What Are You Doing Right Now
-
@coliver said in What Are You Doing Right Now:
I'm pretty sure with Dokuwiki you set StartTLS = 1. You may need the openssl library installed first but I'm pretty sure it is that easy.
That's what I would guess. Generating a very of any sort is weird for this.
-
@EddieJennings said in What Are You Doing Right Now:
@coliver Since you mentioned possibly just needing a self-sign cert, that's what I'm thinking as well. We're about to find out.
This would be a good how to thread by-the-by.
-
Heading home from whisky stuff.
-
First test = failure. But it seems to follow what we think. The failure came from the fact that the dokuwiki's server doesn't trust the CA of the cert that my domain controller is presenting -- which is what I expected.
-
@scottalanmiller said in What Are You Doing Right Now:
Heading home from whisky stuff.
Just steer clear of all parking garages.
-
Just bought this: https://luuup.com/ for my cat
Laura also said yes to that sweet coffee table i linked yesterday.
-
@scottalanmiller said in What Are You Doing Right Now:
@EddieJennings said in What Are You Doing Right Now:
@scottalanmiller The other part of the problem is there are two things I'm wanting to secure.
-
Traffic from client to my dokuwiki, which I agree can be easily accomplished with Lets Encrypt, despite this site not being public-facing.
-
Traffic between my dokuwiki and domain controller (for authentication), since LDAP is sent in the clear. I suppose I could use Let's Encrypt to give the domain controller a certificate, so the certificate it presents to dokuwiki is from a trusted root CA. Or I issue and install certs with our internal CA that's already in place.
I suppose there's a third option as well, which is what was mentioned yesterday: Do I really care that AD credentials are sent in the clear if this traffic is only on my local network (or travelling to a user at home over a VPN tunnel)? Which, for me, the answer is "yes." I don't think it's a good idea to pass credentials in the clear over a network in general.
For point 1 you can do any cert. but LE is the only one I would ever use.
How do you do LE for internal only servers? I didn't think that was supported?
-
-
@wirestyle22 said in What Are You Doing Right Now:
Just bought this: https://luuup.com/ for my cat
Laura also said yes to that sweet coffee table i linked yesterday.
I'm actually work (slowly) on a behind-the-couch table that will have compartments for phone chargers and remote control storage.
-
@NerdyDad said in What Are You Doing Right Now:
@wirestyle22 said in What Are You Doing Right Now:
Just bought this: https://luuup.com/ for my cat
Laura also said yes to that sweet coffee table i linked yesterday.
I'm actually work (slowly) on a behind-the-couch table that will have compartments for phone chargers and remote control storage.
I was thinking of finding someone who could make me a very high quality coffee table and then mounting a Touchscreen monitor under it but I don't know how to deal with temperatures and I don't know a lot about the different types of glass, sensitivity etc. Hot beverages vs cold beverages, that kind of thing. It would be a really cool project though.
-
@wirestyle22 said in What Are You Doing Right Now:
Just bought this: https://luuup.com/ for my cat
Hrm... I may just have to change my litter box, that looks so much easier to deal with.
-
@wirestyle22 @travisdh1 You should try CitiKitty. No more litter.
-
@momurda said in What Are You Doing Right Now:
@wirestyle22 You should try CitiKitty. No more litter.
Really hard to train an adult cat to do that. A young cat definitely.
-
@wirestyle22 said in What Are You Doing Right Now:
Just bought this: https://luuup.com/ for my cat
Laura also said yes to that sweet coffee table i linked yesterday.
Don't forget to do the 180, lol!
-
@momurda said in What Are You Doing Right Now:
@wirestyle22 @travisdh1 You should try CitiKitty. No more litter.
Yeah, my cat is around 20 years old now, not gonna try retraining her at this point.
-
I wonder what cats think of us removing their shit from a box, putting it into another box and then taking it somewhere. Must be a really weird experience at first.
-
@wirestyle22 said in What Are You Doing Right Now:
@NerdyDad said in What Are You Doing Right Now:
@wirestyle22 said in What Are You Doing Right Now:
Just bought this: https://luuup.com/ for my cat
Laura also said yes to that sweet coffee table i linked yesterday.
I'm actually work (slowly) on a behind-the-couch table that will have compartments for phone chargers and remote control storage.
I was thinking of finding someone who could make me a very high quality coffee table and then mounting a Touchscreen monitor under it but I don't know how to deal with temperatures and I don't know a lot about the different types of glass, sensitivity etc. Hot beverages vs cold beverages, that kind of thing. It would be a really cool project though.
Nothing that fancy for me. Just going to have a couple of these in there for cell phones, laptops, etc. inside of the box and have access holes for the cords to come out of. The outlets will go to a normal 110v plug that will plug right into the wall, like a lamp or a power strip.
-
@wirestyle22 said in What Are You Doing Right Now:
@momurda said in What Are You Doing Right Now:
@wirestyle22 You should try CitiKitty. No more litter.
Really hard to train an adult cat to do that. A young cat definitely.
According to my mom, my dad did this with his cat in the 60's, though he didn't use anything so fancy as what was linked. I guess it was just positive reinforcement and patience (something never seen from my perspective where he was involved).
-
@scottalanmiller said in What Are You Doing Right Now:
@EddieJennings said in What Are You Doing Right Now:
@scottalanmiller The other part of the problem is there are two things I'm wanting to secure.
-
Traffic from client to my dokuwiki, which I agree can be easily accomplished with Lets Encrypt, despite this site not being public-facing.
-
Traffic between my dokuwiki and domain controller (for authentication), since LDAP is sent in the clear. I suppose I could use Let's Encrypt to give the domain controller a certificate, so the certificate it presents to dokuwiki is from a trusted root CA. Or I issue and install certs with our internal CA that's already in place.
I suppose there's a third option as well, which is what was mentioned yesterday: Do I really care that AD credentials are sent in the clear if this traffic is only on my local network (or travelling to a user at home over a VPN tunnel)? Which, for me, the answer is "yes." I don't think it's a good idea to pass credentials in the clear over a network in general.
For point 1 you can do any cert. but LE is the only one I would ever use.
You would be in for a realm of heartbreak then because how would you get, and automate renewals of, LE for an internal site with no external access?
-
-
-
Could you run AD Cert Services with LE. Get the trusted cert for your ca every 60 days, then have the AD CS auto renew certs for your internal servers.