Joseph Zikusooka (ZIK)

Linux Systems Engineer specializing in open source software technologies | Very experienced in building and configuring UNIX/Linux systems and servers. Passionate about developing software applications and hardware for the smart home | Currently serving as technologist at Jambula Labs and the project leader at JambulaTV, a smart home automation and entertainment platform - https://jambulatv.com | This blog focuses on the following areas: Linux How-Tos and Tutorials ::: IT Security News ::: Free and Libre Open Source Software ::: Smart Home Software ::: Digital Innovations in East Africa https://mastodon.social/@jzik | https://github.com/zikusooka

Author : Joseph Zikusooka

I am a software engineer and developer specializing in open source software. I have a solid experience building and configuring UNIX/Linux systems and servers. I am passionate about developing software applications and hardware for the smart home I am currently serving as the CEO of Jambula Labs and the project leader at JambulaTV, a smart home automation

Jambula OS Linux – Version 2025.1.0 Released

By Joseph ZikusookaPosted on Posted in Linux, News

I have just compiled and released a new image for Jambula OS Linux version 2025.1.0! This exciting update features a range of innovative enhancements, including:

๐ŸŒŸ Seamless integration with the latest Home Assistant smart home software

๐Ÿ“… Radicale, the lightweight and powerful CalDAV/CardDAV server for all calendaring needs

๐ŸŽต A local music server that supports audio announcements and alerts

๐Ÿ•ฐ๏ธ A talking clock feature that announces the time at hourly intervals

๐ŸŒฆ๏ธ Periodic weather updates delivered through voice alerts tailored to your location

๐Ÿ“ท MQTT-based triggers activated by motion detection from the built-in camera server

For more information about Jambula OS Linux, including instructions on how to download and install it, please visit:

https://github.com/zikusooka/Jambula-OS

Hass Core Installer, a new Home Assistant Installer and upgrade tool for Linux

By Joseph ZikusookaPosted on Posted in Apps, Code, Linux

I’m excited to announce that I have uploaded a new tool called HASS Core Installer. As you have guested, its a handy tool that makes it very easy to install, upgrade, and uninstall Home Assistant Core on Linux. So weather you are a beginner, intermediate, or advanced Home Assistant user, this tool is just what you need if any of the official and recommended methods are not sufficient for your use case.

I initially developed this tool for use on Jambula OS, a custom tailored Linux operating system designed for SoC devices such as the Raspberry Pi. However, you can use it on any Linux distribution such as Ubuntu, Fedora, OpenSUSE, Ubuntu, Debian etc.

HASS Core Installer also works off-line allowing for local installations and upgrades of Home Assistant in scenarios where there’s no access to the Internet.

To get started or contribute to this project, check out the HASS Core Installer repository on my Github!

Jambula OS Linux now offers support for Home Assistant

By Joseph ZikusookaPosted on Posted in Apps, Linux

๐Ÿš€โœจ Exciting news for smart home enthusiasts! I have added support for Home Assistant Core installs & upgrades to Jambula OS (starting with version 2024.10.0) ๐ŸŽ‰

โš™๏ธ Jambula OS is a custom Linux operating system ๐Ÿง designed specifically for SoC devices like the Raspberry Pi 5

โฌ‡๏ธ You can download it here: https://github.com/zikusooka/Jambula-OS/

๐Ÿก Upgrade today and kickstart your journey to creating a private, offline smart home ๐Ÿ’กhub!

