Skip to content

Instantly share code, notes, and snippets.

View csamsel's full-sized avatar

Christian Samsel csamsel

28 followers · 22 following
View GitHub Profile
@csamsel
csamsel / gist:37e14e2280b6c48bc8e4486b50b3a61c
Last active October 21, 2023 12:25
Revert Ubiquiti NanoStation Loco M2 XW/XM to not signed
Need the following tools: binwalk, squashfs-tools
The tutorial will probably work with similar devices, but i havent tested it.
Adjust the firmware files.
1. Have AirOS 5.6.15 signed installed (mind the XM vs. XW, the device type is shown in the webinterface)
Get it from:
XM: https://dl.ubnt.com/firmwares/XN-fw/v5.6.15/XM.v5.6.15-sign.31612.170908.1458.bin
XW: https://dl.ubnt.com/firmwares/XW-fw/v5.6.15/XW.v5.6.15-sign.31612.170908.1440.bin
@csamsel
csamsel / gist:683b21035e27f51f4072d68edaf1e296
Created July 17, 2018 21:06
mount a samba share using plaintext passwords (because ldap)
echo '0x30' > /proc/fs/cifs/SecurityFlags
mount.cifs //111.111.111.111/share/ /mnt/tmp -o user=username,pass=password,vers=1.0
@csamsel
csamsel / wget.sh
Created June 19, 2018 18:32
download oracle-jdk-bin 1.8.0.172 for gentoo only using wget
wget --no-cookies --no-check-certificate --header "Cookie: oraclelicense=accept-securebackup-cookie" "http://download.oracle.com/otn-pub/java/jdk/8u172-b11/a58eab1ec242421181065cdc37240b08/jdk-8u172-linux-x64.tar.gz"
@csamsel
csamsel / esxi-snmp.sh
Created June 14, 2018 20:11
activate snmpd on esxi vmhost
# set community name, change for maximum security
[root@oxygen-vmhost:~] esxcli system snmp set --communities public
# activate snmp
[root@oxygen-vmhost:~] esxcli system snmp set --enable true
# firewall policy defaults to deny
[root@oxygen-vmhost:~] esxcli network firewall ruleset set --ruleset-id snmp --allowed-all false
# allow specific ip range
[root@oxygen-vmhost:~] esxcli network firewall ruleset allowedip add --ruleset-id snmp --ip-address 192.168.2.0/24
# activate firewall rule set
[root@oxygen-vmhost:~] esxcli network firewall ruleset set --ruleset-id snmp --enabled true
@csamsel
csamsel / gist:a6bd13b0963bcdf2eaf34eea27632a4a
Created June 14, 2018 19:57
resize ext4 root partition in ubuntu under ESXi
# parted /dev/sda
GNU Parted 3.2
Using /dev/sda
Welcome to GNU Parted! Type 'help' to view a list of commands.
(parted) rm 3
(parted) p
Model: VMware Virtual disk (scsi)
Disk /dev/sda: 32.2GB
Sector size (logical/physical): 512B/512B
Partition Table: gpt
@csamsel
csamsel / dnscrypt-proxy.toml
Last active April 3, 2018 10:03
dnscrypt-proxy configuration for use with dnsmasq and cloudflare
listen_addresses = ['127.0.0.1:5300']
...
dnscrypt_servers = false
doh_servers = true
...
cache = false
...
server_names = ['cloudflare', 'cloudflare-ipv6']
@csamsel
csamsel / dnsmasq.conf
Created April 3, 2018 10:01
dnsmasq.conf for local dnscrypt-proxy using port 5300
server=127.0.0.1#5300
no-resolv
no-poll
dnssec
dnssec-check-unsigned
conf-file=/usr/share/dnsmasq/trust-anchors.conf
domain-needed
expand-hosts
no-negcache
local-ttl=600
@csamsel
csamsel / keybase.md
Created March 23, 2018 11:14

Keybase proof

I hereby claim:

  • I am csamsel on github.
  • I am csamsel (https://keybase.io/csamsel) on keybase.
  • I have a public key ASDHrm4CEkXQuramKWPKoiKtLQ3uQwSVlMwUW54NSAGNCwo

To claim this, I am signing this object:

@csamsel
csamsel / raid-settings.sh
Created March 22, 2018 11:03
script to activate TLER and disable NCQ on raid member HDDs
for i in sdb sdc sdd sde
do
# activate TLER
smartctl -q errorsonly -l scterc,70,70 /dev/$i
# disable NCQ
echo 1 > /sys/block/$i/device/queue_depth
done
@csamsel
csamsel / btrfs-raid10-notes.txt
Last active March 23, 2018 09:45
notes on switching from Linux md RAID5 to btrfs RAID10
assumptions:
/dev/sd[bcde]1 in Linux md (/dev/md0) RAID5/RAID6 mounted as /storage.
Less space used then capacity of one drive.
1.
stop all services accessing the array first.
Remounting the array ro might be a good idea (mount /dev/md0 -o remount,ro).
2.
remove one disk from array