Random header image

Miscellaneous Whatnots

Dear mailserver operators: PLEASE stop using SSLv3!

I look after a few email servers and after implementing much stricter encryption settings at the start of the year, I noticed some emails were never making it to accounts - being rejected at the negotiation stage (where the remote server sending the email agrees an encryption protocol and cipher with the local server). I was puzzled by this. TLS […]

Fail2ban 0.10 on CentOS6 - yes we can! And my notes on successful manual upgrades

Fail2ban's official compile for CentOS6 has never advanced beyond 0.9.6-1.el6.1. While 0.9.6 works, it's old and has a few major inconveniences: No IPv6 support πŸ™ A tendency for the daemon to die when parsing many logs or a high volume of activity Quite slow to parse logs when restarting after a config change So, what can we do? Well, compile […]

Setting up a secure Postfix server in 2019 - what to consider?

Postfix is great, and widely used, but freshly installed it's like a newborn child. Nowadays there's a lot of work required to get it to an acceptable level to face the wild west of the Internet. NB: This is a living document and will probably change over time as I revise my own methods for managing my servers. Running an […]

Frameserving from Premiere Pro CC 2019 to FFmpeg - yes we can!

A while ago while working on batches of video edits, I came to the realisation that frameserving is simply the best, most flexible way to encode. But time marches on, and so did my software - eventually I came to a new machine, new Premiere Pro and - catastrophe - no apparent support for frameserving. Vouk's excellent Voukoder plugin for […]

MaxMind GeoLite v1 databases discontinued - install GeoLite2

I noticed recently that a few web sites are miscategorising my ISP's static IP as being in the wrong country. I knew it was a recent reallocation of a new block and suspected the web sites were using a stale version of a GeoIP database - probably MaxMind's GeoLite v1 offering. If you see stuff like this while surfing the […]

I footnotes