Estos son los materiales que he utilizado para la preparacion de la charla:
https://docs.google.com/presentation/d/1KwIob_SRC-B3Nx1n6UQiEMFaC7GhidmSKPn3I4cA6JE/edit?usp=sharing
Estos son los materiales que he utilizado para la preparacion de la charla:
https://docs.google.com/presentation/d/1KwIob_SRC-B3Nx1n6UQiEMFaC7GhidmSKPn3I4cA6JE/edit?usp=sharing
Download the latest version from the site: https://rtyley.github.io/bfg-repo-cleaner/
Create a folder:
mkdir clean-repo
Inside the this folder create a txt file with the password o sensitive data you want to revove
cd clean-repo
echo "mySuperPassword" > passsword.txt
Install pip install python-dotenv
URL: https://pypi.org/project/python-dotenv/
Create a file .env
with the environment variable you will need ex:
MESSAGE_ENV="Hello from env file"
log in as root: sudo su
if you don't have MongoDB already installed:
sudo apt-get install mongodb mongodb-server openjdk-8-jre-headless=8u162-b12-1 jsvc
Open terminal (go to your apps and type in terminal, or push the windows key and type in terminal) Type the following commands:
sudo mv /usr/bin/mongod /usr/bin/mongod.bin
The .conf
files directory have to be .platform/nginx/conf.d/elasticbeanstalk
Create a new file called .platform/nginx/conf.d/01_client_size.conf
and paste in the following:
client_max_body_size 20M;
You don't need to restart the nginx manually, when you deploy it restart the services.
Thanks
Al hacer el backup si llega a emitir este error la terminal:
Error: backup,critical error creating backup file: could not read all configuration files
ingresar el siguiente comando:
/ip ssh regenerate-host-key
Crear tres reglas en un chain aparte port_knock
en IP -> Firewall
copiando y pegando lo siguiente en una terminal:
/ip firewall filter add action=add-src-to-address-list address-list=PORT_KNOCK_J1 address-list-timeout=20s chain=port_knock dst-address-type=local dst-port=666 protocol=tcp src-address-list=!PORT_KNOCK_J1
/ip firewall filter add action=add-src-to-address-list address-list=PORT_KNOCK_J2 address-list-timeout=20s chain=port_knock dst-address-type=local dst-port=888 protocol=tcp src-address-list=PORT_KNOCK_J1
/ip firewall filter add action=add-src-to-address-list address-list=SOPORTE_REMOTO address-list-timeout=8h chain=port_knock dst-address-type=local dst-port=777 protocol=tcp src-address-list=PORT_KNOCK_J2
/certificate add name=ca-template common-name=myCa key-usage=key-cert-sign,crl-sign days-valid=3650 country="PY" state="Alto Parana" organization="Empresa" locality="Ciudad del Este" unit="TI" key-size=4096
/certificate add name=server-template common-name=server days-valid=3650 country="PY" state="Alto Parana" organization="Empresa" locality="Ciudad del Este" unit="TI" key-size=4096
/certificate add name=client-template common-name=client days-valid=3650 country="PY" state="Alto Parana" organization="Empresa" locality="Ciudad del Este" unit="TI" key-size=4096
/certificate sign ca-template name=myCa
I hereby claim:
To claim this, I am signing this object: