Posts

Update BIOS firmware version 1.9.1 is available for Dell Latitude 7400. This firmware was released on 30 June 2020. It is marked Urgent and contains the following fixes and enhancements: Fixes: Fixed the issue where the system cannot detect the Intel Software Guard Extensions (SGX) device when SGX is enabled. Firmware updates to address security advisory INTEL-SA-00295 (CVE-2020-0531, CVE-2020-0532, CVE-2020-0533, CVE-2020-0535, CVE-2020-0536, CVE-2020-0537, CVE-2020-0538, CVE-2020-0539, CVE-2020-0540, CVE-2020-0545, CVE-2020-0594, CVE-2020-0595, CVE-2020-0596, and CVE-2020-8674)....

This blog post is mainly about my practicing of managing security risk on a RHEL system, especially learning how to use the occasionally option passed to YUM command. It is probably not a good resource teaching how to properly manage security risks in general. Identify all critical, important, and moderate security notices on this server. [root@puppet2 ~]# yum updateinfo --security Updating Subscription Management repositories. Red Hat Enterprise Linux 8 for x86_64 - Supplementary (RPMs) 21 kB/s | 2....

Let’s find out the name of the package using the awesome eix command, and install that package. ~ # eix usbguard * sys-apps/usbguard Available versions: ~0.7.6-r1 ~0.7.8 {bash-completion dbus ldap policykit static-libs systemd} Homepage: https://github.com/USBGuard/usbguard Description: Daemon protecting your computer against BadUSB ~ # emerge --ask sys-apps/usbguard These are the packages that would be merged, in order: Calculating dependencies... done! !!! All ebuilds that could satisfy "sys-apps/usbguard" have been masked. !...

Last year, I already wrote a blog post about the same topic: Configure Encrypted Storage With LUKS, and I had used fdisk to create a disk partition. In this post, I’ll use parted to achieve the same thing. I’m going to perform this operation on a server called servera on a disk device /dev/vdb. First, let’s verify that vdb is available and has no partition: [root@servera ~]# parted -l ... Error: /dev/vdb: unrecognised disk label Model: Virtio Block Device (virtblk) Disk /dev/vdb: 1074MB Sector size (logical/physical): 512B/512B Partition Table: unknown Disk Flags: Use parted to create a partition on vdb using the whole disk....

Gentoo provides a package called app-admin/ansible for Ansible. To install it, just run: ❯ sudo emerge --ask app-admin/ansible Note that unlike Ansible package on CentOS/Fedora, there is no default ansible.cfg provided with the Gentoo Ansible package. ❯ ansible --version ansible 2.9.9 config file = None configured module search path = ['/home/kenno/.ansible/plugins/modules', '/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python3.7/site-packages/ansible executable location = /usr/lib/python-exec/python3.7/ansible python version = 3.7.7 (default, May 9 2020, 19:52:18) [GCC 9....

I have a 2TB drive, when connecting to my Fedora workstation, it’s mounted using the UUID of the partition as the following: # mount | grep sde1 /dev/sde1 on /run/media/kenno/f59ffb93-5a92-4af9-a9b5-19ca3bb8aa37 type ext4 (rw,nosuid,nodev,relatime,seclabel,uhelper=udisks2) I think it’ll look nicer if it’s mounted with a shorter name, e.g. ‘Podcast’. The filesystem for this drive is ext4. To create a label on the ext4 filesystem, we can use a program called e2label. The exact command is e2label device [ volume-label ] according to the man page....

I’ve switched to use DWM, Dynamic Windows Manager, from GNOME on my laptop since the beginning of this month. So far I really enjoyed it. Here are some commands I needed to know since I have an external screen connected ot this machine. To change the focus to previous/next screen: Mod1 + , Mod1 + . To move applications from a screen to another, just add Shift key: Mod1 + Shift + , Mod1 + Shift + ....

I’ve been meaning to pick up a micro-controller and work on it again. About 5 years ago when I first encountered Arduino, I spent sleepless night learning about it, and creating things from DIY weather station, world clock, light sensor, etc. Fast forward to the current days, I almost forgot everything I learned. But we can always re-learn, or can’t we? Tonight, I found an Stm32 Nucleo F401RE micro-controller, and I want to start by updating the firmware on it (admittedly, this is the easiest thing to do)....

On most my systems I created a user called devops with its home directory created at /srv/devops. And on Fedora or CentOS systems, those home directories have their SELinux context set correctly when created. Recently, I found out that on all 3 machines so far, the SELinux context has been reverted. ~# ls -lZ /srv total 0 drwx------. 5 devops devops system_u:object_r:var_t:s0 127 Oct 30 2019 devops It should have had the same context as the normal user kenno in /home directory:...

I need to create 20 empty directores with the following name: dvd01, dvd02, dvd03,…, dvd20. My first thought was to use for loop, but then I decided to do a quick Google search, and found something more elegant: $ mkdir dvd{01..20} That’s cool, isn’t it? Reference: How to create multiple directories with incrementing numbers in a single command?