The secret sauce is:
<Location /.well-known>
ProxyPass !
</Location>
Marc Juul Juul
Juul
/ certbot_reverse_proxy_guide.md
Created
May 29, 2019 01:04
How to use Let's Encrypt / certbot with a reverse proxy
Juul
/ book_scanning_guide.md
Created
July 13, 2019 22:07
Guide on book scanning using camera-based scanner like the one at noisebridge
Today I went to noisebridge and scanned Wonders Through the Microscope and it is now available for download on the freestore! I will likely also generate a color version of the PDF but the book is in black and white so it really doesn't add much.
This is my first attempt at book scanning and post-processing using only open source tools so I thought I'd share this book scanning guide based on my experiences :)
I used the noisebridge book scanner hardware and their python script which remote-controls two DSLR cameras and downloads the photos over USB. It worked very well.
Note that in addition to gphoto2 you will also need jpegtran. This command will get you both:
Juul
/ raspian_bluetooth_sink.md
Last active
September 20, 2020 17:03
Set up raspberry pi 3 as bluetooth sink (raspbian buster)
If you want to use pulseaudio, see BaReinhard's repo.
If you want to use bluealsa and avoid pulseaudio, keep reading.
So far this solution has two problems I haven't solved:
- A ~450 ms delay (which can be compensated for in pavucontrol on the client)
- If more than one source connects at the same time
bluealsa-aplaycrashes andbluealsaalso needs restarting
If you have pulseaudio installed, make sure /etc/pulse/default.pa has the following two lines commented out and restart pulseaudio:
Juul
/ keybase.md
Created
November 28, 2019 04:57
I hereby claim:
- I am juul on github.
- I am juul (https://keybase.io/juul) on keybase.
- I have a public key ASDq1RuKZVTrMsQYIO8uYJkuCDg-_IytPr_8dxThs71y-Ao
To claim this, I am signing this object:
Juul
/ rogue_dhcp_check.py
Last active
March 2, 2025 06:43
Python 3 script for detecting rogue DHCP servers
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| # This script sends a DHCP discover on the specified interface | |
| # then waits for the specified number of seconds (default: 5) | |
| # for replies from DHCP servers and prints the results. | |
| # Install dependencies: | |
| # sudo apt install python3-scapy | |
| # scapy API: https://scapy.readthedocs.io/en/latest/api/scapy.layers.html |
Juul
/ memusage.sh
Created
January 20, 2020 05:17
Show total combined memory usage (virtual, resident and dirty) for processes matching the given grep arguments
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Show total memory usage of all processes matching the supplied grep arguments | |
| if [ "$#" -lt "1" ]; then | |
| echo "Usage: $0 <grep arguments>" >&2 | |
| exit 1 | |
| fi | |
| function humanize() { |
Check which version of chocolate-doom your distro has:
apt-cache show chocolate-doom|grep "Version:"
If it's version 3.0.0 or above then install it:
sudo apt install chocolate-doom
Juul
/ autossh_reverse_tunnel.md
Last active
March 28, 2025 04:55
How to configure a reverse SSH tunnel that auto-establishes and auto-reconnects
This is a brief guide on how to configure an SSH reverse tunnel that automatically establishes on boot and will continuously attempt to re-connect when it fails.
It is very useful if you are deploying a device somewhere without a public IP, e.g. behind a NAT, and need to be able to SSH into it from the wider internet.
Let's refer to the NAT'ed device as the client. This guide assumes that the client is able to create outgoing SSH connections to at least destination port 443.
You will need root access to a server with a static IP on the internet which runs an openssh server.
On my-server.example.com add the following to /etc/ssh/sshd_config, changing tunnel-user to whichever username you want to use (this will be a new user, not an exising user) and changing the PermitOpen line:
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -----BEGIN PGP PUBLIC KEY BLOCK----- | |
| mQGNBF7LOWQBDACv1M8bZUiiEFKJ0ITmVyKH3U1ixKnJ2HV2KzPlSMnlV8doyfYx | |
| ydv0Udu7WSeAfIpk9nMrwlzIqRSJx0sOsO0ZpiVdo+loKehBjoQiCiBzwmt0UOHL | |
| /knFEwBC1Sh33D+GfjUG+8cVZgEwx0ySt/w8boGS86384AQtwZ8CS2AGgIMZO7ld | |
| XPIIUr2uHPvZzT8We4+VhqBRwHKmIwDnPkJBs1LtLuRbgmPu3yJBSe38J6J6X4au | |
| 53bNKdE7kQmqzraawFJjVb14/fU6UoqBMkwOiTQ/1N/0JVUr+DOUTSI74RwnGPr8 | |
| 6qbQYbEY5SRDCsOAy9FhoEjf75nCTNQ+GQNa5Vih9tpVrEqikPRN+eouTD5YfnJv | |
| QcxJI8RORHsTCSGNGC8OmX+GM5NPS0jRwixeoGWEJBLIKjEP9HpIOLWYR3RNWTGe | |
| IwtJdWxXPYo8uDR4GAnTaTRbu5NTyQe65hORl7gZsrtALjojXmCZTyWlmuYRGHn/ |