Skip to content

Instantly share code, notes, and snippets.

Avatar

Fabian Fischer nodomain

12 followers · 9 following
View GitHub Profile
@nodomain
nodomain / terraform-0.13-auto-replace-provider.sh
Last active September 10, 2020 06:47
Terraform 0.13: Replace "namespaceless" providers in state with the HashiCorp namespace variant
View terraform-0.13-auto-replace-provider.sh
terraform state pull | grep provider | grep registry.terraform.io/- | uniq | cut -d"\\" -f2 | cut -d"\"" -f2 | sort | uniq \
| while IFS= read -r line; do terraform state replace-provider -auto-approve ${line} ${line/-/hashicorp} ; done
@nodomain
nodomain / README.md
Created October 25, 2018 15:46 — forked from holyjak/README.md
IAM policy to allow Continuous Integration user to deploy to AWS Elastic Beanstalk
View README.md

IAM policy to allow Continuous Integration user to deploy to AWS Elastic Beanstalk

IAM policy that we attach to CI users so that our CI server can deploy new versions of our applications to our EB environments without giving them too many permissions. When some permissions are missing, deploys may fail with the useless and misleading ERROR event log

Service:AmazonCloudFormation, Message:TemplateURL must reference a valid S3 object to which you have access.

(Notice that in many cases the error has nothing to do with S3 but can be caused by any missing permissions, for instance autoscaling:SuspendProcesse. Yes, it sucks.)

The policy can certainly be tightened more, it is not the most restrictive policy that works. As Kyle points out, the full EC2 rights are likely the biggest problem.

@nodomain
nodomain / Windows 10 DNS requests
Created August 2, 2015 21:32
View Windows 10 DNS requests
root@pi:/home/pi# cat /var/log/dnsmasq | grep microsoft | grep 192.168.10.20 | cut -d" " -f7 | sort | uniq
activation.playready.microsoft.com
blob.weather.microsoft.com
c1.microsoft.com
c.microsoft.com
crl.microsoft.com
c.s-microsoft.com
cs.microsoft.com
c.urs.microsoft.com
displaycatalog.md.mp.microsoft.com
@nodomain
nodomain / keybase.md
Created May 14, 2014 06:34
View keybase.md

Keybase proof

I hereby claim:

  • I am nodomain on github.
  • I am nodomain (https://keybase.io/nodomain) on keybase.
  • I have a public key whose fingerprint is 0B15 D3A5 247C 3684 F2AC 50C2 8100 9D89 2FB4 A3DE

To claim this, I am signing this object:

@nodomain
nodomain / crontab
Last active December 20, 2015 11:38
I needed a simple bash script for monitoring website changes. Inspired by http://bhfsteve.blogspot.com/2013/03/monitoring-web-page-for-changes-using.html. I adapted it a bit to fit my needs. Run via cron on my Raspberry Pi.
View crontab
# m h dom mon dow command
* */3 * * *<--->/usr/bin/cronic /home/pi/bin/websitemonitor.sh http://url.to/monitor/