joe-speedboat

#!/bin/bash
# Script to automatically restart mailboxd when IMAP mailboxes fail to lock
# (which usually indicates the server has hung)
#
# Configure MAILTO to match where you want the notification email sent.
#
# Prerequisite: You must install LogWarn, which can be found at
# https://github.com/archiecobbs/logwarn if your package manager doesn't have
# it.

joe-speedboat

git clone https://github.com/openshift/cluster-update-keys.git
cd cluster-update-keys/
git checkout release-4.13
oc create configmap -n openshift-config-managed release-verification-keys --from-file=keys
oc patch clusterversion version --type=merge -p '{"spec":{"upstream":"https://api.openshift.com/api/upgrades_info/v1/graph","channel":"stable-4","overrides":[{"group":"config.openshift.io/v1","kind":"FeatureGate","name":"cluster","unmanaged":false},{"group":"config.openshift.io/v1","kind":"FeatureGate","name":"tech-preview-upgrade","unmanaged":false}],"releaseVerification":{"publicKey":"name=release-verification-keys","type":"ConfigMap"}}}'

joe-speedboat

worker_processes 4;
pid /app/run/nginx.pid;
error_log  /app/log/error.log;

events {
        worker_connections 768;
}

http {

joe-speedboat

(Items in bold indicate possible concerns)

	Keycloak	WSO2 Identity Server	Gluu	CAS	OpenAM	Shibboleth IdP	LemonLDAP::NG
OpenID Connect/OAuth support	yes	yes	yes	yes	yes	third-party	yes
Multi-factor authentication	yes	yes	yes	yes	yes	yes	yes
Admin UI	yes	yes	yes	yes	yes	no	yes
OpenJDK support	yes	yes	no³	yes	yes	**[partial](https://wiki.shibboleth.net/confluence/display/IDP30/SystemRequ

joe-speedboat

Using FreeIPA Authentication with OPNSense

Step 1

Go to your IPA admin page and create a new user named opnsense. Log in once on any computer joined to the FreeIPA realm and set their password (since the one you provide upon account creation will be expired), then logout.

Step 2

joe-speedboat

#!/usr/bin/env bash

set -Eeuo pipefail
trap cleanup SIGINT SIGTERM ERR EXIT

script_dir=$(cd "$(dirname "${BASH_SOURCE[0]}")" &>/dev/null && pwd -P)

usage() {
  cat <<EOF
Usage: $(basename "${BASH_SOURCE[0]}") [-h] [-v] [-f] -p param_value arg1 [arg2...]

joe-speedboat

# forked from: https://gist.github.com/6aditya8/277ce867451922cfe9f41d93c5316850
# Configuration options are limited to SSL/TLS

# Enable SSL session caching for improving performance by avoiding the costly session negotiation process where possible
# SSL Labs doesn't assume that SNI is available to the client, so it only tests the default virtual server
# setting this globally to make it work across all the nginx virtual servers (including the default virtual server)
ssl_session_cache shared:ssl_session_cache:10m;
ssl_session_timeout 10m;

server {

joe-speedboat

# Syslog stuff
COMPONENT ([\w._\/%-]+)
COMPID postfix\/%{COMPONENT:component}(?:\[%{NUMBER:pid}\])?
POSTFIX (?:%{SYSLOGFACILITY} )?%{SYSLOGHOST:logsource} %{COMPID}:

# Milter
HELO (?:\[%{IP:helo}\]|%{HOST:helo}|%{DATA:helo})

MILTERCONNECT %{QUEUEID:qid}: milter-reject: CONNECT from %{RELAY:relay}: %{GREEDYDATA:milter_reason}; proto=%{WORD:proto}
MILTERUNKNOWN %{QUEUEID:qid}: milter-reject: UNKNOWN from %{RELAY:relay}: %{GREEDYDATA:milter_reason}; proto=%{WORD:proto}

joe-speedboat

int speaker = 0; // speaker pin (pwm)
long int pick_freq = 22000;

int duration = 100; // ms to play tone

int led = 13; // led operating status pin

joe-speedboat

PSQL

Magic words:

psql -U postgres

Some interesting flags (to see all, use -h):

• -E: will describe the underlaying queries of the \ commands (cool for learning!)
• -l: psql will list all databases and then exit (useful if the user you connect with doesn't has a default database, like at AWS RDS)