Skip to content

Instantly share code, notes, and snippets.

Pete petiepooo

  • Central Virginia
Block or report user

Report or block petiepooo

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@petiepooo
petiepooo / ssh-askpass
Created Jan 6, 2017
OSX 10.9 script to allow confirmation of ssh keys on each use (/usr/libexec/ssh-askpass)
View ssh-askpass
#!/bin/bash
#
# An SSH_ASKPASS command for MacOS X
#
# Author: petiepooo
# License: CC_SA
#
# This script is called by ssh-agent when SSH_ASKPASS environment
# variable is set. It allows use of confirm each use when adding
# an ssh key (ssh-add -c <key>).
@petiepooo
petiepooo / after.rules.salt.patch
Created Jun 30, 2016
A patch to UFW's after.rules file to allow "knocking harder" protection for SaltStack ports
View after.rules.salt.patch
--- after.rules.orig 2016-06-30 14:56:53.155072361 -0500
+++ after.rules 2016-06-30 14:38:06.839093867 -0500
@@ -15,6 +15,9 @@
:ufw-after-forward - [0:0]
# End required lines
+### add salt-stack knocking chains
+:salt-new-conn - [0:0]
+
# don't log noisy services by default
@petiepooo
petiepooo / after.rules.patch
Last active Jun 30, 2016
/etc/ufw/after.rules patch to allow SSH when "knocking harder"
View after.rules.patch
--- a/after.rules 2012-04-05 13:16:41.000000000 -0500
+++ b/after.rules 2015-04-02 09:10:19.911426348 -0500
@@ -13,6 +13,8 @@
:ufw-after-input - [0:0]
:ufw-after-output - [0:0]
:ufw-after-forward - [0:0]
+# new chain just for knocking connections: after input so user rules take precedence
+:ufw-after-input-ssh - [0:0]
# End required lines
You can’t perform that action at this time.