I recently purchased a Synology NAS running DSM 6, and sharing directories via FTP is easy. In Control Panel, make sure the Shared Folder is defined, then using File Station, define access permissions (read, write, execute) for each group or user. If you want an additional user for FTP access, you make your user (or make a group then add […]
Miscellaneous Whatnots
Dear mailserver operators: PLEASE stop using SSLv3!
I look after a few email servers and after implementing much stricter encryption settings at the start of the year, I noticed some emails were never making it to accounts - being rejected at the negotiation stage (where the remote server sending the email agrees an encryption protocol and cipher with the local server). I was puzzled by this. TLS […]
Fail2ban 0.10 on CentOS6 - yes we can! And my notes on successful manual upgrades
Fail2ban's official compile for CentOS6 has never advanced beyond 0.9.6-1.el6.1. While 0.9.6 works, it's old and has a few major inconveniences: No IPv6 support 🙁 A tendency for the daemon to die when parsing many logs or a high volume of activity Quite slow to parse logs when restarting after a config change So, what can we do? Well, compile […]
Setting up a secure Postfix server in 2019 - what to consider?
Postfix is great, and widely used, but freshly installed it's like a newborn child. Nowadays there's a lot of work required to get it to an acceptable level to face the wild west of the Internet. NB: This is a living document and will probably change over time as I revise my own methods for managing my servers. Running an […]
Frameserving from Premiere Pro CC 2019 to FFmpeg - yes we can!
A while ago while working on batches of video edits, I came to the realisation that frameserving is simply the best, most flexible way to encode. But time marches on, and so did my software - eventually I came to a new machine, new Premiere Pro and - catastrophe - no apparent support for frameserving. November 2019: Vouk's excellent Voukoder […]
