avigail-oron’s gists

avigail-oron / Installing SGX on Ubuntu 16.04

Last active July 27, 2019 13:02

Installing SGX on Ubuntu 16.04

	//instructions are taken from: https://github.com/intel/linux-sgx

	//Installing SGX driver:
	//-----------------------
	git clone https://github.com/intel/linux-sgx-driver.git
	//Check if matching Kernel headers are installed:
	dpkg-query -s linux-headers-$(uname -r)
	//If not run:
	sudo apt-get install linux-headers-$(uname -r)
	//In order to build:

avigail-oron / Harvesting keys with Passe-partout

Last active May 2, 2018 07:35

Setting up Passe-partout on ubuntu 16.0.4

	//based on: https://serverfault.com/questions/549298/retrieving-an-rsa-key-from-a-running-instance-of-apache

	//Setup
	//------
	sudo apt-get install make
	sudo apt install gcc
	sudo apt-get install openssl
	//make sure it's openssl 1.0.x and not 1.1.x, passe-partout doesn't support it
	sudo apt-get install libssl-dev
	//get passe-partout files:

avigail-oron / Setup Apache httpd + PHP on Ubuntu16

Last active April 25, 2018 07:06

	//Install Apache httpd server
	//---------------------------
	apt-get install apache2
	//verify it's configured OK
	apache2ctl configtest
	//Check httpd version and installed modules
	apache2ctl -v
	apache2ctl -M

	//Installing PHP

avigail-oron / PowerDNSDatabase

Created April 12, 2018 12:02

fixed file. replace get_last_insert with select max(id)

	#!/usr/bin/perl -w

	package Atomia::DNS::PowerDNSDatabase;

	use Moose;
	use DBI;
	use MIME::Base32;
	use Digest::SHA qw(sha1);
	use strict;
	use warnings;

avigail-oron / Installing AtomiaDNS Nameserver (PowerDNS) and Synchronizer

Last active May 1, 2019 01:27

Installing AtomiaDNS Nameserver (PowerDNS) and Synchronizer

	//Install on an Ubuntu machine (I used 16.04)
	sudo su
	//Add the Atomia APT Repository:
	wget -q -O - http://public.apt.atomia.com/setup.sh.shtml \| sed s/%distcode/`lsb_release -c \| awk '{ print $2 }'`/g \| sh
	//Install the database schema (will also install MySQL):
	apt-get install atomiadns-powerdns-database
	//Install perl and perl mysql driver
	sudo apt-get install libcgi-session-perl
	apt-get install libdbd-mysql-perl
	//To configure the nameserver to sync zones from your Atomia DNS installation, add to /etc/atomiadns.conf:

avigail-oron / Installing AtomiaDNS API server & Web UI

Last active April 11, 2018 07:56

Installing AtomiaDNS API server & web UI

	//On an ubuntu machine (I used 16.04)

	//On TRUSTED machine:
	//===================
	//Install AtomiaDNS API server
	//-----------------------------
	sudo su
	repo="$(wget -q -O - http://public.apt.atomia.com/setup.sh.shtml \| sed s/%distcode/`lsb_release -c \| awk '{ print $2 }'`/g)"; echo "$repo"
	echo "$repo" \| sh
	apt-get install atomiadns-masterserver

avigail-oron / DNSSEC conf in BIND and dig

Last active April 25, 2018 07:50

	#DNSSEC conf for BIND
	#---------------------
	#Add the following conf to BIND conf file
	#IMPORTANT - dnssec-validation has to be set to 'auto', setting to 'yes' doesn't work
	sudo nano /etc/bind/named.conf.options
	dnssec-enable yes;
	dnssec-validation auto;
	dnssec-lookaside auto;
	// if you want to dynamically add zones add the following as well:
	allow-new-zones yes;

avigail-oron / howto_sign_DNSSEC_Linux.txt

Created February 7, 2018 07:13

How to create a DNSSEC-signed zone (Linux)

	#Need to install bind utils, no need for bind itself for signing
	apt-get install bind9utils
	#Create a zone file with the EXACT NAME as the domain! Let's assume its xx.com
	#Note - we are using urandom to avoid the problem of not enough antropy.
	#In real life this option should be ommited so random will be used instead
	#Generate KSK for the xx.com zone:
	dnssec-keygen -r /dev/urandom -f KSK xx.com
	#Generate ZSK for the xx.com zone:
	dnssec-keygen -r /dev/urandom xx.com
	#open the zone file and include the 2 key files (KSK & ZSK)

Avigail Oron avigail-oron