Debian

Python Versions

History Long time ago, there were huge discussions about Python 2.7 or Python 3.xx. Fortunately, these times are gone and we’ve all gotten over the hurdle to Python 3. But are you on 3.6, 3.7, 3.8 ? or even 3.11 or 3.12 ? That’s the current Version you should use for your daily Projects ? Status of Python versions A good indicator is this Website: https://devguide.python.org/versions/ OpenBSD It’s also recommended to check what our Operating System is installing by default, or what you can get from their Package Repository.

Debian - MinIO

Minio on Debian Need some S3 Storage for Reasons ? Here a few Lines, how to Setup and enable TLS. Install Minio login as root for the whole installation. Or use sudo/doas if preferred. Upgrade you Box apt update && apt upgrade -y reboot if needed add User Let’s add User as we don’t wanna run it as root useradd -r minio-user -s /sbin/nologin Get Minio Download, set execute permission and move it

Debian behind TLS Proxy

Behind Corp Proxy let’s assume you’re behing a Corp Proxy which enforce TLS Inspection, you don’t have the Proxy Cert and you want to Upgrade your Boxes … … and of course, you do this in the LAB and for Research only and not your Productiv Environment! TLS Inspection enabled apt-get upate W: Failed to fetch https://packages.sury.org/php/dists/bookworm/InRelease Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown. Could not handshake: Error in the certificate verification.

K8s on Debian12

Install Debian 12 or install Debian 11.7 and Upgrade to 12 Setup 3 Nodes 192.168.100.151 k8s-master 192.168.100.152 k8s-worker1 192.168.100.153 k8s-worker2 Locale export LC_CTYPE=en_US.UTF-8 export LC_ALL=en_US.UTF-8 Kubernetes https://kubernetes.io/docs/tasks/tools/install-kubectl-linux/ curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl" Swap Off swapoff -a sed -i '/ swap / s/^\(.*\)$/#\1/g' /etc/fstab Install FW apt-get install ufw ufw enable Master ufw allow 22/tcp ufw allow 6443/tcp ufw allow 2379/tcp ufw allow 2380/tcp ufw allow 10250/tcp ufw allow 10251/tcp ufw allow 10252/tcp ufw allow 10255/tcp ufw reload Worker ufw allow 22/tcp ufw allow 10250/tcp ufw allow 30000:32767/tcp ufw reload Containerd cat << EOF >> /etc/modules-load.

Debian 12

Debian 12 is here ! Debian 12.x (Folder) Debian 12.0 (ISO) netinst Debian 12.1 (ISO) netinst Debian 12.2 (ISO) netinst Debian 12.3 (ISO) netinst Debian 12.4 (ISO) netinst Links you may find some of my Posts about Debian useful Bootstrapping Debian Docker on Debian Posts about Debian Upgrade Script assuming you have Debian 11.x running cat << 'EOF' > /root/upgrade_to_v12.sh #!/usr/bin/env bash # set Version sed -i 's/bullseye/bookworm/g' /etc/apt/sources.list sed -i 's/bullseye/bookworm/g' /etc/apt/sources.

Docker on Debian

Let’s Setup Docker on Debian https://docs.docker.com/engine/install/debian/ https://www.youtube.com/watch?app=desktop&v=PgICQblfWeY Get Debian on some Cloud Provider Update Apt apt-get install ca-certificates curl gnupg lsb-release add official GPG Keys mkdir -p /etc/apt/keyrings curl -fsSL https://download.docker.com/linux/debian/gpg |gpg --dearmor -o /etc/apt/keyrings/docker.gpg add Repo to Sources echo \ "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/debian \ $(lsb_release -cs) stable" |tee /etc/apt/sources.list.d/docker.list > /dev/null install Docker Engine apt-get update apt-get install docker-ce docker-ce-cli containerd.io docker-compose-plugin Check Version docker version root@docker:~# docker version Client: Docker Engine - Community Version: 20.

IPSEC OpenBSD <-> Linux

Environment OpenBSD 7.0 Debian 11.2 with Strongswan IPv4 only IKE v1 ToDo IPv6 and Dualstack IKE v2 Debian ipsec.conf conn puffy authby = secret ike = aes256-sha256-modp2048 keyexchange = ikev1 ikelifetime = 1h keyingtries = 0 left = %defaultroute right = 193.xx.xx.xx leftid = 212.xx.xx.xx rightid = 193.xx.xx.xx lifetime = 1200s leftsubnet = 10.11.1.8/30 rightsubnet = 10.1.6.0/24 esp = aes256-sha256-modp2048 dpddelay = 30 dpdtimeout = 120 dpdaction = restart auto = start OpenBSD /etc/sysctl.

Bootstrap Debian

Bootstrapping Debian a little helper how to generate a Debian Template. This time, it’s a VM Hosted on Vultr New VM 1 CPU, 1GB RAM, 25GB Disk upload debian-10.9.0-amd64-netinst.iso boot from iso install: (text based) lang: english country: switzerland locale: US (en_US.UTF-8) keymap: Swiss German nic: ens3 hostname: template-25G domain: your.domain.de passwd: xxxxxxxx user: firstname lastname / loginame passwd: xxxxxxxx disk: Guided - entire disk with LVM - (one partition | separate /home | separate /home, /var and /tmp) separate partition for large disks one partition for smaller disks write: yes disk: 20GB (for guided partitioning), 5GB for Spare write: yes another dvd: no mirror: switzerland, debian.

Update Checkmk

how to update checkmk let’s assume you already have a running version of checkmk. You should install patches / updated every few month. Main and Download URL’s Main URL: https://checkmk.com/de/download?edition=cre&version=stable&dist=debian&os=bullseye https://download.checkmk.com/checkmk/1.6.0p20/check-mk-raw-1.6.0p20_0.bullseye_amd64.deb https://download.checkmk.com/checkmk/2.0.0p12/check-mk-raw-2.0.0p12_0.bullseye_amd64.deb Download and Install Package Login as Root v="2.0.0p25" cd /tmp wget -O checkmk.deb "https://download.checkmk.com/checkmk/${v}/check-mk-raw-${v}_0.bullseye_amd64.deb" gdebi checkmk.deb Update Checkmk Switch User … su - mysite .. Switch User and start Update omd status omd version omd stop omd update omd start Cleanup exit omd cleanup Check Application Open Browser, check News and Plugins

Smokeping Debian Nginx

Smokeping in 5min, with Dual Stack on Nginx All in one Installer Run it at your own risk … wget https://blog.stoege.net/scripts/smokeping_debian3.sh chmod 700 smokeping_debian3.sh ./smokeping_debian3.sh or Setup by Hand Install Packages apt-get install borgbackup curl echoping fcgiwrap fping hping3 htop lynx mlocate mtr nginx rsync smokeping tmate tree tshark unzip vim vnstat wget zip Configure Nginx export MYSITENAME="smokeping.planet.world" wget "https://github.com/vazhnov/smokeping_nginx/raw/master/best.conf" sed -i -- s/smokeping\.example\.com/${MYSITENAME}/g best.conf chown root: best.conf mv best.conf /etc/nginx/sites-available/${MYSITENAME}.