Trigus42

Save Your Oracle Free Tier VPS & Cure Diseases

Oracle Cloud’s "Always Free" tier is incredibly generous, offering up to 4 ARM OCPUs and 24GB of RAM. However, there is a catch: Oracle will actively reclaim and delete instances that sit idle. To keep your server, you need to maintain a steady baseline of CPU utilization (typically over 20%).

Many people run useless stress scripts just to burn power and keep their nodes alive. But if you are using Kubernetes, there is a much better way: Folding@Home (F@H).

Folding@Home is a distributed computing project that simulates protein dynamics to help researchers develop cures for diseases like Alzheimer's, Cancer, and Parkinson's.

This guide will show you how to configure a Folding@Home "scavenger" workload in Kubernetes. It will run in the background to keep your Oracle node alive, but instantly yield to your actual applications when they need the compute power.

Trigus42

systemctl --user enable podman.socket
systemctl --user start podman.socket
systemctl --user status podman.socket

distrobox create --image quay.io/fedora/fedora-toolbox:41 \
  --additional-packages "docker docker-compose" \
 --additional-flags "--env DOCKER_HOST=unix:////run/host/run/user/$UID/podman/podman.sock" \

Trigus42

Issue

If for one reason or another you need to enable the SMS permissions using the Settings app or like this:

adb shell pm grant com.google.android.gms android.permission.RECEIVE_SMS
adb shell pm grant com.google.android.gms android.permission.READ_SMS
adb shell pm grant com.google.android.gms android.permission.SEND_SMS

Trigus42

Nginx TLS SNI routing, based on subdomain pattern

Nginx can be configured to route to a backend, based on the server's domain name, which is included in the SSL/TLS handshake (Server Name Indication, SNI).
This works for http upstream servers, but also for other protocols, that can be secured with TLS.

prerequisites

• at least nginx 1.15.9 to use variables in ssl_certificate and ssl_certificate_key.
• check nginx -V for the following:

  ...
  TLS SNI support enabled

Trigus42

Arch Linux Full-Disk Encryption Installation Guide

This guide provides instructions for an Arch Linux installation featuring full-disk encryption via LVM on LUKS and an encrypted boot partition (GRUB) for UEFI systems.

Following the main installation are further instructions to harden against Evil Maid attacks via UEFI Secure Boot custom key enrollment and self-signed kernel and bootloader.

Preface

You will find most of this information pulled from the Arch Wiki and other resources linked thereof.

Note: The system was installed on an NVMe SSD, substitute /dev/nvme0nX with /dev/sdX or your device as needed.

Trigus42

Reinstall GRUB with LVM on LUKS from live/rescue system with/without EFI on Debain based systems

Environment

lsblk:

NAME                MAJ:MIN RM   SIZE RO TYPE  MOUNTPOINT
nvme1n1             259:3    0 465,8G  0 disk  
├─nvme1n1p1         259:4    0 334,8G  0 part  
├─nvme1n1p2         259:5    0    61M  0 part           <-- EFI parition (FAT32)

Trigus42

How-to rename a multi-arch docker image on Docker Hub

Do for all images:

Pull image by hash:

docker pull <username>/<repo>:<tag>@sha256:<image hash>

docker pull user/multiarch-image:latest@sha256:8356dea58369f566c36494d11a7d7cbbbacfae6b8d130e90979b92516ce348bf

Rename image: