VE2ACG Guy LB 2
Here is my vision.... ..
For those who know me, for years I was involved in the remote control of radio transmitters.
rp-pppoe without a router,on a single machine.
On your file explorer or FTP Client type ftp://remoteham.com
AWSTATS eliminate errors for Update now link module my-awstatspl 1.0; require { type httpd_sys_rw_content_t; type awstats_var_lib_t; type httpd_sys_content_t; type awstats_t; type awstats_script_t; class dir { add_name getattr remove_name search write }; class capability { dac_override dac_read_search }; class file { create rename unlink write }; } #============= awstats_script_t ============== -- This avc is allowed in the current policy -- allow awstats_script_t awstats_var_lib_t:dir { add_name remove_name write }; -- This avc is allowed in the current policy -- allow awstats_script_t awstats_var_lib_t:file { create write }; allow awstats_script_t awstats_var_lib_t:file { rename unlink }; -- This avc is allowed in the current policy -- allow awstats_script_t httpd_sys_rw_content_t:dir getattr; #============= awstats_t ============== -- This avc is allowed in the current policy -- allow awstats_t httpd_sys_content_t:dir search; -- This avc is allowed in the current policy -- allow awstats_t self:capability { dac_override dac_read_search };
AWSTATS-22-02-2024
WIREGUARD wireguard server on remoteham.com 1) wg 2) tcpdump -nn -i ppp0 udp and port XYXYX [for troubleshooting and received data in both directions] 3) if received is in one direction check rules in all zones interface: wg0 public key: xyz........server publickey........zyx= private key: (hidden) listening port: XYXYX peer: xyz........client publickey........zyx= endpoint: public ip from your ISP:46347 allowed ips: private ip/30 latest handshake: 9 seconds ago transfer: 16.53 MiB received, 65.44 MiB sent
Single Packet Remote Administration FWKNOP SPA server on remoteham.com 1) Eliminate errors and fiddling first. 2) Use local interfaces -i lo to check rules insertion and packet authenticity via HMAC and GPG. 3) Initial testing on a single machine with both client and server. 4) Eliminate FKO decrypt error with GPG by removing Rijndael KEY_BASE64 5) Replace KEY_BASE64 with client-id password 6) Rotate Keys every hours 7) Renew set of Keys every 24h 8) Determine Master keys for sync.
fwknop the use of -n stanza [127.0.1.1] is necessary to eliminate Rijndael key in initial testing.(if this key is in access.conf)
Around the world
Ritz Carlton Riyadh KSA
Gpg public key.
Public key guyfleurant@gmail.com
Key ID: EA935720>
Fingerprint: 12FC 9B53 B45E 2276 6CA1 CB78 46B0 B12A EA93 5720
whereis remoteham.com
- NET-184 184.144.224.0 to 184.144.227.255
- NET-216 216.208.0.0 to 216.209.255.255