Skip to content

Instantly share code, notes, and snippets.

View drconopoima's full-sized avatar

Luis Jesús Díaz drconopoima

27 followers · 162 following
View GitHub Profile
@drconopoima
drconopoima / 99-opensusetumbleweed-settings-6.2.6.sorted.20230319.conf
Created March 25, 2023 09:43
fs.file-max = 9223372036854775807
fs.inotify.max_queued_events = 16384
fs.inotify.max_user_instances = 8192
fs.inotify.max_user_watches = 195047
fs.protected_fifos = 2
fs.protected_hardlinks = 1
fs.protected_regular = 2
fs.protected_symlinks = 1
fs.suid_dumpable = 2
fs.xfs.xfssyncd_centisecs = 3000
@drconopoima
drconopoima / 99-cachyos-settings.sorted.20230319.conf
Last active March 24, 2023 22:52
fs.file-max = 2097152
fs.inotify.max_user_watches = 524288
fs.xfs.xfssyncd_centisecs = 10000
kernel.core_pattern = /dev/null
kernel.dmesg_restrict = 1
kernel.kexec_load_disabled = 1
kernel.kptr_restrict = 2
kernel.nmi_watchdog = 0
kernel.printk = 3 3 3 3
kernel.sched_pelt_multiplier = 2
@drconopoima
drconopoima / mounting-storage.md
Last active January 5, 2023 19:02

Mounting storage

fork of mounting-storage.md

Container Linux Configs can be used to format and attach additional filesystems to Container Linux nodes, whether such storage is provided by an underlying cloud platform, physical disk, SAN, or NAS system. This is done by specifying how partitions should be mounted in the config, and then using a systemd mount unit to mount the partition. By systemd convention, mount unit names derive from the target mount point, with interior slashes replaced by dashes, and the .mount extension appended. A unit mounting onto /var/www is thus named var-www.mount.

Mount units name the source filesystem and target mount point, and optionally the filesystem type. Systemd mounts filesystems defined in such units at boot time. The following example formats an EC2 ephemeral disk and then

@drconopoima
drconopoima / .travis.yml
Created March 15, 2022 11:55 — forked from LukeMathWalker/.travis.yml
Travis CI - Rust setup
language: rust
cache: cargo
rust:
- stable
before_cache: |
cargo install cargo-tarpaulin
before_script:
- rustup component add rustfmt
- rustup component add clippy
- cargo install cargo-audit
@drconopoima
drconopoima / config.yml
Created March 15, 2022 11:55 — forked from LukeMathWalker/config.yml
CircleCI - Rust setup
version: 2
jobs:
build-and-test:
docker:
- image: circleci/rust
environment:
# Fail the build if there are warnings
RUSTFLAGS: '-D warnings'
steps:
- checkout
@drconopoima
drconopoima / audit-on-push.yml
Created March 15, 2022 11:55 — forked from LukeMathWalker/audit.yml
GitHub Actions - Rust setup
name: Security audit
on:
push:
paths:
- '**/Cargo.toml'
- '**/Cargo.lock'
jobs:
security_audit:
runs-on: ubuntu-latest
steps:
@drconopoima
drconopoima / .gitlab-ci.yml
Created March 15, 2022 11:31 — forked from LukeMathWalker/.gitlab-ci.yml
GitLab CI - Rust setup
image: "rust:latest"
default:
before_script:
- rustc --version
- cargo --version
stages:
- test
@drconopoima
drconopoima / generate_ca.sh
Created March 14, 2022 20:56 — forked from bprashanth/generate_ca.sh
#!/bin/bash
mkdir ~/SSLCA/root/
cd ~/SSLCA/root/
openssl genrsa -aes256 -out rootca.key 2048
openssl req -sha256 -new -x509 -days 1826 -key rootca.key -out rootca.crt
touch certindex
echo 1000 > certserial
echo 1000 > crlnumber
echo '
[ ca ]
@drconopoima
drconopoima / openssl_root.cnf
Last active January 6, 2023 21:10 — forked from f5-cabbott/openssl_root.cnf
# OpenSSL Root CA configuration file
# Copy to /root/ca/openssl_root.cnf
[ ca ]
default_ca = CA_default
[ CA_default ]
# Directory and file locations.
dir = /root/ca
certs = $dir/certs
@drconopoima
drconopoima / generate-internal-ca.md
Created March 14, 2022 20:52 — forked from brightzheng100/generate-internal-ca.md
How-to: Generate Internal CA

Create your CA database to keep track of signed certificates

$ mkdir private certs cnf csr crl
$ touch index.txt
$ echo 1000 > serial

Create Your OpenSSL Config File