.pQd – Page 2 – .pQd's log

Using mitmproxy to allow closed-source application to communicate with licensing server with expired TLS cert

2024-09-172024-09-17 by .pQd

we’re using a 3rd party library that shall remain nameless. vendor provides this library to us in form of few .so files, few headers and sample code. we have a small custom c++ wrapper for it. whenever library is initialized – it makes a call to licensing server and does some challenge/response verification. on one ... Read More

Sound-generating online apps

2024-09-112024-11-08 by .pQd

list of few online apps that my daughter likes: longer lists of tools:

random things that inspire me

2024-08-292024-12-13 by .pQd

SQLite’s code of ethics: https://www.sqlite.org/codeofethics.html altamira’s ten investment commandments

New supermicro server does not ‘see’ some of NVMe drives

2024-08-102024-12-10 by .pQd

i got 3 identical new servers from supermicro – SYS-121C-TN10R. all three have the same disk setup – 2+4 NVMe drives, but Debian 12 just see 5 of them instead of 6. when i run dmesg on newly installed system i can see those errors: to solve it i had to change PCIe bifurcation in ... Read More

charging Amazfit Band 5

2024-07-092024-09-13 by .pQd

i’m a happy user of Amazfit Band 5. it’s dirt cheap, paired with gadgetbridge – works fine without sharing any data with cloud-hosted big brother, all in all – it helps to keep me moving around each day. i had few occasions when i needed to charge it [ every ~2 weeks ] and did ... Read More

cheescake recipe

2024-03-312024-03-31 by .pQd

ingredients: procedure:

Fastly returning “Requested host does not match any Subject Alternative Names (SANs) on TLS certificate”, HTTP/421

2024-03-062024-05-15 by .pQd

due to $reasons we have an nginx-proxy that is a reverse proxy forwarding to Fastly CDN which, in turn, forwards back to our infrastructure. starting from the 2024-02-27 this stopped working, for some HTTP queries. most notably those using OPTION verb. response that nginx was getting from Fastly had HTTP/421 status code and payload: colleague ... Read More

KVM – listing VMs with their memory allocation

2024-02-02 by .pQd

i needed to list all VMs on given KVM server and sort them by amount of RAM allocated to each. ugly but does the trick.

Ohook – activating MS office

2024-01-17 by .pQd

this might be useful, especially for environments where automated tests of MS-office-dependent applications are done: https://massgrave.dev/ohook.html + https://github.com/asdcorp/ohook

podcast about evolution of mysql at booking.com

2023-12-302023-12-30 by .pQd

very interesting, content-heavy, interview with Kristian Köhntopp about his work at booking.com: 1, 2 [ alternatively on youtube: 1, 2 ].

getting code signing certificate on own Yubikey and then using it to sign windows binaries in unattended way, on KVM VM

2023-12-022023-12-26 by .pQd

starting from June 2023 code signing certificates for MS Windows cannot be delivered as a file anymore. files are easy to steal. now certs must reside on security modules which don’t allow private key extraction, at least not for mere mortals. we’re using such a cert to sign exe and msi files on a build ... Read More

freecad – editing STL file

2023-11-13 by .pQd

for 0.21.2 based on this yt video: https://www.youtube.com/watch?v=dr1qtaURrvI

parallel rsync

2023-11-042025-03-02 by .pQd

rsync remains my main tool for transferring backups or just moving data between servers. but it has some pain points – e.g. rsync’s checksum calculation or ssh over which data is piped can easily saturate single CPU core before i run out of storage I/O or network bandwidth. how to parallelize it – based on ... Read More

resources for learning SQL

2023-10-232024-05-05 by .pQd

SQL basics: indexes: https://use-the-index-luke.com/ ‘modern’ SQL: fiddles – web-based sandboxes:

bug in postgresql’s GIN index

2023-09-04 by .pQd

it’s a story without happy end. i’m absolutely sure there’s an index-corruption bug in PostgreSQL 13; since i have not seen any mention of it being fixed – it’s likely in the following releases as well. i’ve tried to get attention to it on the pgsql-bugs mailing list but i failed. likely because i’ve never ... Read More

WSL installation fails with “A specified logon session does not exist. It may already have been terminated.”

2023-08-10 by .pQd

i’ve tried to install wsl on Win 11 PRO PC and got this: solution: try again based on this comment.

Apache2: url-based exception for ProxyPass

2023-07-252023-07-25 by .pQd

i have apache2 reverse proxy which passes traffic to some application server. everything going to /server/ is handled by http://localhost:8000. i had to do one exception – serve content for /server/something.txt from a static file. here’s what i did:

rsync to exfat mount

2023-07-132025-03-02 by .pQd

exfat does not carry information about user/group ownership of files/directories, has less precise timestamps. to make rsync stop complaining about it i’m using:

userauth_pubkey: signature algorithm ssh-rsa not in PubkeyAcceptedAlgorithms [preauth]

2023-07-102023-07-10 by .pQd

colleague reported that he cannot anymore log-in using putty, via ssh to server that was recently upgraded to Debian Bookworm. /var/log/auth.log showed: putty log it turned out that it was pretty old putty – 0.74, just upgrading it to the more recent one [ 0.78 at the time of writing ] solved it. alternatively i ... Read More

running command as user who has shell /usr/sbin/nologin

2023-07-01 by .pQd