Create a Client Certificate Key for CockroachDB

CockroachDB has been on my to-check-out list for a very long time. So during this break, I want to spend sometimes to get familiar with it. Who know, maybe it be also be used at work. I’m checking it out their Rust sample program. In that program, the user’s credential used to connect to the database is done with certificate. So, I need to know how to do generate a user (or also known as client) certificate and key....

December 28, 2020 · 1 min · 196 words · kenno

Fix Duplicating Certificates in FreeIPA

While practicing with certificates reqeust using FreeIPA, I came across this duplicated certificates for the first time. This happened because I also practiced the same thing a few weeks ago. Here is how to re-produce this message: [root@client ~]# ipa-getcert request \ -f /etc/vsftpd/certs/cert.pem \ -k /etc/vsftpd/certs/cert.key \ -K ftp/client.lab.example.net \ -D client.lab.example.net Certificate at same location is already used by request with nickname "20201008131445". Because I’m still not familiar yet with FreeIPA on this certificate topic, I turned to Google search and found very useful information on this blog post: Dealing with Duplicate SSL certs from FreeIPA....

October 30, 2020 · 3 min · 450 words · kenno

Passed EX415 Linux Security

The exam was 4 hour long. I managed to finish all questions in 3 hours. Fortunately, I found a mistake in the last hour. I think the EX415 exam wasn’t too difficult and pretty confident that I did well. The most difficult part: not knowing what I did wrong. Or how the marker scripts would like to see our answers. I suspected there was a mistake in a question, but who to ask since there is a NDA?...

September 10, 2020 · 1 min · 185 words · kenno