Skip to content

Instantly share code, notes, and snippets.

View saedabdu's full-sized avatar

Saed Abdu saedabdu

5 followers · 7 following
View GitHub Profile
@saedabdu
saedabdu / Setting $PATH for zsh on macOS.md
Created February 25, 2023 12:28 — forked from Linerre/Setting $PATH for zsh on macOS.md
Properly setting $PATH for zsh on macOS (fighting with path_helper)
@saedabdu
saedabdu / iam-policy.json
Created November 23, 2021 21:52 — forked from quiver/iam-policy.json
How to connect to Amazon RDS PostgreSQL with IAM credentials
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"rds-db:connect"
],
"Resource": [
"arn:aws:rds-db:region:account-id:dbuser:dbi-resource-id/database-user-name"
@saedabdu
saedabdu / README.md
Created January 20, 2018 17:34 — forked from BrunIF/README.md
Collection on all things HTTPS. Includes settings for TLS on nginx.

Why HTTPS?

Collection on all things HTTPS. Includes settings for TLS on nginx.

My current settings for TLS on nginx/1.10.3 on Ubuntu Server 16.04 LTS

See https://www.nginx.com/resources/wiki/start/topics/tutorials/install/#official-debian-ubuntu-packages on how to install the lastest version of nginx.

Most settings are sourced from https://bettercrypto.org/static/applied-crypto-hardening.pdf#subsection.2.1.3, https://danpalmer.me/blog/ssl-labs-grade-a, https://gist.github.com/plentz/6737338 and https://scotthelme.co.uk/

Background

@saedabdu
saedabdu / Ansible-Vault how-to.md
Created October 5, 2017 09:39 — forked from tristanfisher/Ansible-Vault how-to.md
A short tutorial on how to use Vault in your Ansible workflow. Ansible-vault allows you to more safely store sensitive information in a source code repository or on disk.

##Working with ansible-vault

I've been using a lot of Ansible lately and while almost everything has been great, finding a clean way to implement ansible-vault wasn't immediately apparent.

What I decided on was the following: put your secret information into a vars file, reference that vars file from your task, and encrypt the whole vars file using ansible-vault encrypt.

Let's use an example: You're writing an Ansible role and want to encrypt the spoiler for the movie Aliens.

@saedabdu
saedabdu / vagrant-aws
Created September 13, 2017 00:36 — forked from arbabnazar/vagrant-aws
vagrant file for creating an ec2 instance on aws
# -*- mode: ruby -*-
# vi: set ft=ruby :
Vagrant.configure(2) do |config|
config.vm.box = "aws"
config.vm.synced_folder ".", "/vagrant", disabled: true
config.vm.provider :aws do |aws, override|
aws.access_key_id = ENV['AWS_ACCESS_KEY']
aws.secret_access_key = ENV['AWS_SECRET_KEY']
@saedabdu
saedabdu / guide.md
Created April 12, 2017 05:15 — forked from mikkeloscar/guide.md
Setup armv7h chroot under x86_64 host (Archlinux/Archlinuxarm biased)

Setup armv7h chroot under x86_64 host (Archlinux/Archlinuxarm biased)

Simple way to setup an arm chroot for building packages for your arm devices. This is an alternative to cross-compiling where you are limited to only linking against the libs in your toolchain.

Setup chroot-fs

You can store the chroot wherever you like. I choose to store it in a disk-image which I mount to my filesystem.