Skip to content

Instantly share code, notes, and snippets.

Avatar

Aleksei Niemi

View GitHub Profile
@Niemi
Niemi / tls_checker
Created Oct 13, 2020
check tls 1.3 connection without nmap
View tls_checker
#https://isc.sans.edu/forums/diary/Testing+TLSv13+and+supported+ciphers/25442/
$ for cipher in TLS_AES_128_GCM_SHA256 TLS_AES_256_GCM_SHA384 TLS_CHACHA20_POLY1305_SHA256 TLS_AES_128_CCM_SHA256 TLS_AES_128_CCM_8_SHA256 ; do openssl s_client -tls1_3 -ciphersuites $cipher -connect www.cloudflare.com:443 < /dev/null > /dev/null 2>&1 && echo "$cipher" ; done
View gist:7c8c326c35885d461ce0272e1d96fb68
[Unit]
Description=Java App
Requires=network.target
After=syslog.target
[Service]
User=tomcat
Group=tomcat
#EnvironmentFile=/etc/profile.d/java
Environment='JAVA_OPTS=-Djava.awt.headless=true -Djava.net.preferIPv4Stack=true -Dfile.encoding=utf-8 -Djava.security.egd=file:/dev/./urandom -Xss256k -Xmx128m -Xms128m'
ExecStart=/usr/bin/java -jar /home/app/app.jar
@Niemi
Niemi / ca
Created Jul 3, 2017
Apache Cassandra Init.d Script by Author: Eric Evans <eevans@racklabs.com>
View ca
#! /bin/sh
### BEGIN INIT INFO
# Provides: cassandra
# Required-Start: $remote_fs $network $named $time
# Required-Stop: $remote_fs $network $named $time
# Should-Start: ntp mdadm
# Should-Stop: ntp mdadm
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
# Short-Description: distributed storage system for structured data
View tomcat_systemd.conf
[Unit]
Description=Apache Tomcat Web Application Container
After=network.target
[Service]
Type=forking
Environment=JAVA_HOME=/usr/lib/jvm/latest/jre
Environment=CATALINA_PID=/opt/tomcat/work/tomcat.pid
Environment=CATALINA_HOME=/opt/tomcat
View Self Signed Cert w OpenSSL
#https://wiki.mozilla.org/SecurityEngineering/x509Certs (read it)
#openssl minimum version 1.0.1
export somedomainname="example.com"
#cat > openssl.ss.cnf << EOF
#basicConstraints = CA:FALSE
#subjectAltName =DNS:$somedomainname
#extendedKeyUsage =serverAuth
#EOF
#generate Elliptic Curve Cryptography Self Signed Key
openssl req -new -x509 -sha256 -nodes \
@Niemi
Niemi / gist:d434f2b94566796a4502
Last active Sep 16, 2015 — forked from dannysheehan/gist:9d67adb67eeef6ad1413
haproxy.cfg configuration for 1Gb KVM with 1 CPU with backend NGINX and percona /mariadb cluster.
View gist:d434f2b94566796a4502
#---------------------------------------------------------------------------
# @(#)$Id$
#title :/etc/haproxy/haproxy.cfg
#description :ftmon cluster haproxy config. NGINX and XtraDB Cluster backend
#author :Danny W Sheehan
#date :July 2014
#website :ftmon.org
#
# This is a work in progress. A lot of trial and error and man hours have
# gone into this configuration. I have referenced sources that have been
@Niemi
Niemi / gist:25cee1ff594de7e9e05c
Last active Sep 16, 2015 — forked from dannysheehan/gist:d26067dcc3599c4226aa
/etc/nginx/common/nginx.conf basic NGINX location rules common to all website platforms. Should be included in all virtual site configurations.
View gist:25cee1ff594de7e9e05c
#---------------------------------------------------------------------------
# @(#)$Id$
#title :/etc/nginx/common/nginx.conf
#description :ftmon cluster nginx common config for all sites.
#author :Danny W Sheehan
#date :July 2014
#website :ftmon.org
#
# This is a work in progress. A lot of trial and error and man hours have
# gone into this configuration. I have referenced sources that have been
View gist:549a7d9f1d49e1be59c2
#---------------------------------------------------------------------------
# @(#)$Id$
#title :/etc/nginx/common/wpcommon.conf
#description :ftmon cluster nginx common configurations for Wordpress.
#author :Danny W Sheehan
#date :July 2014
#website :ftmon.org
#
# This is a work in progress. A lot of trial and error and man hours have
# gone into this configuration. I have referenced sources that have been
View Nginx script for virtal hosts adding
#!/bin/bash
#must be url where i get it (thanks to Author)
# Info
# ---
# script can run with the domain as a command line input
# `sudo ./nginx_domain.sh my_domain.com` or without and
# the script will prompt the user for input
#config
web_root='/usr/share/nginx/'
@Niemi
Niemi / jenkins_standalone_init.d.sh
Created Aug 19, 2015
Init.d script for Jenkins-CI standalone (Tested on Ubuntu 14.04)
View jenkins_standalone_init.d.sh
#! /bin/sh
#/etc/init.d/jenkins
### BEGIN INIT INFO
# Provides: Jenkins-CI
# Required-Start: $local_fs $remote_fs $network $syslog $named
# Required-Stop: $local_fs $remote_fs $network $syslog $named
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
# Short-Description: Jenkins-server daemon
# Description: "Jenkins CI Server"