I hereby claim:
- I am jeffreyalles on github.
- I am jeffreyalles (https://keybase.io/jeffreyalles) on keybase.
- I have a public key whose fingerprint is 2BFA 7400 7AA3 F2D9 D45F 44BD 3337 5D0C ABA6 5660
To claim this, I am signing this object:
jeffreyalles
/ gist:503f6dca7cc2b5f8877efffea3941738
Created
May 28, 2023 14:19
— forked from nehrman/gist:3951a9f61083e462c60aeffcd942acb8
How to integrate Ansible Tower with Vault ssh-ca to secure your environment
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| The aim of this quick documentation is to explain how to deploy and configure HashiCorp Vault and Ansible Tower to make ssh-ca | |
| happen to secure your environment. | |
| - First Step : Installing Vault | |
| To do that, you can use a shell script that I build to deploy a 1 Node Vault Server. | |
| https://github.com/nehrman/hashicorp-solutions-scripts/blob/master/vault_single_server.sh | |
| - Second Step : Configure Vault for ssh-ca |
jeffreyalles
/ Graph_SecurityDefaults
Created
November 11, 2022 23:07
— forked from michevnew/Graph_SecurityDefaults
Toggle Azure AD Security Defaults on or off via Graph API
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Set the authentication details | |
| $tenantID = "tenant.onmicrosoft.com" #your tenantID or tenant root domain | |
| $appID = "12345678-1234-1234-1234-1234567890AB" #the GUID of your app. For best result, use app with Policy.Read.All and Policy.ReadWrite.ConditionalAccess scopes granted | |
| $client_secret = "XXXXXXXXXXXXXXXxxxx" #client secret for the app | |
| $body = @{ | |
| client_id = $AppId | |
| scope = "https://graph.microsoft.com/.default" | |
| client_secret = $client_secret | |
| grant_type = "client_credentials" |
jeffreyalles
/ vault-ssh-ca-ansible
Created
November 6, 2022 22:10
— forked from kawsark/vault-ssh-ca-ansible
Steps to setup Vault SSH CA secrets engine for use with Ansible
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # 1. (Optional) Disable SSH and Key/Value secrets engine if they existed. | |
| # NOTE: THIS WILL ERASE PREVIOUSLY CONFIGURED ENGINES AT THIS PATH | |
| export VAULT_TOKEN=<Admin-or-Root-key> | |
| vault secrets disable ssh | |
| vault secrets disable kv | |
| # 2. Enable SSH secrets engine (Client signer role) and generate a CA | |
| vault secrets enable -path=ssh ssh | |
| vault write -format=json ssh/config/ca generate_signing_key=true | jq -r '.data.public_key' > ./trusted-user-ca-keys.pem |
jeffreyalles
/ getsimple
Created
August 20, 2022 17:17
— forked from steinkel/getsimple
getsimple cms nginx config file
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| server { | |
| listen 80; ## listen for ipv4; this line is default and implied | |
| root /var/virtual/www | |
| index index.php; | |
| server_name example.com; | |
| charset utf-8; | |
| access_log off; | |
| location / { |
jeffreyalles
/ python_resources.md
Created
March 20, 2014 14:59
— forked from jookyboi/python_resources.md
Python-related modules and guides.
- lxml - Pythonic binding for the C libraries libxml2 and libxslt.
- boto - Python interface to Amazon Web Services
- Django - Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design.
- Fabric - Library and command-line tool for streamlining the use of SSH for application deployment or systems administration task.
- PyMongo - Tools for working with MongoDB, and is the recommended way to work with MongoDB from Python.
- Celery - Task queue to distribute work across threads or machines.
- pytz - pytz brings the Olson tz database into Python. This library allows accurate and cross platform timezone calculations using Python 2.4 or higher.
jeffreyalles
/ css_resources.md
Created
March 20, 2014 14:59
— forked from jookyboi/css_resources.md
CSS libraries and guides to bring some order to the chaos.
- 960 Grid System - An effort to streamline web development workflow by providing commonly used dimensions, based on a width of 960 pixels. There are two variants: 12 and 16 columns, which can be used separately or in tandem.
- Compass - Open source CSS Authoring Framework.
- Bootstrap - Sleek, intuitive, and powerful mobile first front-end framework for faster and easier web development.
- Font Awesome - The iconic font designed for Bootstrap.
- Zurb Foundation - Framework for writing responsive web sites.
- SASS - CSS extension language which allows variables, mixins and rules nesting.
- Skeleton - Boilerplate for responsive, mobile-friendly development.
jeffreyalles
/ 0_reuse_code.js
Created
March 20, 2014 14:59
Here are some things you can do with Gists in GistBox.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Use Gists to store code you would like to remember later on | |
| console.log(window); // log the "window" object to the console |