse on the desktop and get mouse location:
x and y: screen coordinates;
screen: screnn number, useful if you have more than one monitor/screen;
window: application window ID.
x:758 y:512 screen:0 window:54525959
Test it executing the standalone command.
xdotool mousemove 1242 998 click 1
And iterate (following commad sleeps 5 seconds between the commands).
while [ true ]; do xdotool mousemove 1242 998 click 1; sleep 5; done
Synchronization by Taxydromos69
I already wrote
how to configure a basic High Availability Ubuntu cluster. The steps to setup a basic cluster are detailed in the previous post, so please read the post if you don’t know how to make the cluster up&running. Same conventions are used here.
One of the topic I didn’t covered on the old post was “
application replication/synchronization between the nodes“. Now it’s time to show you how to keep in sync files between cluster nodes, using DRBD software. DRBD is a powerful component of Linux kernel and is designed to keep in sync data via TCP/IP between nodes volumes. In this post we will setup a clustered freeradius service that sync /etc/freeradius/clients.conf file between nodes. Continue reading “Configure Linux High Availability Cluster in Ubuntu with Corosync and DRBD file sync”
UPDATE: 17th of December 2019]
If you use Ubuntu 19.10 OpenFortiGUI 18.04 package is not working. I’m using openfortivpn from ubuntu repo and is working well $ sudo apt install openfortivpn
$ cat config.vpn
host = <SERVER>
port = <PORT>
username = <USER>
pppd-use-peerdns = 1
# X509 certificate sha256 sum, trust only this one!
trusted-cert = <CERT>
$ sudo openfortivpn -c config.vpn
UPDATE: 19th of November 2018]
Since Ubuntu 18.10 I start using the OpenFortiGUI and it works well, so I suggest to give it a try
UPDATE: 9th Dec 2017]
If you want to use the FortiClient from command line, this is the command (for 64bit, same for 32bit with the right path) $ yes | /opt/forticlient-sslvpn/64bit/forticlientsslvpn_cli --server
<YOUR SERVER IP/FQDN HERE>: <YOUR SERVER PORT HERE> --vpnuser <YOUR USERNAME HERE> > /dev/null
—— original post ——
This post is just to point to the page where the great
Rene mantains the .deb packages for Forticlient SSLVPN Linux client (instead of .tar.gz provided by Fortinet).
You can find the .deb files built by Rene in
his blog Bits and Bites.
Jellyfish Cluster – photo by robin on flickr
HA Cluster with DRBD file sync which adds file sync configuration between cluster nodes]
: tested the configuration also with UPDATED on March 7, 2017 Ubuntu 16.04 LTS]
This post show how to configure a basic High Availability cluster in Ubuntu using
Corosync (cluster manager) and Pacemaker (cluster resources manager) software available in Ubuntu repositories (tested on Ubuntu 14.04 and 16.04 LTS). More information regarding Linux HA can be found here.
The goal of this post is to setup a freeradius service in HA. To do this we use two
Ubuntu 14.04 or 16.04 LTS Server nodes, announcing a single virtual IP from the active cluster node. Notice that in this scenario each freeradius cluster istance is a standalone istance; I don’t cover application replication/synchronization between the nodes (rsync or shared disk via DRBD). Maybe I can do a new post in the future 🙂 [ ] I did the post Continue reading “Configure basic Linux High Availability Cluster in Ubuntu with Corosync”
Postfix email relay
OTRS Help Desk is an
open source application (with Enterprise support) that has a lot of useful features: ITSM, Surveys, Time Accounting and System monitoring.
I use it on my company as a Service Desk for
Security purposes (and more).
As you can read from our Success Story one of the feature we currently appreciate is the ability to track all the email exchanges into tickets simply putting ticket number in email Subject end CCing the proper configured email address. This allow us to interact with external parties without the need for other people to access our OTRS istance. Continue reading “Configure OTRS to process multiple Tickets in email Subject”
Forward by Bruce Berrien
One of the problems I encountered in my job is to get syslog (udp/514) logs from a server that support only one syslog destination and resend these logs to two or more servers (log archiving, security appliance etc).
To do this I used
rsyslog and Ubuntu Server (14.04 LTS) acting like a syslog relay.
In this scenario the remote appliance sends the log to the Ubuntu Server (listening on port udp/514) and the server store&forward the logs to one or more server/device. Continue reading “Rsyslog – Store and Forward messages to other hosts”