56 lines
1.6 KiB
Org Mode
56 lines
1.6 KiB
Org Mode
#+INCLUDE: header.org
|
|
* *~* Frequently used commands and configuration snippets
|
|
** Reduce packages disk usage on gentoo
|
|
#+begin_src
|
|
eclean packages
|
|
eclean distfiles
|
|
eclean-kernel -A -a
|
|
#+end_src
|
|
** Update pi-hole devuan host
|
|
#+begin_src
|
|
apt update
|
|
apt upgrade
|
|
PIHOLE_SKIP_OS_CHECK=true pihole -up
|
|
#+end_src
|
|
** Wireguard configuration
|
|
#+begin_src
|
|
cd /etc/wireguard.conf
|
|
wg genkey > privatekey
|
|
cat privatekey | wg pubkey
|
|
#+end_src
|
|
#+begin_src
|
|
[Interface]
|
|
PrivateKey =
|
|
Address = 10.0.13.X/32
|
|
DNS = 10.0.1.8
|
|
|
|
# lezzo
|
|
[Peer]
|
|
PublicKey = sU1Cya3Ej6kQMidcwk3PMxzqNY12JfDAROeayPG5PXM= # server pubkey
|
|
Endpoint = tubo.lezzo.org:51888
|
|
PersistentKeepalive = 25
|
|
AllowedIPs = 0.0.0.0/0
|
|
#+end_src
|
|
** Add static route for wireguard
|
|
Useful when subnet clash, example:
|
|
#+begin_src
|
|
lezzo: flags=209<UP,POINTOPOINT,RUNNING,NOARP> mtu 1420
|
|
inet 10.0.13.2 netmask 255.255.255.255 destination 10.0.13.2
|
|
wlp1s0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
|
|
inet 10.0.11.148 netmask 255.255.0.0 broadcast 10.0.255.255
|
|
#+end_src
|
|
#+begin_src
|
|
route add -net 10.0.13.0 netmask 255.255.255.0 gw 10.0.13.1 lezzo
|
|
route add -net 10.0.1.0 netmask 255.255.255.0 gw 10.0.13.1 lezzo # dns resolution through enigm.local
|
|
|
|
#+end_src
|
|
** Remove gentoo strong password requirement
|
|
From https://forums.gentoo.org/viewtopic-t-1117656-start-0.html:
|
|
in /etc/pam.d/system-auth
|
|
#+begin_src
|
|
# password required pam_passwdqc.so min=8,8,8,8,8 retry=3
|
|
# password required pam_unix.so try_first_pass use_authtok nullok sha512 shadow
|
|
password required pam_unix.so try_first_pass nullok sha512 shadow # no use_authtok
|
|
|
|
#+end_src
|