- Install GPG4Win.
- Start up Kleopatra (a UI tool from 1) and make sure your YubiKey is loaded there.
- You can also add GPG4Win to Startup folder using a link with this Target:
This will only load the agent at Startup, and you won't be bothered by any UI or tray agent."C:\Program Files (x86)\GnuPG\bin\gpg-connect-agent.exe" /bye
- You can also add GPG4Win to Startup folder using a link with this Target:
- Download wsl2-ssh-pageant into your Windows
%userprofile%/.sshdirectory (Windows dir is important for performance).
Federico Voges fvoges
fvoges
/ low-battery-level-detection-notification-for-all-battery-sensors.yaml
Last active
April 27, 2024 18:50
— forked from sbyx/low-battery-level-detection-notification-for-all-battery-sensors.yaml
Home Assistant Blueprint: Low battery level detection & notification for all battery sensors
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| blueprint: | |
| name: Low battery level detection & notification for all battery sensors (remix) | |
| description: Regularly test all sensors with 'battery' device-class for crossing | |
| a certain battery level threshold and if so execute an action. | |
| domain: automation | |
| input: | |
| threshold: | |
| name: Battery warning level threshold | |
| description: Battery sensors below threshold are assumed to be low-battery (as | |
| well as binary battery sensors with value 'on'). |
fvoges
/ Yubikey GPG inside WSL2.md
Created
January 30, 2024 13:29
— forked from dinvlad/Yubikey GPG inside WSL2.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Get DataDir location | |
| DATA_DIR="/data" | |
| case "$(ubnt-device-info firmware || true)" in | |
| 1*) | |
| DATA_DIR="/mnt/data" | |
| ;; | |
| 2*) | |
| DATA_DIR="/data" | |
| ;; |
List all root tokens
vault list -format json auth/token/accessors | jq -r .[] | xargs -I '{}' vault token lookup -format json -accessor '{}' | jq -r 'select(.data.policies | any(. == "root"))'List all tokens
vault list auth/token/accessors
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # original author: Aaron Walker <ka0ttic@gentoo.org> | |
| ########################## Begin Configuration ############################### | |
| # Default options - more options may be added depending on the | |
| # configuration variables you set below | |
| # --cronjob implies -c, --nocolor, --sk | |
| RKHUNTER_OPTS="--cronjob --summary" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Allow tokens to look up their own properties | |
| path "acme/auth/token/lookup-self" { | |
| capabilities = ["read"] | |
| } | |
| # Allow a token to look up its own capabilities on a path | |
| path "acme/sys/capabilities-self" { | |
| capabilities = ["update"] | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Source: https://community.jamf.com/t5/jamf-pro/how-to-remove-office-365-completely/m-p/254634/highlight/true#M236360 | |
| consoleuser=$(ls -l /dev/console | awk '{ print $3 }') | |
| echo "logged in user is" $consoleuser | |
| echo "Kill Microsoft Office Process..." | |
| pkill -f Microsoft |
fvoges
/ allow_k8s_auth.hcl
Created
March 1, 2023 14:58
Vault ACL Policy to allow enabling only k8s auth method
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| path "sys/auth/*" { | |
| capabilities = ["create","update"] | |
| allowed_parameters = { | |
| "type" = ["kubernetes"] | |
| "*" = [] | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| global | |
| log /dev/log local0 | |
| log /dev/log local1 notice | |
| chroot /var/lib/haproxy | |
| stats socket /run/haproxy/admin.sock mode 660 level admin expose-fd listeners | |
| stats timeout 30s | |
| user haproxy | |
| group haproxy | |
| daemon |
If you need to generate a CA and signed certificate and private key to test with, the following steps can be followed:
# Generate the CA private key
$ openssl genrsa -out ca-key.pem 4096
# Create a configuration file for the CA certificate
$ cat <<EOF > ca_cert_config.txtNewerOlder