Skip to content

Instantly share code, notes, and snippets.

🔐
...

Aaron Zauner azet

🔐
...
Block or report user

Report or block azet

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@azet
azet / gist:8693255
Created Jan 29, 2014
fuck you too, ASA.
View gist:8693255
vpn(config)# ldap attribute-map group_vpn-users
vpn(config-ldap-attribute-map)# map-name memberOf vpn-users
^
ERROR: % Invalid input detected at '^' marker.
vpn(config-ldap-attribute-map)# map-name memberOf vpnusers
^
ERROR: % Invalid input detected at '^' marker.
vpn(config-ldap-attribute-map)# map-name memberOf vpn_users
^
ERROR: % Invalid input detected at '^' marker.
@azet
azet / threading.tcl
Last active Aug 29, 2015
threading in Tcl with package "Thread"
View threading.tcl
package require Thread
set network "192.168.0"
set threads 8
# create $threads number of threads
for {set t 0} {$t < $threads} {incr t} {
set thread_id [thread::create {
puts " >> thread [thread::id] started."
proc example_function {value} {
@azet
azet / force_automation
Created Feb 7, 2014
expect(1) script to force puppet on EL6 hosts in a subnet
View force_automation
#!/usr/bin/expect -f
#
# force puppet on previously unmanaged centos 6 hosts
#
# author: Aaron <azet@azet.org> Zauner @ 7.2.2014
# depends: expect
# license: MIT
#
set timeout 60
@azet
azet / gist:8979114
Last active Aug 29, 2015
mail regarding security flaws in Nagios NRPE to nagios devel and security lists
View gist:8979114
Return-Path: <azet@azet.org>
Received: from [10.60.20.43] ([193.170.94.254])
by mx.google.com with ESMTPSA id f45sm8725929eeg.5.2014.02.13.08.32.23
for <multiple recipients>
(version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
Thu, 13 Feb 2014 08:32:24 -0800 (PST)
Message-ID: <52FCF399.7090208@azet.org>
Date: Thu, 13 Feb 2014 17:32:25 +0100
From: Aaron Zauner <azet@azet.org>
@azet
azet / gist:8976605
Last active Aug 29, 2015
tcpdump of NRPE 2.15 traffic unencrypted
View gist:8976605
16:03:58.075728 IP (tos 0x0, ttl 64, id 1424, offset 0, flags [DF], proto TCP (6), length 52)
localhost.5666 > localhost.54453: Flags [.], cksum 0xee83 (correct), seq 1, ack 1037, win 545, options [nop,nop,TS val 254913063 ecr 254913063], length 0
0x0000: 4500 0034 0590 4000 4006 3732 7f00 0001 E..4..@.@.72....
0x0010: 7f00 0001 1622 d4b5 ea35 afb6 a38f ed10 ....."...5......
0x0020: 8010 0221 ee83 0000 0101 080a 0f31 aa27 ...!.........1.'
0x0030: 0f31 aa27 .1.'
16:03:58.077265 IP (tos 0x0, ttl 64, id 1425, offset 0, flags [DF], proto TCP (6), length 1088)
localhost.5666 > localhost.54453: Flags [P.], cksum 0x0235 (incorrect -> 0xc7da), seq 1:1037, ack 1037, win 545, options [nop,nop,TS val 254913064 ecr 254913063], length 1036
0x0000: 4500 0440 0591 4000 4006 3325 7f00 0001 E..@..@.@.3%....
0x0010: 7f00 0001 1622 d4b5 ea35 afb6 a38f ed10 ....."...5......
@azet
azet / gist:9069927
Created Feb 18, 2014
convert .flac to .mp3 for iPhone itunes bullshit, thx to @zeha
View gist:9069927
find . -iname '*.flac' -exec mkdir -p "converted/{}" \; -exec ffmpeg -i "{}" -q:a 1 "converted/{}.mp3" \;
@azet
azet / gist:9175353
Last active Aug 29, 2015
os x curl and gotofail
View gist:9175353
azet@silenus ~ % otool -L `which curl`
/usr/bin/curl:
/usr/lib/libcurl.4.dylib (compatibility version 7.0.0, current version 8.0.0)
/usr/lib/libz.1.dylib (compatibility version 1.0.0, current version 1.2.5)
/usr/lib/libSystem.B.dylib (compatibility version 1.0.0, current version 1197.1.1)
azet@silenus ~ % sudo dtruss "curl https://imperialviolet.org:1266" &> dtruss_curl
azet@silenus ~ % grep -i 'crypto\|security' dtruss_curl
stat64("/System/Library/Frameworks/Security.framework/Versions/A/Security\0", 0x7FFF56BAF088, 0x7FFF56BAFF20) = 0 0
stat64("/usr/lib/system/libcorecrypto.dylib\0", 0x7FFF56BAEE98, 0x7FFF56BAFD30) = 0 0
stat64("/usr/lib/system/libcommonCrypto.dylib\0", 0x7FFF56BAEA08, 0x7FFF56BAF8A0) = 0 0
View keybase.md

Keybase proof

I hereby claim:

  • I am azet on github.
  • I am azet (https://keybase.io/azet) on keybase.
  • I have a public key whose fingerprint is 7CB6 197E 385A 02DC 15D8 E223 E4DB 6492 FDB9 B5D5

To claim this, I am signing this object:

@azet
azet / debug.pp
Last active Aug 29, 2015
debugging utilities for CentOS VMs
View debug.pp
# additional packages for server vms
case $::operatingsystem {
'CentOS': {
# = package management:
# * yum changelog is needed e.g. for yum-security-check.pl
# = debugging:
# * kexec-tools in case it's needed
# * mtr
# * sysstat
# * perf
@azet
azet / fuckjava.bash
Last active Aug 29, 2015
adding a CA to openjdk keystore (i will certainly forget this)
View fuckjava.bash
keytool -import -alias foobar -file bla.crt -destkeystore /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/lib/security/cacerts
You can’t perform that action at this time.