Skip to content

Instantly share code, notes, and snippets.

Working from home

Julius Thyssen jult

Working from home
Block or report user

Report or block jult

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
jult /
Created Jan 8, 2020
kick apache off my debian+nginx server
apt purge apache2 apache2-bin apache2-data apache2-utils -y
apt clean all -y
apt update && apt upgrade && apt autoremove -y
apt-mark hold apache2 apache2-bin apache2-data apache2-utils
exit 0
jult / https_only
Last active Dec 16, 2019
[NGINX] Redirect all hostnames and requests from http to https serverwide
View https_only
# To have port 80 requests go to their 443 equivalents for an entire webserver, put this file in /etc/nginx/conf.d/
# Note that to specify the catch-all name or default server you
# need to use the *listen* directive, not the server_name directive!
# See also
# - $host catches subdomain names.
# - 307 and 308 include both POST and GET request URIs.
# - 307 is Temporary, change to the Permanent 308 after thorough testing: # return 308 https://$host$request_uri;
server {
jult / jult.ini
Last active Sep 18, 2019
Dark Forest skin for Midnight Commander ( dark mc colors theme with sufficient contrast )
View jult.ini
# Being unsatisfied with the look of mc in console/terminal windows, I made this for my own use.
# Version 3.7, subject to change over the years.. <>
# I N S T A L L
# Put this file (jult.ini) in either of these skin-directories:
# /etc/mc/skins/
# /usr/share/mc/skins/
# ~/.local/share/mc/skins/
jult / %userprofile%\AppData\Roaming\youtube-dl\config.txt
Last active Jul 18, 2018
[ youtube-dl ] My most succesful config for all-round best codecs and quality
View %userprofile%\AppData\Roaming\youtube-dl\config.txt
-f "bestvideo[height>=1080]+251/bestvideo[height>=1080]+bestaudio/bestvideo[height>=720]+251/bestvideo[height>=720]+bestaudio/137+bestaudio/136+bestaudio/bestvideo+bestaudio"
# Note that I output to an MKV container, despite the fact that shitty devices will not play some files
# or still don't support Opus, it *is* the highest quality available:
# I use Daum Potplayer, which plays them all perfectly fine:
jult /
Last active Nov 27, 2019
SpamAssassin rules
# Put this file under /etc/spamassassin/ and run an sa-update or reload amavis etc.
# I used as an example;
# top level domain matching
header SPAMMY_TLD_IN_RCVD Received =~ /(\.net\.ae|\.net\.id|\.ro|\.ru|\.co\.jp|\.co\.ke|\.AC\.ZA|\.co\.in|\.com\.vn|\.vn|\.cc|\.cu\.ua|\.com\.br|\.gr|\.hr|\.dk|\.win|\.bid|\.tw|\.br|\.pk|\.top|\.club|\.date|\.stream|\.xyz)\s/i
describe SPAMMY_TLD_IN_RCVD Spammy TLD used in Received line
jult /
Last active Jan 6, 2020
script to install latest certbot with cloudflare dns-01 challenge plugin (for debian 9/stretch)
# Check if user has root privileges
if [[ $EUID -ne 0 ]]; then
echo "You must run the script as root or using sudo"
exit 1
## Reconfigure Dash
echo "dash dash/sh boolean false" | debconf-set-selections
jult / sysctl.conf
Last active Jan 11, 2020
sysctl config for linux server(s) with 8 GB DDR4 RAM or more, SSD and 1Gbps (or faster) NIC
View sysctl.conf
kernel.core_uses_pid = 1
kernel.domainname =
kernel.msgmax = 65535
kernel.msgmnb = 65535
kernel.pid_max = 65535
kernel.printk = 2 3 1 2
kernel.randomize_va_space = 2
kernel.shmall = 268435456
kernel.shmmax = 268435456
kernel.sysrq = 0
jult / bestweleenbeetje
Last active Mar 26, 2018
best wel een beetje heel erg cool, die gasten van letsencrypt
View bestweleenbeetje
root@bestweleenbeetje:~/certbot# certbot certonly --server --rsa-key-size 4096 --dns-cloudflare --dns-cloudflare-credentials ~/.ssh/certapi --dns-cloudflare-propagation-seconds 90 -d *,
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator dns-cloudflare, Installer None
You have an existing certificate that contains a portion of the domains you
requested (ref: /etc/letsencrypt/renewal/
It contains these names:
jult / dovecot.conf
Last active Mar 24, 2018
dovecot.conf for debian 9 with CLucene FTS
View dovecot.conf
protocols = imap pop3
auth_mechanisms = plain login
auth_cache_size = 24 M
auth_cache_ttl = 18 hours
disable_plaintext_auth = no
listen = *,[::]
log_timestamp = "%Y-%m-%d %H:%M:%S "
log_path = /var/log/dovecot.log
login_greeting = encrypted ready.
postmaster_address =
jult /
Last active Mar 31, 2018
Base install over debian 9 x64 minimal server, with certbot, webmin, csf&lfd and fail2ban
## Filesystem ext4
## Run as root
# Check if user has root privileges
if [[ $EUID -ne 0 ]]; then
echo "You must run the script as root or using sudo"
exit 1
You can’t perform that action at this time.