Uncategorized - cloud-admin.pl

2024-02-172024-02-17 kazmen Uncategorized

Mail server for domain

Mail server for your business.

Anti SPAM

Anti VIRUS

FULL Encryption

Storage: 1GB per domain

Prize: 25 PLN per month

Feel free to contact me directly.

2024-02-172024-02-17 kazmen Uncategorized

Web server for site

If you are looking for cheap web site hosting in Europe Poland, you are in good place.

My offer is: Custom web server hosting ( only one Host Name with TLS 1.2 support ) with custom made MySQL database and custom PHP version.

Location: Poland

Storage: 1GB ( MySQL and PHP scripts )

Prize: 50 PLN + Vat per month.

Every additional host names only for 25 PLN per month.

If you are interested, please contact me directly.

2024-02-132024-02-16 kazmen Uncategorized

AMD – VDI Server from Lenovo

That’s just a typical Lenovo offer of server ThinkSystem SR635 V3 – new generation server from Lenovo.

A modern server for intensive IT and virtualization

The ThinkSystem SR635 V3 is powered by AMD delivering the performance that propels business and strengthens infrastructure applications.

Agility, space, and speed

The ThinkSystem SR635 V3 is designed with storage-rich versatility. You can use various combinations utilizing AnyBay technology. You can configure it for today’s workloads and easily scaled up or down as needed.

Ultimate delivery in performance

The versatile ThinkSystem SR635 V3 provides better performance to offset rising costs with the 4^th Gen AMD EPYC™ processor offering optimum processing power. It also features bandwidth and storage speed for business applications, virtualization, and the cloud.

Secure and easy to manage

When server reliability, management and security are top of mind, the ThinkSystem SR635 V3 checks all the boxes. ITIC named Lenovo servers #1 for reliability and uptime. Security with Lenovo ThinkShield also begins at the factory with our Root of Trust and follows the server throughout its life.

Chasis : Lenovo ThinkSystem SR635 V3

CPU: AMD EPYC 9124 16C 32Thread

RAM: 256GB

STORAGE: ThinkSystem RAID 940-8i 4GB + RAID 10 3.84 TB

GUARANTEE: 5Y NBD

Price: 8000 EURO + Vat

The Server can be sold with different specification, fell free to contact me if you want custom configuration.

This is limited time offer.

Full ThinkSystem SR635 V3 Specification:

7D9GCTO1WW		Server : ThinkSystem SR635 V3 - 3yr Warranty		1
BLK4		ThinkSystem V3 1U 10x2.5" Chassis		1
BFYB		Operating mode selection for: "Maximum Performance Mode"		1
BVGL		Data Center Environment 30 Degree Celsius / 86 Degree Fahrenheit		1
BREE		ThinkSystem AMD EPYC 9124 16C 200W 3.0GHz Processor		1
BQ26		ThinkSystem SR645 V3/SR635 V3 1U High Performance Heatsink		1
BQ3D		ThinkSystem 64GB TruDDR5 4800MHz (2Rx4) 10x4 RDIMM-A		4
5977		Select Storage devices - no configured RAID required		1
BGM1		ThinkSystem RAID 940-8i 4GB Flash PCIe Gen4 12Gb Adapter for U.3		1
BNF2		ThinkSystem 2.5" U.3 7450 PRO 1.92TB Read Intensive NVMe PCIe 4.0 x4 HS SSD		4
BB3T		ThinkSystem 1U 10x2.5" AnyBay Backplane		1
B5ST		ThinkSystem Broadcom 57416 10GBASE-T 2-port OCP Ethernet Adapter		1
BLKF		ThinkSystem V3 1U x16/x16 BF PCIe Gen4 Riser1		1
BLK9		ThinkSystem V3 1U MS LP+LP BF Riser Cage		1
BR1X		ThinkSystem 750W 230V Titanium Hot-Swap Gen2 Power Supply v3		2
6400		2.8m, 13A/100-250V, C13 to C14 Jumper Cord		2
BH9M		ThinkSystem V3 1U Performance Fan Option Kit v2		6
BLKD		ThinkSystem 1U V3 10x2.5" Media Bay w/ Ext. Diagnostics Port		1
B8LA		ThinkSystem Toolless Slide Rail Kit v2		1
BPKR		TPM 2.0		1
B7XZ		Disable IPMI-over-LAN		1
BQ7L		ThinkSystem SR635 V3 MB		1
BHSS		MI for PXE with RJ45 Network port		1
BE38		940 Series Flash Adapter for U.3 Trimode Setting		1
AVEN		ThinkSystem 1x1 2.5" HDD Filler		4
B97B		XCC Label		1
BQPS		ThinkSystem logo Label		1
B8NJ		ThinkSystem 1U MS Fan Dummy		2
AURS		Lenovo ThinkSystem Memory Dummy		8
AUTQ		ThinkSystem small Lenovo Label for 24x2.5"/12x3.5"/10x2.5"		1
BQ7Q		ThinkSystem SR635 V3 Model Name Label		1
AWF9		ThinkSystem Response time Service Label LI		1
BQ7V		ThinkSystem SR635 V3 Service Label for WW		1
B989		ThinkSystem V2 1U Package		1
B5X6		ThinkSystem 1U 2x2.5" Fixed Filler		1
BQ7R		ThinkSystem SR635 V3 Agency Label		1
B8JU		ThinkSystem 750W Ti Power Rating Label WW		1
B8NB		ThinkSystem 1U MS LP Riser Filler		1
B984		ThinkSystem 1U PLV Top Cover Sponge		1
AUNP		ThinkSystem RAID 930/940 SuperCap		1
BSR6		ThinkSystem SR635 V3/SR655 V3 RoT Module LV-RoW		1
AUWG		Lenovo ThinkSystem 1U VGA Filler		1
BRPJ		XCC Platinum		1
BK15		High voltage (200V+)		1
BHXS		ThinkSystem 1U 8x2.5" SAS/SATA/U.3 HDD Label		1
BPK3		ThinkSystem WW Lenovo LPK		1
BMJC		ThinkSystem 8x2.5" BP and 6+4 x2.5" BP Power Cable v2		1
BA2P		ThinkSystem 1U SFF RAID to Front 10x2.5" AnyBay Backplane SAS/SATA G4 Y Cable		1
BC0M		ThinkSystem Supercap Cable		1
BE0E		N+N Redundancy With Over-Subscription		1
BK70		ThinkSystem V3 1U Supercap Holder Kit		1
A2HP		Configuration ID 01		1
				
