Petr Michalec epcim

## reencrypt.sh
#!/bin/bash

checkusage() {
  [[ $# -lt 2 ]] && err_exit 'Usage: reencrypt.sh KEY_ID FILE...'
}

err() { echo -e "$@" >&2; }

err_exit() {
  err "$@"

## ipxe_with_dhcp.txt
#clone the repo
git clone http://git.ipxe.org/ipxe.git

cd ipxe/src
cat >ubuntu-amd64-installer.ipxe <<EOF
#!ipxe
dhcp
echo Starting Ubuntu x64 installer for ${hostname}
set base-url http://archive.ubuntu.com/ubuntu/dists/trusty/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64
kernel ${base-url}/linux

## Makefile-vars.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                epcim
                / Makefile-vars.md
            
            
              Created
              March 30, 2023 11:08
            
              
                makefile vars from env
              
          
      View Makefile-vars.md
  
      
    scenarios: TMPDIR=new/path make and make TMPDIR=new/path
SHELL  := env TMPDIR=$(TMPDIR) $(SHELL)
TMPDIR ?= "/tmp"

all:
  @echo $(TMPDIR)


## pass-getting-started.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                epcim
                / pass-getting-started.md
            
            
              Created
              March 17, 2023 13:39
                — forked from layoaster/pass-getting-started.md
            
              
                Cheat sheet/ getting-started guide to pass
              
          
      View pass-getting-started.md
  
      
    pass cheat sheet/guide
Getting started guide to the unix password manager pass. Manage gpg encripted passwords (files) in
a standar directory-like hierarchy. Such files can be copied or stored in a git repository.
Requirements

Install [pass][pass-homepage] (standard unix password manager):

Ubuntu/Debian:
$ sudo apt-get install pass


## gist:224bd5507719b9bd253f1a43a7ff7488
tar cvJ /etc/vpm/ | age -r $(curl -qsSL https://f.apealive.net/pub/$USER.age.pub) | croc send

Receiving side
# cat croc-stdin-2310548854 | age -d -i <(pass show age-$USER-public) | tar xvJ

## query: show metrics & alerts per source

```
{__name__=~".+",site=~"gc1-iad-01",pod=~"(keycloak-s1-).*"}
```

## vim-go-cheatsheet.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                epcim
                / vim-go-cheatsheet.md
            
            
              Created
              March 7, 2023 07:30
                — forked from krlvi/vim-go-cheatsheet.md
            
          
      View vim-go-cheatsheet.md
  
      
    VIM-GO
Plugin https://github.com/fatih/vim-go

Tutorial https://github.com/fatih/vim-go-tutorial

Vimrc https://github.com/fatih/dotfiles/blob/master/vimrc
Run
Commands

File :GoRun %
Package :GoRun
Debug :GoDebugStart


## gist:8434d2f7cae31ab77c620f1f321286bd

```
apt install siege -y
siege -c 255 -t 5m https://my.tls.host/api/status
```

## cshell
# enter any kubernetes pod/container directly just by "part" of it's cotnainer name
cshell ()
{
    d=$1;
    docker exec -it $(docker ps |grep "k8s_$d" | awk '{print $1}' | head -1) /bin/bash
}

## Makefile
seal-sops: ## SOPS Encrypt all secrets path matching [_sec|secret|config|*.secret*]
	@find $(PTH) -path "*/_sec/*" -type f -o -path "*/secret/*" -type f -o -path "*/config/*" -name "*.secret*" -type f |\
		egrep -v '(\.enc|\.asc|\.sealed|\.matrix)' |\
		while read file; do \
		 ./scripts/seal-sops $$file;\
		done;

unseal-sops: ## SOPS Decrypt all secrets (suffix: .enc and .enc.yaml)
	@find $(PTH) -name "*.enc" -type f -o -name "*.enc.*" -type f |\
		while read file; do \
	#!/bin/bash

	checkusage() {
	[[ $# -lt 2 ]] && err_exit 'Usage: reencrypt.sh KEY_ID FILE...'
	}

	err() { echo -e "$@" >&2; }

	err_exit() {
	err "$@"
	#clone the repo
	git clone http://git.ipxe.org/ipxe.git

	cd ipxe/src
	cat >ubuntu-amd64-installer.ipxe <<EOF
	#!ipxe
	dhcp
	echo Starting Ubuntu x64 installer for ${hostname}
	set base-url http://archive.ubuntu.com/ubuntu/dists/trusty/main/installer-amd64/current/images/netboot/ubuntu-installer/amd64
	kernel ${base-url}/linux
	tar cvJ /etc/vpm/ \| age -r $(curl -qsSL https://f.apealive.net/pub/$USER.age.pub) \| croc send

	Receiving side
	# cat croc-stdin-2310548854 \| age -d -i <(pass show age-$USER-public) \| tar xvJ

	```
	{__name__=~".+",site=~"gc1-iad-01",pod=~"(keycloak-s1-).*"}
	```

	```
	apt install siege -y
	siege -c 255 -t 5m https://my.tls.host/api/status
	```
	# enter any kubernetes pod/container directly just by "part" of it's cotnainer name
	cshell ()
	{
	d=$1;
	docker exec -it $(docker ps \|grep "k8s_$d" \| awk '{print $1}' \| head -1) /bin/bash
	}
	seal-sops: ## SOPS Encrypt all secrets path matching [_sec\|secret\|config\|.secret]
	@find $(PTH) -path "/_sec/" -type f -o -path "/secret/" -type f -o -path "/config/" -name ".secret" -type f \|\
	egrep -v '(\.enc\|\.asc\|\.sealed\|\.matrix)' \|\
	while read file; do \
	./scripts/seal-sops $$file;\
	done;

	unseal-sops: ## SOPS Decrypt all secrets (suffix: .enc and .enc.yaml)
	@find $(PTH) -name ".enc" -type f -o -name ".enc.*" -type f \|\
	while read file; do \