Skip to content

Instantly share code, notes, and snippets.

Jim P jim-p

Block or report user

Report or block jim-p

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
View gist:6057410
diff --git a/scripts/build/build_installer_packages.sh b/scripts/build/build_installer_packages.sh
index 1bb3555..e403ab5 100755
--- a/scripts/build/build_installer_packages.sh
+++ b/scripts/build/build_installer_packages.sh
@@ -65,7 +65,7 @@ rebuild_port()
make makesum && \
make patch && \
chmod -R 777 work && \
- make $WITH_NLS_DEF $WITH_CURSES_DEF $WITH_CGI_DEF $WITH_QT_DEF \
+ make options_UNSET="${options_UNSET}" options_SET="${options_SET}" $WITH_NLS_DEF $WITH_CURSES_DEF $WITH_CGI_DEF $WITH_QT_DEF \
@jim-p
jim-p / gist:5984177
Created Jul 12, 2013
safe mode tweaks
View gist:5984177
dup bootsafekey @ = if
s" arch-i386" environment? if
drop
s" acpi_load" unsetenv
s" 1" s" hint.acpi.0.disabled" setenv
s" 1" s" loader.acpi_disabled_by_user" setenv
s" 1" s" hint.apic.0.disabled" setenv
then
s" 0" s" hw.ata.ata_dma" setenv
s" 0" s" hw.ata.atapi_dma" setenv
@jim-p
jim-p / gist:5579101
Created May 14, 2013
change to ufsid format. Should be scriptable.
View gist:5579101
: cat /etc/fstab
# Device Mountpoint FStype Options Dump Pass#
/dev/ad0s1a / ufs rw 1 1
/dev/ad0s1b none swap sw 0 0
: dumpfs /dev/ad0s1a | head -n 2 | tail -n 1 | cut -f2 -d'[' | cut -f1 -d ']' | sed -e 's/[[:blank:]]//g'
51928c99a471c440
: swapoff -a
: glabel label swap /dev/ad0s1b
View gist:4659354
vlanmtu, vlanhwtag, vlanhwfilter, vlanhwcsum, vlanhwtso
If the driver offers user-configurable VLAN support, enable
reception of extended frames, tag processing in hardware, frame
filtering in hardware, checksum offloading, or TSO on VLAN,
respectively. Note that this must be issued on a physical inter-
face associated with vlan(4), not on a vlan(4) interface itself.
-vlanmtu, -vlanhwtag, -vlanhwfilter, -vlanhwtso
If the driver offers user-configurable VLAN support, disable
reception of extended frames, tag processing in hardware, frame
View gist:4204901
Something went wrong, check errors!
Log saved on /usr/obj./usr/home/pfsense/freesbie2/.tmp_buildkernel
mfi.o(.text+0x5480): In function `mfi_attach':
: undefined reference to `mfi_tbolt_alloc_cmd'
mfi.o(.text+0x54a8): In function `mfi_attach':
: undefined reference to `mfi_intr_tbolt'
mfi.o(.text+0x5716): In function `mfi_attach':
: undefined reference to `mfi_intr_tbolt'
mfi.o(.text+0x593c): In function `mfi_attach':
: undefined reference to `mfi_tbolt_sync_map_info'
@jim-p
jim-p / byzanz-record-window.sh
Created Sep 2, 2015
byzanz-record-window.sh
View byzanz-record-window.sh
#!/bin/bash
# Directory to output the videos
DESTDIR=~/Videos/
# Delay before starting
DELAY=10
# Sound notification to let one know when recording is about to start (and ends)
beep() {
@jim-p
jim-p / byzanz-record-region.sh
Last active Sep 2, 2015
Screen Record a Region to GIF with byzanz. Run, select rectangle, wait for beep and it will capture for 10sec then beep and save.
View byzanz-record-region.sh
#!/bin/bash
# Directory to output the videos
DESTDIR=~/Videos/
# Delay before starting
DELAY=10
# Sound notification to let one know when recording is about to start (and ends)
beep() {
View ipsec_stuff.diff
$ git diff RELENG_2_2_3 RELENG_2_2 -- etc/inc/ipsec.inc > ../ipsec_stuff.diff
$ git diff RELENG_2_2_3 RELENG_2_2 -- etc/inc/vpn.inc >> ../ipsec_stuff.diff
$ cat ../ipsec_stuff.diff
diff --git a/etc/inc/ipsec.inc b/etc/inc/ipsec.inc
index 8bfed07..5c7d15d 100644
--- a/etc/inc/ipsec.inc
+++ b/etc/inc/ipsec.inc
@@ -44,22 +44,22 @@ $ipsec_loglevels = array("dmn" => "Daemon", "mgr" => "SA Manager", "ike" => "IKE
@jim-p
jim-p / 2758-compromise.txt
Created Jun 30, 2015
2758-compromise.txt
View 2758-compromise.txt
Hey folks,
I'm an entrepreneur based in the Bay Area.. in this case, It appears our once open & trusting attitude towards our regular guests @ home-hackatons most likely lead to its demise. The result -- a total compromise of our personal network, all workstations and mobile devices - and of course, my PFSense/Netgate C2758 I had been evaluating was among the casualties.
Before I go any further, the C2758 support code is: 2809614B . Also to clarify: the device has been offline for the past 6 months and I have really not spent much time evaluating the extent of the compromise. From what little I recall, it seemed the NIC oproms had been reflashed and I'm assuming the extent of the compromise was more substantial.
If the approach is at all similar to the handful of our other systems I've spent time evaluating -- then you may well find the system of interest. In those cases, each involved rootkits that would consistently survive restoration efforts using various known methods of persistence. One or
View gist:d5b9f33a4cb1c1f1915f
: cat /etc/fstab
/dev/ufs/pfsense0 / ufs ro,sync,noatime 1 1
/dev/ufs/cf /cf ufs ro,sync,noatime 1 1
You can’t perform that action at this time.