Amr Tj. Wallas TjWallas

## ddos.conf
### 1: Drop invalid packets ###
/sbin/iptables -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j DROP

### 2: Drop TCP packets that are new and are not SYN ###
/sbin/iptables -t mangle -A PREROUTING -p tcp ! --syn -m conntrack --ctstate NEW -j DROP

### 3: Drop SYN packets with suspicious MSS value ###
/sbin/iptables -t mangle -A PREROUTING -p tcp -m conntrack --ctstate NEW -m tcpmss ! --mss 536:65535 -j DROP

### 4: Block packets with bogus TCP flags ###

## OverEncrypt.md

      
              1 file
            
          
              14 forks
            
          
              7 comments
            
          
              150 stars
            
          
                mapmeld
                / OverEncrypt.md
            
            
              Last active
              July 25, 2023 18:55
            
              
                OverEncrypt - paranoid HTTPS
              
          
    OverEncrypt

This is a guide that I wrote to improve the default security of my website https://fortran.io , which has a certificate from LetsEncrypt. I'm choosing to improve HTTPS security and transparency without consideration for legacy browser support.
WARNING: if you mess up settings, lose your certificates, or decide to no longer maintain HTTPS certs, these steps can and will make your domain inaccessible.

I would recommend these steps only if you have a specific need for information security, privacy, and trust with your users, and/or maintain a separate secure.example.com domain which won't mess up your main site.  If you've been thinking about
hosting a site on Tor, then this might be a good option, too.
The best resources that I've found for explaining these steps are https://https.cio.gov , https://certificate-transparency.org , and https://twitter.com/konklone

  
## Effective_Engineer.md

      
              1 file
            
          
              1281 forks
            
          
              54 comments
            
          
              8370 stars
            
          
                rondy
                / Effective_Engineer.md
            
            
              Last active
              June 10, 2024 13:35
            
          
    FWIW: I (@rondy) am not the creator of the content shared here, which is an excerpt from Edmond Lau's book. I simply copied and pasted it from another location and saved it as a personal note, before it gained popularity on news.ycombinator.com. Unfortunately, I cannot recall the exact origin of the original source, nor was I able to find the author's name, so I am can't provide the appropriate credits.

Effective Engineer - Notes


By Edmond Lau
Highly Recommended 👍
http://www.theeffectiveengineer.com/

What's an Effective Engineer?


## replify
#!/bin/sh

command="${*}"
printf "Initialized REPL for `%s`\n" "$command"
printf "%s> " "$command"
read -r input
while [ "$input" != "" ];
do
    eval "$command $input"
    printf "%s> " "$command"

## quotes.json
[{"quote": "Life isn’t about getting and having, it’s about giving and being.", "author": "Kevin Kruse"},
{"quote": "Whatever the mind of man can conceive and believe, it can achieve.", "author": "Napoleon Hill"},
{"quote": "Strive not to be a success, but rather to be of value.", "author": "Albert Einstein"},
{"quote": "Two roads diverged in a wood, and I—I took the one less traveled by, And that has made all the difference.", "author": "Robert Frost"},
{"quote": "I attribute my success to this: I never gave or took any excuse.", "author": "Florence Nightingale"},
{"quote": "You miss 100% of the shots you don’t take.", "author": "Wayne Gretzky"},
{"quote": "I’ve missed more than 9000 shots in my career. I’ve lost almost 300 games. 26 times I’ve been trusted to take the game winning shot and missed. I’ve failed over and over and over again in my life. And that is why I succeed.", "author": "Michael Jordan"},
{"quote": "The most difficult thing is the decision to act, the rest is merely tenacity.", "author": "

## .md

      
              2 files
            
          
              1 fork
            
          
              3 comments
            
          
              8 stars
            
          
                joepie91
                / .md
            
            
              Last active
              May 16, 2024 14:53
            
              
                Playing a DI.fm channel in VLC Media Player
              
          
    A handy way to get around DI.fm's new restriction on third-party media players.
You can find a list of all the channels here. Change the CHANNEL variable to adjust the channel to listen to.
This originally comes from http://hackedtogether.blogspot.nl/2016/03/listen-to-difm-streams-with-vlc-as-free.html, but I've modified it a bit to no longer hardcode a path to VLC.