Linux, Python, Security, and Open Source Software TIPS

By Joseph ZikusookaPosted on Posted in Linux
  • (no title)
    I've uploaded the latest ๐‰๐š๐ฆ๐›๐ฎ๐ฅ๐š ๐Ž๐’ image – version ๐Ÿ๐ŸŽ๐Ÿ๐Ÿ“.๐Ÿ—.๐ŸŽ. This release continues the work I've been doing to make Jambula OS, a reliable, lightweight Linux platform for SoC devices like the Raspberry Pi 5. If you're building smart automation solutions on embedded platforms, this update is definitely worth checking out.Highlights in this update: Bluetooth speaker support, Kea DHCP, and much more!https://code.jambula.net/zikusooka/Jambula-OS #JambulaOS
  • (no title)
    The talks from this year's Open Source Summit Europe are now available @linuxfoundationCheck out the full playlist at:https://youtube.com/playlist?list=PLbzoR-pLrL6qKwLt8A787ggMLHNivOHve#OSSummit #OSSEU
  • (no title)
    Hass Core Installer 2025.9.0 released! No major changes – I just updated to the latest Home Assistant release.This free and open source tool helps you install/upgrade Home Assistant via the (now deprecated) core method for those who prefer its flexibility. https://github.com/zikusooka/hass-core-installer#HomeAssistant #FOSS
  • (no title)
    For anyone interested in using Kea DHCP server on buildroot, I have submitted a new package patch that is currently awaiting upstream review. You can check it out here: https://patchwork.ozlabs.org/project/buildroot/patch/20250903113307.100754-1-zik@jambula.net/@iscdotorg #ZikTIPS #buildroot #dhcp #networking
  • (no title)
    ๐Ÿ’ก Calculate the number of days since a given date (e.g. 30 June 2025) on a Linux system:echo $(( ( $(date +%s) – $(date -d "2025-06-30" +%s) ) / 86400 ))@opensuse @fedora @debian #ZikTIPs #Linuxtips #LinuxTechTips #FOSS
  • (no title)
    ๐Ÿ’กDid you know you can just run the mount command with -m flag to create a non-existent mount point instead of first creating it.e.g. mount -m /dev/sdc1 /myflash#ZikTIPs #linuxtips #techti
  • (no title)
    So I won't be able to attend or present my previously scheduled talk at #FOSSY2025 in Portland, OR. Disappointed to miss this amazing event and the vibrant #FOSS community. Nevertheless, I wish everyone attending a fantastic conference filled with inspiring talks and great connections. Hope to join you all in person at #FOSSY25 #FOSSY2026! @conservancy
  • (no title)
    In FOSS circles, we often speak of representation, equity and community – but are we truly reaching those most affected by the digital divide?2 weeks ago at the conference in Nuremberg, I spoke about this & how it continues to shape access, opportunity & equity especially in rural regions of Africa. I explored how FOSS can be a tool for empowerment, resilience & impact @opensuseVideo: https://youtu.be/olMcEiI8EVw#FOSS #DigitalDivide #GlobalImpact #TechForGood
  • (no title)
    Had a great time at @opensuse Conference 2025 in Nuremberg! A highlight was the hands-on workshop by @tropicsquar, showcasing #TROPIC01 โ€” the first open and auditable secure element. A big step for verifiable hardware #security in systems, edge devices & secure infrastructure.Thanks to the Tropic Square team for the great session and the devkit#HardwareSecurity #EdgeComputing #TROPIC01 #TrustedHardware #SecureChips#IoTSecurity #NoObscurity #OpenHardware
  • (no title)
    Agama, the modern, adaptive and modular installer for @opensuse has reached a new milestone: Version 16For what's new, checkout: https://agama-project.github.io/blog/2025/07/04/agama-16If you're not yet familiar with Agama, watch this talk and live demo I did at the openSUSE Conference 2025 recently:https://youtu.be/LXJbOy-pXMc#Agama #FOSS
  • (no title)
    In case you missed my talks or others at the @openSUSE Conference that took place in Nuremberg, Germany #oSC25 – all sessions are now published and ready to watch! Dive in and catch up on the latest in #FOSShttps://t.co/63N4y6IDhK
  • (no title)
