Assisting companies with broad security analysis, securing and hardening their servers and networks, setting up complete SIEM environments. I set up controls and analyze business processes.

The buzz words: Siem consultant, Certified Information Security Manager (CISM), Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Control (CRISC), primarily focused on Micro Focus ArcSight, with deep knowledge of Linux systems (Red Hat / RHEL). ArcSight trainer for Advanced Analyst, Advanced Admin and Logger courses. Trained in LogRhythm, Palo Alto, Splunk and VMware.

I use this web site as a blog for things I find that may help other people.

Newest posts

• FIX: Tor debian repo OpenPGP signature verification failed: Signing key on A3C4F0F979CAA22CDBA8F512EE8CBC9E886DDD89 is not bound
  Fix: In /etc/apt/sources.list.d/tor.repo, change the GPG url to: My file now looks like: Different option is to use a workaround. Workaround NOT RECOMMENDED: It’s not pretty.
• Workaround: Unifi Signing key on 4A228B2D358A5094178285BE06E85760C0A52C50 is not bound
  So Ubiquiti decided to keep using sha1 it seems. Sigh. Fix: Now apt update works again… Let’s hope they fix their keys quickly!
• FIX: https://deb.nodesource.com/node_22.x Signing key on 6F71F525282841EEDAF851B42F59B5F99B1BE0B4 is not bound
  I got below error: Fixed by: Now apt update works again! You need to make sure your apt repo points to the right key!
• Fix: Nextcloud 4.0.6: Installer is no longer responding.
  I got this error on win11. Actually the auto update didn’t work either so I got the msi myself. To fix this problem I just stopped the running nextcloud processes,… Read more: Fix: Nextcloud 4.0.6: Installer is no longer responding.
• n8n: pay using Bitcoin Lightning for AI calls (and use all models)
  Sooo… This is cool. You can use ppq in n8n. Whoa! That one for example takes the latest item (from RSS) and summarizes it. What I did:
• n8n apache2 reverse proxy fix websockets
  Obviously fill in your own details/domains/ip. Also for env vars:
• FIX: Collabora APT/DEB error NO_PUBKEY D8915E456E7C440E (signatures couldn’t be verified)
  I got these errors: It seems a key was rotated. First check if there is indeed an old key: Check out the keyring file That’s not key D8915E456E7C440E. Fix Let’s… Read more: FIX: Collabora APT/DEB error NO_PUBKEY D8915E456E7C440E (signatures couldn’t be verified)
• Interactive script to backup a VM or Container on one Proxmox host and restore it on another
• (Proxmox) cannot find device vmbr0
  apt-get updateapt-get install bridge-utils modprobe bridge # then restart networking
• AMD FPS Overlay: CTRL-SHIFT-O
  On windows there is an FPS window that shoes FPS, frame times and more. Disable using CTRL-SHIFT-O. You mag have accidentally opened it 😉
• Django and postgres 15
  Connecting to postgres 15 is a bit of a challenge. Hope this helps: As for the django part: And you need to set pg_hba.conf to (see noted line, and restart… Read more: Django and postgres 15
• Tor repo problem: EXPKEYSIG 74A941BA219EC810 deb.torproject.org archive signing key
  Getting any of these? It seems the archive key was changed. The correct one is at: For me it helped to place this file in `/usr/share/keyrings/tor-archive-keyring.gpg` :
• Android network debug info
  Dialer:
• Unlock proxmox lxc container
  pct unlock 1234
• Unlock proxmox vm
• Woocommerce: make address optional
  Make fields optional. Add this to your functions file (of your theme) /var/www/html/wp-content/themes/storefront/functions.php
• Victron ESS console behind apache2 proxy
• Python upgrade venv python binary/version
• Git use different ssh key once
• TASK ERROR: zfs error: could not find any snapshots to destroy; check snapshot names.
  Try this: It will give an error but will remove snap from GUI
• Upgrade postgresql cluster from 13 to 15
• Upgrade debian 11 to 12
• Elasticsearch start fail on debian 11 after install from ES repos
  This guide helped me a lot: https://techviewleo.com/install-elastic-stack-elk-8-on-ubuntu/ After first installing with this parameter: I then used the linked guide. Important parts: Edit the file as below: Also, edit the JVM… Read more: Elasticsearch start fail on debian 11 after install from ES repos
• Add a simple password to apache site
  To add a password to your site:
• Linux: add user to existing group
  To add an existing user to an existing Linux group:
• Mikrotik RouterOS guest VLAN routed over ProtonVPN (2023)
  That should work. Relevant config (first part (wireguard interface) does not have privkey, remember to set it!)
• SSH in for loop (consuming stdin / using file descriptor 3)
  Ever found yourself using a for/while loop using SSH in the loop, only to find out your loop only runs once? Your stdin is captured by ssh… This can be… Read more: SSH in for loop (consuming stdin / using file descriptor 3)
• Bash clear tmp files (for script) on exit (trap)
• Apache2 (apache) forward https headers
• Postgres read long lines (wrap text)