herzlich Willkommen auf meinem neuen Account/Profil hier auf dem Friendica-Knoten von anonsys.net.
Ich freue mich wirklich über jede Kontaktanfrage von euch und nehme diese in der Regel auch an. Die Anfragen die ich nicht annehme sind die, bei denen nichts im Profil steht. Wieso? Ganz einfach, weil ich gerne wüsste wer mich da kontaktiert. Bin ja schließlich neugierig. 😉
Also entweder etwas bei euch im Profil hinterlassen oder nicht böse sein, wenn ich diese Anfragen dann ablehne.
Sorry for my English audience but I decided to make this episode in German language.
Die erste Aufnahme mit Webcam, gerichtet auf mich und leider war das ganze Layout durcheinander. Keine Ahnung, was #OBS dort durcheinander gebracht hat. Ungefaehr 7 GB Aufnahme in voller Qualitaet (kommt so direkt aus OBS heraus) sind leider vergeigt. Das Spiel war die ganze Zeit nach rechts unten in die Ecke verschoben und das moechte ich keinem anbieten.
Diese Episode war mal zur Abwechselung auf deutscher Sprache. Mittlerweile habe ich wieder vergessen, was ich dort alles gemacht habe und meine alten Episoden sehe ich mir nur selten selbst an. Also viel Spass!
PS: Der Web-Player kann offensichtlich nicht Matroska-Videos abspielen. Ich habe daher mal den Download aktiviert, uebertreibt es aber nicht, 10 TB Datenvolumen sind schnell aufgebraucht und dann darf ich zahlen.
I'm getting this error message when I update my certificate as I do the usual way I'm doing with all my SSL-secured websites:
On all my other websites, like tracker.mxchange.org or this very #Friendica instance I have no trouble at all. The "base" certificate (I created locally) is already renewed. The #OpenSSL configurtation file isn't any other than the other except for the commonName entry set to cloud.mxchange.org:
[ CA_default ]
dir = /etc/ssl/zulu289 # Where everything is kept
certs = $dir/certs # Where the issued certs are kept
database = $dir/zulu289.index # database index file.
new_certs_dir = $dir/newcerts # default place for new certs.
certificate = $dir/certs/ca.pem # The CA certificate
serial = $dir/zulu289.serial # The current serial number
crl = $dir/crl.pem # The current CRL
crlnumber = $dir/crlnumber # the current crl number must be
private_key = $dir/private/ca/zulu289-ca-key.pem # The private key
default_days = 3650 # how long to certify for
default_md = default
policy = policy_match
[ req ]
default_bits = 8192
default_keyfile = cloud-key.pem
distinguished_name = req_distinguished_name
[ ca ]
default_ca = CA_default
[ req_distinguished_name ]
countryName = DE
countryName_default = DE
stateOrProvinceName = Northrhine-Westphalia
stateOrProvinceName_default = Northrhine-Westphalia
localityName_default = Krefeld
0.organizationName = Roland Häder
0.organizationName_default = Roland Häder
organizationalUnitName = private
organizationalUnitName_default = private
commonName = cloud.mxchange.org
commonName_default = cloud.mxchange.org
emailAddress = webmaster@mxchange.org
emailAddress_default = webmaster@mxchange.org
#unstructuredName = An optional company name
[ server ]
basicConstraints=CA:FALSE
nsCertType = server
nsComment = "OpenSSL Generated Server Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
[ client ]
basicConstraints=CA:FALSE
nsCertType = client
nsComment = "OpenSSL Generated Client Certificate"
subjectKeyIdentifier=hash
authorityKeyIdentifier=keyid,issuer:always
keyUsage = nonRepudiation, digitalSignature, keyEncipherment
[ policy_match ]
countryName = match
stateOrProvinceName = match
organizationName = match
organizationalUnitName = optional
commonName = supplied
emailAddress = optional
I'm really out of ideas here what would have caused this.
