As you probably know by now: We have our SSH and PGP-keys on a CryptoStick. But getting it to work used to be somewhat harder than it is now. So without further ado: The (almost) foolproof way to get SSH and PGP working with the CryptoStick in Ubuntu.

noVNC allows you to connect to a VNC server, using only a web browser with WebSockets. Unfortunately, WebSockets does not allow you to create arbitrary raw TCP connections. This is why we have written a rather compact noVNC proxy called wsproxy, which can connect to VNC servers within a whitelisted range of ports.

We are in the process of building the configuration for our monitoring system from exported resources (more on that in the future). To accomplish one of the checks we needed a way to identify the brand of RAID controller in our physical servers. The best way to do this is facter. We’ve written some custom […]

On our systems at Hetzner we only have a single /64 IPv6 range, which we use to assign addresses to virtual systems, running in Xen and KVM. Because we don’t directly bridge the virtual machines to the external interface, we have written a script that synchronizes Neighbor Discovery entries to the external interface.

Today (June 8th) is World IPv6 Day, a day where some of the biggest network and website operators (Google, Bing, Facebook) turn on IPv6 for a full day to test drive a dual stack setup.

There’s another job opening at Kumina!

On the systems we configure and maintain through Puppet, we sometimes see processes running for an excessive amount of time, causing the actual synchronization of system configuration to stall. To mitigate this, we have developed a script called checkpuppet.

Always nice to get a token of appreciation!