Compare commits

..

No commits in common. "e1d9d425004a231eee55c8b6bf353d5a8bb71980" and "1e5b838e69d0db3f07b995d131580fb980184765" have entirely different histories.

4 changed files with 47 additions and 55 deletions

View File

@ -82,11 +82,9 @@ preferred will _always_ be email. In order of preference…
[Libera]: https://libera.chat/ [Libera]: https://libera.chat/
[NixNet]: https://docs.nixnet.services/IRC [NixNet]: https://docs.nixnet.services/IRC
{{< adm type="tip" >}}
If you choose to contact me over XMPP, please use OMEMO encryption and If you choose to contact me over XMPP, please use OMEMO encryption and
manually verify the above fingerprints. Any other keys should be manually verify the following fingerprints. Any other keys should be
marked as _untrusted_. marked as _untrusted_.
{{< /adm >}}
```text ```text
Desktop: 356C7395 B6A79738 DCE819CF E49F3146 9DD3E4E3 C753CF13 140358B8 7540A969 Desktop: 356C7395 B6A79738 DCE819CF E49F3146 9DD3E4E3 C753CF13 140358B8 7540A969

View File

@ -87,7 +87,7 @@ device and give it access to your network. Store it in a safe,
preferably encrypted location. preferably encrypted location.
```bash ```bash
nebula-cert ca -name "nebula.example.com" nebula-cert ca -name "nebula.example.com"
``` ```
I'll explain why we used a Fully-Qualified Domain Name (FQDN) as the I'll explain why we used a Fully-Qualified Domain Name (FQDN) as the
@ -101,7 +101,7 @@ Now that we have the CA's `.crt` and `.key` files, we can create and sign
keys and certificates for the lighthouse. keys and certificates for the lighthouse.
```bash ```bash
nebula-cert sign -name "buyvm.lh.nebula.example.com" -ip "192.168.100.1/24" nebula-cert sign -name "buyvm.lh.nebula.example.com" -ip "192.168.100.1/24"
``` ```
Here, we're using a FQDN for the same reason as we did in the CA. You Here, we're using a FQDN for the same reason as we did in the CA. You
@ -219,17 +219,17 @@ executable, then move it to `/usr/local/bin` (or some other location
fitting for your platform). fitting for your platform).
```bash ```bash
wget https://github.com/slackhq/nebula/releases/download/vX.X.X/nebula-PLATFORM-ARCH.tar.gz wget https://github.com/slackhq/nebula/releases/download/vX.X.X/nebula-PLATFORM-ARCH.tar.gz
tar -xvf nebula-* tar -xvf nebula-*
chmod +x nebula chmod +x nebula
mv nebula /usr/local/bin/ mv nebula /usr/local/bin/
rm nebula-* rm nebula-*
``` ```
Now we need a place to store our config file, keys, and certificates. Now we need a place to store our config file, keys, and certificates.
```bash ```bash
mkdir /etc/nebula/ mkdir /etc/nebula/
``` ```
The next step is copying the config, keys, and certificates to the The next step is copying the config, keys, and certificates to the
@ -246,17 +246,17 @@ installed on the VPS before attempting to run the commands though;
you'll get an error otherwise. you'll get an error otherwise.
```bash ```bash
rsync -avmzz ca.crt user@example.com: rsync -avmzz ca.crt user@example.com:
rsync -avmzz config.yml user@example.com: rsync -avmzz config.yml user@example.com:
rsync -avmzz buyvm.lh.* user@example.com: rsync -avmzz buyvm.lh.* user@example.com:
``` ```
SSH back into the server and move everything to `/etc/nebula/`. SSH back into the server and move everything to `/etc/nebula/`.
```bash ```bash
mv ca.crt /etc/nebula/ mv ca.crt /etc/nebula/
mv config.yml /etc/nebula/ mv config.yml /etc/nebula/
mv buyvm.lh* /etc/nebula/ mv buyvm.lh* /etc/nebula/
``` ```
Edit the config file and ensure the `pki:` section looks something like Edit the config file and ensure the `pki:` section looks something like
@ -272,7 +272,7 @@ pki:
Run the following command to make sure everything works properly. Run the following command to make sure everything works properly.
```bash ```bash
nebula -config /etc/nebula/config.yml nebula -config /etc/nebula/config.yml
``` ```
The last step is daemonizing Nebula so it runs every time the server The last step is daemonizing Nebula so it runs every time the server
@ -282,20 +282,20 @@ you're using something else, check the [the examples directory](https://github.c
options. options.
```text ```text
[Unit] [Unit]
Description=nebula Description=nebula
Wants=basic.target Wants=basic.target
After=basic.target network.target After=basic.target network.target
Before=sshd.service Before=sshd.service
[Service] [Service]
SyslogIdentifier=nebula SyslogIdentifier=nebula
ExecReload=/bin/kill -HUP $MAINPID ExecReload=/bin/kill -HUP $MAINPID
ExecStart=/usr/local/bin/nebula -config /etc/nebula/config.yml ExecStart=/usr/local/bin/nebula -config /etc/nebula/config.yml
