Skip to content

Instantly share code, notes, and snippets.

View jult's full-sized avatar
🏠
F*ck the AUKUS NATO war machine. You people are literally destroying the planet.

Julius Thyssen jult

🏠
F*ck the AUKUS NATO war machine. You people are literally destroying the planet.
View GitHub Profile
@jult
jult / nftables.conf
Created January 18, 2025 11:08
debian 12 nft Qotom router firewall
#!/usr/sbin/nft -f
flush ruleset
# Define NAT table for IPv4
table ip nat {
chain prerouting {
type nat hook prerouting priority -100;
policy accept;
}
@jult
jult / dnsmasq2kea.sh
Created January 18, 2025 11:05
convert pihole dnsmasq static dhcp hosts to isc-kea kea dhcp-server json format
#!/bin/bash
# Check if jq is installed
if ! command -v jq &> /dev/null; then
echo "Error: jq is not installed. Please install jq using 'sudo apt install jq'"
exit 1
fi
# Source the dnsmasq static DHCP list
static_leases=$(cat /etc/dnsmasq.d/04-pihole-static-dhcp.conf)
@jult
jult / whitelist.sh
Last active December 14, 2024 12:38 — forked from JosepOli/whitelist.sh
Using URLs to whitelist on pihole server
#!/bin/bash
# BE SURE TO INSTALL dos2unix, wget, sed (apt install dos2unix wget sed -y) and change these to your preferences:
WHITELIST_URL='https://jult.net/whitelist.txt'
WHITELIST_URLX='https://raw.githubusercontent.com/anudeepND/whitelist/master/domains/whitelist.txt'
CUSTOM_LIST='/root/io/whitey'
# Give your txt file a name, this will have the domains that this script will whitelist into pi-hole
WHITELIST_FILE_NAME='wlresult'
wget -qO - --limit-rate=1500k "$WHITELIST_URL" > /tmp/white1
@jult
jult / killadobe.sh
Created November 21, 2022 16:41 — forked from CyberPunkCodes/killadobe.sh
Mac Bash script to kill Adobe Create Cloud and other processes that Adobe forces on us.
#!/bin/bash
echo "\n\n--- Killing Stupid Adobe Auto Load Crap ---\n\n"
launchctl unload -w /Library/LaunchAgents/com.adobe.AdobeCreativeCloud.plist
launchctl unload -w /Library/LaunchAgents/com.adobe.AAM.Updater-1.0.plist
echo "\n\n--- Done! ---\n\n"
@jult
jult / handy.txt
Last active August 18, 2023 18:23
debian 12 bookworm minimal install base with webmin csf ( was: handy linux server admin stuff )
apt install rsyslog curl wget mc gpg htop multitail chrony nginx php-fpm rsync php-sqlite3 dnsutils unzip libio-socket-ssl-perl libcrypt-ssleay-perl git perl iptables libnet-libidn-perl libio-socket-inet6-perl libsocket6-perl ipset libwww-perl lsb-release bash debhelper apt-transport-https rsync ssh openssh-server git autoconf automake libtool build-essential flex bison software-properties-common dirmngr sudo
curl -sSL https://install.pi-hole.net | bash
apt install unbound
wget https://www.internic.net/domain/named.root -qO- | sudo tee /var/lib/unbound/root.hints
@jult
jult / whitelistcat.sh
Last active September 1, 2021 18:57
whitelists collection script for pihole and the likes
#!/bin/bash
wget -qO - --limit-rate=1500k https://dbl.oisd.nl/whitelist2.txt > /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://www.technoy.de/lists/whitelist.txt >> /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/raghavdua1995/DNSlock-PiHole-whitelist/master/whitelist.list >> /tmp/white
sleep 2
wget -qO - --limit-rate=1500k https://raw.githubusercontent.com/anudeepND/whitelist/master/domains/referral-sites.txt >> /tmp/white
sleep 2
@jult
jult / nc_update.sh
Last active September 11, 2024 03:36
nextcloud update and post-update occ commands, file and database integrity fixes
#!/bin/bash
find /etc -type f -name "php.ini" -exec sed -i 's/output_buffering/;output_buffering/g' {} +
sudo -u www-data sed -i "s/output_buffering=.*/output_buffering='Off'/" /var/www/nextcloud/.user.ini
sudo -u www-data php /var/www/nextcloud/occ app:disable survey_client
sudo -u www-data php /var/www/nextcloud/occ app:disable firstrunwizard
sudo -u www-data php /var/www/nextcloud/occ app:enable admin_audit
sudo -u www-data php /var/www/nextcloud/occ app:enable files_pdfviewer
sudo -u www-data php /var/www/nextcloud/occ maintenance:mode --on
nohup chown -R www-data:www-data /var/www/nextcloud &
@jult
jult / CORS
Last active July 10, 2024 04:56
NGINX config for pi-hole
if ($request_method = 'OPTIONS') {
add_header 'Access-Control-Allow-Origin' '*';
add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
#
# Custom headers and headers various browsers *should* be OK with but aren't
#
add_header 'Access-Control-Allow-Headers' 'DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range';
#
# Tell client that this pre-flight info is valid for 20 days
#
@jult
jult / no_apache.sh
Created January 8, 2020 21:42
kick apache off my debian+nginx server
#!/bin/bash
apt purge apache2 apache2-bin apache2-data apache2-utils -y
apt clean all -y
apt update && apt upgrade && apt autoremove -y
apt-mark hold apache2 apache2-bin apache2-data apache2-utils
exit 0
@jult
jult / https_only
Last active December 16, 2019 12:23
[NGINX] Redirect all hostnames and requests from http to https serverwide
# To have port 80 requests go to their 443 equivalents for an entire webserver, put this file in /etc/nginx/conf.d/
# Note that to specify the catch-all name or default server you
# need to use the *listen* directive, not the server_name directive!
# See also https://nginx.org/en/docs/http/request_processing.html
#
# - $host catches subdomain names.
# - 307 and 308 include both POST and GET request URIs.
# - 307 is Temporary, change to the Permanent 308 after thorough testing: # return 308 https://$host$request_uri;
server {