Assisting companies with broad security analysis, securing and hardening their servers and networks, setting up complete SIEM environments. I set up controls and analyze business processes.

The buzz words: Siem consultant, Certified Information Security Manager (CISM), Offensive Security Certified Professional (OSCP), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Control (CRISC), primarily focused on Micro Focus ArcSight, with deep knowledge of Linux systems (Red Hat / RHEL). ArcSight trainer for Advanced Analyst, Advanced Admin and Logger courses. Trained in LogRhythm, Palo Alto, Splunk and VMware.

I use this web site as a blog for things I find that may help other people.

Newest posts

• AMD FPS Overlay: CTRL-SHIFT-O
  On windows there is an FPS window that shoes FPS, frame times and more. Disable using CTRL-SHIFT-O. You mag have accidentally opened it 😉
• Django and postgres 15
  Connecting to postgres 15 is a bit of a challenge. Hope this helps: As for the django part: And you need to set pg_hba.conf to (see noted line, and restart… Read more: Django and postgres 15
• Tor repo problem: EXPKEYSIG 74A941BA219EC810 deb.torproject.org archive signing key
  Getting any of these? It seems the archive key was changed. The correct one is at: For me it helped to place this file in `/usr/share/keyrings/tor-archive-keyring.gpg` :
• Android network debug info
  Dialer:
• Unlock proxmox lxc container
  pct unlock 1234
• Unlock proxmox vm
• Woocommerce: make address optional
  Make fields optional. Add this to your functions file (of your theme) /var/www/html/wp-content/themes/storefront/functions.php
• Victron ESS console behind apache2 proxy
• Python upgrade venv python binary/version
• Git use different ssh key once
• TASK ERROR: zfs error: could not find any snapshots to destroy; check snapshot names.
  Try this: It will give an error but will remove snap from GUI
• Upgrade postgresql cluster from 13 to 15
• Upgrade debian 11 to 12
• Elasticsearch start fail on debian 11 after install from ES repos
  This guide helped me a lot: https://techviewleo.com/install-elastic-stack-elk-8-on-ubuntu/ After first installing with this parameter: I then used the linked guide. Important parts: Edit the file as below: Also, edit the JVM… Read more: Elasticsearch start fail on debian 11 after install from ES repos
• Add a simple password to apache site
  To add a password to your site:
• Linux: add user to existing group
  To add an existing user to an existing Linux group:
• Mikrotik RouterOS guest VLAN routed over ProtonVPN (2023)
  That should work. Relevant config (first part (wireguard interface) does not have privkey, remember to set it!)
• SSH in for loop (consuming stdin / using file descriptor 3)
  Ever found yourself using a for/while loop using SSH in the loop, only to find out your loop only runs once? Your stdin is captured by ssh… This can be… Read more: SSH in for loop (consuming stdin / using file descriptor 3)
• Bash clear tmp files (for script) on exit (trap)
• Apache2 (apache) forward https headers
• Postgres read long lines (wrap text)
• Install `strings` command in debian/linux
  That’s a difficult one to search for. To get the strings command working in Debian 11 / Linux, for example in your bash scripts, install the binutils package!
• SSH jump host config
  My remote hosts are on srvXX.remote.com. I have a jump host jump.remote.com. I want to be able to type ssh srv42.remote.com and connect, without first having to ssh to jump.remote.com.… Read more: SSH jump host config
• Wireguard site-to-site (proxmox to mikrotik/routeros)
  I wanted to connect my dedicated hetzner proxmox box (“remote“) to my home IP. Networks: At home I created on my mikrotik: Then at the remote side, first make keys:… Read more: Wireguard site-to-site (proxmox to mikrotik/routeros)
• Masquerade ip forward for Proxmox on hetzner (single IP)
  This works for me: Then open SSH and edit /etc/network/interfaces: Then when creating a container: All traffic is routed properly out of br1 to br0 (world). I can connect to… Read more: Masquerade ip forward for Proxmox on hetzner (single IP)
• Proxmox migrate to node outside of cluster
• Fix “Cannot remove image, a guest with VMID ‘xxx’ exists!”
  Get this error? Cannot remove image, a guest with VMID ‘1070’ exists!You can delete the image from the guest’s hardware pane Then on your node/host, do Disks will now show… Read more: Fix “Cannot remove image, a guest with VMID ‘xxx’ exists!”
• Add Microsoft fonts (like Arial) to Nextcloud Office (Collabora)
  On Debian 11:
• Proxmox move progress (container/VM)
  Your proxmox will just tell you: 2023-03-26 10:31:50 Logical volume “vm-1070-disk-1” created. But what if you want to know the progress of the copy? In percentage maybe? On the source… Read more: Proxmox move progress (container/VM)
• Proxmox move container/vm to different storage on different host
  Container: nohup pct migrate 1076 srv78 –target-storage LVMStore & Untested (VM): qm migrate 1076 srv78 -migration_network 10.0.0.0/24 -targetstorage SrvSSD -with-local-disks Does not want to move? You need to add the… Read more: Proxmox move container/vm to different storage on different host