I would like to introduce you to my upcoming series of playing #Factorio under Linux. I'm exclusively around with #Linux for now over 20 years and I'm happy to say that it was largely a success - honestly.
However, please be nice! The total size of the 1080p version (maximum resolution) is already +18 GB large and thats only "one" episode ... So please download with respect to my limited bandwidth of my server: You are not the only one utilizing my server's bandwidth. I have 10TB/month included in my contract and every additional GB must be payed extra and I don't get any money back from these downloads + I donate to the @FSFE every year + I don't ask for a donation, but you can if you wish. Just ask me for methods.
And for later episodes, I may have to cleanup some old episodes as also disk space is not bottom-less here. 2x1 TB in a RAID1 is already almost full:
This server (zulu289) holds all (!) I do on my server: * Tracker for FLOSS: tracker.mxchange.org (primary FlightGear Flight Simulator's GIT repository) * Debian-multimedia mirror: debian.mxchange.org/ * Databases for all my instances I'm running + full SQL dumps from them, e.g. Nextcloud, this very Friendica instance and GNUSocial are the most demanding databases:
root@zulu289:/var/backups/dumps# ls -l friendica*31* social_mailer-2021-01-31.sql.bz2 owncloud-2021-01-31.sql.bz2 full-backup-2021-01-31.sql
-rw------- 1 root root 13708573349 Jan 31 07:48 friendica-2021-01-31.sql.bz2
-rw------- 1 root root 50290723 Jan 31 09:33 friendica_dir-2021-01-31.sql.bz2
-rw-r--r-- 1 root root 18307805562 Jan 31 06:42 full-backup-2021-01-31.sql
-rw------- 1 root root 22672102 Jan 31 09:33 owncloud-2021-01-31.sql.bz2
-rw------- 1 root root 118700237 Jan 31 09:38 social_mailer-2021-01-31.sql.bz2
root@zulu289:/var/backups/dumps#
I'm just telling here facts. :) Just download them once so you can watch them whenever you want. You can still download the 10x smaller version (I made for people not having so much bandwidth available or are on mobiles).
And what if I take 1080p offline? And I currently don't provide 4k/8k downloads. Won't people start complaining about that the video is blurry on their 4k/8k screen as I "only" provide a 1080p free of charge or any donation?
Good idea. I have a tracker on my disposal already on my server: tracker.mxchange.org (add /announce for the announcement URL, closed registration, sorry). But I need a deployment scheme for that. Maybe I remove the high-res video and put into the tracker's folder?
The SSL setup is not working, I get SSL certificate verification errors, even with btlaunchmany.tornado. So the initial seeds didn't work. I switched now to alternative announcement URL at tracker.mxchange.org:23456/ann… with btcopyannounce
$ openssl s_client -connect tracker.mxchange.org:443
CONNECTED(00000003)
depth=0 CN = tracker.mxchange.org
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = tracker.mxchange.org
verify error:num=21:unable to verify the first certificate
verify return:1
---
Certificate chain
0 s:CN = tracker.mxchange.org
i:C = US, O = Let's Encrypt, CN = R3
1 s:C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
i:O = Digital Signature Trust Co., CN = DST Root CA X3
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = tracker.mxchange.org
issuer=C = US, O = Let's Encrypt, CN = R3
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3070 bytes and written 392 bytes
Verification error: unable to verify the first certificate
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 21 (unable to verify the first certificate)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 4784D31415D4070293C10CC8EF96134A52F5C1554EF55F801990B3154F2EE46E
Session-ID-ctx:
Resumption PSK: FE87932E7CFD3DA6A212022559A5D118FFD268F645CFEF1760DB799A89C56C6F04DF5F6CC682B96F51061BDADCA60FC9
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 35 28 20 06 a2 1d ea 19-0e a8 51 71 5d 5c 7a 43 5( .......Qq]\zC
0010 - 33 ae 6d d3 a7 05 cf a7-21 4b 45 b2 6e bf 51 1f 3.m.....!KE.n.Q.
