jeremy avnet brainsik
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| upstream_recursive_servers: | |
| - address_data: 9.9.9.9 | |
| tls_auth_name: "dns.quad9.net" | |
| tls_pubkey_pinset: | |
| - digest: "sha256" | |
| value: MujBQ+U0p2eZLTnQ2KGEqs+fPLYV/1DnpZDjBDPwUqQ= |
brainsik
/ add-ca-to-java.sh
Created
September 7, 2017 00:58
Command to add a CA to your Java key store
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $jre/bin/keytool \ | |
| -import \ | |
| -trustcacerts \ | |
| -file /path/to/MyIntermediateCA.crt \ | |
| -alias MyIntermediateCA \ | |
| -keystore $jre/lib/security/cacerts \ | |
| -storepass changeit \ | |
| -noprompt |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # client TLS parameters | |
| smtp_tls_security_level = secure | |
| smtp_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1,!TLSv1.1 | |
| smtp_tls_mandatory_ciphers = high | |
| smtp_tls_cert_file=/etc/letsencrypt/live/XXX/fullchain.pem | |
| smtp_tls_key_file=/etc/letsencrypt/live/XXX/privkey.pem | |
| smtp_tls_CAfile = /etc/ssl/certs/ca-certificates.crt | |
| smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache | |
| smtp_tls_loglevel = 1 | |
| smtp_tls_note_starttls_offer = yes |
I hereby claim:
- I am brainsik on github.
- I am brainsik (https://keybase.io/brainsik) on keybase.
- I have a public key whose fingerprint is 5D80 FC62 9CEF 8FAE 737C DDED 19A1 D142 4FE9 8E13
To claim this, I am signing this object:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ terraform plan | |
| Refreshing Terraform state prior to plan... | |
| The Terraform execution plan has been generated and is shown below. | |
| Resources are shown in alphabetical order for quick scanning. Green resources | |
| will be created (or destroyed and then created if an existing resource | |
| exists), yellow resources are being changed in-place, and red resources | |
| will be destroyed. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ terraform plan | |
| Refreshing Terraform state prior to plan... | |
| The Terraform execution plan has been generated and is shown below. | |
| Resources are shown in alphabetical order for quick scanning. Green resources | |
| will be created (or destroyed and then created if an existing resource | |
| exists), yellow resources are being changed in-place, and red resources | |
| will be destroyed. |
Mozilla Operations Security (OpSec) team:
- Cipher suite: Modern compatibility
- General server config: Nginx
brainsik
/ get_me_loggin.py
Last active
December 30, 2015 07:49
Quick logging config for Python shell
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import logging; logging.basicConfig(level=logging.DEBUG) |