fak3r.com - Latest Comments

Re: HOWTO fix a Nintendo 3DS with broken wifi

lucas — Wed, 08 Nov 2017 13:56:31 -0000

I was with the same problem and came to this site, after read your comment i hit back 2 times it's works fine again lol

Re: HOWTO build your own open source Dropbox clone

Book Queen — Sun, 24 Sep 2017 15:43:54 -0000

found you, heheheheheheh, or something that sounds evil

Re: HOWTO Use Systemd to Control VPN Connections

fak3r — Mon, 18 Sep 2017 10:53:18 -0000

Thanks Red Dove, I've fixed this in the source:
https://github.com/philcrye...

Will run a new build later (still need to get the CI integrated here... might be another post!)

Re: HOWTO Use Systemd to Control VPN Connections

Red Dove — Mon, 18 Sep 2017 10:22:38 -0000

"systemctl openvpn restart" should be "systemctl restart openvpn"

Re: HOWTO setup a very secure webserver

fak3r — Tue, 25 Jul 2017 10:41:19 -0000

No problem, so the post was really about bringing 3 things together. First, nginx, with a minimal configuration (default install of things like Apache at companies are usually wide open, here just install the base to get what we need, and no more). Two, using some "best practices" rules from my nginx-globals project to harden the base install to make it ready for real world traffic so by default we're blocking many known attacks vectors. Three, use SSL, in this case Let's Encrypt, to enable more security, as well as HTTP/2, which IMO should be the standard going forward. I hope it was helpful, thanks for your comments.

Re: HOWTO setup a very secure webserver

joe — Mon, 24 Jul 2017 15:57:10 -0000

I started trying to use this now , on my "localhost", and also download the
nginx-globals.
I did run into a problem with "cert bot" I used "localhost" as the domain name, and it does not like that. As far as that goes, I don't really need that on the "localhost", Question, will it matter if I just don't use it ?
Thanks
----- edited ---
Never mind , I see in your read me it says it is optional.
Thanks
------------- edited -------again---------------
Seems to work ok, thank you for making the tutorial , it was a big help
to me on configuring nginx.

Re: HOWTO setup a very secure webserver

joe — Mon, 24 Jul 2017 14:30:07 -0000

Ok, thanks, and nice to meet you.
I have not tried it yet, my concern is that a while back I saw some news
about some kind of compromise that had occurred at git hub, and I am not a real
technically advanced person, your "secret sauce" script sounds interesting to me,
because I really struggle with trying to configure nginx.
I am working on my first OpenBsd server, and considering using nginx, at this time
it is just using the "httpd" that ships with OpenBsd,
In any even , I am able, and will probably try it on a home PC, using localhost,
I suppose the best approach is to download it as instructed, I can 'cp' to a safe place
and look it over, if I do have any questions, it is good to know you are available, that is encouraging.
Thank you very much for replying and also making this available.

Re: HOWTO setup a very secure webserver

fak3r — Mon, 24 Jul 2017 10:10:59 -0000

I am still active, just not posting as much as I should. Any issues? Happy to help, just let me know

Re: HOWTO setup a very secure webserver

joe — Sun, 23 Jul 2017 20:55:19 -0000

Hello, just now read this, interesting and thank you

I notice it is a 6 months old, 05 Dec 2016, 19:19 , are you still active with this ?
Thank you

Re: HOWTO connect to SSH via SSL with sslh

Joseph Casanova — Fri, 28 Apr 2017 10:23:08 -0000

I'm receiving an HSTS error when setting this up. My domain did have cloudflare in front of it but I set cloudflare to bypass. I'm wondering if this has something to do with SSLH sitting in front of nginx and not serving up the SSL certificates or perhaps something else.

I'm pushing traffic to SSLH over a single subdomain domain (my server hosts many domains and subdomains). that domain is obviously a virtual host in nginx. It's the only one set to listen on 127.0.0.1 - perhaps that is the issue? All other domains work fine without an error to include the root domain and other subdomains on the root domain.

Also, I do not see any listeners for nginx when I run netstat on 127.0.0.1 - even after specifying listen 127.0.0.1:443 ssl in the virtual host conf file and restarting nginx it does not appear. Is the address to listen on ignored in the site configuration section?

Update: the logic behind this has finally settled in my brain and I'm understanding it a bit more now... the multiplexer HAS to sit in front of nginx for all websites since I only have a single WAN IP to sit behind. So I have to configure each "server" to listen on 127.0.0.1:443 or this won't work. I'm going to test that now and see what happens. What worries me is that nginx wasn't listening on 127.0.0.1 and instead on 0.0.0.0 which interferes with SSLH trying to listen on the same socket.

UPDATE2: I had to configure each server configuration to listen on 127.0.0.1 as I expected later. I also could not leave SSLH listening on 0.0.0.0:443 - it has to have a specific IP address to listen on so I set it to the LAN IP of my webserver (I'm behind NAT). Websites are working. SSH is working over SSHL now.

