Profile cover photo
Profile photo
shahada abubakar
192 followers
192 followers
About
Posts

Post has attachment

I remember a time when acquiring SSL certificates to enable HTTPS on a web server was a tedious process ... not only did you have to subscribe but you would need to verify your identity by submitting all kinds of paperwork to prove your existence.

These days you can get SSL Certificates sign-by browser recognized certificate authorities for FREE. The catch with most of them is that they are only valid for short periods such as 30 or 90 days, and you have to update your certs to a renewed version before they expire.

letsencrypt.org, one of the providers of free SSL certs makes this easier by automating the process of requesting and renewing a certificate, using a protocol named ACME. By using tools that support ACME you can maintain your SSL certificates easily.

There are a number of tools that support ACME -- the list can be found here. Most can be run in a Linux-based web server, and regularly renew your SSL certificate and update your web server automatically. I tried a few of them, and while many would work on a full blown Linux server such as CentOS or Ubuntu, very few would run on an OpenWRT router.

In the end I managed to get the dehydrated ACME client to work. Here are my notes.

http://blog.shahada.abubakar.net/post/getting-free-ssl-certificates-from-letsencrypt-org-on-openwrt-using-dehydrated-ssl
Add a comment...

Post has attachment
I wanted to run a http (port 80) and https (port 443) reverse proxy on my router, and luci running on port 80 got on the way. So I decided to move luci to run on a different port ...

http://blog.shahada.abubakar.net/post/relocating-luci-to-a-different-port-on-openwrt-15-05-1-chaos-calmer
Add a comment...

Post has attachment
I wanted to upgrade the apache http server reverse proxy in my OpenWRT router to support https (http over Secured Socket Layer (SSL) -- basically a way to encrypt web traffic to a server). This is so I can allow access to my home-based resources over https, something which is becoming the norm these days. This should be simple enough to do in apache http server, but it turns out the build of apache on my router breaks http when https is enabled.

I looked at haproxy, which is small and light, and while it supports reverse proxying by domain name and also support HTTPS, it is not able to do reverse proxying that requires URL mapping -- something I can foresee needing in the future.

Finally I checked out nginx, which is also small and light, and seems like it would do what I need. However, I discovered that nginx on the version of openwrt in my router is built without SSL.

So I decided to explore how to recompile nginx to include SSL support ...

Read on at http://blog.shahada.abubakar.net/post/adding-ssl-to-nginx-on-openwrt-chaos-calmer-15-05-1
Add a comment...

Post has attachment
**DIY 3D Printer Enclosure - Repurposing the IKEA LACK Table**

I decided to re-purpose the IKEA LACK coffee table into an enclosure for my 3D printer. It's a well known hack that when stacked, among other things, the LACK is the perfect size for the Original Prusa I3 MK 2 printer (and most i3-style printers), and I already had two of IKEA LACKs in the house ...

Read on at http://blog.shahada.abubakar.net/post/diy-3d-printer-enclosure-repurposing-the-ikea-lack-table
Add a comment...

Post has attachment
A few more flight videos from a recent trip, flying MH851 between WMKK and WADD on 15 Dec 2016. Aircraft was a B737-800, with registration 9M-MXT.
FlightLog: WMKK - WADD 15 Dec 2016
FlightLog: WMKK - WADD 15 Dec 2016
blog.shahada.abubakar.net
Add a comment...

Post has attachment

Post has attachment
One Switch, Two Doorbells : DIY Doorbell Extender

My dad approached me with an interesting problem to solve ... the doorbell in their house is hard to hear from the tv room or dining room. Given that 90% of the deliveries made to the house are stuff I've ordered, I had vested interest to solve this ...

Read on at http://blog.shahada.abubakar.net/post/1-switch-two-doorbells-diy-doorbell-extender-a-nocpu-project
Add a comment...

Post has attachment
After almost giving up on getting a Pi Zero shipped to Malaysia at a reasonable price , I found a local seller offering them at http://www.raspberryware.com/ .

Read on at http://blog.shahada.abubakar.net/post/finally-got-my-hands-on-a-raspberry-pi-zero .
Add a comment...

Post has attachment

*Fixing A Faulty MicroSD Latch on Raspberry Pi Model B+*

"So with everything ready to power up, I formatted Raspbian onto a new MicroSD, and pushed it into the slot ... only to have the card pop back out again! Hmm ... push ... pop. Push ... Pop. Checked to make sure I had the card the right side up ... Push ... Pop. Tried with a different MicroSD ... push ... pop ..."

Read on at http://blog.shahada.abubakar.net/post/fixing-a-faulty-microsd-latch-on-raspberry-pi-model-b ...
Add a comment...

Post has attachment
Well it looks like the Note 7 has reached the end of it's short but eventful Journey.

Read on at http://blog.shahada.abubakar.net/post/the-end-of-the-road ...
The End Of The Road ...
The End Of The Road ...
blog.shahada.abubakar.net
Add a comment...
Wait while more posts are being loaded