Skip to content

Instantly share code, notes, and snippets.

View egeneralov's full-sized avatar

Eduard Generalov egeneralov

27 followers · 16 following
View GitHub Profile
@egeneralov
egeneralov / nginx-example-domain-with-tls-client-auth.conf
Last active October 5, 2020 12:02
geo $rfc6890 {
default 0;
10.0.0.0/8 1;
172.16.0.0/12 1;
192.168.0.0/16 1;
100.64.0.0/10 1;
127.0.0.0/8 1;
}
geo $allowed_ips {
@egeneralov
egeneralov / gitlab-runner-minimal-configuration-dind.toml
Created October 9, 2020 12:12
[[runners]]
name = "${NAME}"
url = "https://git.${DOMAIN}/"
token = ""
executor = "docker"
environment = ["DOCKER_TLS_CERTDIR=", "DOCKER_DRIVER=overlay2"]
[runners.custom_build_dir]
[runners.docker]
tls_verify = false
image = "docker:18.09.5"
@egeneralov
egeneralov / postfix-sasl-auth-debian-10.sh
Created October 9, 2020 12:16
#!/bin/bash -xec
apt-get install -yq libsasl2-modules postfix sasl2-bin
cat << EOF > /etc/postfix/sasl/smtpd.conf
pwcheck_method: saslauthd
mech_list: PLAIN LOGIN
EOF
cp /etc/default/saslauthd /etc/default/saslauthd-postfix
@egeneralov
egeneralov / python-send-valid-mail-to-mail-tester-dot-com.py
Created October 9, 2020 12:21
import smtplib
from email.mime.text import MIMEText
from email.mime.multipart import MIMEMultipart
import email.utils
message = MIMEMultipart('alternative')
message['From'] = 'Sender Name <${USER}@${DOMAIN}>'
message['To'] = 'Receiver Name <${TO}>'
message['Subject'] = 'Any subject'
message['Message-Id'] = email.utils.make_msgid()
@egeneralov
egeneralov / merge-multiple-kubeconfig-kubernetes-clusters.py
Created October 21, 2020 09:46
import os
import yaml
# CURRENT NAME CLUSTER AUTHINFO NAMESPACE
# group1-cluster1@kubernetes group1-cluster1 group1-cluster1
# group1-cluster2@group1-cluster2 group1-cluster2 group1-cluster2
# group2-cluster1@group2-cluster1 group2-cluster1 group2-cluster1
# * group2-cluster2@group2-cluster2 group2-cluster2 group2-cluster2
@egeneralov
egeneralov / promtail-var-log.sh
Created November 13, 2020 12:32
#!/bin/bash -xe
wget https://github.com/grafana/loki/releases/download/v2.0.0/promtail-linux-amd64.zip
unzip promtail-linux-amd64.zip
mv promtail-linux-amd64 /usr/local/bin/promtail
cat << EOF > /etc/systemd/system/promtail.service
[Unit]
@egeneralov
egeneralov / ansible-k8s-node_exporter.yaml
Last active November 13, 2020 14:32
---
- hosts: k8s-cluster
gather_facts: yes
vars:
version: 1.0.1
tasks:
- unarchive:
src: "https://github.com/prometheus/node_exporter/releases/download/v{{ version }}/node_exporter-{{ version }}.linux-amd64.tar.gz"
@egeneralov
egeneralov / certificates.sh
Last active March 28, 2022 08:56
#!/bin/bash -xec
export DOMAIN=
rm -rf /etc/nginx/client_ssl
mkdir -p /etc/nginx/client_ssl
cd /etc/nginx/client_ssl
openssl req -new -newkey rsa:2048 -nodes -keyout ca.key -sha256 -x509 -days 3650 -subj "/CN=${DOMAIN}" -out ca.crt
@egeneralov
egeneralov / gitlab-ci-scanners-example.yml
Created December 28, 2020 10:37
stages:
- test
include:
- template: Dependency-Scanning.gitlab-ci.yml
- template: Security/SAST.gitlab-ci.yml
- template: Container-Scanning.gitlab-ci.yml
@egeneralov
egeneralov / ansible-dynamic-hosts-digitalocean.yml
Created January 19, 2021 15:20
how to add hosts to ansible inventory in dynamic
- hosts: localhost
gather_facts: no
vars:
api_token: "${API_TOKEN_HERE}"
limit: 25
tasks:
- uri:
url: "https://api.digitalocean.com/v2/droplets?page=1&per_page={{ limit }}"
return_content: yes