  
## macvlan_ipvlan_driver_notes.md

      
              1 file
            
          
              21 forks
            
          
              0 comments
            
          
              52 stars
            
          
                nerdalert
                / macvlan_ipvlan_driver_notes.md
            
            
              Last active
              March 10, 2024 16:21
            
          
    Macvlan, Ipvlan and 802.1q Trunk Driver Notes

Contents


Getting Started - Download and Install the Experimental Driver


MacVlan Bridge Mode Example Usage


Ipvlan L2 Mode Example Usage


## bling.js
/* bling.js */

window.$ = document.querySelectorAll.bind(document);

Node.prototype.on = window.on = function (name, fn) {
  this.addEventListener(name, fn);
}

NodeList.prototype.__proto__ = Array.prototype;

## anonymous
#!/bin/bash

user="CHANGEME"
pages=$(curl -I https://api.github.com/users/$user/starred | sed -nr 's/^Link:.*page=([0-9]+).*/\1/p')

for page in $(seq 0 $pages); do
    curl "https://api.github.com/users/$user/starred?page=$page&per_page=100" | jq -r '.[].html_url' |
    while read rp; do
      git clone $rp
    done

## sysctl.conf
#
# /etc/sysctl.conf - Configuration file for setting system variables
# See /etc/sysctl.d/ for additional system variables.
# See sysctl.conf (5) for information.
#

#kernel.domainname = example.com

# Uncomment the following to stop low-level messages on console
#kernel.printk = 3 4 1 3
	### 1: Drop invalid packets ###
	/sbin/iptables -t mangle -A PREROUTING -m conntrack --ctstate INVALID -j DROP

	### 2: Drop TCP packets that are new and are not SYN ###
	/sbin/iptables -t mangle -A PREROUTING -p tcp ! --syn -m conntrack --ctstate NEW -j DROP

	### 3: Drop SYN packets with suspicious MSS value ###
	/sbin/iptables -t mangle -A PREROUTING -p tcp -m conntrack --ctstate NEW -m tcpmss ! --mss 536:65535 -j DROP

	### 4: Block packets with bogus TCP flags ###
	#!/bin/sh

	command="${*}"
	printf "Initialized REPL for `%s`\n" "$command"
	printf "%s> " "$command"
	read -r input
	while [ "$input" != "" ];
	do
	eval "$command $input"
	printf "%s> " "$command"
	[{"quote": "Life isn’t about getting and having, it’s about giving and being.", "author": "Kevin Kruse"},
	{"quote": "Whatever the mind of man can conceive and believe, it can achieve.", "author": "Napoleon Hill"},
	{"quote": "Strive not to be a success, but rather to be of value.", "author": "Albert Einstein"},
	{"quote": "Two roads diverged in a wood, and I—I took the one less traveled by, And that has made all the difference.", "author": "Robert Frost"},
	{"quote": "I attribute my success to this: I never gave or took any excuse.", "author": "Florence Nightingale"},
	{"quote": "You miss 100% of the shots you don’t take.", "author": "Wayne Gretzky"},
	{"quote": "I’ve missed more than 9000 shots in my career. I’ve lost almost 300 games. 26 times I’ve been trusted to take the game winning shot and missed. I’ve failed over and over and over again in my life. And that is why I succeed.", "author": "Michael Jordan"},
	{"quote": "The most difficult thing is the decision to act, the rest is merely tenacity.", "author": "
	/* bling.js */

	window.$ = document.querySelectorAll.bind(document);

	Node.prototype.on = window.on = function (name, fn) {
	this.addEventListener(name, fn);
	}

	NodeList.prototype.__proto__ = Array.prototype;
	#!/bin/bash

	user="CHANGEME"
	pages=$(curl -I https://api.github.com/users/$user/starred \| sed -nr 's/^Link:.page=([0-9]+)./\1/p')

	for page in $(seq 0 $pages); do
	curl "https://api.github.com/users/$user/starred?page=$page&per_page=100" \| jq -r '.[].html_url' \|
	while read rp; do
	git clone $rp
	done
	#
	# /etc/sysctl.conf - Configuration file for setting system variables
	# See /etc/sysctl.d/ for additional system variables.
	# See sysctl.conf (5) for information.
	#

	#kernel.domainname = example.com

	# Uncomment the following to stop low-level messages on console
	#kernel.printk = 3 4 1 3