Julius Thyssen jult

## killadobe.sh
#!/bin/bash

echo "\n\n--- Killing Stupid Adobe Auto Load Crap ---\n\n"

launchctl unload -w /Library/LaunchAgents/com.adobe.AdobeCreativeCloud.plist
launchctl unload -w /Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist

echo "\n\n--- Done! ---\n\n"

## handy.txt


apt install rsyslog curl wget mc gpg htop multitail chrony nginx php-fpm rsync php-sqlite3 dnsutils unzip libio-socket-ssl-perl libcrypt-ssleay-perl git perl iptables libnet-libidn-perl libio-socket-inet6-perl libsocket6-perl ipset libwww-perl lsb-release  bash debhelper apt-transport-https rsync ssh openssh-server git autoconf automake libtool build-essential flex bison software-properties-common dirmngr sudo

curl -sSL https://install.pi-hole.net | bash

apt install unbound

wget https://www.internic.net/domain/named.root -qO- | sudo tee /var/lib/unbound/root.hints

## whitelistcat.sh
#!/bin/bash

wget -qO - --limit-rate=1500k https://dbl.oisd.nl/whitelist2.txt > /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://www.technoy.de/lists/whitelist.txt >> /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/raghavdua1995/DNSlock-PiHole-whitelist/master/whitelist.list >> /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/anudeepND/whitelist/master/domains/referral-sites.txt >> /tmp/white
sleep 2

## nc_update.sh
#!/bin/bash

find /etc -type f -name "php.ini" -exec sed -i 's/output_buffering/;output_buffering/g' {} +
sudo -u www-data sed -i "s/output_buffering=.*/output_buffering='Off'/" /var/www/nextcloud/.user.ini
sudo -u www-data php /var/www/nextcloud/occ app:disable survey_client
sudo -u www-data php /var/www/nextcloud/occ app:disable firstrunwizard
sudo -u www-data php /var/www/nextcloud/occ app:enable admin_audit
sudo -u www-data php /var/www/nextcloud/occ app:enable files_pdfviewer
sudo -u www-data php /var/www/nextcloud/occ maintenance:mode --on
nohup chown -R www-data:www-data /var/www/nextcloud &

## CORS
if ($request_method = 'OPTIONS') {
        add_header 'Access-Control-Allow-Origin' '*';
        add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
        #
        # Custom headers and headers various browsers *should* be OK with but aren't
        #
        add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range';
        #
        # Tell client that this pre-flight info is valid for 20 days
        #

## no_apache.sh
#!/bin/bash

apt purge apache2 apache2-bin apache2-data apache2-utils -y
apt clean all -y
apt update && apt upgrade && apt autoremove -y
apt-mark hold apache2 apache2-bin apache2-data apache2-utils

exit 0

## https_only
# To have port 80 requests go to their 443 equivalents for an entire webserver, put this file in /etc/nginx/conf.d/
# Note that to specify the catch-all name or default server you
# need to use the *listen* directive, not the server_name directive!
# See also https://nginx.org/en/docs/http/request_processing.html
#
# - $host catches subdomain names.
# - 307 and 308 include both POST and GET request URIs.
# - 307 is Temporary, change to the Permanent 308 after thorough testing: # return 308 https://$host$request_uri;

server {

## jult.ini
#  Being unsatisfied with the look of mc in console/terminal windows, I made this for my own use.
#  Version 3.7, subject to change over the years.. <j@jult.nl>

#   I N S T A L L

#   Put this file (jult.ini) in either of these skin-directories:

#    /etc/mc/skins/
#    /usr/share/mc/skins/
#   ~/.local/share/mc/skins/

## %userprofile%\AppData\Roaming\youtube-dl\config.txt
--no-mtime
--no-call-home
# --ignore-errors

-f "bestvideo[height>=1080]+251/bestvideo[height>=1080]+bestaudio/bestvideo[height>=720]+251/bestvideo[height>=720]+bestaudio/137+bestaudio/136+bestaudio/bestvideo+bestaudio"
#  Note that I output to an MKV container, despite the fact that shitty devices will not play some files
#  or still don't support Opus, it *is* the highest quality available: http://opus-codec.org/comparison/
--merge-output-format mkv

# If you need Mac compatible MP4 uncomment the following two lines instead of the ones above. It's usually a step under max quality, but this yields true mp4 files:

