David Shaffer flanger001

OpenSSH Certificates

I have some machines on my local network that I want to be able to log into from any other machine on my network. This can be done by generating SSH key pairs for each user/client, then putting each of the public keys in each other machine's authorized_keys file. It sounds simple, but it is a nightmare scenario. Every machine needs to know about every public key for every other client on the network, and adding or removing a machine means manually managing all of those public keys. For a small number (<= 2) of machines it is manageable and possibly even preferable, but I would argue that 3 or more machines requires a different strategy for the sanity of the network admin, and this is where SSH Certificates come in.

The general idea with SSH Certificates is that you establish 2 certificate authorities: a User CA and a Host CA. The User CA is for authenticating users to hosts, and the Host CA is for authenticating hosts to users.

TIL if you have decided Elasticsearch maybe shouldn't get 50% of your RAM on your local machine you can adjust it with JVM options:

$ elasticsearch_path="$(brew --prefix)/etc/elasticsearch" # Assuming a Homebrew install on a Mac
$ mkdir -p $elasticsearch_path/jvm.options.d && echo "-Xms2g\n-Xmx2g" > $elasticsearch_path/jvm.options.d/heap.options
$ unset elasticsearch_path

Then restart the server:

Adding a new PGP key

Scenario:

I have a key that is currently on two computers. I want to do these things:

Create a new key with better security
Sign my old key with my new key
Revoke my old key
Export both keys

	# frozen_string_literal: true

	module IntegerExtensions
	refine Integer do
	def as_binary_string(width = nil)
	width \|\|= self.bit_length
	"%0#{width}b" % self
	end

	def as_byte

	- name: LD-47K
	brand_name: Neumann
	model: U47
	description: Created in 1947, Neumann U47 has stood the test of time as the ultimate studio mic. Extensively used by The Beatles, Frank Sinatra, and countless others, only about 6,000 of these mics were produced. The Neumann U47 analyzed for this model has a fully brass capsule with a screw-mounted mylar diaphragm and a genuine VF14 tube.
	- name: LD-87
	brand_name: Neumann
	model: U87
	description: The Neumann U87 was brought to market as a replacement for the U67, even though it sounds quite different. The LD-87 model is based on a mid-’70s version with a split backplate capsule which sounds slightly different from a modern 87. The high-pass filter and pad switch settings are also fully modeled.
	- name: LD-87 Modern
	brand_name: Neumann

	trap("SIGINT") { exit! }

	total_width = `stty size`.scan(/\d+/)[1].to_i # terminal width

	snokflakes = {}

	puts "\033[2J"; # clearing output

	loop do
	snokflakes[rand(total_width)] = 0

	let removeContainers = (...containers) => {
	let items, isValid, removeButtons;

	items = document.querySelectorAll("#browserContainersGroupPane richlistitem");
	isValid = (el) => typeof (el) != "undefined" \|\| el != null;
	removeButtons = [];

	items.forEach((el, idx) =>
	{
	const hbox_1 = el.getElementsByTagName("hbox").item(0);

	MySQL

	If the mysql2 gem fails to install, be sure your Xcode Command Line Tools are installed:

	$ xcode-select --install

	Then try reinstalling the gem with either of these 3 commands:

	$ gem install mysql2 -- \
	--with-cflags=\"-I$(brew --prefix)/opt/openssl/include\" \

	require "middleware/paperclip_middleware"

	Rails.application.configure do
	# other stuff
	config.middleware.use(PaperclipMiddleware)
	end

	#!/usr/bin/env ruby
	require "open3"

	puts "Create new branch? (press y to continue)"
	print "> "

	if gets.chomp.casecmp?("y")
	system("git checkout master")
	system("git branch -D gems/outdated")
	system("git checkout -b gems/outdated")