For this example, I'm using Amazon lightsail with Debian.
Ensure port 25 is open in the firewall section
Thus tutorial assumes there is a standard user named 'admin'
Rohan rohan-molloy
rohan-molloy
/ easy-self-hosted-email-using-a-vps.md
Last active
April 18, 2020 02:53
rohan-molloy
/ ssh-log-analysis-by-asn.sh
Last active
March 29, 2020 05:35
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### Prints a CSV of the AS origin of SSH intrusion attempts | |
| ### Format: as_number,bgp_prefix,country_code,rir_name,date_allocated,num_occurrences | |
| ### d7d3db009fd67083faf1276a1b69ebfa097cc5400f202f95551aa94115d7ddcd | |
| for ip in $(journalctl -u ssh -u sshd --since -${period:-'1day'}|awk '/Failed/{print $(NF-3)}'); | |
| do dig $(tac -s.<<<"$ip.")origin.asn.cymru.com +short txt; done \ | |
| | sort --numeric-sort \ | |
| | uniq --count \ | |
| | sort --numeric-sort \ | |
| | sed 's/ | /,/g' \ | |
| | tr -d \" \ |
rohan-molloy
/ wget-with-hash-check.md
Last active
December 21, 2019 13:15
Parameters: url sha256 [filename].
If unset, it gets a filename from the URL.
If verification fails, it saves to $filename.invalid
get_remote_file() {
test -z "$1" -o -z "$2" && (echo "Usage: $0 remote_url content_sha256sum [output_filename]"; return $?);
local file=$(test -n "$3" && echo $3 || basename $1|tr -dc '[:alnum:]\.\-\_\:\/');
wget -O $file $1 && (sha256sum -c <(printf "%s\t%s" $2 $file) || mv $file $file.invalid);
return $?
}
rohan-molloy
/ genpassphrase.rc.md
Last active
December 21, 2019 10:41
Generate a passphrase using list of 993 words.
These passwords are stronger than one might expect. There are 40 billion 267 million 857 thousand 960 different ways to select four words from the list.
A random number between 0..999 is added at the end, increasing the search complexity by several orders of magnitude
genpassphrase() { echo $(curl -fSsL https://raw.githubusercontent.com/rohan-molloy/generate-hostnames/master/words.txt | shuf -n4 | tr '\n' '-')$(($RANDOM%999)); };
rohan-molloy
/ unbound.conf
Last active
January 4, 2024 00:44
Working unbound over TLS server; self-hosted. Does NOT answer UDP or unencrypted requests.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # d899b42486eb805b8e432c5758568db487c6bcfc067d6ca7e1292a5a66d66de6 unbound.conf | |
| server: | |
| # Listen on tcp 443,853 | |
| interface: 0.0.0.0@853 | |
| interface: 0.0.0.0@443 | |
| # Allow from anywhere | |
| access-control: 0.0.0.0/0 allow | |
| access-control: ::0/0 allow |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Serve requests only for virtual host set in environment variable | |
| {$CADDYHOST} | |
| # Bind Virtual Host to address set in environment | |
| bind {$CADDYBIND} | |
| # Registration email for automated issuing of Lets Encrypt certs | |
| tls {$CADDYEMAIL} | |
| # Define the web server root (using environment variable) |
rohan-molloy
/ readcmd.rc.md
Last active
October 27, 2019 03:19
Bash function to read the output of a command into a variable
rohan-molloy
/ Grep-the-word-after-match.rc.md
Last active
October 27, 2019 03:21
rohan-molloy
/ kitchen.yml
Created
September 14, 2019 05:27
WinRM test-kitchen configuration. Test-kitchen proxy driver connects to a Windows box, installs Chef (only_if needed) and runs a Policyfile. $kitchen_host, $kitchen_username, $kitchen_password must be defined in environment. Uses insecure WinRM (basic auth/no encryption)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| driver: | |
| name: proxy | |
| host: <%= ENV["kitchen_host"] %> | |
| username: <%= ENV["kitchen_username"] %> | |
| password: <%= ENV["kitchen_password"] %> | |
| port: 5985 | |
| transport: | |
| name: winrm | |
| elevated: true | |
| provisioner: |
rohan-molloy
/ send-an-email-with-curl
Last active
April 15, 2022 10:24
How to use cURL to send an email
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl \ | |
| --silent \ | |
| --ssl smtp://$SERVER \ | |
| --mail-from $FROM \ | |
| --mail-rcpt $TO \ | |
| --upload-file /dev/stdin \ | |
| --user $USER:$PASSWORD |
NewerOlder