start new:
tmux
start new with session name:
tmux new -s myname
Justin Persaud justinpersaud
plentz
/ nginx.conf
Last active
July 25, 2024 09:38
Best nginx configuration for improved security(and performance)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # to generate your dhparam.pem file, run in the terminal | |
| openssl dhparam -out /etc/nginx/ssl/dhparam.pem 2048 |
renzok
/ bash-template
Last active
June 28, 2024 05:49
A template bash script based on google style guide with some little improvements
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Here short description of this script | |
| # This is just a template to be used for writing new bash scripts | |
| ### | |
| # Based on Google Style Guide: https://google.github.io/styleguide/shell.xml | |
| # General remarks | |
| # * Executables should have no extension (strongly preferred) or a .sh extension. | |
| # * Libraries must have a .sh extension and should not be executable |
mattupstate
/ resources.tf
Last active
July 21, 2020 17:39
Just a clever way to set an RDS master password with Terraform and Ansible to prevent the password from being stored in plain text
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| resource "aws_db_instance" "core" { | |
| username = "postgres" | |
| password = "changeme" | |
| ... | |
| } | |
| resource "null_resource" "master_password" { | |
| triggers { | |
| db_host = "${aws_db_instance.address}" | |
| } |
csawyerYumaed
/ nomad-check.py
Created
October 17, 2016 16:22
after running a nomad job, check, verify and if failed, roll-back to previous build.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """ | |
| As part of my jenkins build-pipeline, I'm having jenkins build and then deploy my services directly into nomad. | |
| my build and deploy in jenkins looks like this: | |
| docker build -t pdfservice:$BUILD_NUMBER . | |
| docker tag pdfservice:$BUILD_NUMBER registry.service.consul:5000/pdfservice:$BUILD_NUMBER | |
| docker push registry.service.consul:5000/pdfservice:$BUILD_NUMBER | |
| docker build -t pdfservice:latest . | |
| docker tag pdfservice:latest registry.service.consul:5000/pdfservice:latest | |
| docker push registry.service.consul:5000/pdfservice:latest |
This is free and unencumbered software released into the public domain.
Anyone is free to copy, modify, publish, use, compile, sell, or distribute this software, either in source code form or as a compiled binary, for any purpose, commercial or non-commercial, and by any means.
In jurisdictions that recognize copyright laws, the author or authors of this software dedicate any and all copyright interest in the software to the public domain. We make this dedication for the benefit
tam7t
/ vault-statsd-mapping.conf
Last active
November 5, 2020 13:45
Example vault statsd prometheus exporter mapping
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| vault.barrier.* | |
| name="vault_barrier" | |
| method="$1" | |
| vault.consul.* | |
| name="vault_consul" | |
| method="$1" | |
| vault.route.*.* | |
| name="vault_route" |
chrisboulton
/ linkerd.yaml
Last active
September 26, 2018 11:37
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| admin: | |
| port: 9990 | |
| ip: 0.0.0.0 | |
| routers: | |
| # http 1.1: service -> [linkerd] -> linkerd -> service | |
| # should lookup consul service then rewrite outgoing port to linkerd | |
| - label: http1-out | |
| protocol: http | |
| servers: |
Last updated March 13, 2024
This Gist explains how to sign commits using gpg in a step-by-step fashion. Previously, krypt.co was heavily mentioned, but I've only recently learned they were acquired by Akamai and no longer update their previous free products. Those mentions have been removed.
Additionally, 1Password now supports signing Git commits with SSH keys and makes it pretty easy-plus you can easily configure Git Tower to use it for both signing and ssh.
For using a GUI-based GIT tool such as Tower or Github Desktop, follow the steps here for signing your commits with GPG.
bangpound
/ vault-token-helper.sh
Created
September 9, 2018 15:13
Vault Token helper for the Linux key retention service
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env bash | |
| # Vault Token helper for the Linux key retention service. | |
| # | |
| # Since version 2.6, the Linux kernel has included a efficiently store | |
| # authentication data on a per thread, per process, per user, or per session | |
| # bases. | |
| # | |
| # Linux Key Management Utilities (keyutils) provides `keyctl` to control | |
| # the facility from the shell. |
OlderNewer