    Demo of Agama Linux Installer at OpenSUSE Conference 2025 โ€“ Nuremberg, GermanyOver the weekend at the OpenSUSE Conference 2025 in Nuremberg, Germany, I had the pleasure of showcasing Agama, the innovative new Linux installer set to debut in openSUSE Project Leap 16 and SUSE Linux Enterprise Server 16.While still in active development, this tool is shaping up impressively and promises to redefine the future of unatthttps://joseph.zikusooka.com/?p=2742#Tips
  • (no title)
    Yesterday at the OpenSUSE Conference 2025, I had the pleasure of demonstrating Agama – the innovative new Linux installer set to debut in @openSUSE Leap 16 and @Suse Linux Enterprise Server 16.Curious to learn more or get started? Explore the full documentation here:https://agama-project.github.io/docs/user#oSC25
  • (no title)
    It's Day 3 of #oSC25 here in Nuremberg, ๐Ÿ‡ฉ๐Ÿ‡ช! This morning I am talking about the future of automated and unattended๐ŸงLinux installations using ๐Ÿ’ป @openSUSE new tool called Agama.Looking forward to sharing ideas on what's next for openSUSE leap and especially .https://streaming.media.ccc.de/osc25#opensuse
  • (no title)
    Happy to be part of the openSUSE community as we celebrate 20 incredible years of freedom, stability, and fun at #oSC25 in beautiful Nuremberg, Germany ๐Ÿง๐ŸŽ‰ @opensuse It's been inspiring to connect with fellow Linux enthusiasts, contributors, and innovators while reflecting on two decades of open source excellence. Here's to making the next 20 years even more exciting!#openSUSE #oSC25 #openSUSE2025 #Nuremberg #FOSS #20YearsOfopenSUSE
  • (no title)
    It's Day 1 of OpenSUSE Conference 2025! Really excited about the lineup of speakers. Join me later this afternoon, as I talk about free and open source software empowerment, sharing my very own experiences as not only a user/developer but also an advocate of #FOSS on the African continent. Live streaming at: https://streaming.media.ccc.de/osc25@opensuse @SUSE #oSC25
  • (no title)
    I am currently in transit through Dubai, en route to the OpenSUSE Conference 2025 (#oSC25). Iโ€™m excited to be speaking about the transformative power of open source software like @OpenSUSE and its profound impact on empowering underserved communities.Join me this Wednesday at 10:45 CEST as I share my firsthand experiences from rural Africa and explore how open source is driving real change on the ground.https://events.opensuse.org/conferences/oSC25/program/proposals/4989
  • (no title)
    I'm excited to announce that I will be speaking at @opensuse Conference 2025 this week!I will be giving 2 talks – one close to my heart & another diving deep into technical content. It's a huge honor to share my work with the open source community.If you would like to support me in getting there, it is not too late to contribute to my travel fund:https://www.gofundme.com/f/fund-ziks-journey-to-global-tech-conferencesThank you for your supportTalks:https://events.opensuse.org/conferences/oSC25/program/proposals/4989https://events.opensuse.org/conferences/oSC25/program/proposals/4988#oSC25
  • (no title)
    Announcing Jambula OS Linux Version 2025.6.0 โ€“ Now Available!I'm excited to share that the latest image of Jambula OS Linux – Version 2025.6.0 is officially live!This small, maintenance-focused update wraps up important improvements as I look ahead to a week full of fresh open source ideas, conversations, and community engagement.Why Jambula OS?Jambula OS is a lightweight, flexible Linux distribution optimized shttps://joseph.zikusooka.com/?p=2731#Tips
  • (no title)
    ๐Ÿ’ก It's conference ๐ŸŽค season! Impress your audience with a slick QR code using these easy commands on Linuxโœ… Add your content to a text file:printf " Name: Zik Joseph\n Blog: https://zikusooka.com \n" > my_contacts.txtโœ… Convert text file (and contents) into QR code image:qrencode -o zik.png -r my_contacts.txtThats all! Add zik.png to your slides. Easy, classy.#ZikTIPS #TechTips #LinuxTips #Conference #FOSS

