Skip to content

Instantly share code, notes, and snippets.

Kenny Root kruton

Block or report user

Report or block kruton

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@kruton
kruton / README.md
Created Mar 15, 2019
Setup of automatic docker proxy
View README.md

Setting up a semi-automated TLS proxy

At home I use Fedora's Project Atomic to run containers for services I use in my home. I only have one IPv4 address, so it has to be shared between all the services. This solution makes my life simple because I just add a new hostname into DNS with a CNAME pointing to my single IPv4, wait a few minutes, and then bring up the service with a SystemD .service file.

Special setup for Docker

Since many people have moved off of Docker to other container solutions, this might not apply to the current situation. However, I use a binary called systemd-docker to launch all my docker containers to make some .service file setup more pleasant. Instead of adding "-e ENVVAR=value" in the ExecStart line of the .service file, I can add a line that simply says ENVIRONMENT=ENVVAR=value by itself.

This part is not that important and may be removed from the below files because it's sensitive to how your Distribution sets up cgroups.

@kruton
kruton / connectbot-icla.markdown
Created Apr 6, 2018
ConnectBot Individual Contributor License Agreement
View connectbot-icla.markdown

ConnectBot Individual Contributor License Agreement

Thank you for your interest in ConnectBot (the "Company"). In order to clarify the intellectual property license granted with Contributions from any person or entity, the Company must have a Contributor License Agreement ("CLA") on file that has been signed by each Contributor, indicating agreement to the license terms below. This license is for your protection as a Contributor as well as the protection of the Company and its users; it does not change your rights to use your own Contributions for any other purpose.

You accept and agree to the following terms and conditions for Your present and future Contributions submitted to the Company. In return, the Company shall not use Your Contributions in a way that is contrary to the public benefit or inconsistent with its bylaws in effect at the time of the Contribution. Except for the license granted herein to the Company and recipients of software distribute

@kruton
kruton / bash-shellshock-fix.patch
Created Sep 27, 2014
bash ShellShock patch from Florian Weimer
View bash-shellshock-fix.patch
Date: Thu, 25 Sep 2014 14:37:26 +0200
From: Florian Weimer <fweimer@...hat.com>
To: oss-security@...ts.openwall.com
CC: chet.ramey@...e.edu
Subject: Re: CVE-2014-6271: remote code execution through bash
On 09/24/2014 08:54 PM, Michal Zalewski wrote:
>> My main concern with the current patch is that still exposes the bash parser
>> and function definition printer to attacks from the network. Bugs in those
>> fairly large components could cause another critical issue.
View keybase.md

Keybase proof

I hereby claim:

  • I am kruton on github.
  • I am kenny (https://keybase.io/kenny) on keybase.
  • I have a public key whose fingerprint is 5DB1 7E23 62CE 4BAB 877D 9B2B C615 DA72 23B8 C81C

To claim this, I am signing this object:

@kruton
kruton / openssh-6.5p1-apple-keychain.patch
Created Feb 12, 2014
OpenSSH 6.5p1 Apple Keychain patch
View openssh-6.5p1-apple-keychain.patch
From ca4ab3b9f7568055ee769ed0e2ea6a82dc64ad56 Mon Sep 17 00:00:00 2001
From: Kenny Root <kenny@the-b.org>
Date: Tue, 11 Feb 2014 21:48:58 -0800
Subject: [PATCH] OpenSSH 6.5p1: Apple Keychain patch
Original commit had this information:
HG changeset patch
User Sean Farley <sean.michael.farley@gmail.com>
Date 1382624667 -28800
Thu Oct 24 22:24:27 2013 +0800
View openssh-6.5p1-gsskex-all-20130920.patch
From 81942443222ef8e450ba04268c7672bec99b30b9 Mon Sep 17 00:00:00 2001
From: Kenny Root <kenny@the-b.org>
Date: Tue, 11 Feb 2014 22:06:11 -0800
Subject: [PATCH] OpenSSH 6.5p1: GSSKEX
---
ChangeLog.gssapi | 113 +++++++++++++++++++
Makefile.in | 3 +-
auth-krb5.c | 17 ++-
auth2-gss.c | 48 +++++++-
View agnoster.bash
# vim: ft=bash ts=2 sw=2 sts=2
#
# agnoster's Theme - https://gist.github.com/3712874
# A Powerline-inspired theme for BASH
#
# (Converted from ZSH theme by Kenny Root)
#
# # README
#
# In order for this theme to render correctly, you will need a
@kruton
kruton / gist:8120594
Last active Jan 1, 2016
Fix OpenSSH Apple Keychain getopt
View gist:8120594
diff --git a/ssh-add.c b/ssh-add.c
index 10c968a..84f24d6 100644
--- a/ssh-add.c
+++ b/ssh-add.c
@@ -457,7 +457,7 @@ main(int argc, char **argv)
"Could not open a connection to your authentication agent.\n");
exit(2);
}
- while ((ch = getopt(argc, argv, "kKlLcdDxXe:s:t:")) != -1) {
+ while ((ch = getopt(argc, argv, "kKlLcdDxXmMe:s:t:")) != -1) {
You can’t perform that action at this time.