Deck
Recording
Deck
Recording
Security Advisories / Bulletins / vendors Responses linked to Log4Shell (CVE-2021-44228)
What I use for Hortonworks HDP (Hadoop) systems, but should work for anyone.
Some configurations are tuned for Active Directory without relying on 'sssd-ad' such that the hosts don't need to join the domain.
sudo yum install sssd sssd-ldap sssd-krb5 sssd-tools authconfig \
oddjob oddjob-mkhomedir openldap-clients cyrus-sasl-gssapi \
What I use for Hortonworks HDP (Hadoop) systems, but should work for anyone.
Some configurations are tuned for Active Directory without relying on 'sssd-ad' such that the hosts don't need to join the domain.
sudo yum install sssd sssd-ldap sssd-krb5 sssd-tools authconfig \
oddjob oddjob-mkhomedir openldap-clients cyrus-sasl-gssapi \
https://airflow.readthedocs.io/en/latest/start.html | |
sudo apt-get install python3-pip | |
sudo apt-get install postgresql postgresql-contrib | |
sudo -u postgres createuser --interactive | |
name: airflow | |
superuser: yes |
CREATE EXTENSION IF NOT EXISTS "uuid-ossp"; | |
CREATE TABLE clickstream ( | |
click_id uuid PRIMARY KEY NOT NULL DEFAULT uuid_generate_v4(), | |
click_timestamp TIMESTAMP WITH TIME ZONE, | |
user_id UUID, | |
is_ad_display_event BOOLEAN, | |
is_ad_search_event BOOLEAN | |
); |
deb [arch=amd64,i386] http://us.archive.ubuntu.com/ubuntu/ bionic main restricted universe multiverse | |
deb [arch=amd64,i386] http://us.archive.ubuntu.com/ubuntu/ bionic-updates main restricted universe multiverse | |
deb [arch=amd64,i386] http://us.archive.ubuntu.com/ubuntu/ bionic-backports main restricted universe multiverse | |
deb [arch=amd64,i386] http://security.ubuntu.com/ubuntu bionic-security main restricted universe multiverse | |
deb [arch=arm64,armhf,ppc64el,s390x] http://ports.ubuntu.com/ubuntu-ports/ bionic main restricted universe multiverse | |
deb [arch=arm64,armhf,ppc64el,s390x] http://ports.ubuntu.com/ubuntu-ports/ bionic-updates main restricted universe multiverse | |
deb [arch=arm64,armhf,ppc64el,s390x] http://ports.ubuntu.com/ubuntu-ports/ bionic-backports main restricted universe multiverse | |
deb [arch=arm64,armhf,ppc64el,s390x] http://ports.ubuntu.com/ubuntu-ports/ bionic-security main restricted universe multiverse |
#!/bin/sh | |
# Launch a Pod ab-using a hostPath mount to land on a Kubernetes node cluster as root | |
# without requiring `privileged: true`, in particular can abuse `DenyExecOnPrivileged` | |
# admission controller. | |
# Pod command in turn runs a privileged container using node's /var/run/docker.sock. | |
node=${1} | |
case "${node}" in | |
"") | |
nodeSelector='' | |
podName=${USER+${USER}-}docker-any |
from airflow.contrib.hooks.gcs_hook import GoogleCloudStorageHook | |
from airflow.exceptions import AirflowException | |
from airflow.hooks.http_hook import HttpHook | |
from airflow.models import BaseOperator | |
from airflow.utils.decorators import apply_defaults | |
import json | |
import time | |
class AppEngineOperator(BaseOperator): |