How to install the latest Python 3 version on Linux using sources

By Joseph ZikusookaPosted on Posted in Linux, tutorialTagged , ,

Introduction

Python 3.11.0 was officially released on October 24 2022. However, most Linux distributions have not yet upgraded to the latest Python version i.e. Python 3.11.2 (released on February 8 2023). Please visit this page to see the most recent versions.

The jump from versions 3.10.X to 3.11.X brought with it significant changes and improvements to Python code. Among the improvements is that Python is now 10 – 60% faster than before. Thatโ€™s a big and noticeable speed boost. So beyond the usual reasons for upgrades i.e. security etc, I really wanted this version on my Linux desktop as soon as the final release was made publicly available.

If you are like me and donโ€™t like waiting for your favourite open-source program to be supported on your Linux distribution, here is how to install the latest Python 3 version on Linux using sources.

Before you begin, check the current version on your Linux system:

python  --version

Currently the version of Python on my Linux system is three (3) releases behind. So it is time for me to upgrade to the most recent version.

CAUTION: Due to the many dependencies on the currently installed Python common package, I highly recommend that you do not remove the existing version. Instead, we will install the latest version in an alternate location e.g. /usr/local

Prerequisites

Please ensure that your Linux system has the following packages installed:

On Ubuntu or Debian:

sudo apt-get install build-essential

sudo apt-get install autoconf automake gdb libffi-dev zlib1g-dev libssl-dev libncurses5-dev libgdbm-dev libnss3-dev libreadline-dev libsqlite3-dev

On Fedora or Rocky Linux:

sudo dnf groupinstall “Development Toolsโ€

sudo dnf install openssl-devel libffi-devel bzip2-devel sqlite-devel

* You will also need wget which is generally included by default on most Linux distributions

Visit the Python downloads page for sources to get the direct link to latest Python source package. In this tutorial I will be using the XZ compressed source tarball i.e. Python-3.11.2.tar.xz

Download the latest Python package to a temporary directory:

wget  -c  -P /tmp  https://www.python.org/ftp/python/3.11.2/Python-3.11.2.tar.xz

Unpack the Python 3 tarball:

tar xvf /tmp/Python-3.11.2.tar.xz -C /usr/src

Compile and build Python:

cd  /usr/src/Python-3.11.2

./configure  --prefix=/usr/local  --enable-shared  --enable-optimizations  --with-system-expat  --with-system-ffi

IMPORTANT: Ensure the prefix i.e. โ€˜/usr/localโ€™ you use is different from that used by your Linux distribution otherwise you will overwrite the default Python 3 installation!

Optional: You can make some of your modules a permanent part of the Python interpreter. To do so, simply modify the file: Modules/Setup.local before running make. To see my my local setup, see the appendix.

sudo  make

TIP: you can add โ€œ– j $(getconf _NPROCESSORS_ONLN)โ€ to the make command in order to speed things up i.e. sudo make -j $(getconf _NPROCESSORS_ONLN)

sudo  make  altinstall

Add the following export command to your shell initialization file:

Using Bash shell:

echo  โ€œexport  LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/usr/local/libโ€  >>  ~/.bashrc

Then source the file for now:

source  ~/.bashrc

To verify if you now have the latest Python 3 (including pip installer) versions:

/usr/local/bin/python3.11 โ€“version

/usr/local/bin/pip3.11 โ€“version

Congratulations! You now have the latest Python 3 version on your Linux system.

NOTE: When your distribution eventually catches up, you can remove this installation by issuing the ‘make uninstall‘ command in the installation directory i.e. /usr/src/Python3.11

Appendix

Here’s my sample ./Modules/Setup.local file:

