Skip to content

Instantly share code, notes, and snippets.

View jpmschuler's full-sized avatar

J. Peter M. Schuler jpmschuler

2 followers · 0 following
  • Germany
View GitHub Profile
@jpmschuler
jpmschuler / README.md
Last active September 8, 2023 06:23
SSL cert expiry and chain check

Purpose: check cert expiry and cert chain issues

Note: domains.txt needs emptyline at end of file

Example output:

059 days of validity left for https://www.google.com, chain fine (issued by GTS CA 1C3)
046 days of validity left for https://www.typo3.org, chain fine (issued by R3)
Next expiry in 46 days
everything fine
@jpmschuler
jpmschuler / Cleanup.yaml
Last active February 24, 2023 10:05
editor:
config:
disallowedContent: "script; style; *[style]; *{*}"
@jpmschuler
jpmschuler / TYPO3-Firewall-WAF-Rules.md
Last active December 16, 2021 22:37

The following is a brainstorming on how to configure an OUTGOING WAF - so a whitelist of all allowed hostnames which are allowed to be connected via HTTP(S). So explicitly missing are additional port openings for e.g. SSH connections, AUTH providers or to allow e.g. downloads from GitHub not via HTTPS but via ssh+git.

The main idea is that one system hosts TYPO3, one system creates and deploys TYPO3 and the latter is perhaps a Docker based Gitlab Runner.

Rule-Groups

  • TYPO3-Production (the actual webserver)
    • TYPO3-Hosting and Updates
  • TYPO3-Deployment (the system doing the composer install)
    • TYPO3-Hosting and Updates
  • Package Manager Composer