Skip to content

Instantly share code, notes, and snippets.

Avatar
🔐
...

Aaron Zauner azet

🔐
...
View GitHub Profile
@azet
azet / gist:8693255
Created Jan 29, 2014
fuck you too, ASA.
View gist:8693255
vpn(config)# ldap attribute-map group_vpn-users
vpn(config-ldap-attribute-map)# map-name memberOf vpn-users
^
ERROR: % Invalid input detected at '^' marker.
vpn(config-ldap-attribute-map)# map-name memberOf vpnusers
^
ERROR: % Invalid input detected at '^' marker.
vpn(config-ldap-attribute-map)# map-name memberOf vpn_users
^
ERROR: % Invalid input detected at '^' marker.
@azet
azet / threading.tcl
Last active Aug 29, 2015
threading in Tcl with package "Thread"
View threading.tcl
package require Thread
set network "192.168.0"
set threads 8
# create $threads number of threads
for {set t 0} {$t < $threads} {incr t} {
set thread_id [thread::create {
puts " >> thread [thread::id] started."
proc example_function {value} {
@azet
azet / force_automation
Created Feb 7, 2014
expect(1) script to force puppet on EL6 hosts in a subnet
View force_automation
#!/usr/bin/expect -f
#
# force puppet on previously unmanaged centos 6 hosts
#
# author: Aaron <azet@azet.org> Zauner @ 7.2.2014
# depends: expect
# license: MIT
#
set timeout 60
@azet
azet / gist:8979114
Last active Aug 29, 2015
mail regarding security flaws in Nagios NRPE to nagios devel and security lists
View gist:8979114
Return-Path: <azet@azet.org>
Received: from [10.60.20.43] ([193.170.94.254])
by mx.google.com with ESMTPSA id f45sm8725929eeg.5.2014.02.13.08.32.23
for <multiple recipients>
(version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
Thu, 13 Feb 2014 08:32:24 -0800 (PST)
Message-ID: <52FCF399.7090208@azet.org>
Date: Thu, 13 Feb 2014 17:32:25 +0100
From: Aaron Zauner <azet@azet.org>
@azet
azet / gist:8976605
Last active Aug 29, 2015
tcpdump of NRPE 2.15 traffic unencrypted
View gist:8976605
16:03:58.075728 IP (tos 0x0, ttl 64, id 1424, offset 0, flags [DF], proto TCP (6), length 52)
localhost.5666 > localhost.54453: Flags [.], cksum 0xee83 (correct), seq 1, ack 1037, win 545, options [nop,nop,TS val 254913063 ecr 254913063], length 0
0x0000: 4500 0034 0590 4000 4006 3732 7f00 0001 E..4..@.@.72....
0x0010: 7f00 0001 1622 d4b5 ea35 afb6 a38f ed10 ....."...5......
0x0020: 8010 0221 ee83 0000 0101 080a 0f31 aa27 ...!.........1.'
0x0030: 0f31 aa27 .1.'
16:03:58.077265 IP (tos 0x0, ttl 64, id 1425, offset 0, flags [DF], proto TCP (6), length 1088)
localhost.5666 > localhost.54453: Flags [P.], cksum 0x0235 (incorrect -> 0xc7da), seq 1:1037, ack 1037, win 545, options [nop,nop,TS val 254913064 ecr 254913063], length 1036
0x0000: 4500 0440 0591 4000 4006 3325 7f00 0001 E..@..@.@.3%....
0x0010: 7f00 0001 1622 d4b5 ea35 afb6 a38f ed10 ....."...5......
@azet
azet / gist:9069927
Created Feb 18, 2014
convert .flac to .mp3 for iPhone itunes bullshit, thx to @zeha
View gist:9069927
find . -iname '*.flac' -exec mkdir -p "converted/{}" \; -exec ffmpeg -i "{}" -q:a 1 "converted/{}.mp3" \;
@azet
azet / gist:9175353
Last active Aug 29, 2015
os x curl and gotofail
View gist:9175353
azet@silenus ~ % otool -L `which curl`
/usr/bin/curl:
/usr/lib/libcurl.4.dylib (compatibility version 7.0.0, current version 8.0.0)
/usr/lib/libz.1.dylib (compatibility version 1.0.0, current version 1.2.5)
/usr/lib/libSystem.B.dylib (compatibility version 1.0.0, current version 1197.1.1)
azet@silenus ~ % sudo dtruss "curl https://imperialviolet.org:1266" &> dtruss_curl
azet@silenus ~ % grep -i 'crypto\|security' dtruss_curl
stat64("/System/Library/Frameworks/Security.framework/Versions/A/Security\0", 0x7FFF56BAF088, 0x7FFF56BAFF20) = 0 0
stat64("/usr/lib/system/libcorecrypto.dylib\0", 0x7FFF56BAEE98, 0x7FFF56BAFD30) = 0 0
stat64("/usr/lib/system/libcommonCrypto.dylib\0", 0x7FFF56BAEA08, 0x7FFF56BAF8A0) = 0 0
View keybase.md

Keybase proof

I hereby claim:

  • I am azet on github.
  • I am azet (https://keybase.io/azet) on keybase.
  • I have a public key whose fingerprint is 7CB6 197E 385A 02DC 15D8 E223 E4DB 6492 FDB9 B5D5

To claim this, I am signing this object:

@azet
azet / debug.pp
Last active Aug 29, 2015
debugging utilities for CentOS VMs
View debug.pp
# additional packages for server vms
case $::operatingsystem {
'CentOS': {
# = package management:
# * yum changelog is needed e.g. for yum-security-check.pl
# = debugging:
# * kexec-tools in case it's needed
# * mtr
# * sysstat
# * perf
@azet
azet / fuckjava.bash
Last active Aug 29, 2015
adding a CA to openjdk keystore (i will certainly forget this)
View fuckjava.bash
keytool -import -alias foobar -file bla.crt -destkeystore /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0.x86_64/jre/lib/security/cacerts
You can’t perform that action at this time.