array -DPy_BUILD_CORE_MODULE arraymodule.c
_contextvars _contextvarsmodule.c
_struct -DPy_BUILD_CORE_MODULE _struct.c
_random _randommodule.c -DPy_BUILD_CORE_MODULE
_elementtree -I$(srcdir)/Modules/expat -DHAVE_EXPAT_CONFIG_H -DUSE_PYEXPAT_CAPI _elementtree.c
_pickle -DPy_BUILD_CORE_MODULE _pickle.c
_datetime _datetimemodule.c
_zoneinfo _zoneinfo.c -DPy_BUILD_CORE_MODULE
_bisect _bisectmodule.c
_asyncio _asynciomodule.c
_json -I$(srcdir)/Include/internal -DPy_BUILD_CORE_BUILTIN _json.c
unicodedata unicodedata.c -DPy_BUILD_CORE_BUILTIN
fcntl fcntlmodule.c
spwd spwdmodule.c
grp grpmodule.c
select selectmodule.c
mmap mmapmodule.c
_csv _csv.c
_socket socketmodule.c
termios termios.c
resource resource.c
_posixsubprocess  -DPy_BUILD_CORE_BUILTIN _posixsubprocess.c
audioop audioop.c
_md5 md5module.c
_sha1 sha1module.c
_sha256 sha256module.c -DPy_BUILD_CORE_BUILTIN
_sha512 sha512module.c -DPy_BUILD_CORE_BUILTIN
_sha3 _sha3/sha3module.c
_blake2 _blake2/blake2module.c _blake2/blake2b_impl.c _blake2/blake2s_impl.c
syslog syslogmodule.c
binascii binascii.c
zlib zlibmodule.c -I$(prefix)/include -L$(exec_prefix)/lib -lz
pyexpat expat/xmlparse.c expat/xmlrole.c expat/xmltok.c pyexpat.c -I$(srcdir)/Modules/expat -DHAVE_EXPAT_CONFIG_H -DXML_POOR_ENTROPY -DUSE_PYEXPAT_CAPI
_multibytecodec cjkcodecs/multibytecodec.c

How to use Linux GNOME terminal like a Pro

By Joseph ZikusookaPosted on Posted in Linux, Tips

For most users work is typically done in a web browser like Firefox or Chrome. (BTW, if you are not using Mozilla’s Firefox, I can not emphasize enough why you should switch to this opensource browser)
For advanced users i.e. IT admins, software developers, most of their time may be spent in a terminal and on Linux most often gnome terminal

Like regular users who prefer to open multiple tabs in a browser, using tabs in a terminal is necessary for an advanced user if they are to be productive. However, it can get pretty tedious and boring having to open up multiple terminal tabs in every time you start your Linux desktop

Using the command line tool gnome-terminal this process can be automated. This tool allows you to open multiple gnome-terminal tabs like a pro i.e. At desktop startup, open several & different tabs each with its own specified directory path or run command. You can even log into a remote system, if you have setup to allow passwordless SSH connections.

Below is a basic example of gnome-terminal command in action

gnome-terminal --maximize --geometry=80x24+200+200 --display=:0 --tab-with-profile=DAY -t Local --working-directory=/projects --tab-with-profile=NIGHT -t Remote -e "ssh -t jambula@REMOTE \"cd /opt; bash\""

I use this in a script which is activated by a custom keyboard shortcut to start my day

How to monitor the presence of nearby WiFi devices using Icinga2

By Joseph ZikusookaPosted on Posted in Tools, tutorial

Introduction

I recently published a Python based plugin for Icinga and Nagios monitoring platforms that monitors the presence of wireless devices in the vicinity.

I really like the stability and reliability Icinga provides when it comes to monitoring the state of hosts or services. There are so many software applications that let you do this, including one I talked about a while back called trackerjacker: https://github.com/calebmadrigal/trackerjacker

Why this way?

At first trackerjacker seemed like what I needed to do this sort of thing, but after several months of testing one issue persisted. The performance hit whenever I started the process was huge. The server, would frequently slow down, as packet capturing and monitoring of WiFi devices took place. So I decided to ditch this tool, and write my own plugin.

I am already using icinga on the server, so I figured, rather than write another app for polling, why not use the existing and well performing icinga2 monitoring software. After all, I had done this with bluetooth devices earlier and presence detection was working so well.

