Category Archives: System Administration

Things to test in fedora 40 KDE (no X11)

I have a personal list that I want to test in Fedora 40 with KDE 6… I will update the results after the release…

  • KeePassXC AutoType
  • ssh -X (I want to execute some visual app from a remote host running F40 and from F40)
  • Installing it in a qemu/kvm VM… (and GUI performance!)
  • KRFB (VNC)
  • xrdp
  • fullscreen sharing (like google meet, zoom?)
  • program sharing thumbnails
  • HIDPI behaviour (4K)
  • Nvidia card performance…

Solving the openvpn_execve Error in LXC

Problem Description:

When running OpenVPN in an LXC environment, users may encounter a specific error that prevents the OpenVPN service from operating correctly. The error manifests as follows:

Jan 08 00:56:47 fw openvpn[404]: openvpn_execve: unable to fork: Resource temporarily unavailable (errno=11)
Jan 08 00:56:47 fw openvpn[404]: Exiting due to fatal error
Jan 08 00:56:47 fw systemd[1]: openvpn-client@yourvpn.service: Main process exited, code=exited, status=1/FAILURE
Continue reading Solving the openvpn_execve Error in LXC

Installing VirtualBox-7.0 in OpenSUSE 15.x (or tumbleweed) from repo and UEFI Secure Boot Enabled

This is a simple/short how to for installing VirtualBox 7 in OpenSUSE 15

Here we are handling two problems:

  1. There is no repo for OpenSUSE 15.4 (we need to do a trick)
  2. There is no documentation on how to create proper UEFI secure boot MOK’s (owner keys) for the newer OpenSUSE which demands that the key will have special attributes like “codeSigning

so, here is the answer:

Continue reading Installing VirtualBox-7.0 in OpenSUSE 15.x (or tumbleweed) from repo and UEFI Secure Boot Enabled

Security Risk Without a CVE

Most security assessments only includes CVE’s and known vulnerabilities but many fail to address the true potential security risks. And this will create a big problem for your organization.

The problem starts because most organizations only wants to have a security analysis based on know-existent vulnerabilities, like a “tell me what KB to patch”, but this approach is not good and fails to protect you in two ways:

Continue reading Security Risk Without a CVE

Installing K-Ubuntu 16.04 with LVM+LUKS Full Encryption

Kubuntu and mostly ubuntu installations comes with a very basic installer, and does not allow you to personalize the encryption, by example, if you have windows and linux together in the same hard drive, the installation won’t allow you to dual boot it, it will force you to use the whole disk, removing the existing windows partition.

Continue reading Installing K-Ubuntu 16.04 with LVM+LUKS Full Encryption