Skip to content

Instantly share code, notes, and snippets.

View ammgws's full-sized avatar
🐨

Jason Nader ammgws

🐨
25 followers · 13 following
View GitHub Profile
@ammgws
ammgws / gist:a381d0196c83b95e0dea7daabe96753d
Created October 16, 2021 03:28
2750485454525345506de24e56015201
@ammgws
ammgws / upnper4dont.md
Created September 2, 2021 11:50 — forked from plembo/upnper4dont.md
UPnP with EdgeRouter: Don't do it!

Want to configure UPnP on EdgeRouter-4?

Don't do it!

Introduction

As a former sysadmin that once helped ride herd over around 1,000 servers, of which around 10% were Internet-facing, I've never been a fan of autoconfiguation when it comes to punching holes through the firewall. I've seen the tripwire logs, and it's sobering.

The Problem

So enabling UPnP on my EdgeRouter-4 wasn't something I had on the roadmap, but when I ran into difficulty getting DLNA to work on the default VLAN, I thought it was worth looking into (never mind that, as I later learned, having UPnP turned on wasn't going make a bit of difference on my local network: another reason that mastering theory should always come before practice).

@ammgws
ammgws / archlinux_chroot_jail_user_setup_guide.md
Created March 15, 2021 13:40
Create chroot jail so friend can SSH into server and/or use it for sshuttle (Arch Linux)

Replace "jaileduser" with whatever you want the username to be.

Step 1 (as root) - Setup chroot environment and user. Replace fish in the last command with whatever shell you want.

sudo su - 
mkdir --parents /home/jaileduser/home
useradd --create-home --gid users --home /home/jaileduser/home/jaileduser jaileduser
usermod --home /home/jaileduser jaileduser
mkdir --parents /{etc/jail/jaileduser,var/jail/jaileduser/{cache/{key,pkg},lib}}
chown jaileduser:users /var/jail/jaileduser/cache/key
@ammgws
ammgws / compl.txt
Created May 7, 2020 16:22
adduser.fish
81 chars: When creating a group, this option forces the new groupid to be the given number
98 chars: Use shell as the user\'s login shell, rather than the default specified by the configuration file
117 chars: Add the new user to GROUP instead of a usergroup or the default group defined by USERS_GID in the configuration file
122 chars: Override the first uid in the range that the uid is chosen from (overrides FIRST_UID specified in the configuration file)
--------------------------
animate.fish
101 chars: On, activate, off, deactivate, set, opaque, copy transparent, extract, background, or shape [option]
--------------------------
ansible-playbook.fish
@ammgws
ammgws / virtual_wifi_setup_notes.md
Last active June 8, 2020 14:49
virtual wifi for testing

create wpa_supplicant.conf somewhere

network={
    ssid="meow"
    key_mgmt=NONE
    priority=16
}
ctrl_interface=/run/wpa_supplicant
update_config=1
@ammgws
ammgws / swaymsg_getoutputs_395
Created March 3, 2020 13:41
This file has been truncated, but you can view the full file.
[
{
"id": 7,
"name": "HDMI-A-2",
"rect": {
"x": 1920,
"y": 0,
"width": 1920,
"height": 1080
},
@ammgws
ammgws / swaymsg_getoutputs_394
Created March 3, 2020 13:41
This file has been truncated, but you can view the full file.
[
{
"id": 7,
"name": "HDMI-A-2",
"rect": {
"x": 1920,
"y": 0,
"width": 1920,
"height": 1080
},
@ammgws
ammgws / swaymsg_getoutputs_394
Created March 3, 2020 13:41
This file has been truncated, but you can view the full file.
[
{
"id": 7,
"name": "HDMI-A-2",
"rect": {
"x": 1920,
"y": 0,
"width": 1920,
"height": 1080
},
@ammgws
ammgws / swaymsg_getoutputs_393
Created March 3, 2020 13:41
[
{
"id": 7,
"name": "HDMI-A-2",
"rect": {
"x": 1920,
"y": 0,
"width": 1920,
"height": 1080
},
@ammgws
ammgws / swaymsg_getoutputs_392
Created March 3, 2020 13:41
[
{
"id": 7,
"name": "HDMI-A-2",
"rect": {
"x": 1920,
"y": 0,
"width": 1920,
"height": 1080
},