Pre-requisites

You are running a Linux based server with Icinga2 monitoring software installed, configured and working properly. There are several articles about how to install and configure icinga2 including the official documentation at:
https://icinga.com/docs/icinga-2/latest/doc/01-about/

The heavy lifting i.e. scanning is done by the Wireshark based CLI tool ‘tshark’. Therefore, ensure that Wireshark is installed on your system. Also, a separate wireless interface that supports monitor mode is required

To capture packets as a non-root user, run the following command in your terminal:
sudo setcap cap_net_raw,cap_net_admin+eip $(which dumpcap)

If you’re still having trouble capturing packets as a non-root user, check out the following Wireshark wiki page:
https://wiki.wireshark.org/CaptureSetup/CapturePrivileges#Most_UNIXes

You will need to identify the MAC address of each wireless device you plan on monitoring. For phones for example, this information is in the Settings >> General >> About >> WiFi Address for iOS. For Android, go to Settings >> About >> Status >> Wi-Fi MAC address

NOTE: Some phones like the iPhone may have MAC randomization enabled, which makes it difficult to reliably monitor their presence status

Setup Icinga2 plugin

Download icinga2 monitoring plugin named ‘check_tshark’ from my Github page at:
https://github.com/zikusooka/icinga-nagios-plugins

Alternatively, you can clone the entire repository and check out my other plugins too:

git clone https://github.com/zikusooka/icinga-nagios-plugins

Copy the icinga2 plugin i.e. check_tshark to your icinga2 monitoring plugins directory e.g. /usr/lib64/nagios/plugins/

cp -v check_tshark /usr/lib64/nagios/plugins/

Configure Icinga2

Add new check and event command objects to icinga2 i.e. Add and save the following snippets to the file:
/etc/icinga2/conf.d/commands.conf

object CheckCommand "tshark" {
        import "plugin-check-command",

        command = [ PluginDir + "/check_tshark" ]

        arguments = {
                "-i"="$tshark_interface$"
                "-t"="$tshark_timeout$"
                "-a"="$tshark_address$"
        }
}
object EventCommand "wifi-tshark-status-event" {
  import "plugin-event-command"

  command = [ SysconfDir + "/icinga2/scripts/wifi-tshark-status-event.sh" ]

  env = {
    "HOSTALIAS" = "$host.display_name$",
    "HOSTADDRESS" = "$address$",
    "HOSTSTATE" = "$host.state$",
    "HOSTSTATEID" = "$host.state_id$",
    "HOSTSTATETYPE" = "$host.state_type$",
    "HOSTOUTPUT" = "$host.output$",
    "HOSTDISPLAYNAME" = "$host.display_name$",
    "LASTHOSTSTATE" = "$host.last_state$",
    "LASTEHOSTSTATEID" = "$host.last_state_id$",
    "LASTHOSTSTATETYPE" = "$host.last_state_type$",
    "LASTHOSTSTATECHANGE" = "$host.last_state_change$",
    "LASTHOSTCHECK" = "$host.last_check$",
    "LONGDATETIME" = "$icinga.long_date_time$",
  }

}

Add new host templates to icinga2 i.e. Add and save the following snippets to the file:
/etc/icinga2/conf.d/templates.conf

template Host "event-tshark-status" {
  max_check_attempts = 6
  check_interval = 30s
  retry_interval = 5s

  check_command = "tshark"

  enable_event_handler = 1
  event_command = "wifi-tshark-status-event"

  enable_flapping = 1
  flapping_ignore_states = ["Critical"]
}

Finally add the wireless devices you want to monitor to the hosts in icinga2 i.e. Add and save the following snippets to the file:
/etc/icinga2/conf.d/hosts.conf

NOTE: In addition to the MAC address, make sure you specify the WiFi interface used for monitoring

object Host "Phone_Zik" {
  import "event-tshark-status"
  vars.tshark_interface = "wlan1"
  vars.tshark_timeout = 10
  vars.tshark_address = "xx:xx:xx:xx:xx:xx"
}

object Host "Phone_Shushu" {
  import "event-tshark-status"
  vars.tshark_interface = "wlan1"
  vars.tshark_timeout = 10
  vars.tshark_address = "xx:xx:xx:xx:xx:xx"
}

Optional: Add Alert notification using MQTT

In order to send alerts whenever a WiFi device appears or disappears, you will need to set up a MQTT broker server. I personally use mosquitto on Fedora Linux. For detailed instructions on how to setup mosquitto on Fedora Linux, check out this how to: https://nullr0ute.com/2016/05/getting-started-with-mqtt-using-the-mosquitto-broker-on-fedora/

