pedroagabreu
pedroagabreu
/ gist:85e11f83572ccab9dea1
Last active
January 18, 2016 20:58
Create read-only user/role in Postgres.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # create user | |
| create role myuser login password 'somepassword'; | |
| grant connect on database events to myuser; | |
| grant usage on schema public to myuser; | |
| # privs on current stuff | |
| grant select on all tables in schema public to myuser; | |
| grant select on all sequences in schema public to myuser; | |
| grant execute on all functions in schema public to myuser; |
pedroagabreu
/ gist:11d61c7daecd047835f5
Last active
November 20, 2015 15:35
Mass terminate AWS EC2 instances with active termination protection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # terminate instances | |
| for i in i-aaaaaa i-bbbbbb i-cccccc ...; do aws ec2 modify-instance-attribute --instance-id $i --no-disable-api-termination; done | |
| aws ec2 terminate-instances --instance-ids i-aaaaaa i-bbbbbb i-cccccc ... | |
| # release elastic ips | |
| for i in $(cat ips); do aws ec2 describe-addresses --public-ip $i |grep AllocationId |cut -d: -f2 |tr -d \"; done > eipalloc | |
| for i in $(cat eipalloc); do aws ec2 release-address --allocation-id $i; done |
pedroagabreu
/ gist:b5e982b0b100f4066458
Last active
September 20, 2017 10:57
Elasticsearch query examples using cURL
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # pull 2M records and drop metadata | |
| curl -sN -XPOST 'http://localhost:9200/logstash-2015.11.04/_search' -d '{"sort": ["@timestamp"], "query": {"match": {"who": "me"}}, "from": 0, "size": 1000000}' | jq -c '.hits.hits[]._source' > output.json | |
| curl -sN -XPOST 'http://localhost:9200/logstash-2015.11.04/_search' -d '{"sort": ["@timestamp"], "query": {"match": {"who": "me"}}, "from": 1000001, "size": 1000000}' | jq -c '.hits.hits[]._source' > output2.json |
pedroagabreu
/ mydomain.local
Created
September 4, 2014 17:48
Configure dnsmasq to use specific nameservers for certain domains. In Ubuntu this file would go in /etc/NetworkManager/dnsmasq.d/.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| server=/mydomain.local/192.168.1.253 | |
| server=/mydomain.local/192.168.1.254 |
pedroagabreu
/ ratelimit.conf
Created
August 28, 2014 16:06
Rate limit configuration example for rsyslog, goes in /etc/rsyslog.d.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $SystemLogRateLimitInterval 5 | |
| $SystemLogRateLimitBurst 2000 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| description "Suricata Intrusion Detection System Daemon" | |
| start on runlevel [2345] | |
| stop on runlevel [!2345] | |
| expect fork | |
| exec suricata -D --pidfile /var/run/suricata.pid -c /etc/suricata/suricata.yaml -i eth1 |
pedroagabreu
/ oinkmaster
Last active
August 29, 2015 14:05
Oinkmaster cron. Make sure "rule-reload: true" in suricata.yaml.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MAILTO="security@domain.tld" | |
| 55 5 * * * root ( /usr/sbin/oinkmaster -C /etc/oinkmaster.conf -o /etc/suricata/rules; sleep 5; kill -USR2 `pidof suricata` ) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /var/log/suricata/*.log /var/log/suricata/*.json | |
| { | |
| daily | |
| rotate 3 | |
| missingok | |
| nocompress | |
| create | |
| sharedscripts | |
| postrotate | |
| /bin/kill -HUP $(pidof suricata) |
pedroagabreu
/ gist:ae87dc081ff0588bbeff
Last active
October 12, 2015 19:49
Apache 2.4 SSL configuration.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Perfect Forward Secrecy ciphers | |
| SSLCipherSuite "EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA384 EECDH+ECDSA+SHA256 EECDH+aRSA+SHA384 EECDH+aRSA+SHA256 EECDH EDH+aRSA !RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS" | |
| SSLHonorCipherOrder on | |
| # Enabled protocols | |
| SSLProtocol all -SSLv2 -SSLv3 | |
| # OCSP stapling | |
| SSLUseStapling on | |
| SSLStaplingResponderTimeout 5 |
pedroagabreu
/ gist:1908892061fcb2b2f3c6
Last active
February 10, 2023 14:44
Salesforce web to lead via php-curl.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $sfurl = 'https://webto.salesforce.com/servlet/servlet.WebToLead?encoding=UTF-8'; | |
| $sffields = array( | |
| 'oid' => 'someoid', | |
| 'lead_source' => 'my website', | |
| 'last_name' => urlencode($_POST['name']), | |
| 'company' => urlencode($_POST['organization']), | |
| 'email' => urlencode($_POST['email']), | |
| 'phone' => urlencode($_POST['phone']), | |
| ); | |
| foreach($sffields as $key=>$value) { $fieldstring .= $key.'='.$value.'&'; } |
NewerOlder