5374CM1		Configuration Instruction		1
BGM4		ThinkSystem RAID 940-8i 4GB Flash PCIe Gen4 12Gb Adapter for U.3 Placement		1
A2JX		Controller 01		1
A2HP		Configuration ID 01		1
				
5WS7B08675		Foundation Service - 5Yr NBD Resp SR635 V3		1
				
7S0XCTO5WW		XClarity Controller		1
SBCV		Lenovo XClarity XCC2 Platinum Upgrade (FOD)		1

2024-02-09 kazmen Uncategorized

VDI-MFA from Proxmox

Today is the best day in this week so I will describe how to implement multi factor authentication to the Proxmox Virtual Server enviroment… I’m finally get it working… Multi-Factor authentication to remote server with spice client configuration.

First of all we need the computer/server with virtualization ability.

Next we must install Proxmox VE on this target machine.

To-Do List:

-> Login to the Proxmox VE with root privileges,

-> Create Virtual Machine using Create VM box with SPICE ( QXL ) display,

-> Install system on the target virtual machine using console view,

-> Create Role with only VM.Console privilege in the Proxmox -> Cluster -> Permissions,

-> Create User with VM.Console Role,

-> Next create TOTP via wizzard in the Proxmox -> Cluster -> Permissions -> Two Factor -> add TOTP, scan the qr code with Google Authenticator app because user will never login without code

-> Navigate to the VM machine that you created in second step,

-> Create user (created in fifth step) permission to access Virtual Machine ( VM -> Permissions -> add User Permission )

Now You have working VDI server with one virtual machine

Next thing is to connect to that virtual machine:

You can use this script to connect to virtual machine:

#!/bin/bash
set -e

# Set auth options
USERNAME='USERNAME_FOR_USER_CREATED_IN_5_STEP'
PASSWORD='PASSWORD_FOR_USER_CREATED_IN_5_STEP'
TOTP='$1'
# Set VM ID
VMID='VMID_OF_VIRTUAL_MACHINE_CREATED_IN_2_STEP'

# Set Node
# This must either be a DNS address or name of the node in the cluster
NODE='DNS_NAME_OF_THE_PROXMOX_SERVER_IN_THE_CLUSTER'

# Proxy equals node if node is a DNS address
# Otherwise, you need to set the IP address of the node here
PROXY="$NODE"

#The rest of the script from Proxmox
NODE="${NODE%%\.*}"
COOKIE="$(curl -f -s -S -k --data-urlencode "username=$USERNAME" --data-urlencode "password=$PASSWORD" "https://$PROXY:8006/api2/json/access/ticket"|jq -r '.data.ticket')"
DATA="$(curl -f -s -S -k --data-urlencode "username=$USERNAME" --data-urlencode "password=totp:$1" --data-urlencode "tfa-challenge=$COOKIE" "https://$PROXY:8006/api2/json/access/ticket")" 
echo "AUTH OK"

