Skip to content

Instantly share code, notes, and snippets.

:octocat:

Sebastian Schmidt publicarray

:octocat:
Block or report user

Report or block publicarray

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@publicarray
publicarray / Nginx.md
Last active Jan 29, 2020
Nginx with modules and latest OpenSSL [CentOS]
View Nginx.md

Nginx/OpenSSL on CentOS

@publicarray
publicarray / wine-wrapper-or-engine.md
Last active Dec 25, 2019
Compile a wineskin base on macOS 10.11 and newer
View wine-wrapper-or-engine.md

Option 1 - Compiling

Get the source

git clone git://source.winehq.org/git/wine.git

Or from the Github mirror

View keybase.md

Keybase proof

I hereby claim:

  • I am publicarray on github.
  • I am publicarray (https://keybase.io/publicarray) on keybase.
  • I have a public key whose fingerprint is AC7B 7A03 D00D 8236 B8E6 F9D1 80B9 6879 01B6 587C

To claim this, I am signing this object:

@publicarray
publicarray / wg-quick.zsh
Last active Apr 28, 2019
Slowly progress to a posix compatible script... for embedded devices with busybox
View wg-quick.zsh
#!/usr/bin/env zsh
# SPDX-License-Identifier: GPL-2.0
#
# Copyright (C) 2015-2019 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
#
# https://github.com/WireGuard/WireGuard/tree/master/src/tools/wg-quick
set -e -o pipefail
export LC_ALL=C
@publicarray
publicarray / alpine-install.sh
Last active Mar 9, 2019 — forked from thde/alpine-install.sh
A script to install alpine linux on a dedicated server. Tested on Hetzner, Kimsufi / OVH
View alpine-install.sh
#!/bin/sh
set -ex
PATH=/bin:/sbin:/usr/bin:/usr/sbin
KEYMAP="us us"
HOST=alpine
USER=anon
ROOT_FS=ext4
BOOT_FS=ext4
View ovh.md

Terraform on OHV

  1. Create a project
  2. Cloud->Servers->Project Name->Tecnical Management->Openstack Users
  3. Add user
  4. Download an Openstack Configuration File (v3)

Follow https://docs.ovh.com/gb/en/public-cloud/how-to-use-terraform/

But use the following provider, fill in the blanks from the configuration file you downloaded earlier:

View worker.js
// https://developers.cloudflare.com/workers/about/
// https://tutorial.cloudflareworkers.com
//
// A Service Worker which adds Security Headers.
// Checks:
// https://securityheaders.io/
// https://observatory.mozilla.org/
// https://csp-evaluator.withgoogle.com/
// https://hstspreload.org/
// https://www.ssllabs.com/ssltest/
@publicarray
publicarray / prometheus.md
Last active Aug 11, 2018
Docker & Prometheus node-exporter
View prometheus.md

https://www.digitalocean.com/community/tutorials/how-to-install-prometheus-on-ubuntu-16-04

https://www.digitalocean.com/community/tutorials/how-to-use-prometheus-to-monitor-your-centos-7-server

https://www.digitalocean.com/community/tutorials/how-to-use-prometheus-to-monitor-your-ubuntu-14-04-server

docker run --rm quay.io/prometheus/node-exporter -h

docker run -d --net=host --pid=host --name "node-exporter" --cap-add=SYS_TIME -v "/proc:/host/proc:ro" -v "/sys:/host/sys:ro" -v "/:/rootfs:ro" quay.io/prometheus/node-exporter --path.procfs /host/proc --path.sysfs  /host/proc --collector.filesystem.ignored-mount-points "^/(sys|proc|dev|host|etc)($|/)"
@publicarray
publicarray / AU-banking&CDNs.md
Last active Jul 8, 2018
Australian Internet banking and CDNs
View AU-banking&CDNs.md

Australian Internet banking and CDNs

Note: I do not care if their home page is on a CDN what matters is that the banking credentials and financial information is end to end encrypted from the financial institution and to your browser. There are no grantees that this is the case even with TLS. TLS might be terminated earlier e.g by a load-balancer or a CDN. I only checked the login pages since I don't have an account in all of the banks, that would be crazy. I tried to use Whois data and HTML headers to determine CDNs. This method is not foolproof so please take it with a grain of salt

Hostname CDN / Cloud Firewall Uses 3rd party assets without Subresource Integrity SSL Labs score comments
internetbanking.suncorpbank.com.au Incapsula Yes A IP is owned by Incapsula
banking3.anz.com B IP address owned by ANZ but has relation to "SingTel Optus Pty Ltd". Uses lots of type="hidden" fields on login form,
banking.wes
@publicarray
publicarray / opennic.config
Last active Jan 15, 2018
OpenNIC Tier 2 nsd config (Slave Zone Method)
View opennic.config
#
# nsd: https://www.nlnetlabs.nl/projects/nsd/
# OpenNic: https://www.opennic.org/
#
# this file can be placed inside the "/etc/nsd/conf.d folder"
# e.g. "/etc/nsd/conf.d/opennic.conf" for debian and redhat systems
# also make sure the "nsd.config" has the following line present:
# include: "/etc/nsd/conf.d/*.conf"
#
# you can use the "nsd-checkconf /etc/nsd/nsd.conf" to check for syntax errors
You can’t perform that action at this time.