Re: HOWTO run DD-WRT on a Netgear WNDR3700

Religion is Cancer — Fri, 24 Feb 2017 14:44:50 -0000

Great write up! Being relatively new working in IT (a year and a half) I'm becoming more security minded. I recently signed up for a VPN service and want my router connecting directly to it so I can have all of my devices automatically connect to the VPN while at home.

I'll be flashing my N600 tonight. 'll let you know how it goes.

Re: HOWTO fix a Nintendo 3DS with broken wifi

Noneya Business — Wed, 25 Jan 2017 16:44:46 -0000

I just hit the back of my 3ds twice and now it works fine. Sometimes raging is the answer! XD

Re: HOWTO fix a Nintendo 3DS with broken wifi

Adakar — Tue, 10 Jan 2017 14:28:42 -0000

I´m gonna do this today, my 3ds show me the black screen of death everyday

Re: HOWTO use monit to monitor sites and alert users

Klassy — Mon, 17 Oct 2016 18:53:15 -0000

Brilliant, thank you! Monit is now my favorite tool also.

Re: HOWTO fix a Nintendo 3DS with broken wifi

Tobias Busuttil — Sat, 08 Oct 2016 05:15:55 -0000

Thanks for this, I used this guide to fix my son's 3DS wifi issues. Much appreciated.

Re: HOWTO fix a Nintendo 3DS with broken wifi

fak3r — Mon, 07 Dec 2015 21:55:34 -0000

My fix was for the wifi not working, your issue sounds different - however reseating the plug that contorls the wifi could be something to try. Of all the electronics I've messed with the DS was pretty easy, but if you're not confident in it, I would tread lightly. One thing, do you have these problems with other DS handheld besides your own? Maybe borrow one and see if you can replicate the issue with another unit. After that I'd look to forums online, or Nintento for tech support. HTH, thanks!

Re: HOWTO fix a Nintendo 3DS with broken wifi

Feith — Sat, 05 Dec 2015 18:29:13 -0000

Can this fix an error where the Wifi randomly disconnects you after a bit of time passes? I usually try to host games on my Wifi, but I can't, but I can connect to others on the same wifi, but whichever game I use, it usually gives me an error message. I'm tempted to do this "fix" to see if it does the trick, but I'd rather be cautious, as I only have so little money each month to spend, so I can't afford to have it break.

Re: HOWTO build nginx with HTTP 2 support

Raj LIVEb4buy.com — Mon, 30 Nov 2015 14:00:10 -0000

Followed this https://github.com/Homebrew... to install DEVEL option 1.9.7 in my MAC ..

Re: HOWTO build your own open source Dropbox clone

Smit Baranwal — Wed, 25 Nov 2015 06:47:54 -0000

hii i am novice to os x programming, i want to develop something that behaves like dropbox just we can say that the application will be visible from finder and if user clicks on it the full directory contents should be visible in the same window(finder window). I don't know where to start with, will u plz help me out??

Re: HOWTO Get a New CoreOS AMI ID

Georgyo — Mon, 09 Nov 2015 11:29:48 -0000

Another way to get the AMI ID would be using jq, which is immune to possible changes in there json formating.

```
ami_id=$(curl -s https://coreos.com/dist/aws...{build}.json | jq -r .\"${1}\".\"${disk}\"
```

Re: HOWTO use monit to monitor sites and alert users

wong2 — Mon, 02 Nov 2015 23:08:50 -0000

what does failed means here ? if the server gives 500 error, is it considered failed by monit?

Re: HOWTO build nginx with HTTP 2 support

fak3r — Tue, 06 Oct 2015 10:18:26 -0000

so from what I understand, HTTP/2 requires the use of TLS, i.e. HTTPS, so what you're saying is that instead of

```
server {
listen 80;
return 301 https://$server_name$request_uri/;
}

```

have the server block on :80 check if the client supports HTTP/2 and if not fall back to 1.1 via http instead of sending it to https? I'm not sure how to do that, but I'm now looking into it. Wouldn't a 301 redirecting to https still work with 1.1 if the client didn't accept the h2 protocol? Thanks for the comment!

Re: HOWTO build nginx with HTTP 2 support

Reiner030 — Fri, 02 Oct 2015 07:58:31 -0000

Hello,

it would be nice if you can short-check if HTTP/2 is also supported by NGinx when using http:// only and not ssl/tls? Thx. ;)

In Nginx announcement / https://github.com/http2/ht... is yet no information what is supported.
Sadly it won't be supported by Chrome/Firefox because they announced to support it only for TLS connections ( http://daniel.haxx.se/http2... ) but perhaps from IE and other clients.

Bests

Reiner

Re: HOWTO Get a New CoreOS AMI ID

Ian Bytchek — Tue, 22 Sep 2015 17:11:29 -0000

Sweet!!!

Re: Does your employer run SSL MiTM attacks on you?

rob — Thu, 17 Sep 2015 11:06:54 -0000

I call it "Web nonsense". Running ssh socks tunnel helps.