rra3b

Arch Linux Installation Guide

Tested with Yubikey 5 NFC and Yubikey 5c NFC, but any security key with FIDO2 should work too.

Prepare

1. Boot into the Arch Linux live ISO.
2. Change the root password:

passwd

taichunmin

Chameleon Ultra Factory Firmware

convert from hex by @shallax

• ultra-dfu-app.zip
• ultra-dfu-full.zip
• ultra-binaries.zip
• Factory Firmware (hex)

equipter

Mifare Classic - SAK Swapping Explained

What is SAK Swapping

Behaviour has been observered where some system using Mifare Classic credentials will identify with one SAK (0x08/18) on a basic search (Wake up) but when the block 0 is dumped, the SAK appears to be different (0x88)

This is because the SAK reported on a Wake up is not coming from Block 0 but is instead burned into the card, The SAK in Block 0 is merely a Vanity SAK.

If the dump is loaded onto a Magic Mifare Classic that Mirrors the vanity SAK as the actual SAK on Wake up it will tell the system that the credential is a duplicate & to deny access.

supersonictw

PHP 註解規範

通用註解寫法

一、文件的註解通用樣例（普通程式文件，類文件，函數文件，變量定義文件）

/**
 * XXXXX的文件
 *

tanthammar

{{-- You do not need to add this component if you are using the permanent option in the head component --}}
<script>
    if (!window.sessionTimerPermanent && window.Livewire) {
        window.livewire.hook('afterDomUpdate', startSessionTimer)
    }
    // if you are on livewire > 1.3.1 and want to avoid the default error alert
    // https://github.com/livewire/livewire/pull/1146

    window.livewire.onError(statusCode => {
        if (statusCode === 419) {

nd3w

How to Install Nginx, MariaDB, PHP-FPM on Ubuntu 20.04

This is a way to install and set up Nginx, MariaDB and PHP-FPM on Ubuntu 20.04.

NOTE: This has been prepared for ease of use in mind, not security, mostly in development machine. Please do not use these instructions to setup on a public server environment. Use other proper manuals instead.

$ sudo apt update

Nginx

artizirk

NB: This document describles a 'Old-School' way of using Yubikey with SSH

Modern OpenSSH has native support for FIDO Authentication. Its much simpler and should also be more stable with less moving parts. OpenSSH also now has support for signing arbitary files witch can be used as replacement of gnupg. Git also supports signing commits/tags with ssh keys.

Pros of FIDO

• Simpler stack / less moving parts
• Works directly with ssh, ssh-add and ssh-keygen on most computers
• Simpler
• Private key can never leave the FIDO device

Cons of FIDO

sshymko

#!/bin/sh

sudo yum install -y https://dev.mysql.com/get/mysql57-community-release-el7-11.noarch.rpm
sudo yum install -y mysql-community-client

bericp1

<?php

return [
  
  // ...

  'redis' => [
    'options' => [
      // Options can be specified here (with the lowest precedence).
    ],

muhozi

Setting up proper permissions to a laravel directory

There are basically two ways to setup your ownership and permissions. Either you give yourself ownership or you make the webserver the owner of all files.

Webserver as owner (the way most people do it):

Assuming www-data is your webserver user.