Skip to content

Instantly share code, notes, and snippets.


Karl L. Hughes karllhughes

View GitHub Profile

Online Security

Sim-swapping, identity theft, and database hacks are extremely common these days. It's incredibly easy for hackers to use one account (say your email or cell phone account) to get access to every other account you have. Scary when you think about how we all manage our banking, 401ks, and pay taxes online now.

Here are some basic steps you can take to up your security level. They will take an afternoon of work, but prevent weeks of pain if you are ever targeted:

  • Reset all your passwords. Each account should use a 16+ character, randomly generated password. I like for this.
  • Store all passwords in a password manager (Last Pass, Encryptr, or Keeper are my favorites).
    • To make your password manager "master password" secure, use a passphrase made of words. This site tells you how to make one: [https://www.useapassphrase
karllhughes /
Last active Jan 31, 2020
What to do if you get Sim-Swapped

Here's how this attack works:

Immediate actions

  • Make sure your primary email address has a secure recovery method and remove your old phone number from it.
    • Gmail lets you set "Backup codes" that you can print off to recover your account.
    • Change your email password and put it in a password manager.
    • Remove any link to the old phone number from your email.
  • If you're already locked out of your email, set up a "clean" email account. At this point, your old one is being accessed by hackers and can be used to reset any banking passwords.
    • Store this new email password in a password manager.
  • mix 2 cups flour and scant teaspoon salt
  • Measure just over 1/2 cup oil
  • Add 1/4 cup milk (I'm sure almond milk is fine).
  • Mix just until mixed.
  • Roll out between wax paper.

Makes 2 crusts.


Checklist for Reviewee:

  • Add a link to the relevant Trello card(s) and move the card into the "Testing" column.
  • Add appropriate unit and integration tests.
  • Plan for any Ghost Inspector tests (to be added after merging).
  • The CI has passed (check Codeship).
  • Manually check any new or changed functionality.
  • Manually check for accessiblity issues using WAVE.
  • Update/create any ADRs or API documentation if needed.
  • Attach a reviewer and included important notes in comments.
karllhughes / Dockerfile
Created Dec 2, 2017
View Dockerfile
FROM php:apache
# Install extensions
RUN apt-get update && apt-get install -y libpq-dev
RUN docker-php-ext-install pgsql pdo_pgsql
# This allows Apache's mod-rewrite, whic you may or may not need
RUN a2enmod rewrite
# Copy the code and .htaccess file
ADD ./ /var/www/html
karllhughes / compose.yml
Last active Nov 8, 2018
laravel php docker compose file
View compose.yml
version: "2"
image: karllhughes/php-fpm-mysql:latest
restart: always
- database
- redis
karllhughes /
Last active Aug 9, 2017
Jobs Hub - 1.0.2 Swagger Documentation
karllhughes /
Last active Jul 26, 2020
Side Project Checklist Marketing

Setup Work

  • Make a list of competitive/alternative services: See file
  • Set up Google News alerts for "side project marketing" and "startup marketing".
  • Make list of blogs, subscribe to RSS feeds in Feedbin:
    • Startup marketing blogs
    • Side project blogs
    • Small business marketing blogs
    • Chicago small business/startup bloggers
  • Come up with a name and domain name
You can’t perform that action at this time.