0020 - d8 78 05 95 c0 95 2b 41-4f 8a ad 7f cd 24 93 81 .x....+AO....$..
0030 - e2 95 12 61 40 c2 ed 73-88 32 cb 91 96 b3 b9 8e ...a@..s.2......
0040 - 82 b5 2d c6 39 51 fb 0c-08 f4 ea db 80 c9 3b f8 ..-.9Q........;.
0050 - ed e9 3d 4b 1c 16 68 c4-07 6d ee ba 31 04 2c 20 ..=K..h..m..1.,
0060 - 35 c8 85 7e a0 92 56 e4-21 14 12 c1 af 1c df 7d 5..~..V.!......}
0070 - 70 8c fc dd de 89 dd 87-bc 35 ca 18 2d 5b c7 e4 p........5..-[..
0080 - 44 78 08 da 6f 9f 81 b8-f7 e1 38 5e e1 ec 80 7c Dx..o.....8^...|
0090 - ab 6d 5c 10 89 67 ad 14-9b 90 00 07 b9 6a 8d 87 .m\..g.......j..
00a0 - d1 e3 43 5e df ed fd 9a-ac b8 e1 fa 06 0b 0f d6 ..C^............
00b0 - 9f d1 85 55 39 f3 31 0a-06 6c 7c 7d 0e f8 bb bc ...U9.1..l|}....
00c0 - 0e 05 97 a1 af da b8 92-2a 4b 39 27 cd df c1 af ........*K9'....
00d0 - 63 c9 8f ab ea 61 87 42-aa 85 a3 d7 75 71 87 23 c....a.B....uq.#
00e0 - 91 80 64 77 cc 53 66 00-c2 fb 51 f1 86 e4 05 74 ..dw.Sf...Q....t
00f0 - 9f ad 83 2d e1 eb 5c dc-ae 9c 21 60 84 e9 6f 74 ...-..\...!`..ot
Start Time: 1613215188
Timeout : 7200 (sec)
Verify return code: 21 (unable to verify the first certificate)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 019433D6AD6C9AF24C784449D3D2E7E7000B20C764A09433001A39AC91D28377
Session-ID-ctx:
Resumption PSK: E989322CE219A283B9C9AB71816B10D2DDECCF9D6033E54942C412F2564D455B566FF8000A746FCFFCA4F5E3B6349D83
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - 35 28 20 06 a2 1d ea 19-0e a8 51 71 5d 5c 7a 43 5( .......Qq]\zC
0010 - 20 5d b3 33 c2 9b 5a 03-ce 98 f6 48 25 c0 b3 e1 ].3..Z....H%...
0020 - 34 5f 8e 0a 0b d7 f9 38-6f 31 dc 1e 8d c5 d4 2c 4_.....8o1.....,
0030 - 78 2d cd f8 5a 3c 73 00-4e 5d 6d a6 17 10 32 c8 x-..Z<s.N]m...2.
0040 - 2f a8 ab a1 4c 3a 28 1a-c1 ee 3b 19 80 20 3d 59 /...L:(...;.. =Y
0050 - 40 2b 1e 60 de 4b 2f eb-ee e3 c7 7a fe 4b e0 63 @+.`.K/....z.K.c
0060 - f5 6b 06 cb c8 5d 9a 18-fc f1 d1 04 d4 96 a7 c1 .k...]..........
0070 - fd bf 03 48 ae 08 b3 68-10 fb 36 bf 2c 70 dd 5a ...H...h..6.,p.Z
0080 - aa 05 19 7c 15 2e ce e0-64 5c b1 bf e4 e1 25 61 ...|....d\....%a
0090 - c0 24 38 4e 1e 9a a8 44-10 a0 ab 76 b8 0b 24 c7 .$8N...D...v..$.
00a0 - 21 26 41 93 63 45 a6 8d-d6 a9 c9 81 d1 7c df 54 !&A.cE.......|.T
00b0 - 36 ce 20 24 7c cc 3a 15-4a 27 62 d1 89 a7 f6 0c 6. $|.:.J'b.....
