pi-hole Conditional Forwarding

I've had pi-hole for quite a while but something that hassled me was the choice between either running it as my DHCP server or forwarding all upstream queries through my router (which is my DHCP server today) and losing DNSSEC, performance and so on. Today I finally got around to testing and implementing conditional forwarding for my pi-hole! Step 1 - Create a custom configuration file, in my case it's [Read More]

Kerberos, Proxies and CNAMEs

Just another quick note on something I stumbled across recently that hopefully someone finds it useful. Assuming you use a HTTP/HTTPS web proxy and you want authentication so that you can log requests against specific users chances are you are using Kerberos authentication. The alternative is basic (but then your users get prompted) or NTLM. The problem with NTLM is that it is comparitively heavy and if you require [Read More]

Splunk, SAML and NotBefore Verification

Just a quick note to anyone deploying SAML (in my case ADFS) for Splunk. I'm running 6.5.0 and although it seemed to be working early on after not too long I started to see the following error on logon: The 'NotBefore' condition could not be verified successfully. The saml response is not valid. After a little investigation it seemed likely that Splunk was rejecting the assertion from ADFS [Read More]

Docker, Ghost and Insufficient Memory

Not sure if this is specific to Ghost (possibly not) and I need to look into this more but I had an annoying issue recently while trying to do some memory restrictions on Docker for Ghost. The blog would sometimes start but often fail during migration/upgrade or randomly when the admin interface was accessed. I'd recently made a change to introduce memory restrictions (to properly define boundaries for garbage [Read More]

Docker interface in Synology appliances doesn't show some tags

Update 25 Nov 2016 - This issue is resolved in the DSM 6.1 Beta, hopefully it's coming down the line soon! So most of my little bits an pieces (including this blog at present) are now hosted on my Synology NAS using Docker. It'll let me move stuff around if traffic increases but at the moment it suites me just fine. Anyway a problem I've noticed recently is that [Read More]