I hereby claim:
- I am csamsel on github.
- I am csamsel (https://keybase.io/csamsel) on keybase.
- I have a public key ASDHrm4CEkXQuramKWPKoiKtLQ3uQwSVlMwUW54NSAGNCwo
To claim this, I am signing this object:
Christian Samsel csamsel
csamsel
/ gist:683b21035e27f51f4072d68edaf1e296
Created
July 17, 2018 21:06
mount a samba share using plaintext passwords (because ldap)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| echo '0x30' > /proc/fs/cifs/SecurityFlags | |
| mount.cifs //111.111.111.111/share/ /mnt/tmp -o user=username,pass=password,vers=1.0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| wget --no-cookies --no-check-certificate --header "Cookie: oraclelicense=accept-securebackup-cookie" "http://download.oracle.com/otn-pub/java/jdk/8u172-b11/a58eab1ec242421181065cdc37240b08/jdk-8u172-linux-x64.tar.gz" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # set community name, change for maximum security | |
| [root@oxygen-vmhost:~] esxcli system snmp set --communities public | |
| # activate snmp | |
| [root@oxygen-vmhost:~] esxcli system snmp set --enable true | |
| # firewall policy defaults to deny | |
| [root@oxygen-vmhost:~] esxcli network firewall ruleset set --ruleset-id snmp --allowed-all false | |
| # allow specific ip range | |
| [root@oxygen-vmhost:~] esxcli network firewall ruleset allowedip add --ruleset-id snmp --ip-address 192.168.2.0/24 | |
| # activate firewall rule set | |
| [root@oxygen-vmhost:~] esxcli network firewall ruleset set --ruleset-id snmp --enabled true |
csamsel
/ gist:a6bd13b0963bcdf2eaf34eea27632a4a
Created
June 14, 2018 19:57
resize ext4 root partition in ubuntu under ESXi
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # parted /dev/sda | |
| GNU Parted 3.2 | |
| Using /dev/sda | |
| Welcome to GNU Parted! Type 'help' to view a list of commands. | |
| (parted) rm 3 | |
| (parted) p | |
| Model: VMware Virtual disk (scsi) | |
| Disk /dev/sda: 32.2GB | |
| Sector size (logical/physical): 512B/512B | |
| Partition Table: gpt |
csamsel
/ dnscrypt-proxy.toml
Last active
April 3, 2018 10:03
dnscrypt-proxy configuration for use with dnsmasq and cloudflare
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| listen_addresses = ['127.0.0.1:5300'] | |
| ... | |
| dnscrypt_servers = false | |
| doh_servers = true | |
| ... | |
| cache = false | |
| ... | |
| server_names = ['cloudflare', 'cloudflare-ipv6'] |
csamsel
/ dnsmasq.conf
Created
April 3, 2018 10:01
dnsmasq.conf for local dnscrypt-proxy using port 5300
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| server=127.0.0.1#5300 | |
| no-resolv | |
| no-poll | |
| dnssec | |
| dnssec-check-unsigned | |
| conf-file=/usr/share/dnsmasq/trust-anchors.conf | |
| domain-needed | |
| expand-hosts | |
| no-negcache | |
| local-ttl=600 |
csamsel
/ keybase.md
Created
March 23, 2018 11:14
csamsel
/ raid-settings.sh
Created
March 22, 2018 11:03
script to activate TLER and disable NCQ on raid member HDDs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| for i in sdb sdc sdd sde | |
| do | |
| # activate TLER | |
| smartctl -q errorsonly -l scterc,70,70 /dev/$i | |
| # disable NCQ | |
| echo 1 > /sys/block/$i/device/queue_depth | |
| done |
csamsel
/ btrfs-raid10-notes.txt
Last active
March 23, 2018 09:45
notes on switching from Linux md RAID5 to btrfs RAID10
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| assumptions: | |
| /dev/sd[bcde]1 in Linux md (/dev/md0) RAID5/RAID6 mounted as /storage. | |
| Less space used then capacity of one drive. | |
| 1. | |
| stop all services accessing the array first. | |
| Remounting the array ro might be a good idea (mount /dev/md0 -o remount,ro). | |
| 2. | |
| remove one disk from array |
csamsel
/ convert-ssl.sh
Last active
September 26, 2024 03:36
convert ssl certificates from pem to crt/key
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| openssl rsa -outform der -in privkey.pem -out privkey.key | |
| openssl x509 -outform der -in fullchain.pem -out fullchain.crt | |
| openssl x509 -outform der -in cert.pem -out cert.crt |