- Install Authy from Chrome Web Store
- Open Authy and log in, so you can see the codes being generated for you. Keep it open.
- Go to Extensions page in your browser (
chrome://extensions/or Menu -> More tools -> Extensions) - Tick developer mode in the top right corner
- Go to the Authy App details and click on
main.htmlat the 'Inspect views' section - Chrome developer tools with Console selected should open. If it didn't, go to the Console tab.
- Paste following and press enter:
krushik
krushik
/ log_mask.lua
Last active
December 15, 2021 07:20
mask passwords in apache access logs with mod_lua
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- apache's %r log field (request line) is read only, we can't fix data in there, | |
| -- so you need to change your LogFormat with '%m %U%q %H' instead of '%r' to get this masking effect | |
| function log_mask_password(r) | |
| -- manually parse request line, needed to overwrite r.uri to mimick apache's %r percent-encoding in %U for non-latin chars | |
| local url = r.the_request:match"^%S+%s(.+)%sHTTP/[%d.]+$" -- ex.: GET /foo?bar=1 HTTP/1.1 | |
| -- in case of malformed http request, use apache's uri variant | |
| if not url then | |
| url = r.uri | |
| end |
krushik
/ AuthyToOtherAuthenticator.md
Last active
October 11, 2018 10:40
— forked from gboudreau/AuthyToOtherAuthenticator.md
Export TOTP secrets from Authy
krushik
/ check_mode_indicator.py
Last active
October 15, 2023 14:36
ansible callback plugin that warns you of --check mode
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from __future__ import (absolute_import, division, print_function) | |
| __metaclass__ = type | |
| DOCUMENTATION = ''' | |
| callback: check_mode_indicator | |
| type: aggregate | |
| short_description: shows a warning if you run ansible in check mode | |
| description: | |
| - This callback module shows a big WARNING when you run ansible in check mode. | |
| ''' |
krushik
/ passwd.yml
Last active
May 1, 2023 13:30
ansible playbook to change user password on linux
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| # You may override default target user with -e user=someotheruser | |
| # It is mandatory to choose a strong password! At least consult with https://www.bennish.net/password-strength-checker/ | |
| - name: change linux user password | |
| hosts: [all] | |
| gather_facts: no | |
| vars_prompt: | |
| ## use this when 656K rounds will be OK for your servers' CPU performance, or when rounds number will become configurable in ansible | |
| # You may need 'apt-get install python-passlib' or 'pip install passlib' for vars_prompt encryption |
поставить keychain для упрощения управлением ssh-агентами
sudo apt install keychain
заполнить ~/.bashrc для автостарта и дедуплекации агентов
положить скрипт ~/.kde/Autostart/screenlock-yubikey-unload.sh (должно быть можно и в более общем X session стартапе). висит демоном и слушает события скринлока
положить скрипт /usr/local/bin/yubikey-screen-lock.sh (форс скринлока. протестировано только на kde4)
krushik
/ yk-attest.sh
Created
May 10, 2017 22:48
yubikey piv attestation: verifies that piv key was generated inside yubikey (and therefore not exportable)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # based on https://developers.yubico.com/yubico-piv-tool/Attestation.html | |
| wget -O certs.pem https://developers.yubico.com/PIV/Introduction/piv-attestation-ca.pem | |
| yubico-piv-tool --action=read-certificate --slot=f9 >> certs.pem | |
| yubico-piv-tool --action=attest --slot=9a > attestation.pem | |
| openssl verify -CAfile certs.pem attestation.pem | |
| # attestation.pem: OK |
krushik
/ keybase.md
Created
May 2, 2017 16:13
I hereby claim:
- I am krushik on github.
- I am krushik (https://keybase.io/krushik) on keybase.
- I have a public key whose fingerprint is 3D1D 38BF 4489 8F45 0215 9D61 941E 81B9 C8E5 BE9A
To claim this, I am signing this object:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| GIT_PROMPT_ONLY_IN_REPO=1 | |
| GIT_PROMPT_THEME=Single_line_Solarized | |
| source ~/.bash-git-prompt/gitprompt.sh |