Converting from HEIC to JPEG on OS X

Apple has been slowly moving from the trusty JPEG standard to HEIC, and the rest of the world has been slow to actually catch up to the newer format. While my phone and Mac do just fine, the only real early adopter I’ve seen that supports HEIC has been Dropbox.

Read More...

Running Multiple Client Instances of OpenVPN on Linux

I run multiple instances of OpenVPN providing VPN connectivity to endpoints provided by AirVPN, all on a single virtual machine. I use these endpoints on my home network WIFI for connectivity testing of clients as well as overall privacy and security. The load for these VPNs, even at over 50 megabits of transfer, is pretty low so using virtual machines made sense. This also helps isolate the sessions off in their own little virtual world of 1 CPU core, 512 megabytes of memory and 2 VLANs.

This configuration is for Linux, and uses the alternative routing tables in the operating system. A primary benefit of doing it that way is that it prevents OpenVPN from taking over the host’s primary routes, and if the tunnel fails, there isn’t any routing on that network. No need for additional watchdog programs like vpnfailsafe or adding ufw rules to prevent leaks over the primary internet connection. If the tunnel goes down, there is no route for that traffic. This method works well for just one tunnel.

Read More...

Slowing Probes on SSH Servers

Every admin has seen it on a public facing machine permitting ssh access, countless probes filling logs with attempts to gain access to the machine by brute forcing passwords or attempts to use stolen keys.

Read More...

Using a Raspberry Pi 3 as a MythTV Frontend

For over seven years, MythTV was my DVR and front end display for live TV as a Charter subscriber, with six cable card tuners provided by a pair of Silicon Dust HD Homerun Prime units, and a pair of off-air tuners via a single HD Homerun.

Read More...