Chris Funderburg bocan
馃悵
bocan
/ build.yaml
Last active
September 16, 2025 18:15
Example build that calls tag-and-release. Comments in your commit control semantic versioning.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: build-cv | |
| on: | |
| push: | |
| paths: | |
| - '**.tex' | |
| - 'reference.docx' | |
| workflow_dispatch: {} | |
| jobs: | |
| build: |
bocan
/ LICENSE.txt
Last active
November 20, 2025 11:40
A super easy firewall - using NFTABLES - to block Russia, China, Taiwan, and Vietnam.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MIT License | |
| Copyright (c) [year] [fullname] | |
| Permission is hereby granted, free of charge, to any person obtaining a copy | |
| of this software and associated documentation files (the "Software"), to deal | |
| in the Software without restriction, including without limitation the rights | |
| to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | |
| copies of the Software, and to permit persons to whom the Software is | |
| furnished to do so, subject to the following conditions: |
bocan
/ first-main.tf
Last active
September 5, 2024 15:34
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| variable "external_id" { | |
| description = "External ID provided by the Secureframe application." | |
| type = string | |
| } | |
| resource "aws_iam_role" "secureframe_read_only" { | |
| name = "secureframeOrgScanner" | |
| description = "Admin Role that Secureframe will use to create member roles" | |
| force_detach_policies = true |
bocan
/ final-roles.tf
Last active
September 5, 2024 15:31
Converted Cloudformation to Terraform for Secureframe
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| variable external_id { | |
| description = "External ID provided by the Secureframe application." | |
| type = string | |
| } | |
| resource "aws_iam_policy" "secureframe" { | |
| name = "secureframe-org" | |
| description = "A Limited policy to allow secureframe to do its job" | |
| policy = jsonencode({ | |
| Version = "2012-10-17" |
bocan
/ resume.json
Last active
May 11, 2022 07:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "basics": { | |
| "name": "Chris Funderburg", | |
| "label": "Site Reliability Engineer", | |
| "image": "", | |
| "email": "chris@funderburg.me", | |
| "phone": "+44 (0)7778 50 11 02", | |
| "url": "https://cloudcauldron.io", | |
| "summary": "I'm a Texan who's lived in the UK for over 20 years. I've worked the full spectrum of IT from software development, through database administration and infrastructure management, and then to deployment engineering and now to site reliability engineering. As a Site Reliability Engineer, I'm a hybrid systems and software engineer responsible for taking ownership for reliability, automation, performance, and other issues related to 'keeping the lights on'. I'm generally integrated into (or running) infrastructure, deployment, or DevOps engineering teams.", | |
| "location": { |
bocan
/ block-russia-firewall.sh
Last active
February 11, 2024 17:59
This script downloads all russian ipv4 and ipv6 address blocks, loads them into ipset, then augments your existing iptables firewall to block Russia
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| mkdir -p /root/firewall | |
| cd /root/firewall | |
| # I added Belarus just to show how you'd do it. Remove the "by" if you wish. You can add other countries too if you wish. | |
| DOMAINS="by ru" | |
| mkdir -p ipv4 ipv6 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| """Grafana All Dashboards exporter, Please put value of API_KEY from 1Password on line 10""" | |
| import json | |
| import os | |
| import requests | |
| HOST = 'https://host.co.uk' | |
| API_KEY = 'API_KEY' |