Philip Schmid PhilipSchmid
PhilipSchmid
/ nodejs_gettingstarted.md
Last active
January 17, 2017 19:13
Getting started with nodeJS
PhilipSchmid
/ RHEL_switch_RHN_to_Subscription.md
Created
April 7, 2017 13:20
How to switch from RHN to Red Hat subscription-manager
PhilipSchmid
/ docker-compose.tmpl.yml
Created
August 13, 2018 15:44
docker-compose.yml template which covers most of the configurations which are used from time to time
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: "3.7" | |
| services: | |
| backend: | |
| image: registry.example.com/my-example-docker-image:stable | |
| restart: always | |
| hostname: my-example-service.example.com | |
| environment: | |
| TZ: Europe/Zurich | |
| env_file: |
PhilipSchmid
/ netflow.md
Created
December 19, 2018 08:47
Cisco IPv4 and IPv6 Netflow Example Configuration (Nexus 5k)
feature netflow
flow exporter elastic-exp
description elasticsearch exporter
destination 10.10.10.10 use-vrf XY
transport udp 9995
source Vlan123
dscp 0
version 9
PhilipSchmid
/ Firefox_CA_Truststore.md
Last active
December 20, 2018 09:23
Use the following commands to add CA certificates to the Firefox truststore via command line. Ensure Firefox is closed while running these commands! certutil comes with the installation of libnss3-tools.
certificateFileRoot="root.crt"
certificateNameRoot="Root CA"
certificateFileInter="intermediate.crt"
certificateNameInter="Intermediate CA"
# We use cert9.db and "sql:..." since cert8.db is in the legacy format
for certDB in $(find ~/.mozilla* -name "cert9.db")
PhilipSchmid
/ Firefox_Security_Device.md
Created
December 20, 2018 09:24
Use the following commands to add a security device module to Firefox. Ensure Firefox is closed while running these commands! modutil comes with the installation of libnss3-tools.
securityModuleDeviceName="My Awesome Module"
securityModulePath="/usr/lib/libBlaBla.so"
# We use cert9.db and "sql:..." since cert8.db is in the legacy format
for devicedDB in $(find ~/.mozilla* -name "cert9.db")
do
certDir=$(dirname ${devicedDB});
PhilipSchmid
/ traefik-docker-compose.tmpl.md
Last active
August 27, 2019 09:21
PhilipSchmid
/ nic-isolation-readme.md
Last active
April 29, 2020 11:30
Automatically add Linux NIC to namespace at system boot (e.g. used for Ethernet USB dongles with dynamic identifier)
Save the file nic-isolation.service to /etc/systemd/system/nic-isolation.service.
Afterwards reload the systemd daemon and enable & start the "service":
sudo systemctl daemon-reload
sudo systemctl enable nic-isolation.service
sudo systemctl start nic-isolation.service
PhilipSchmid
/ k8s-rbac-example.yaml
Created
October 23, 2020 15:12
A (more or less) complete RBAC example for Kubernetes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| # https://kubernetes.io/docs/concepts/policy/pod-security-policy/ | |
| # Attention: This PSP has quite some loose restrictions! Do not just copy & paste it! | |
| apiVersion: policy/v1beta1 | |
| kind: PodSecurityPolicy | |
| metadata: | |
| name: example | |
| spec: | |
| allowPrivilegeEscalation: true | |
| allowedCapabilities: |
OlderNewer