Robin Kearney rk295
rk295
/ gist:8438415
Created
January 15, 2014 15:37
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "data": [ | |
| #timezone local# | |
| #raw# | |
| #jump -300# | |
| #loop 100# | |
| { | |
| "#idx "%m/%d/%Y %H:%M"#": { | |
| "TempOut": #temp_out "%.1f"#, | |
| "FeelsLike": #calc "apparent_temp(data['temp_out'], data['hum_out'], data['wind_ave'])" "%.1f"#, |
rk295
/ proftpd mod_shaper bug?
Last active
August 29, 2015 14:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| % lsof -p 11508 | grep shaper | |
| proftpd 11508 nobody mem REG 253,0 77410 1402491 /usr/libexec/proftpd/mod_shaper.so | |
| proftpd 11508 nobody 4w REG 253,0 4163 1402473 /var/log/ftpd/shaper.log | |
| proftpd 11508 nobody 5u REG 253,0 120 1402472 /var/log/ftpd/shaper.tab | |
| % cd /var/log/ftpd | |
| % mv shaper.log shaper.log.old | |
| % touch shaper.log | |
| % cat /var/run/proftpd.pid | |
| 11508 | |
| % kill -HUP 11508 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| input { | |
| file { | |
| path => "/var/log/xferlog" | |
| type => "xferlog" | |
| add_field => { "program" => "proftpd" } | |
| } | |
| } | |
| filter { | |
| if [type] == "xferlog" { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| %{DAY} %{MONTH} %{MONTHDAY} %{TIME} %{YEAR} %{NUMBER:xferTime} %{IP:remoteHost} %{NUMBER:fileSize} %{PATH:fileName} %{WORD:transferType} %{WORD: specialActionFlag} %{WORD:direction} %{WORD:accessmode} %{WORD:username} %{WORD:serviceName} %{WORD:authenticationMethod} %{DATA:aut} %{WORD:completionStatus} | |
| https://grokdebug.herokuapp.com/ | |
| Fri Aug 29 16:53:15 2014 4 173.220.95.58 873550 /u01/clients/globeph/source/live-feed/140828_Ariana_Grande-JBB/IMG_7240.jpg b _ i r globeph ftp 0 * c |
rk295
/ gist:6fb03c65b49273548212
Last active
June 9, 2021 11:45
Fortigate Firewall Logstash Grok filter
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| input { | |
| syslog { | |
| type => "fortigate" | |
| port => 5001 | |
| } | |
| } | |
| filter { | |
| if [type] == "fortigate" { |
rk295
/ Allowed & Blocked-1409435838391
Created
August 30, 2014 21:59
Couple of useful firewall dashboards for Logstash
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "title": "Allowed & Blocked", | |
| "services": { | |
| "query": { | |
| "list": { | |
| "0": { | |
| "query": "subtype:allowed", | |
| "alias": "", | |
| "color": "#7EB26D", | |
| "id": 0, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ export foo=bar | |
| $ export "baz"$foo=wibble | |
| $ echo $bazbar | |
| wibble |
rk295
/ robins public key
Created
November 26, 2014 09:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ssh-dss 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 robin@trillian |
rk295
/ Wind Rose table
Created
December 29, 2014 21:46
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <table id="freq" border="0" cellspacing="0" cellpadding="0"> | |
| <tr nowrap bgcolor="#CCCCFF"> | |
| <th colspan="9" class="hdr">Table of Frequencies (percent)</th> | |
| </tr> | |
| <tr nowrap bgcolor="#CCCCFF"> | |
| <th class="freq">Direction</th> | |
| <th class="freq">< 0.5 m/s</th> | |
| <th class="freq">0.5-2 m/s</th> | |
| <th class="freq">2-4 m/s</th> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Not advised, but until I can work out which keys are MD5... | |
| [Unit] | |
| Description=OpenVPN Robust And Highly Flexible Tunneling Application On %I | |
| After=network.target | |
| [Service] | |
| PrivateTmp=true | |
| Type=forking | |
| PIDFile=/var/run/openvpn/%i.pid |
OlderNewer