jnovack

#############
# asavpn.sec
#  - Designed by jnovack@gmail.com (with the help of the simple-evcorr-users@lists.sourceforge.net)
#
# Design considations:
#  - The friendlynames.txt purpose is to generate the alerts with a user-supplied name.  In the example, 12.34.56.78 is more easily remembered as "Remote Site 1".  The alerts contain the friendly name.
#  - The file friendlynames.txt contains 1 entry per line in the form of "12.34.56.78=REMOTE SITE 1"
#  - I make heavy use of the SYSLOG levels in my emails so I can properly gauge my teams expected response time.
#  - The use of context= =($variable{"$1"}) ensure sec will only process the event if the hash entry exists. This is limited to your population of the friendlynames file. Easily ignore other IPs by not including them in friendlynames.txt
#

jnovack

use strict;
use warnings;

# {{{ DOCUMENTATION
#####
# A lot of code borrowed from the prowlnotify.pl script at
# http://www.denis.lemire.name/2009/07/07/prowl-irssi-hack/
# and pushovernotify.pl (Daniel Johansson <donnex@donnex.net>)
# and http://www.geekfarm.org/wu/muse/scripts/growl-notify.txt
#

jnovack

Black Cards
-----------
* Given the choice between _____ and _____, I will always choose the latter.
* What I wouldn’t give for ten minutes alone with _____.
* It was more uncomfortable than a _____ at a _____ convention.
* When I think about _____ I touch myself. (must sing)
* My parents were shocked to learn that I like _____.
* It wasn’t until they pulled out _____ that it got really embarrassing.

White Cards

jnovack

Mosh (mobile shell) is a gift from the Gods(tm). Anyone with spotty internet or wireless connection has suffered the pain of a lost SSH session. Sure, one can fire up screen (or tmux as the kids are using these days), but that's an extra step and you are still using the SSH protocol.

I'm not here to tout the benefits of Mosh, you came here to open it up in your firewall.

1. Create the following file as /etc/firewalld/services/mosh.xml
2. firewall-cmd --add-service=mosh --permanent
3. firewall-cmd --reload

If you tend to have a lot of sessions (not recommended), you can increase the ports, but the default should be fine for most applications.

jnovack

[root@elasticsearch ~]# cat /etc/rsyslog.conf
# rsyslog configuration file
# note that most of this config file uses old-style format,
# because it is well-known AND quite suitable for simple cases
# like we have with the default config. For more advanced
# things, RainerScript configuration is suggested.

# For more information see /usr/share/doc/rsyslog-*/rsyslog_conf.html
# If you experience problems, see http://www.rsyslog.com/doc/troubleshoot.html

jnovack

module(load="omelasticsearch") # Elasticsearch output module

# this is for index names to be like: logstash-YYYY.MM.DD
template(name="logstash-index"
  type="list") {
    constant(value="logstash-")
    property(name="timereported" dateFormat="rfc3339" position.from="1" position.to="4")
    constant(value=".")
    property(name="timereported" dateFormat="rfc3339" position.from="6" position.to="7")
    constant(value=".")

jnovack

function flash() {
  var num = Math.floor(Math.random()*25);
  if (num === 1) {
    driver.setRGB('#FFFFFF', 0, 1, 2);
  } else {
    driver.setRGB('#000000', 0, 1, 2);
  }
  driver.send();
  setTimeout(function() { flash() }, 10);
};

jnovack

Installation

1. Install docker
2. Install socat (see install.sh)
3. Install XQuartz from https://www.xquartz.org

Running

jnovack

# /etc/nginx/nginx.conf
# ...
http {
    # ...
    include /etc/nginx/sites-enabled/*.conf
}

jnovack

#read the current pref, returns '0' for off and '1' for on.
defaults read /Library/Preferences/com.apple.Bluetooth.plist ControllerPowerState

#set bluetooth pref to off
sudo defaults write /Library/Preferences/com.apple.Bluetooth.plist ControllerPowerState 0

#set bluetooth pref to on
sudo defaults write /Library/Preferences/com.apple.Bluetooth.plist ControllerPowerState 1

#kill the bluetooth server process