It’s probably a pretty bad idea to have your site go down, when people are supposed to read the blog post explaining the hack.
Notice how another site reporting the hack received more attention than Twitter’s own announcement. Why was that?
Ryan RSully
ndarville
/ examples.mdown
Last active
December 9, 2019 11:32
“We’ve Been Hacked” Boilerplate Announcement
The following entities have either sold or leaked personal data about me, including email addresses and phone numbers. Be wary of sharing your data with them.
These entities have either sold or leaked specific unique email addresses of mine to unauthorized parties, such as spammers.
Vinai
/ boris-mage.php
Last active
September 10, 2016 15:33
PHP REPL with initialized Magento environment
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env php | |
| <?php | |
| // | |
| // PHP REPL with initialized Magento environment | |
| // | |
| // Thanks to https://github.com/d11wtq/boris | |
| // | |
| // Drop this script in your $PATH and run it anywhere in a Magento directory tree to start the REPL | |
| // |
brentsimmons
/ gist:5810992
Last active
January 3, 2021 02:22
Detect a tap on a URL inside a UITextView. Note: the rs_links method isn't included -- you'll need something that takes text and returns an array of detected links. This gist just demonstrates walking through the UITextView characters.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @implementation UITextView (RSExtras) | |
| static BOOL stringCharacterIsAllowedAsPartOfLink(NSString *s) { | |
| /*[s length] is assumed to be 0 or 1. s may be nil. | |
| Totally not a strict check.*/ | |
| if (s == nil || [s length] < 1) | |
| return NO; |
smoser
/ ubuntu-cloud-virtualbox.sh
Last active
July 5, 2024 09:33
example of using Ubuntu cloud images with virtualbox
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## Install necessary packages | |
| $ sudo apt-get install virtualbox-ose qemu-utils genisoimage cloud-utils | |
| ## get kvm unloaded so virtualbox can load | |
| $ sudo modprobe -r kvm_amd kvm_intel | |
| $ sudo service virtualbox stop | |
| $ sudo service virtualbox start | |
| ## URL to most recent cloud image of 12.04 | |
| $ img_url="http://cloud-images.ubuntu.com/server/releases/12.04/release" |
jed
/ how-to-set-up-stress-free-ssl-on-os-x.md
Last active
February 27, 2025 16:31
How to set up stress-free SSL on an OS X development machine
One of the best ways to reduce complexity (read: stress) in web development is to minimize the differences between your development and production environments. After being frustrated by attempts to unify the approach to SSL on my local machine and in production, I searched for a workflow that would make the protocol invisible to me between all environments.
Most workflows make the following compromises:
-
Use HTTPS in production but HTTP locally. This is annoying because it makes the environments inconsistent, and the protocol choices leak up into the stack. For example, your web application needs to understand the underlying protocol when using the
secureflag for cookies. If you don't get this right, your HTTP development server won't be able to read the cookies it writes, or worse, your HTTPS production server could pass sensitive cookies over an insecure connection. -
Use production SSL certificates locally. This is annoying
jeremiahsnapp
/ MITM -SSL-Proxies.md
Last active
November 14, 2023 07:48
Man In The Middle (MITM) SSL Proxies - Simple ways to see traffic between an SSL server and client in clear text.
mitmproxy is an excellent console app written in Python.
It is easy to use on Linux and OS X.
Use brew install mitmproxy to install it on OS X.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Basically the nginx configuration I use at konklone.com. | |
| # I check it using https://www.ssllabs.com/ssltest/analyze.html?d=konklone.com | |
| # | |
| # To provide feedback, please tweet at @konklone or email [email protected]. | |
| # Comments on gists don't notify the author. | |
| # | |
| # Thanks to WubTheCaptain (https://wubthecaptain.eu) for his help and ciphersuites. | |
| # Thanks to Ilya Grigorik (https://www.igvita.com) for constant inspiration. | |
| server { |
You should never let passwords or private data be transmitted over an untrusted network (your neighbor’s, the one at Starbucks or the company) anyway, but on a hacker congress like the #30C3, this rule is almost vital.
Hackers get bored easily, and when they’re bored, they’re starting to look for things to play with. And a network with several thousand connected users is certainly an interesting thing to play with. Some of them might start intercepting the data on the network or do other nasty things with the packets that they can get.
If these packets are encrypted, messing with them is much harder (but not impossible! – see the end of this article). So you want your packets to be always encrypted. And the best way to do that is by using a VPN.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| | PHP | 5.4 | 5.5 | Mention date | PHP version information link | |
| +----------------------+-----+-----+--------------+------------------------------------------------------------------------ | |
| | justHost.com | X | | 2013-09-06 | https://my.justhost.com/cgi/help/447 | |
| | NetworkSolutions | X | | 2013-03-17 | http://forums.networksolutions.com/index.php?showtopic=10601&mode=linearplus | |
| | BlueHost | X | | Today? | https://my.bluehost.com/cgi/help/php-version | |
| | HostGator | X | X | Today | https://support.hostgator.com/articles/hosting-guide/hardware-software/what-version-of-php-are-you-using | |
| | 1&1 | X | X | Today | http://www.1and1.com/details-php-programming | |
| | FatCow | X | | ? | http://www.mybestwebhostingsites.com/details/fatcow-wordpress/ | |
| | Hub | X | | 2012-04-17 | http://www.webhostinghub.com/help/news/archive-announcements/php-5-4 | |
| | G |