Skip to content

Instantly share code, notes, and snippets.

View gargolito's full-sized avatar

Anthony Camilo gargolito

3 followers · 3 following
  • Florida
View GitHub Profile
@gargolito
gargolito / systemd-resolved as dnsmasq.md
Last active October 25, 2024 20:30
systemd-resolved as bind/dnsmasq

Use at your peril, this kinda works but you will need to find a way to have systemd load this with the network, otherwise you'll have to manually start resolved and any other services that depend on name resolution. It's a gimicky trick at best.

Use Case:

I needed to run a simple dns server and didn't want to mess with bind, I was using dnsmasq but it broke when I upgraded ubuntu 24.04, it is a known bug (#2055012) but it doesn't look like they're going to address it anytime soon. I was able to find a work around with systemd-resolved. I want to be able to resolve for my own fake domain within my network (e.g. whatever.blah) - this was driven by some services and apps I was running behind haproxy which needs proper fqdn to work for me:

files to change requirements

  • /etc/hosts # normal etc hosts syntax
  • /etc/haproxy/haproxy.conf # normal haproxy config using face domain name
  • /etc/systemd/resolved.conf Make sure that these are no
@gargolito
gargolito / programatically_store_retrieve_passwords.md
Created October 14, 2020 21:09
Programmaticaly store and retrieve secrets/password in MacOS

MacOS stores credentials and SSL/TLS certificates in the login keychain which you can manage via Keychain Access. You can access the keychain data programatically with the builtin cli security command, and also with a pip instalable python module named keyring that also provides a cli command.

When retrieving a password with any of these tools, you will be prompted to allow access to the secret and prompted your login password. There's an option Allow and Always allow. Use the one with which you're comfortable. The default is Allow, if you hit enter, you will be prompted to enter your password every time you need it.

MacOS security (Keychain Access cli)

MacOS already stores most of your passwords in the Keychain. You can see and store passwords in Keychain Access gui, but the cli let's you leverage the Keychain to store and retrieve existing passwords. Wgen using the cli, you may need to unlock your keychain, so run:

security unlock-keychain ${HOME}/Library/Keychains/login.keychain-db

@gargolito
gargolito / video2jpegset.sh
Created August 6, 2020 19:49
convert input video to jpeg frames per second
#!/bin/bash
function vid2jpg () {
name="$(basename $@)"
name="${name/.*}"
tgtdir="${HOME}/pics/extracted/$name"
test -n "$@" && mkdir -p "$tgtdir"
if test -d "$tgtdir"; then
touch "$tgtdir/.nomedia"
ffmpeg -stats -loglevel panic -i "$@" -vsync -1 "$tgtdir/$name%04d.jpg"
else
@gargolito
gargolito / autologoff.sh
Last active July 31, 2020 00:14
stay() {
echo ""
bash --noprofile --norc
bye=1
}
bye=0
trap stay INT
for i in {9..1}; do
test $bye -eq 1 && break
@gargolito
gargolito / iptables_rules
Created July 27, 2020 13:56
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -s 192.168.1.2/32 -p tcp -m multiport --dports 22 -j ACCEPT
-A INPUT -s 172.16.1.3/32 -p tcp -m multiport --dports 22 -j ACCEPT
-A INPUT -p tcp --dport ssh -j DROP
COMMIT
*nat
:PREROUTING ACCEPT [0:0]
@gargolito
gargolito / filestat_with_create_time.sh
Last active July 21, 2020 13:56
based on https://unix.stackexchange.com/questions/50177/birth-is-empty-on-ext4/50184#50184
#!/usr/bin/env bash
# can use with wildcards, loop will exit if the file is not found
function finfo () {
for file in $@; do
echo -e "\033[1;31m$file \033[0m"
test -f $file || break
part=$(df $(dirname ${file})|awk '/\/dev\// {print $1}')
debugfs -R "stat <$(stat -c %i ${file})>" $part 2>&1|head -n 12|awk '/time:/ {$2="";$3=""; print $0}'
echo ""
@gargolito
gargolito / vid2gif.sh
Last active June 28, 2020 13:15
video to gif with good quality gif and compression
vid2gif() {
file=$(realpath $1)
name=$(basename ${file/.*})
ffmpeg -y -i "${file}" -vf fps=${3:-24},scale=${2:-480}:-1:flags=lanczos,palettegen "${name}.png"
ffmpeg -y -i "${file}" -i "${name}.png" -filter_complex "fps=${3:-24},scale=${2:-480}:-1:flags=lanczos[x];[x][1:v]paletteuse" "${name}".gif
rm "${name}.png"
}
@gargolito
gargolito / concatenate_all_json_in_dir.py
Created June 15, 2020 13:45
import json
from os import listdir as ls
d = dict()
d['whois'] = list()
for j in ls('.'):
with open(j) as f:
d['whois'].append(json.loads(f.read()))
with open('../whois.json', 'w') as l:
json.dump(d,l)
@gargolito
gargolito / aptly_remove_a_package.sh
Last active June 10, 2020 21:30
rmdeb ()
{
xIFS=$IFS;
IFS=' ';
if [[ $# -ge 1 ]]; then
repo=reponame;
if [[ $@ =~ del ]]; then
pkg=$(echo $@|sed 's/del//g');
pkgname=${pkg/_*};
pkgver=$(echo ${pkg}|cut -d_ -f2);
@gargolito
gargolito / iknowitsdumbbutilikeit.txt
Created May 28, 2020 02:27
pyenv versions and virtualenv always upgrade pip and add preferred packages
git clone https://github.com/jawshooah/pyenv-default-packages.git \
$(pyenv root)/plugins/pyenv-default-packages
python -c "\
import pip;
from os import environ
pipver=str(float('.'.join(pip.__version__.split('.')[:-1])));
pkgs=[pipver,'ipython', 'pipreqs', 'pytest', 'vulture'];
f=open(environ['PYENV_ROOT'] + '/default-packages','w');
f.write('pip > {}\n'.format('\n'.join(pkgs)));