Paolo Barbolini paolobarbolini

FreeBSD on Hetzner Cloud VPS

This guide explains how to install the FreeBSD on Hetzner Cloud VPS. This might also work for other VPS providers with the proper rescue system in place.

Table of contents:

1. Rescue mode
2. Download and deploy FreeBSD
3. Post-installation

1. Rescue mode

58 bytes of CSS to look great nearly everywhere

When making this website, i wanted a simple, reasonable way to make it look good on most displays. Not counting any minimization techniques, the following 58 bytes worked well for me:

main {
  max-width: 38rem;
  padding: 2rem;
  margin: auto;
}

Nginx TLS SNI routing, based on subdomain pattern

Nginx can be configured to route to a backend, based on the server's domain name, which is included in the SSL/TLS handshake (Server Name Indication, SNI).
This works for http upstream servers, but also for other protocols, that can be secured with TLS.

prerequisites

at least nginx 1.15.9 to use variables in ssl_certificate and ssl_certificate_key.
check nginx -V for the following:
```
...
TLS SNI support enabled
```

Install Golang 1.9:

wget https://storage.googleapis.com/golang/go1.9.linux-armv6l.tar.gz
sudo tar -C /usr/local -xzf go1.9.linux-armv6l.tar.gz
export PATH=$PATH:/usr/local/go/bin # put into ~/.profile

If already installed old golang with apt-get:

This is a document describing how to install Ubuntu 16.04 LTS on ThinkPad T470s.

My Hardware

CPU: Intel Core i7-7600U (2.80GHz, 4MB cache)
Graphics: Intel HD Graphics 620
Display: 14” WQHD (2560 X 1440) IPS Non-Touch Anti-Glare
Memory: 24GB DDR4 2133 MHz (8GB Onboard + 16GB)
SSD: PCIe-NVMe 256G OPAL 2.0
Wireless: Intel Dual Band Wireless AC (2x2) 8265 Bluetooth 4.1
Fingerprint Reader

running:

bash create-vod-hls.sh beach.mkv

will produce:

    beach/
      |- playlist.m3u8
 |- 360p.m3u8

	// I'm tired of extensions that automatically:
	// - show welcome pages / walkthroughs
	// - show release notes
	// - send telemetry
	// - recommend things
	//
	// This disables all of that stuff.
	// If you have more config, leave a comment so I can add it!!

	{

	[[source]]
	url = "https://pypi.org/simple"
	verify_ssl = true
	name = "pypi"

	[packages]
	requests = "*"

	[dev-packages]

	{
	...
	"scripts": {
	"start:web:prod": "npm run build:prod:web && http-server dist/apps/web -d -c-1 -a 0.0.0.0 --proxy http://127.0.0.1:4200? --port 4200",
	"start:web:prod:local": "npm run build:prod:web:local && http-server dist/apps/web -d -c-1 -a 0.0.0.0 --proxy http://127.0.0.1:4200? --port 4200",
	"build:prod:web": "ng build web --prod",
	"postbuild:prod:web": "npm run build:pwa:web",
	"build:prod:web:local": "ng build web --prod",
	"postbuild:prod:web:local": "npm run build:pwa:web:local",
	"build:pwa:web": "rimraf ./dist/apps/web/service-worker.js && webpack --config ./service-worker/webpack.prod.config.js --progress --colors && node ./workbox-build-inject.js",

	#!/bin/bash

	if [ "$#" -ne 1 ]; then
	echo
	echo "No hostname given to obtain certificate status"
	echo "\tuse: $0 www.example.com"
	echo
	exit 1
	fi