I recently setup NGINX Proxy Manager to help manage all of my self-hosted services. How did I do this? I installed NGINX Proxy Manager in a LXC container in my Proxmox server. I then configured several of my services to route to their respective IP addresses and ports. In NGINX Proxy Manager you can assign local domain name to your services. I chose to go with something simple like example.home. Once I finished configuring NGINX Proxy Manager I moved over to configure my Pi-Hole server. Read more...

I recently decided to move away from Gitlab. There was a bit of news around Gitlab closing free accounts which I think is a fair business move by Gitlab. Businesses need to make money after all. Most of the internet decided that Gitlab as evil for doing this. But I didn’t in fact I think it’s for the best. Since I was barely even using my Gitlab account and most importantly I wasn’t paying for any services I felt that I was cheating Gitlab. Read more...

Here’s the presentation for my talk at BSIDESRGV 2022 https://github.com/eduardo-robles/talks/blob/main/talks-2022/bsides_2022/bsides_presentation.org If you enjoyed or found any of the content on my site helpful, you can buy me a cup of coffee so I can continue to bring you amazing content for free! Buy Me a Coffee

How do you stay organized with SSH connections? Most of us simply search our terminals history to find SSH connections. You may do history | grep "ssh" or even Ctrl+R and search SSH. While that may work for a few connections, there is a better way: SSH Config file. An SSH Config file simply tells OpenSSH how to open up connections. The benefit is that you can keep all your connections all in one place. Read more...

Enable SSH on Extreme Devices A key will be generated. To upload a public key simply use sftp or scp to upload key. But be sure to change the extension to .ssh for example id_rsa.pub will be id_rsa.ssh on the switch. Also you can assign a key to a user by simply appending the username to the key file for example admin.id_rsa.pub. Extreme switches have a limitation of only being able to use RSA or DSA keys. Read more...

Check if SSH Agent is running This is to add the keys to the SSH Agent eval "$(ssh-agent -s)" Add the Keys to SSH Agent ssh-add ~/.ssh/nameofkey Verify Keys Added to SSH Agent ssh-add -l Copy Key to Remote Server ssh-copy-id user@remote.server.location Copy Server Key to Host ssh-copy-id user@host.local

Creating an SSH key is very easy. Below is an example of how to generate an SSH key with the ssh-keygen command. Create SSH Key ssh-keygen -t ed25519 -f ~/.ssh/nameofkey -N '' -C "comment goes here" ssh-keygen -t rsa -f ~/.ssh/nameofkey -N '' -C "comment goes here" -t option is for the type of keys to be created (ex. ed25519) -f option is the filename and location of the keys (ex. Read more...

I found myself going a bit crazy over theme rendering in my SSH sessions. Especially when I wanted to use emacs -nw in an SSH session. Recently I’ve been using GNU Screen as my terminal multiplexer and it comes with 256 color support. But you need to set it up and thanks to the Arch Wiki it’s rather easy. All you have to do is put term xterm-256color somewhere in your . Read more...

The Problem So it all started with a simple problem. How to I connect to the console port on my Extreme Summit X440 switch? Luckily in the past I remembered that I could use minicom. It a great application to connect to console sessions. I used it way back in the day to connect to Cisco switches. If it wasn’t for the fact that I had use an actual Cisco switch for a class I would have totally forgotten about it. Read more...

Cloudflare Access for my Homelab I decided to use Cloudflare to setup a Secure Web Gateway and establish some Zero Trust access for my homelab services. Cloudflare offers a great service called “Cloudflare Access”. Basically it leverages Cloudflare’s edge network to create secure web routing. Setting up this service is just a matter of running a simple daemon. Once configured you setup Cloudflare DNS to route traffic. Let’s discuss how I setup Cloudflare Access. Read more...