restart firewalld after installing tftp *client*

edit: the title of the post is wrong, and I’ll repost it when I’ve got around to crossing all the tees.  There’s a firewalld service called tftp-client;  the fix for machines with a tftp client is thus probably to enable that. This post covers off a number of other topics as well – turned out […]

AWOL Linux LVM volume group and physical volume

TL;DR Looks like there maybe a bug in lvm2-2.02.180-10.el7_6.3.  Will raise a ticket for it with Centos. Update: having tried to reproduce it, it takes more than just upgrading the package – as one would expect. No idea what the other variables might be. Workings Centos 7.6; something odd has happened to one of the […]

java – troubleshooting SSL/TLS truststores

Troubleshooting TLS issues involving a Java app can be difficult if the division of responsibility means that responsibility for the certs and truststores is not vested in a team with any Java skill.  This post is aimed at someone, like me, in that situation. SSLPoke Atlassian (JIRA/Confluence/Bitbucket) provide a simple program that does about as […]

wileyfox swift (crackling) squashfs fun

TL;DR It’s easy to get lulled into a false sense of security.  I bricked my Wileyfox Swift trying to install Lineage: with hindsight, should have tried harder to ensure I had a backout. I’d have tried using ‘dd’ to back up the ‘system’ partition, as the usual toolset (TWRP, adb, fastboot etc) don’t seem to […]

https using Cloudflare

Why? Lots of good reasons as of July 2018 posted here by Troy Hunt, including that the National Cyber Security Centre (part of GCHQ) says so here – the title of that blog post is ‘serve websites over HTTPS (always)’. As we state in our HTTPS guidance, all websites should use HTTPS, even if they don’t include […]