David Baumann daBONDi

## ufw.md

      
              1 file
            
          
              70 forks
            
          
              39 comments
            
          
              276 stars
            
          
                kimus
                / ufw.md
            
            
              Created
              March 2, 2014 22:46
            
              
                NAT and FORWARD with Ubuntu’s ufw firewall
              
          
    UFW

I use Ubuntu’s Uncomplicated firewall because it is available on Ubuntu and it's very simple.
Install UFW

if ufw is not installed by default be sure to install it first.


## fortigate52.pattern
FORTIDATE %{YEAR:year}\-%{MONTHNUM:month}\-%{MONTHDAY:day}
FORTIGATE_52BASE <%{NUMBER:syslog_index}>date=%{FORTIDATE:date} time=%{TIME:time} devname=%{HOST:hostname} devid=%{HOST:devid} logid=%{NUMBER:logid} type=%{WORD:type} subtype=%{WORD:subtype} eventtype=%{WORD:eventtype} level=%{WORD:level} vd=\"%{WORD:vdom}\"
FORTIGATE_52BASEV2 <%{NUMBER:syslog_index}>date=%{FORTIDATE:date} time=%{TIME:time} devname=%{HOST:hostname} devid=%{HOST:devid} logid=%{NUMBER:logid} type=%{WORD:type} subtype=%{WORD:subtype} level=%{WORD:level} vd=\"%{WORD:vdom}\"
FORTIGATE_52IPS severity=%{WORD:severity} srcip=%{IP:srcip} dstip=%{IP:dstip} sessionid=%{NUMBER:sessionid} action=%{DATA:action} proto=%{NUMBER:proto} service=%{DATA:service} attack="%{DATA:attack}" srcport=%{NUMBER:srcport} dstport=%{NUMBER:dstport} direction=%{NUMBER:direction} attackid=%{NUMBER:attackid} profile=\"%{DATA:profile}\" ref=\"%{DATA:ref}\";? incidentserialno=%{NUMBER:incidentserialno} msg=\"%{GREEDYDATA:msg}\"
FORTIGATE_52DOS severity=%{WORD:severity} s

## grunt-hugo-lunrjs.md

      
              1 file
            
          
              34 forks
            
          
              23 comments
            
          
              183 stars
            
          
                sebz
                / grunt-hugo-lunrjs.md
            
            
              Last active
              June 28, 2024 18:41
            
              
                hugo + gruntjs + lunrjs = <3 search
              
          
How to implement a custom search for Hugo usig Gruntjs and Lunrjs.

Requirements

Install the following tools:

Nodejs
Gruntjs

Setup


## new_app.py
if __name__ == "__main__":
    reactor_args = {}

    def run_twisted_wsgi():
        from twisted.internet import reactor
        from twisted.web.server import Site
        from twisted.web.wsgi import WSGIResource

        resource = WSGIResource(reactor, reactor.getThreadPool(), app)
        site = Site(resource)

## ansible-summary.md

      
              1 file
            
          
              348 forks
            
          
              20 comments
            
          
              760 stars
            
          
                andreicristianpetcu
                / ansible-summary.md
            
            
              Created
              May 30, 2016 19:25
            
              
                This is an ANSIBLE Cheat Sheet from Jon Warbrick
              
          
    An Ansible summary

Jon Warbrick, July 2014, V3.2 (for Ansible 1.7)
Configuration file

intro_configuration.html
First one found from of

  
## iis_auth_allsteps.md

      
              1 file
            
          
              3 forks
            
          
              17 comments
            
          
              18 stars
            
          
                PatrickLang
                / iis_auth_allsteps.md
            
            
              Last active
              March 2, 2024 20:18
            
              
                Setting up IIS with User Authorization in Windows Server containers
              
          
    Create a resource group

Create a resource group in Azure to hold all of the resources you'll be creating:

Virtual Network
Virtual Machines


Create a VNet


Don't use 172.* IPs. I used 10.3.0.0/24


## server2016_slipstream.md

      
              1 file
            
          
              2 forks
            
          
              8 comments
            
          
              13 stars
            
          
                PatrickLang
                / server2016_slipstream.md
            
            
              Last active
              July 20, 2023 07:52
            
              
                Automated deployments of Windows Server 2016
              
          
This is a draft that will ultimately be blogged later. If you're seeing this after April 2017 it's probably out of date.

