Fedora 23 TRIM SSDs

running fedora 23 with full-disk encryption on an SSD – no TRIM support?

fstrim: /home: the discard operation is not supported

now.. it is not in fstab because we run crypto so let’s do this the right way: (I think)
sources: neutrino.es
and christophersmart.com

1) in /etc/crypttab add “discard” to your crypto partition
<target name> <source /> <key> <options>
luks UUID=4aa302cb-4b9a-413b-a862-9856ed5ddbba none discard

2) in /etc/lvm/lvm.conf, at the end of the ‘devices’ section, set “issue_discards = 1

3) rebuild initramfs and reboot
grubby --update-kernel=ALL --args=rd.luks.options=discard
dracut -f

now it should work, check with fstrim –verbose –all

# fstrim –verbose –all
/home: 53,9 GiB (57874288640 bytes) trimmed
/boot: 324,6 MiB (340356096 bytes) trimmed
/: 21,9 GiB (23504187392 bytes) trimmed

4) use systemctl to run a weekly job for that
systemctl ebable fstrim.timer
systemctl start fstrim.timer
systemctl status fstrim.timer


# systemctl status fstrim.timer
‚óŹ fstrim.timer – Discard unused blocks once a week
Loaded: loaded (/usr/lib/systemd/system/fstrim.timer; enabled; vendor preset: disabled)
Active: active (waiting) since Do 2016-06-16 07:27:27 CEST; 15min ago
Docs: man:fstrim

Jun 16 07:27:27 anakin systemd[1]: Started Discard unused blocks once a week.
Jun 16 07:27:27 anakin systemd[1]: Starting Discard unused blocks once a week.

UPDATE: Seems Fedora 24 understands the kernel boot argument so:
edit /etc/default/grub and add rd.luks.options=discard to the end

GRUB_DISTRIBUTOR=”$(sed ‘s, release .*$,,g’ /etc/system-release)”
GRUB_CMDLINE_LINUX=”rd.lvm.lv=fedora/root rd.luks.uuid=luks-4aa302cb-4b9a-413b-a862-9856ed5ddbba rd.lvm.lv=fedora/swap r
hgb quiet rd.luks.options=discard

now just rebuild grub and the initramfs step should not be neccessary, anymore… (you do need the lvm part and the systemd timer)
grub2-mkconfig -o /boot/grub2/grub.cfg

owncloud ubuntu 16.04 and logwatch

log of installing owncloud on ubuntu server 16.04 with logwatch

following the default install manual

decide for root webserver or subdomain
(cloud.[domain].[tld]) or just my homeserver

moving data dir elsewhere and setting permissions

set up letsencrypt

open firewall for https

adding logwatch scripts

ownCloud log in Logwatch deel 1

ownCloud log in Logwatch deel 2

Ubuntu 16.04 LTS / firewalld/systemd and fail2ban

just before Fedora 24 I wanted to check out Ubuntu 16.04 LTS and the Gnome flavor.. basically same as last time it feels like 3 years in the past from fedora.
anyway, SystemD is now default and let’s see if I can get it to work as before

One Bummer: Fail2Ban doesn’t work with default settings!
it says in the log that it blocked but I could still connect…

solution: (in jail.local)
backend = systemd

this re-enables the functionality and I verified it works!

Continue reading

O2 micro sdcard reader doesn’t work with kernel 4.2/4.4 on DELL latitude

all of a sudden (don’t know when) my sdcard reader stopped working…

seems there is a bug report and discussion since 4.1.8

this guy seems to have fixed it:
Continue reading

openVPN server ubuntu

For those moments when you can’t trust the WLAN.. wherever that may be.
Let’s tunnel the connection using openVPN and get some security / bypass the nosey operator of the WLAN
(using Ubuntu server 14.04 here…)
the client side will be using network-manager

DISCLAIMER: we will be breaking some conventions here – the idea is that I will be the only user most of the time and there will be only one instance of openvpn running. Will adjust later if needed :)

Continue reading