Skip to content

Instantly share code, notes, and snippets.

🐝

Sebastian Schmidt publicarray

🐝
Block or report user

Report or block publicarray

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@publicarray
publicarray / wine-wrapper-or-engine.md
Last active Jul 2, 2019
Compile a wineskin base on macOS 10.11 and newer
View wine-wrapper-or-engine.md

Option 1 - Compiling

Get the source

git clone git://source.winehq.org/git/wine.git

Or from the Github mirror

@publicarray
publicarray / wg-quick.zsh
Last active Apr 28, 2019
Slowly progress to a posix compatible script... for embedded devices with busybox
View wg-quick.zsh
#!/usr/bin/env zsh
# SPDX-License-Identifier: GPL-2.0
#
# Copyright (C) 2015-2019 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
#
# https://github.com/WireGuard/WireGuard/tree/master/src/tools/wg-quick
set -e -o pipefail
export LC_ALL=C
@publicarray
publicarray / dnscrypt-autokey.conf
Last active Mar 24, 2019
DNSCrypt - Better key management with dnscrypt-wrapper. Use this script to automatically rotate keys and restart Unbound/DNSCrypt-wrapper
View dnscrypt-autokey.conf
# Sample config file, place it at /usr/local/etc/dnscrypt-autokey.conf
#
## Key Config
# Location to store the provider key pair. Default is /usr/local/etc/dnscrypt-wrapper/keys
KEY_DIR=$(dirname "$0")/keys
# Location to generate the short-lived keys and certificates. Default is $KEY_DIR
# Note: Do not manually add, move, modify or touch files in this folder!
SHORT_TERM_KEYS_DIR=$KEY_DIR
# Certificate expiration time in days
VALIDITY_PERIOD=1
@publicarray
publicarray / alpine-install.sh
Last active Mar 9, 2019 — forked from thde/alpine-install.sh
A script to install alpine linux on a dedicated server. Tested on Hetzner, Kimsufi / OVH
View alpine-install.sh
#!/bin/sh
set -ex
PATH=/bin:/sbin:/usr/bin:/usr/sbin
KEYMAP="us us"
HOST=alpine
USER=anon
ROOT_FS=ext4
BOOT_FS=ext4
View ovh.md

Terraform on OHV

  1. Create a project
  2. Cloud->Servers->Project Name->Tecnical Management->Openstack Users
  3. Add user
  4. Download an Openstack Configuration File (v3)

Follow https://docs.ovh.com/gb/en/public-cloud/how-to-use-terraform/

But use the following provider, fill in the blanks from the configuration file you downloaded earlier:

View worker.js
// https://developers.cloudflare.com/workers/about/
// https://tutorial.cloudflareworkers.com
//
// A Service Worker which adds Security Headers.
// Checks:
// https://securityheaders.io/
// https://observatory.mozilla.org/
// https://csp-evaluator.withgoogle.com/
// https://hstspreload.org/
// https://www.ssllabs.com/ssltest/
@publicarray
publicarray / prometheus.md
Last active Aug 11, 2018
Docker & Prometheus node-exporter
View prometheus.md

https://www.digitalocean.com/community/tutorials/how-to-install-prometheus-on-ubuntu-16-04

https://www.digitalocean.com/community/tutorials/how-to-use-prometheus-to-monitor-your-centos-7-server

https://www.digitalocean.com/community/tutorials/how-to-use-prometheus-to-monitor-your-ubuntu-14-04-server

docker run --rm quay.io/prometheus/node-exporter -h

docker run -d --net=host --pid=host --name "node-exporter" --cap-add=SYS_TIME -v "/proc:/host/proc:ro" -v "/sys:/host/sys:ro" -v "/:/rootfs:ro" quay.io/prometheus/node-exporter --path.procfs /host/proc --path.sysfs  /host/proc --collector.filesystem.ignored-mount-points "^/(sys|proc|dev|host|etc)($|/)"
@publicarray
publicarray / AU-banking&CDNs.md
Last active Jul 8, 2018
Australian Internet banking and CDNs
View AU-banking&CDNs.md

Australian Internet banking and CDNs

Note: I do not care if their home page is on a CDN what matters is that the banking credentials and financial information is end to end encrypted from the financial institution and to your browser. There are no grantees that this is the case even with TLS. TLS might be terminated earlier e.g by a load-balancer or a CDN. I only checked the login pages since I don't have an account in all of the banks, that would be crazy. I tried to use Whois data and HTML headers to determine CDNs. This method is not foolproof so please take it with a grain of salt

Hostname CDN / Cloud Firewall Uses 3rd party assets without Subresource Integrity SSL Labs score comments
internetbanking.suncorpbank.com.au Incapsula Yes A IP is owned by Incapsula
banking3.anz.com B IP address owned by ANZ but has relation to "SingTel Optus Pty Ltd". Uses lots of type="hidden" fields on login form,
banking.wes
@publicarray
publicarray / Nginx.md
Last active Jul 4, 2018
Nginx with modules and latest OpenSSL [CentOS]
View Nginx.md

Nginx/OpenSSL on CentOS

@publicarray
publicarray / opennic.config
Last active Jan 15, 2018
OpenNIC Tier 2 nsd config (Slave Zone Method)
View opennic.config
#
# nsd: https://www.nlnetlabs.nl/projects/nsd/
# OpenNic: https://www.opennic.org/
#
# this file can be placed inside the "/etc/nsd/conf.d folder"
# e.g. "/etc/nsd/conf.d/opennic.conf" for debian and redhat systems
# also make sure the "nsd.config" has the following line present:
# include: "/etc/nsd/conf.d/*.conf"
#
# you can use the "nsd-checkconf /etc/nsd/nsd.conf" to check for syntax errors
You can’t perform that action at this time.