Restart=always Restart=always
[Install] [Install]
WantedBy=multi-user.target WantedBy=multi-user.target
``` ```
We're almost done! We're almost done!
@ -311,7 +311,7 @@ address `192.168.100.2`. The resulting files would go on the _remote_ node
not yours. Replace `HOST` and `USER` with fitting values. not yours. Replace `HOST` and `USER` with fitting values.
```bash ```bash
nebula-cert sign -name "HOST.USER.nebula.example.com" -ip "192.168.100.2/24" nebula-cert sign -name "HOST.USER.nebula.example.com" -ip "192.168.100.2/24"
``` ```
The following command will create a _similar_ cert/key but it will be part The following command will create a _similar_ cert/key but it will be part
@ -321,7 +321,7 @@ will be able to VNC and SSH into other nodes. Your nodes need to be in
the `support` group so you'll have access to the others. the `support` group so you'll have access to the others.
```bash ```bash
nebula-cert sign -name "HOST.USER.nebula.example.com" -ip "192.168.100.2/24" -groups "support" nebula-cert sign -name "HOST.USER.nebula.example.com" -ip "192.168.100.2/24" -groups "support"
``` ```
On to the config now. This tells the node that it is _not_ a lighthouse, On to the config now. This tells the node that it is _not_ a lighthouse,
@ -384,7 +384,7 @@ start up, make sure it's running correctly, press `Ctrl` + `C`, then add the
command to the DE's startup applications! command to the DE's startup applications!
```bash ```bash
x11vnc --loop -usepw -listen <nebula-ip> -display :0 x11vnc --loop -usepw -listen <nebula-ip> -display :0
``` ```
`--loop` tells `x11vnc` to restart once you disconnect from the session. `--loop` tells `x11vnc` to restart once you disconnect from the session.
@ -466,7 +466,7 @@ Nebula to start up and connect before it tells SSH to start; run
section, above `[Service]`. section, above `[Service]`.
```text ```text
After=nebula.service After=nebula.service
``` ```
Even now, there's still a bit of a hiccup. Systemd won't start SSH until Even now, there's still a bit of a hiccup. Systemd won't start SSH until
@ -476,7 +476,7 @@ causing SSH to crash. To fix _this_, add the following line directly below
`[Service]`. `[Service]`.
```text ```text
ExecStartPre=/usr/bin/sleep 30 ExecStartPre=/usr/bin/sleep 30
``` ```
If the `sleep` executable is stored in a different location, make sure you If the `sleep` executable is stored in a different location, make sure you
@ -494,7 +494,7 @@ restart sshd`. You should be able to connect to the remote node from your
node using the following command. node using the following command.
```bash ```bash
ssh USER@<nebula-ip> ssh USER@<nebula-ip>
``` ```
If you want to make the command a little simpler so you don't have to If you want to make the command a little simpler so you don't have to
@ -502,7 +502,7 @@ remember the IP every time, create `~/.ssh/config` on your node and add
these lines to it. these lines to it.
```text ```text
Host USER Host USER
Hostname <nebula-ip> Hostname <nebula-ip>
User USER User USER
``` ```

View File

@ -1,21 +1,18 @@
--- ---
title: Making yourself overly available
draft: true draft: true
cover: ./cover.png cover: ./cover.png
--- ---
## References \*\* TODO Making yourself overly available
[Stop. Breathe. We Cant Keep Working Like This.](https://www.nytimes.com/2021/03/05/opinion/ezra-klein-podcast-cal-newport.html?showTranscript=1) \*\*\* References
[[https://www.nytimes.com/2021/03/05/opinion/ezra-klein-podcast-cal-newport.html?showTranscript=1][Stop. Breathe. We Cant Keep Working Like This.]]
## Notes **\* Notes
\*\*** Get rid of information that isn't important \***\* Escalate the info that is
\*\*** Set /clear/ boundaries for when you are available \***\* Enforce those with automatic DnD rules or use timers
\*\*** With groups...
**\*** Specialisation is /good/ and should be /encouraged/
**\*** /All/ of the above points apply with coworkers as well
- Get rid of information that isn't important \*\*\* TODO Pong Jake when finished
- Escalate the info that is
- Set /clear/ boundaries for when you are available
- Enforce those with automatic DnD rules or use timers
- With groups...
- Specialisation is _good_ and should be _encouraged_
- _All_ of the above points apply with coworkers as well
Pong Jake when finished

View File

@ -69,9 +69,6 @@ code {
border-radius: 3px; border-radius: 3px;
padding: 0 4px; padding: 0 4px;
} }
pre {
margin: 15px -14px;
}
code, code,
pre { pre {
font-size: 16px; font-size: 16px;