Since, we have already enabled event handling for our monitored devices in icinga2, all that is left is to add an event script that will be triggered by the HOST state of either UP or DOWN. Here’s an example:

Create the following script and make it executable:

cat > /etc/icinga2/scripts/wifi-tshark-status-event.sh <<ET
#!/bin/sh
# Variables
TSHARK_MAC_ADDRESS=$(echo "$HOSTOUTPUT" | grep -oP "(?<=\[).+?(?=\])")
MQTT_TOPIC_PRESENCE_TSHARK=Home/presence/$TSHARK_MAC_ADDRESS
MQTT_PUBLISH_CMD=/usr/bin/mosquitto_pub
MQTT_PUBLISH_OPTS="--quiet -h 127.0.0.1 -p 8883"
# Quit if type of state alert is 'SOFT'
[[ "$HOSTSTATETYPE" = "SOFT" ]] && exit 0

# Publish status via MQTT
if [[ "$HOSTSTATE" = "UP" ]];
then
$MQTT_PUBLISH_CMD $MQTT_PUBLISH_OPTS -t "$MQTT_TOPIC_PRESENCE_TSHARK" -m "Home"

else
$MQTT_PUBLISH_CMD $MQTT_PUBLISH_OPTS -t "$MQTT_TOPIC_PRESENCE_TSHARK" -m "Away"
fi
ET
 
chmod 755 /etc/icinga2/scripts/wifi-tshark-status-event.sh

To check your configuration and that all syntax is correct; run the following command:

icinga2 daemon -C

If all’s OK, restart icinga2 as follows:

systemctl restart icinga2

Conclusion

Next, log into your icinga2 web interface (if you have this setup) and ensure your devices are reporting correctly.

In order to monitor alerting via MQTT run the following command in a terminal:

mosquitto_sub -v -h JambulaTV -p 8883 -t "JambulaTV/#" --insecure  | grep presence

That’s all for now. Until next time!

How to automatically backup your data to an external USB disk on Linux

By Joseph ZikusookaPosted on Posted in tutorial

Introduction

One of the most critical roles that any Systems Administrator must perform on a regular basis is that of running backups for an organization. These days, most big and medium sized offices use Network Attached Storage servers to quickly perform backups on their networks. However, for small offices with limited IT budgets, a DIY solution which uses a simple USB external hard drive is a viable option.

In this setup, the resident “IT guy” is assigned the task of backing up data. This could be from a handful of desktops/laptops, or a central backup server. However, the problem with this setup is that they often will forget to plug in the disk or even initiate the manual backup process, leading to a very unreliable backup scheme.

In this article, I will guide you on how to set up a cheaper, reliable and automated backup scheme. All the operator has to do is to plug in the USB external hard disk any time, and the backup process commences immediately.

This solution takes advantage of a bash script that is triggered once the USB hard disk is inserted into the computer desktop or laptop’s USB ports. The trigger mechanism is handled by udev rules via a systemd unit as will be shown below.

Prerequisites

Operating system: Linux
Desktop: GNOME – mainly for notification purposes
Username: erica (Must have permissions to run ‘sudo’)
Data: /home
Partition is NOT encrypted. See ‘cryptsetup’ tool

Create the following backup script. Save it and make it executable:

vim /opt/backup_2_usb_disk.sh
chmod 755 /opt/backup_2_usb_disk.sh

#!/bin/sh
# Variables
NORMALUSER=erica
VOLUMENAME=BACKUP
USB_DISK_PARTITION=$USB_DISK_PARTITION1
MOUNTPOINT=/run/media/$NORMALUSER/$VOLUMENAME
RSYNC_OPTIONS="-aAXvHโ€
# Excludes 4 /home
EXCLUDE_FILE_4_HOME_DIR=/tmp/exclude_dirs_in_home_dir
EXCLUDE_DIRECTORIES_IN_HOME_DIR="Videos"
NOTIFY_CMD=/usr/bin/notify-send 
NOTIFY_ICON=/usr/share/icons/gnome/scalable/devices/media-zip-symbolic.svg
NOTIFY_TITLE=""


