jnovack

Proxy SSL Client Certificate through NGINX Load-Balancer

The frontend stream proxy_pass can be used for load-balancing without SSL off-loading. All SSL connections will be terminated on the backend and client certificate information can be properly authenticated.

This should be used in cases:

• you have enough CPU to decrypt SSL on the backend servers
• you require direct client AUTHENTICATION on the backend servers

Backend

jnovack

Proxy SSL Client Certificate Details through NGINX Load-Balancer

SSL connections will terminate and authenticate at the frontend and proxy the connection to the backend.

This should be used in cases:

• you DO NOT have direct access to the backend servers
• you DO NOT require direct client AUTHENTICATION on the backend servers
• you TRUST incoming connections to the backend servers

jnovack

#!/bin/bash

function append_once() {
  while read data; do
    grep -q "$data" $1 || echo "$data" >> $1
  done
}

append_once ~/.bashrc <<EOF
  echo 'This line is only written once.'

jnovack

all:
	@echo "WARNING: Installation requires your sudo access, please enter your password when prompted."
	@echo "  ... press Enter to continue... "
	@read
	curl -LOs https://src.fedoraproject.org/repo/pkgs/bash-completion/bash-completion-1.3.tar.bz2/a1262659b4bbf44dc9e59d034de505ec/bash-completion-1.3.tar.bz2
	curl -LOs https://raw.githubusercontent.com/Homebrew/formula-patches/c1d87451da3b5b147bed95b2dc783a1b02520ac5/bash-completion/bug-740971.patch
	curl -LOs https://gist.githubusercontent.com/jnovack/e66f40e7a31e04f909c2f503c6df7367/raw/287b97a1f24bb47746248a15659b9478e6ec8e02/osx.patch
	curl -LOs https://gist.github.com/jnovack/e66f40e7a31e04f909c2f503c6df7367/raw/SHA256SUMS
	shasum -c SHA256SUMS || (@echo "There was an error downloading one or more files... please try again."; exit 1)
	tar -xzvf bash-completion-1.3.tar.bz2

jnovack

Welcome to Alpine!

The Alpine Wiki contains a large amount of how-to guides and general
information about administrating Alpine systems.
See <http://wiki.alpinelinux.org>.

You can setup the system with the command: setup-alpine

You may change this message by editing /etc/motd.

jnovack

#!/bin/sh
openssl req -x509 -nodes -newkey rsa:4096 -keyout key.pem -out certificate.pem -days 720 \
  -subj "/C=XX/ST=State/L=City/O=Department/OU=Organization/CN=localhost.localdomain"

jnovack

build:
	genisoimage \
		-U -r -v -T -J -joliet-long \
		-V 'CentOS 7 x86_64' \
		-volset 'CentOS 7 x86_64' \
		-A 'CentOS 7 x86_64' \
		-b isolinux/isolinux.bin \
		-c isolinux/boot.cat \
		-no-emul-boot \
		-boot-load-size 4 \

jnovack

"use strict";

const fs = require('fs');
const path = require('path');
const protocol29406 = exports.protocol =  require('../lib/protocol29406');

const storm = require('storm-replay');

const version = exports.version = require('../package.json').version;

jnovack

#!/bin/sh
# Recurse through http://rancher-metadata/ for debugging purposes

recurse() {
  local URL=${1//\/\//\/};
  for FILE in $(curl ${URL});
  do
    if [[ $FILE == "Not" || $FILE == "found" ]]; then
      break;
    fi;

jnovack

function crackPassword(password) {
    var crypttext = password.toUpperCase();
    var plaintext = '';
    var xlate = "dsfd;kfoA,.iyewrkldJKDHSUBsgvca69834ncxv9873254k;fg87";
    var seed, i, val = 0;

    if(crypttext.length & 1)
        return;

    seed = (crypttext.charCodeAt(0) - 0x30) * 10 + crypttext.charCodeAt(1) - 0x30;