Private drone setup with Docker, haproxy and letsencrypt

First a persistent storage on my NAS: Added NFS share "drone" on my ReadyNAS by clicketiclick. sudo mkdir /var/lib/drone add to /etc/fstab: 10.0.1.30:/raiden/drone /var/lib/drone nfs auto 0 0 sudo mount -a Get and setup drone sudo docker pull drone/drone In /var/lib/drone/dronerc: REMOTE_DRIVER=github REMOTE_CONFIG=https://github.com?c…

Read More

Add Lets Encrypt to JDK keystore

Will probably need to do this on more client machines: wget https://letsencrypt.org/certs/isrgrootx1.pem wget https://letsencrypt.org/certs/letsencryptauthorityx1.der sudo keytool -trustcacerts -keystore /Library/Java/JavaVirtualMachines/jdk1.8.0_65.jdk/Contents/Home/jre/lib/security/cacerts -storepass changeit -noprompt -importcert -alias isrgro…

Read More

Setting up a docker registry

As part of my new "infrastructure setup" I need my own private docker registry. This is of course run as a docker container. Prerequisites: docker docker-compose Create and mount data storage on host machine I create an NFS share on my NAS and mount it in fstab: 10.0.1.30:/raiden/docker /var/lib/docker-registry nfs auto 0 0 Setup htpass…

Read More

Let's encrypt with haproxy

Install HAProxy: Latest stable 1.6: sudo add-apt-repository ppa:vbernat/haproxy-1.6 sudo apt-get update sudo apt-get install haproxy Haproxy plugin for webroot validation: I used this haproxy plugin to be able to serve simple files so that I can use the "webroot" validation protocol of the letsencrypt client: https://github.com/janeczku/haproxy-acm…

Read More

SSH key and encrypted home folder in Ubuntu.

I want to have encrypted home folder while still being able too login with ssh key without password or passphrase. The instructions here https://help.ubuntu.com/community/SSH/OpenSSH/Keys are lacking. Found https://stephen.rees-carter.net/thought/encrypted-home-directories-ssh-key-authentication instead. So for me running bash, what's lacking is…

Read More