# Functions
notice () {
su -l $NORMALUSER -c "$NOTIFY_CMD -i $NOTIFY_ICON $NOTIFY_TITLE '$@'"
}

disable_automount () {
su -l $NORMALUSER -c "dbus-launch gsettings set org.gnome.desktop.media-handling automount false"
su -l $NORMALUSER -c "dbus-launch gsettings set org.gnome.desktop.media-handling autorun-never true"
}

sync_data () {
sudo rsync $RSYNC_OPTIONS --delete "$1" "$2"
}

mount_partition () {
# Create mountpoint if it does not exist
[ -d $MOUNTPOINT ] || mkdir -p $MOUNTPOINT
# Mount drive
mount $USB_DISK_PARTITION $MOUNTPOINT
STATUS_MOUNT=$?
if [ "$STATUS_MOUNT" != "0" ];
then
notice "ERROR: mount $USB_DISK_PARTITION $MOUNTPOINT failed"
exit 1
fi
}

backup_thinkpad () {
# Create backupdir directory
[ -d $MOUNTPOINT ] || mkdir $MOUNTPOINT

# Start of backup
notice "Backup Started"

# /home
echo $EXCLUDE_DIRECTORIES_IN_HOME_DIR | tr " " "\n" > $EXCLUDE_FILE_4_HOME_DIR
sleep 3
rsync $RSYNC_OPTIONS --delete --exclude-from=$EXCLUDE_FILE_4_HOME_DIR /home/ $MOUNTPOINT/home/
rm -f $EXCLUDE_FILE_4_HOME_DIR

# other partitions
}

umount_partition () {
umount $USB_DISK_PARTITION
STATUS_UMOUNT=$?
if [ "$STATUS_UMOUNT" != "0" ];
then
notice "ERROR: umount $USB_DISK_PARTITION failed"
exit 1
fi
}

enable_automount () {
su -l $NORMALUSER -c "dbus-launch gsettings set org.gnome.desktop.media-handling automount true"
su -l $NORMALUSER -c "dbus-launch gsettings set org.gnome.desktop.media-handling autorun-never false"
}


# Process the following routines
disable_automount
mount_partition
backup_thinkpad 
umount_partition
enable_automount 

# Notice of completion
sleep 10
notice "Backup completed successfully"

Start/Stop service

Create the systemd unit file:
/etc/systemd/system/backup-usb-disk.service and add the following:

[Unit]
Description=USB Portable Drive

[Service]
User=root
Type=oneshot
Environment=DISPLAY=:0
ExecStart=/opt/backup_2_usb_disk.sh

[Install]
WantedBy=multi-user.target

NOTES:
Reload systemd daemon i.e. ‘systemctl –system daemon-reload’
It is not necessary to enable or start the above unit at this time
since that will be done by the udev rule below.

UDEV rules

Create the udev rules file: /etc/udev/rules.d/97-backup-usb-disk.rules and add the following:

ACTION=="add", ATTRS{idVendor}=="0bc2", ATTRS{idProduct}=="2400", SYMLINK+="disk/by-id/$env{ID_NAME}_$env{ID_SERIAL}", RUN+="/usr/bin/systemctl start backup-usb-disk.service"

ACTION=="remove", ATTRS{idVendor}=="0bc2", ATTRS{idProduct}=="2400", RUN+="/usr/bin/systemctl stop backup-usb-disk.service"

NOTES:
To find your USB disk Vendor and Product ID, run the command:

udevadm info -a -p $(udevadm info -q path -n /dev/sdX) | grep -B2 -i -e idvendor -e idproduct


Change ‘X’ to suit your setup
Run the command ‘udevadm control –reload’ to reload the rules

Conclusion

That’s it! Now when ever, the USB external disk is plugged into the USB port, the backup script will be triggered. You can extend the above mentioned backup script to not only back up other partitions beyond just the /home in our example, but also email the operator whenever the process completes.

Scroll to top