MikroTik and L2TP alternative for Android

June 12, 2024UncategorizedRoman

Android 12 dropped support for L2TP. If you are looking for alternative and OpenVPN is not possible, because it’s setup in TAP mode, which is not supported on Android nor iPhone, you may try SSTP instead. SSTP (Secure Socket Tunneling Protocol) is protocol developed by Microsoft.

There is a open source client Open SSTP available Google Play. However MikroTik’s PAP implementation does not seem to work, so your only option is to use MS-CHAPv2, but it is more secure anyway!

C-TECH Lycaon Gamepad Drivers

May 20, 2024WindowsRoman

The drivers seems to no longer be available on the C-TECH website.

You can download them below.

lycaon-drivers Download

Request admin (UAC) access from Windows batch (.bat) file

April 26, 2024PowerShellRoman

Put the following code snippet into the top of your bat file. PowerShell is required.

"%SYSTEMROOT%\system32\cacls.exe" "%SYSTEMROOT%\system32\config\system"
IF %ERRORLEVEL% NEQ 0 (
  powershell -Command "Start-Process -Verb RunAs -FilePath '%0' -ArgumentList '%*'"
  exit /b
)

Duo Security for Android 8.0

March 28, 2024Duo SecurityRoman

Duo Security currently supports Android 10+. If you need to install Duo Security on older Android you can download APK from their site. The latest version with 8.0 support seems to be 4.33.

USB 3.0 with VirtualBox on Windows 7 Guest

March 7, 2024VirtualBoxRoman

Windows 7 does not come with USB 3.0 controller drivers. It will display error during installation and won’t find driver using Windows Update.

Intel USB 3.0 eXtensible Host Controller Driver needs to be installed. But it is no longer available for download. You can download it using Internet Archive or use a backup link below.

IntelR_USB_3.0_eXtensible_Host_Controller_Driver Download

Migrate subfolder to separate git repository

January 27, 2024Arch Linux, GitRoman

Let’s say you have a repository structure like below (eg. because previously it was SVN repository where everything was on one place).

.\Web
- .\example.com
- .\example.net
- …

Now you would like to move example.com to separate git repository.

First of all, you need to install git-filter-repo.

# Clone old repository to new directory
git clone OLD_REPOSITORY example.com
cd example.com/

# Remove everything else except example.com directory
git filter-repo --path example.com/

# Make example.com new root directory
git filter-repo --subdirectory-filter example.com

# Push to a new repository
git remote add origin NEW_REPOSITORY
git push -u origin master

Connect to Mac using VNC from Windows using encrypted connection

January 16, 2024Mac, VNCRoman

On Mac you need to enable Remote Login and Screen Sharing.

Note: If Remote Login is not starting with message “Remote Login starting…” you might need to manually add a launch daemon:
sudo launchctl load -w /System/Library/LaunchDaemons/ssh.plist

On Windows run Powershell and create encrypted SSH tunnel. Replace USERNAME with your user name and MAC_IP_ADDRESS with IP address of your Mac.

ssh -L 25900:127.0.0.1:5900 USERNAME@MAC_IP_ADDRESS

Now use a VNC client (eg. RealVNC Viewer) and connect to 127.0.0.1:25900. RealVNC will still complain about unsecure connection but the connection will be local only (127.0.0.1).

UniFi Protect behind nginx proxy

January 12, 2024NGINX, UniFiRoman

Below is a snippet of nginx configuration that will enable access to your UniFi Controller (eg. Unifi Cloud Key Gen2) using nginx reverse proxy.

server {
        listen 443 ssl;
        server_name example.com;

        location / {
                include /etc/nginx/proxy_params;
                proxy_pass https://IP_ADDRESS_OF_THE_CONTROLLER/;

                # WebSocket support
                proxy_http_version 1.1;
                proxy_set_header Upgrade $http_upgrade;
                proxy_set_header Connection "upgrade";
        }
}

Installing Arch Linux ARM on Raspberry PI 3

January 7, 2024Arch LinuxRoman

Insert SD card to your system.

sudo fdisk -l
sudo fdisk /dev/sdX

Create partitions.

Clear partitions (o)
Create boot partition (n, p, 1, enter, +500M, t, c)
Create system partition (n, p, 2, enter, enter)
Write partitions (w)

sudo mkfs.vfat /dev/sdX1
sudo mkfs.ext4 /dev/sdX2

Mount new partitions.

sudo mkdir /mnt/boot/
sudo mkdir /mnt/root/

sudo mount /dev/sdx1 /mnt/boot/
sudo mount /dev/sdx2 /mnt/root/

Download and install Arch Linux ARM.

wget http://os.archlinuxarm.org/os/ArchLinuxARM-rpi-aarch64-latest.tar.gz
sudo su
tar zxvf ArchLinuxARM-rpi-aarch64-latest.tar.gz -C /mnt/root
mv /mnt/root/boot/* /mnt/boot
sync
umount /mnt/boot/
umount /mnt/root/

Remove SD card, insert it into Raspberry PI and boot it to complete the installation.

pacman-key --init
pacman-key --populate archlinuxarm
pacman -Syu

Append value to Multi SZ Registry value using PowerShell

January 2, 2024PowerShellRoman

In the sample bellow the PowerShell script will append a service into RemoteAccessCheckExemptionList in registry. It also checks whether the value already exists there or not.

$subkey = 'SYSTEM\CurrentControlSet\Control\SecurePipeServers\SCM'
$value  = 'RemoteAccessCheckExemptionList'

$reg = [Microsoft.Win32.RegistryKey]::OpenRemoteBaseKey('LocalMachine', $server)
$key = $reg.OpenSubKey($subkey, $true)
$list = $key.GetValue($value)

if ($list -notcontains 'MyServiceName') {
  $list += 'MyServiceName'
}

$key.SetValue($value, [string[]]$list, 'MultiString')