## jbt-rules.cf
# Put this file under /etc/spamassassin/ and run an sa-update or reload amavis etc.
#
#--------------------------------------------------
# The only RBL I trust, UCEPROTECT1 (single IP, not IP-ranges or entire ISPs) http://uceprotect.net
#--------------------------------------------------
header          RCVD_IN_UCEPROTECT1     eval:check_rbl_txt('uceprotect1', 'dnsbl-1.uceprotect.net')
describe        RCVD_IN_UCEPROTECT1     Listed in dnsbl-1.uceprotect.net
tflags          RCVD_IN_UCEPROTECT1     net
score           RCVD_IN_UCEPROTECT1     1.8
	#!/bin/bash

	echo "\n\n--- Killing Stupid Adobe Auto Load Crap ---\n\n"

	launchctl unload -w /Library/LaunchAgents/com.adobe.AdobeCreativeCloud.plist
	launchctl unload -w /Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist

	echo "\n\n--- Done! ---\n\n"



	apt install rsyslog curl wget mc gpg htop multitail chrony nginx php-fpm rsync php-sqlite3 dnsutils unzip libio-socket-ssl-perl libcrypt-ssleay-perl git perl iptables libnet-libidn-perl libio-socket-inet6-perl libsocket6-perl ipset libwww-perl lsb-release bash debhelper apt-transport-https rsync ssh openssh-server git autoconf automake libtool build-essential flex bison software-properties-common dirmngr sudo

	curl -sSL https://install.pi-hole.net \| bash

	apt install unbound

	wget https://www.internic.net/domain/named.root -qO- \| sudo tee /var/lib/unbound/root.hints
	#!/bin/bash

	wget -qO - --limit-rate=1500k https://dbl.oisd.nl/whitelist2.txt > /tmp/white
	sleep 2
	wget -qO - --limit-rate=1500k https://www.technoy.de/lists/whitelist.txt >> /tmp/white
	sleep 2
	wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/raghavdua1995/DNSlock-PiHole-whitelist/master/whitelist.list >> /tmp/white
	sleep 2
	wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/anudeepND/whitelist/master/domains/referral-sites.txt >> /tmp/white
	sleep 2
	#!/bin/bash

	find /etc -type f -name "php.ini" -exec sed -i 's/output_buffering/;output_buffering/g' {} +
	sudo -u www-data sed -i "s/output_buffering=.*/output_buffering='Off'/" /var/www/nextcloud/.user.ini
	sudo -u www-data php /var/www/nextcloud/occ app:disable survey_client
	sudo -u www-data php /var/www/nextcloud/occ app:disable firstrunwizard
	sudo -u www-data php /var/www/nextcloud/occ app:enable admin_audit
	sudo -u www-data php /var/www/nextcloud/occ app:enable files_pdfviewer
	sudo -u www-data php /var/www/nextcloud/occ maintenance:mode --on
	nohup chown -R www-data:www-data /var/www/nextcloud &
	if ($request_method = 'OPTIONS') {
	add_header 'Access-Control-Allow-Origin' '*';
	add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
	#
	# Custom headers and headers various browsers should be OK with but aren't
	#
	add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range';
	#
	# Tell client that this pre-flight info is valid for 20 days
	#
	#!/bin/bash

	apt purge apache2 apache2-bin apache2-data apache2-utils -y
	apt clean all -y
	apt update && apt upgrade && apt autoremove -y
	apt-mark hold apache2 apache2-bin apache2-data apache2-utils

	exit 0
	# To have port 80 requests go to their 443 equivalents for an entire webserver, put this file in /etc/nginx/conf.d/
	# Note that to specify the catch-all name or default server you
	# need to use the listen directive, not the server_name directive!
	# See also https://nginx.org/en/docs/http/request_processing.html
	#
	# - $host catches subdomain names.
	# - 307 and 308 include both POST and GET request URIs.
	# - 307 is Temporary, change to the Permanent 308 after thorough testing: # return 308 https://$host$request_uri;

	server {
	# Being unsatisfied with the look of mc in console/terminal windows, I made this for my own use.
	# Version 3.7, subject to change over the years.. <j@jult.nl>

	# I N S T A L L

	# Put this file (jult.ini) in either of these skin-directories:

	# /etc/mc/skins/
	# /usr/share/mc/skins/
	# ~/.local/share/mc/skins/
	--no-mtime
	--no-call-home
	# --ignore-errors

	-f "bestvideo[height>=1080]+251/bestvideo[height>=1080]+bestaudio/bestvideo[height>=720]+251/bestvideo[height>=720]+bestaudio/137+bestaudio/136+bestaudio/bestvideo+bestaudio"
	# Note that I output to an MKV container, despite the fact that shitty devices will not play some files
	# or still don't support Opus, it is the highest quality available: http://opus-codec.org/comparison/
	--merge-output-format mkv

	# If you need Mac compatible MP4 uncomment the following two lines instead of the ones above. It's usually a step under max quality, but this yields true mp4 files:
	# Put this file under /etc/spamassassin/ and run an sa-update or reload amavis etc.
	#
	#--------------------------------------------------
	# The only RBL I trust, UCEPROTECT1 (single IP, not IP-ranges or entire ISPs) http://uceprotect.net
	#--------------------------------------------------
	header RCVD_IN_UCEPROTECT1 eval:check_rbl_txt('uceprotect1', 'dnsbl-1.uceprotect.net')
	describe RCVD_IN_UCEPROTECT1 Listed in dnsbl-1.uceprotect.net
	tflags RCVD_IN_UCEPROTECT1 net
	score RCVD_IN_UCEPROTECT1 1.8