gpg - export all (private-)keys

Posted on Sat 04 May 2019 in Linux • Tagged with howto, linux, notepad, gpg • 1 min read

GPG export

for keyid in $( gpg -K --with-colons | grep ^sec | cut -d: -f5 ); do \
  [[ -d ~/.gnupg/export ]] || mkdir ~/.gnupg/export; \
  gpg --export -a --export-options export-minimal --output ~/.gnupg/export/${keyid}.pub $keyid; \
  gpg --export-secret-keys -a --output ~/.gnupg/export/${keyid}.key $keyid;
done

For a public key without signatures use --export-options export-minimal …


Continue reading

cryptsetup - remote unlocking over ssh

Posted on Fri 03 May 2019 in Linux • Tagged with howto, linux, notepad, work, initrd • 1 min read

Notes

Only vaild for Ubuntu/Debian!

Package(s)

  • dropbear-initramfs

Configuration

ip config

# egrep "(DEVICE|IP)=" /etc/initramfs-tools/initramfs.conf 
DEVICE=enp3s0f0
IP=10.12.13.11::10.12.13.1:255.255.255.0::enp3s0f0:off
IP=<client-ip>:<server-ip>:<gw-ip>:<netmask>:<hostname>:
   <device>:<autoconf>:<dns0-ip>:<dns1-ip>:<ntp0-ip>

ssh-keys

# cat /etc …

Continue reading

Quickstart guide with kolla-ansible (for rocky)

Posted on Fri 15 February 2019 in openstack • Tagged with openstack, kolla, ansible, howto, linux, notepad, work • 2 min read

Requirements

  • kolla-ansible (testet with 7.0.1)
  • ansible (testet with 2.6.13)
  • epel-release (for centos)
  • python-pip

And some magic:

  • vagrant
  • vagrant-libvirt plugin
  • vagrant config

Quickstart

We will run all commands on our admin-node (vagrant ssh kolla-admin)

sudo yum install -y epel-release
sudo yum install -y python2-pip
sudo …

Continue reading

ceph/rgw metasearch with elasticsearch 6.x

Posted on Tue 29 January 2019 in Ceph • Tagged with ceph, elasticsearch, radosgw, howto, linux, notepad, work • 1 min read

Houston, we have a problem

Since elasticsearch 6.x requires to provide the correct content-type for a request and the elastic sync module has no option for the content-type....we stucked at elastic 5.x

Error message

{"error":"Content-Type header [] is not supported","status":406}

strace log

strace -e network …

Continue reading

ceph nautilus - all new [wip]

Posted on Wed 02 January 2019 in Ceph • Tagged with ceph, notepad, nautilus • 1 min read

The Nautilus (14.x.x) release is scheduled for Feb 2019! 9 months after Mimic (13.x.x)

So what's new in ceph nautilus?

There are some new feature and updates:


Continue reading

rhev/ovirt: ssl handshake error - TLS

Posted on Wed 19 December 2018 in ovirt • Tagged with ovirt, rhev, rev, redhat • 1 min read

Dec 18 15:37:45 rhev06rn vdsm[3145]: ERROR ssl handshake: SSLError, address: ::ffff:10.12.11.88  
Dec 18 15:37:45 rhev06rn vdsm[3145]: WARN unhandled write event

/etc/vdsm/vdsm.conf

[vars]  
#ssl_excludes = OP_NO_TLSv1,OP_NO_TLSv1_1  
ssl = true

[addresses]  
management_port = 54321

Bugzilla Link


CaaS3: Update hostname

Posted on Tue 18 December 2018 in Linux • Tagged with suse, caas, kubernetes, linux, notepad • 1 min read

linux-q0sf:~ # cat /var/lib/misc/infra-secrets/mariadb-root-password  
eVSf9Ss/HFa4Rj68ymzhmVsHvhdV6i5aqUpXuboMGRdwo1SVnysDd/wg0De+9FJymdBsJLdmYsdU
linux-q0sf:~ # docker exec -ti d72182149834 bash  
bash-4.3# mysql -u root -p  
Enter password:  
Welcome to the MariaDB monitor. Commands end with ; or \g.  
Your MariaDB connection id is 18  
Server version: 10.0.34-MariaDB SLE …

Continue reading

ceph - sort osds by utilisation

Posted on Thu 20 September 2018 in Ceph • Tagged with ceph, crush, linux, notepad, code • 1 min read

Version 1: keep it simple

$ ceph osd df  | awk '{ print "osd."$1, "size: "$5, "usage: " $8 }' | sort -nk5

OSDs can be listed twice - depends on the crushmap.

Version 2: json + python

$ ceph osd df tree -f json | python sort_hdd_osds.py
osd.28  utilization: 15.278888
osd.15  utilization: 19.700484 …

Continue reading

ceph - wrong osd id with lvm+filestore

Posted on Wed 04 July 2018 in Ceph • Tagged with bluestore, ceph, ceph-ansible, LVM, linux, notepad, howto • 2 min read

Not sure why...but i've found a strange ceph-volume behavior with lvm and filestore.

ceph-volume lvm list shows the wrong osd id while the affected osd is online with a another id.

$ mount | grep ceph-2
/dev/mapper/vg00-datalv1 on /var/lib/ceph/osd/ceph-2 type xfs (rw,relatime,seclabel,attr2 …

Continue reading

selinux - change default type

Posted on Thu 12 April 2018 in Linux • Tagged with selinux, linux • 1 min read

$ matchpathcon /tftpboot
/tftpboot       system_u:object_r:tftpdir_t:s0
$ semanage fcontext -a -t tftpdir_rw_t "/srv/tftp(/.*)?"
$ restorecon -Rv /srv/tftp