TICKET="${DATA//\"/}"
TICKET="${TICKET##*ticket:}"
TICKET="${TICKET%%,*}"
TICKET="${TICKET%%\}*}"

CSRF="${DATA//\"/}"
CSRF="${CSRF##*CSRFPreventionToken:}"
CSRF="${CSRF%%,*}"
CSRF="${CSRF%%\}*}"

curl -f -s -S -k -b "PVEAuthCookie=$TICKET" -H "CSRFPreventionToken: $CSRF" "https://$PROXY:8006/api2/spiceconfig/nodes/$NODE/qemu/$VMID/spiceproxy" -d "proxy=$PROXY" > spiceproxy

#Launch remote-viewer with spiceproxy file, in kiosk mode, quit on disconnect
#The run loop will get a new ticket and launch us again if we disconnect
exec remote-viewer spiceproxy

TO use this script you must modify USERAME,PASSWORD,VMID and NODE variables.

Next will be give execution permission to the created connection script:

chmod +x NAME_OF_SCRIPT

to connect to the VDI use following scheme:

./NAME_OF_SCRIPT CODE_FROM_GOOGLE_AUTHENTICATOR

Thats all… have a nice day.

2024-02-072024-02-16 kazmen Uncategorized

Yocto Mickledore apt-get repository

If you want to use my repository You can configure apt-get in Yocto system to use my repo.

Repo was created for arm64 architecture for use with Variscite Hardware var-som-mx8q.

To do:

add gpg key to apt-get

apt-get update

apt-cache search PACKAGE

apt-get install PACKAGE

First of all we must add gpg key to apt-get:

curl -fsSL https://apt.it-core.eu/it-core.gpg.key | sudo apt-key add -

next we must add repo to the apt-get

echo "deb https://apt.it-core.eu/debian mickledore main" > /etc/apt/sources.list.d/apt-it-core-eu.list

Yes I know that isn’t Debian 😀 but have no time to change it 😀

Now you can use your Yocto like Debian to install software.

2024-02-072024-02-08 kazmen Uncategorized

How about env variables

I was wondering about env variables in Linux system. Many users using them to setup applications. But did you know about env variables are visible to other ?

Long time ago, there was one system per server and everything was correct. But now systems, especially in cloud environments are used by many users.

Let’s see what exist in file /proc/1/environ

As you can see there is some system variables set in those file.

But many sites are using env variables to pass application specyfic setting like users and passwords… Now you know.

2022-09-272022-09-27 kazmen Uncategorized

How to encrypt data using openssl

openssl enc -e -aes256 -k '<passphrase>' -in <decrypted_file.txt> -out <encrypted_file.txt>

2022-09-272022-09-27 kazmen Uncategorized

How to wipe disk using linux on a pendrive?

-> https://www.debian.org/CD/faq/#write-usb

After a booting Debian from usb please check what You have on Your computer:

blkid

Next you can use linux to wipe data from hard disk:

dd if=/dev/urandom of=/dev/sdX bs=1M; sync
where X is drive in linux system ie /dev/sda

2022-09-272022-09-27 kazmen Uncategorized

How to upgrade from Debian 10 to Debian 11

Whats new in Debian 11?

-> https://www.debian.org/releases/bullseye/amd64/release-notes/ch-whats-new.en.html

For the security reasons please backup before procedding with upgrade.

Make sure You have upgraded your debian distribution to the latest old-stable release. Run following commands from the console:

sudo apt-get update
sudo apt-get upgrade

If you are up-to-date with Debian 10 distribution you can proced to the next chapter:

Upgrade to Debian 11:

First edit with your favorite editor the /etc/apt/sources.list file. You can change the file also with sed command:

sed -i 's/buster\/updates/bullseye-security/g;s/buster/bullseye/g' /etc/apt/sources.list

After that you are able to upgrade to the Debian 11 system by running following commands:

apt-get update
apt-get upgrade
apt-get dist-upgrade

Next we must reboot into new system 🙂

2022-09-272022-09-27 kazmen Uncategorized

Few Linux commands

Linux system offers in command line mode a full set of commands for users and also for administrators.

I will present some of this in this post.

man command_name

Where command name is any Linux command we are interested in using.

The man command displays a manual that lists the syntax and an overview of all the options for the command given as an argument. In the case of administration commands or system services, it also gives any file names that contain definitions of the default behavior of these commands.

The work with the manual is finished after pressing the q key.

example:

man cd

cd command is used for changing the current directory.

The paths in a Linux system can be specified in relative or absolute terms.

example:

cd ../

In a bash shell, you can use the tab key to complete a directory name.