For excessively paranoid client authentication.
Updated Apr 5 2019:
because this is a gist from 2011 that people stumble into and maybe you should AES instead of 3DES in the year of our lord 2019.
some other notes:
Wojciech Bederski wuub
mtigas
/ gist:952344
Last active
June 20, 2024 11:22
Mini tutorial for configuring client-side SSL certificates.
I spent a lot of time trying to find a pretty optimal (for me) setup for Clojure… at the same time I was trying to dive in and learn it. This is never optimal; you shouldn't be fighting the environment while trying to learn something.
I feel like I went through a lot of pain searching Google, StackOverflow, blogs, and other sites for random tidbits of information and instructions.
This is a comprehensive "what I learned and what I ended up doing" that will hopefully be of use to others and act as a journal for myself if I ever have to do it again. I want to be very step-by-step and explain what's happening (and why) at each step.
mtigas
/ README.md
Last active
December 16, 2022 02:12
this is the nginx config for https://mike.tig.as/, with config to avoid the BEAST exploit (by using TLS 1.2+ ciphers or RC4) and enable SSL perfect forward secrecy (by preferring ECDHE ciphers)
This gist contains the nginx and tor configurations for the [mike.tig.as][mta] servers, mainly to show:
- Use of the
chris-lea/nginx-develPPA to allow use of SPDY. ssl_ciphersselection to mitigate BEAST attack, enable [perfect forward secrecy][pfs] if possible and select the strongest possible ciphers within those bounds. (Exception is made for several ciphers at the end of list, for compatibility reasons.)
carlh
/ Default.sublime-commands
Created
January 11, 2013 02:35
SublimeREPL config files for SML. Allows you to launch a functional REPL for SML that runs inside SublimeREPL. This assumes that you've installed SML at the default location. Dependencies: - SML (http://www.smlnj.org/) - SublimeREPL (https://github.com/wuub/SublimeREPL) - Language Definition (https://github.com/seanjames777/SML-Language-Definition…
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Show hidden characters
| [ | |
| { | |
| "caption": "SublimeREPL: SML", | |
| "command": "run_existing_window_command", "args": | |
| { | |
| "id": "repl_sml", | |
| "file": "config/SML/Main.sublime-menu" | |
| } | |
| } | |
| ] |
datagrok
/ git-serve.md
Last active
April 21, 2023 07:33
How to easily launch a temporary one-off git server from any local repository, to enable a peer-to-peer git workflow.
This article is now published on my website: A one-off git repo server.
k-nowicki
/ Korad_KA_series_driver.rb
Created
April 13, 2013 17:20
Ruby implementation of KORAD KA series power supplies communication protocol. Verified on KA3005P only, but should work also with all supplies of series, including multichannel ones.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| require 'rubygems' | |
| require 'serialport' | |
| class Korad | |
| def initialize(port="/dev/ttyACM0", baud=9600) | |
| @serial = SerialPort::open(port,baud) | |
| @serial.read_timeout = 100 | |
| end | |
| def get_status |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from __future__ import print_function | |
| from collections import OrderedDict | |
| from prepareable import Prepareable | |
| from six import with_metaclass, iteritems | |
| class FooMeta(with_metaclass(Prepareable, type)): | |
| def __new__(cls, name, bases, attributes): |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import( | |
| "log" | |
| "net/url" | |
| "net/http" | |
| "net/http/httputil" | |
| ) | |
| func main() { |
plentz
/ nginx.conf
Last active
June 11, 2024 06:55
Best nginx configuration for improved security(and performance)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # to generate your dhparam.pem file, run in the terminal | |
| openssl dhparam -out /etc/nginx/ssl/dhparam.pem 2048 |
lsusb lists the fingerprint reader in the x240 as follows:
Bus 002 Device 003: ID 138a:0017 Validity Sensors, Inc.
There exists experimental driver support for this in a fork of libfprint for vfs5011 sensors, however you'll need to compile the driver yourself. To get the fingerprint sensor to work for lightdm login, su etc, follow these steps.
-
Install fingerprint-gui:
sudo add-apt-repository ppa:fingerprint/fingerprint-gui
OlderNewer