00c0 - 87 ec a9 d9 e5 93 60 bf-d0 3e 62 aa f6 c6 48 f3 ......`..>b...H.
00d0 - 64 2d b9 e8 5c 33 cb de-6b ab 31 d6 38 6a 49 6a d-..\3..k.1.8jIj
00e0 - 00 23 a5 80 01 b7 0e cd-89 e5 82 ce 2a 13 cb 81 .#..........*...
00f0 - 1b 3b 64 6d 16 40 78 8e-65 ef 21 2f bb 52 14 bb .;dm.@x.e.!/.R..
Start Time: 1613215188
Timeout : 7200 (sec)
Verify return code: 21 (unable to verify the first certificate)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
closed
The first certificate cannot be verified. I think it is the "base" certificate I locally created and self-signed. Do I have to reorder the certificates here? It did work for many years!
Mein Kind kann da schon Linux, Vim und Datenbanken bedienen. Die Aufgabenstellung löst es kürzer und schneller als die anderen Kinder.
Es braucht nicht am Informatikunterricht teilzunehmen. Weil ich erreicht hab das Microsoft oder Apple wie Religionsunterricht betrachtet wird kann ich mein Kind davon befreien.
Oder ich melde es wie alle guten IT Fachkräfte bei der Waldorfschule an.
I have now released all screenshots from my #Quora days on my Nextcloud instance: I don't want to offend anyone but also don't apologize about the #heterosexuality I'm currently living and feeling fulfilled in.
Wechseln Sie auf ein Open-Source-Betriebssystem: Das Nachrüsten eines Computers beschränkt sich nicht allein auf die Hardware. Im Internet stehen sparsame Linux-Betriebssysteme zum Download zur Verfügung. Der Vorteil gegenüber einem Neukauf: Mit nur wenigen Klicks ist der Computer ohne nur einen Cent Zusatzkosten wieder voll einsetzbar. Denn die kostenlosen Open-Source-Betriebssysteme wie Linux kommen gut mit älteren Geräten aus und stellen zugleich aktuelle Softwarepakete bereit.
This evening I have again one of my favorite meals on my desk:
#Tortelloni from a local supermarket which has spinach inside and a spicy tomato-cream, easily done: Tomato mark/paste, water, salt, black pepper spice, paprika spice, some red-chilli spice and basilica spice. Mix all together so it will become creamy!
And not to forget: #shave-shaming - Let people #shave their #pubic hair off as they wish! For my personal taste: "Landing strip" and triangle or other non-bald shaves are looking goofy to me. But each to their own. Men and women aren't children when they shave their pubic hair bald, it is mostly done for #hygiene reasons.
#police-bashing seem to be "in" again, due to some show brutal behavior ... Don't bash the #police , most of them reject what their violent colleges are doing.
And please no #editor-bashing! Every editor or #IDE does the job. It depends on you, not the tool to get the (programming/hacking) job done. For example I edit #JSF/#Primefaces with #NetBeans , but #PHP mostly with #CoolEdit (Midnight Commander).
herve_02
in reply to Roland Häder🇩🇪 • • •Roland Häder🇩🇪 doesn't like this.
Roland Häder🇩🇪
in reply to herve_02 • •Roland Häder🇩🇪
in reply to Roland Häder🇩🇪 • •Roland Häder🇩🇪
Unknown parent • •/announcefor the announcement URL, closed registration, sorry). But I need a deployment scheme for that. Maybe I remove the high-res video and put into the tracker's folder?Roland Häder🇩🇪
Unknown parent • •btcopyannounceRoland Häder🇩🇪
in reply to Roland Häder🇩🇪 • •Current check from my local machine:
The first certificate cannot be verified. I think it is the "base" certificate I locally created and self-signed. Do I have to reorder the certificates here? It did work for many years!