This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
apiVersion: v1 | |
kind: Namespace | |
metadata: | |
name: podman-api-host | |
labels: | |
app: podman-api-host | |
--- | |
apiVersion: v1 | |
kind: ServiceAccount |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- name: Verify if a user can run `systemctl` commands as a non-root user | |
hosts: localhost | |
vars: | |
rootless_user: "rmanes" | |
rootless_uid: "1000" | |
become_method: machinectl | |
tasks: | |
- name: Check if DBUS socket exists for session user | |
stat: | |
path: "/run/user/{{ rootless_uid }}/bus" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
/* | |
* watch_unix_socket.stp | |
* | |
* This is a simply more modern version of the script found here: | |
* https://sourceware.org/systemtap/wiki/WSunixSockets | |
* | |
* The first argument is the location of the file descriptor for a UNIX socket. | |
* To find this address, for example, for the Docker socket run: | |
* | |
* # lsof 2>&1 | awk '/docker.sock/ {print $7}' | grep -v '0t0' | sort -u |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
import csv | |
import requests | |
import sys | |
RCON_URL='http://mycoolrcon.example' | |
RCON_USERNAME='admin' | |
RCON_PASSWORD='password' | |
CSV_FILE='vips.csv' | |
def main(): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
package main | |
import ( | |
"fmt" | |
"github.com/opencontainers/selinux/go-selinux/label" | |
) | |
// Mirroring the behavior found here: | |
// https://github.com/containers/podman/blob/8432ed7488e9c62738f9308fcc03f2ae9c2cd615/libpod/util_linux.go#L110-L129 | |
func main() { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# bashy-bois.sh | |
# Maintained by Robb Manes <robbmanes@protonmail.com> | |
# | |
# A collection of bash functions that I've used and written over time. | |
# You CAN use this as a single script, but you probably want to pick-and-choose what you're looking for. | |
# It's probably best to assume you need to be root to do anything below unless otherwise specified. | |
# find_all_ptraces |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# Builds infiniband support into the base RHEL support-tools image. | |
# Must be run from a subscribed RHEL host. | |
IMAGE_NAME="quay.io/robbmanes/support-tools-ib:latest" | |
function main() { | |
echo "Pulling latest support-tools container image..." | |
CONTAINER=$(buildah from registry.redhat.io/rhel8/support-tools) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#include <stdio.h> | |
#include <stdlib.h> | |
#include <syscall.h> | |
#include <sys/user.h> | |
#include <sys/types.h> | |
#include <sys/ptrace.h> | |
#include <errno.h> | |
#define SYSCALL_EXIT 60 | |
#define SYSCALL_EXIT_GROUP 231 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
obj-m += bigdummy.o | |
all: | |
make -C /lib/modules/$(shell uname -r)/build M=$(PWD) modules | |
clean: | |
make -C /lib/modules/$(shell uname -r)/build M=$(PWD) clean |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# rh-container-registry.sh | |
# Test functionality of Red Hat Container Registries using pure HTTP/S. | |
# Useful for determining issues when/if behind proxies, load balancers, | |
# or other in-the-middle network devices. | |
# For more information on using Red Hat Container Registries, please see | |
# the following: | |
# https://access.redhat.com/RegistryAuthentication |
NewerOlder