Making a pre-updated Windows Server 2016 ISO

Prerequisites


Install the Windows Assessment and Deployment Toolkit
Download a Windows Server 2016 ISO such as the trial here - TODO
Download the latest cumulative update


## Configure-SecureWinRM.ps1
 <#
.SYNOPSIS
  Configures a secure WinRM listener over HTTPS to enable
  SSL-based WinRM communications. This script has not been
  tested on Windows Server 2003R2 or earier, and may not
  work on these OSes for a variety of reasons.

  If Windows Remote Management is disabled (e.g. service
  stopped, GPO Policy, etc.), this script will likely fail.
.DESCRIPTION

## ansible_debug_vscode.md

      
              1 file
            
          
              1 fork
            
          
              1 comment
            
          
              3 stars
            
          
                Deepakkothandan
                / ansible_debug_vscode.md
            
            
              Last active
              September 2, 2020 22:33
            
              
                Debug ansible with vscode
              
          
    Ansible VSCode Debugging


VSCode version 1.23.1
Create launch.json for python attach
Make sure ptvsd version is 3.0.0 pip install ptvsd==3.0.0

{
    "name": "Python: Attach",
 "type": "python",


## win_lineinfile - Disable Default AJP Connector Port - cve20201938
- name: "Ensure Tomcat AJP Connector on Port 8009 is Disabled"
  win_lineinfile:
    path: "c:/temp/server.xml"
    regex: '^(\s*)(<Connector port="8009" protocol="AJP\/1\.3" redirectPort="8443" \/>)'
    backrefs: true
    line: '$1<!-- $2 -->'
	FORTIDATE %{YEAR:year}\-%{MONTHNUM:month}\-%{MONTHDAY:day}
	FORTIGATE_52BASE <%{NUMBER:syslog_index}>date=%{FORTIDATE:date} time=%{TIME:time} devname=%{HOST:hostname} devid=%{HOST:devid} logid=%{NUMBER:logid} type=%{WORD:type} subtype=%{WORD:subtype} eventtype=%{WORD:eventtype} level=%{WORD:level} vd=\"%{WORD:vdom}\"
	FORTIGATE_52BASEV2 <%{NUMBER:syslog_index}>date=%{FORTIDATE:date} time=%{TIME:time} devname=%{HOST:hostname} devid=%{HOST:devid} logid=%{NUMBER:logid} type=%{WORD:type} subtype=%{WORD:subtype} level=%{WORD:level} vd=\"%{WORD:vdom}\"
	FORTIGATE_52IPS severity=%{WORD:severity} srcip=%{IP:srcip} dstip=%{IP:dstip} sessionid=%{NUMBER:sessionid} action=%{DATA:action} proto=%{NUMBER:proto} service=%{DATA:service} attack="%{DATA:attack}" srcport=%{NUMBER:srcport} dstport=%{NUMBER:dstport} direction=%{NUMBER:direction} attackid=%{NUMBER:attackid} profile=\"%{DATA:profile}\" ref=\"%{DATA:ref}\";? incidentserialno=%{NUMBER:incidentserialno} msg=\"%{GREEDYDATA:msg}\"
	FORTIGATE_52DOS severity=%{WORD:severity} s
	if __name__ == "__main__":
	reactor_args = {}

	def run_twisted_wsgi():
	from twisted.internet import reactor
	from twisted.web.server import Site
	from twisted.web.wsgi import WSGIResource

	resource = WSGIResource(reactor, reactor.getThreadPool(), app)
	site = Site(resource)
	<#
	.SYNOPSIS
	Configures a secure WinRM listener over HTTPS to enable
	SSL-based WinRM communications. This script has not been
	tested on Windows Server 2003R2 or earier, and may not
	work on these OSes for a variety of reasons.

	If Windows Remote Management is disabled (e.g. service
	stopped, GPO Policy, etc.), this script will likely fail.
	.DESCRIPTION
	- name: "Ensure Tomcat AJP Connector on Port 8009 is Disabled"
	win_lineinfile:
	path: "c:/temp/server.xml"
	regex: '^(\s*)(<Connector port="8009" protocol="AJP\/1\.3" redirectPort="8443" \/>)'
	backrefs: true
	line: '$1<!-- $2 -->'