Blackdot.be

I’m running a HA ldap setup however I keep hitting illumos issue #13326, hoping to mitigate this a tiny bit by using a VIP instead of multiple A records behind a ldap.example.org host name. (Sadly that doesn’t help as the connection state itself ends up in the bad state, but it did send me down […]

I’ve been wanting to write about this for a bit. I usually VPN (to the gateway at home) for surfing when roaming. This also gives me access to my shellbox and with my ssh key. You can usually connect to port 443 (https) on most networks, even those that force you to use a socks […]

I’ve seen anti-spoofing mentioned on #illumos and #openindiana a few times but googling it turns up little information. Although I didn’t check it out until rmustacc‘s adviced me to do so regarding a KVM IPv6 issue I’m facing. After asking around about it and and some further research it also seems to go by the […]

Here is a little trick to connect to a server that requires a SSL Client certificate when your client does not support it. To make it work your client must be able to use a proxy. We will use this proxy to rewrite certain servers to a reverse proxy that injects the client certificate. Lets […]

Some of you may have noticed, but most probably haven’t. All my important public facing services are now IPv6 ready! DNS (caveat only my primary ns server is IPv6 ready – including glue) HTTP(s) (This website and webmail are available over IPv6) SSH SSL VPN IMAP SMTP (This was my main motivation to move to […]