Failbikes Blog

To content | To menu | To search

Thursday 29 November 2018

Bitvise: SSH client

This application has been great for connecting via SSH to my networked devices.

Pros:

  • The included sFTP is a life saver.
  • Saving profiles is also handy.

Cons:

  • None yet

https://www.bitvise.com/

PiVPN: Simple OpenVPN setup and configuration

I've been running this on my Pi for a few months with no problems, just run the command and follow the wizard.

curl -L https://install.pivpn.io | bash

If you need an SSH client I recommend Bitvise which opens FTP which will make copying files a bit easier.

http://www.pivpn.io/

Pi-Hole: A black hole for internet advertisements

I've been running a PiHole for some time now with very few issues, I would recommend it for anyone that has a spare Raspberry Pi. In fact I would recommend everyone install this, as it allows you to protect friends and family on your network from dangerous websites.

You will want to set it as the DNS on your router to protect all devices. A firewall policy will need to be added to prevent some hard-coded devices calling home.

It's very easy to set up, just run the curl command and follow the wizard. https://pi-hole.net/

curl -sSL https://install.pi-hole.net | bash

Extended list script which includes some white-list entries for important sites.

curl -sSL https://raw.githubusercontent.com/Kevin-De-Koninck/pi-hole-helpers/master/expand-block-list.sh | bash

I believe they have a docker release, if preferred.

I have also set PiVPN up on the same Pi with no problems(model A, recently upgraded to B+)
PiVPN Blog Here

UniFi Controller software script

I've deployed a VM to the UniFi controller on my network using the community scripts on the ubnt forums.

Instructions are quick and simple.

No real notes to add...

Nintendo Family Plan with friends

A few friends and I decided to look into the 12 month Nintendo family plan to save some $$.

Restrictions

  • Up to 8 members

Total Cost

  • $55 AUD (split between friends)

Rules

  • No hacking the console or game-play

Risks

  • Admin may remove anyone at any point

Concerns

  • If the Supervised email is accepted the account could potentially be locked down.
  • Shared emails (privacy)

Account Categories

  • ADMIN: ONLY 1 per FG. ONLY they can Add and Remove other accounts at will from the FG. Removing any other account no matter the role from the FG can be done without the consent of the account removed if the admin decides to do so. Every Admin 18+ also has the PARENT role. Can grant the PARENT and SUPERVISED role to GENERAL accounts. CAN'T leave the FG.
  • PARENT/Guardian: (We'll just refer to it as parent) Can assign GENERAL accounts as SUPERVISED and can impose eShop restrictions on them
  • GENERAL: Your role when you join a FG. No privileges appart from being able to leave the FG.
  • SUPERVISED: No privileges, CAN'T leave the FG. CAN HAVE ESHOP ACCESS RESTRICTED BY ANY PARENT.

Suggested actions

  • Enable 2FA on your account
  • Use an email address you are happy for other members to see
  • Only enter the plan with people you trust, especially if you are not the Admin
  • Leave all members as 'General'

Some info gathered/copied from Reddit

CloudFlare

CloudFlare was easy to set up, after verification it seems to 'just work' under the free plan.

Their instructions are very straight forward and easy to follow.

Note: See my previous post regarding GitLab pages verification, you will need to add the suggested TXT/CNAME.

Wednesday 14 November 2018

Verify Gandi & GitLab pages

GitLab was unable to verify the custom domain, their suggested entries didn't seem to work.

Using the following worked:

sub = Your subdomain

sub 1800 IN A 35.185.44.232
sub 1800 IN TXT "gitlab-pages-verification-code=###CODE###"

Make sure to double check the IP for GitLab pages.

Note: This failed after switching to CloudFlare, which accepted the GitLab suggested input and verified within minutes.

Config

So it turns out to change the theme you have to go to the Dashboard and select 'Blog aspect'. There doesn't seem to be a way to import new ones...but there's a few there by default.

Wednesday 7 November 2018

:)

Hiho