Skip to content

Instantly share code, notes, and snippets.

View longtian's full-sized avatar
🎯
Focusing

龙天 longtian

🎯
Focusing
228 followers · 601 following
View GitHub Profile
@longtian
longtian / alpine-cloud-init.md
Last active September 27, 2024 11:46
cloud-init for alpine on proxmox

Enable cloud-init for a Alpine VM on proxmox

alpine version 3.17.4 cloud-init version 22.4

Install

Download alpine-virt-3.17.4-x86_64.iso Uploda to PVE Create a VM

@longtian
longtian / doveadm.conf
Created January 14, 2022 02:02
Use telegraf http plugin to monitor dovecot by requesting doveadm api
[[inputs.http]]
urls = ["http://dovecot:8085/doveadm/v1"]
name_override = "doveadm"
method = "POST"
username = "doveadm"
password = "********"
json_query = "0.1.0"
body = '''
[
["statsDump",{"type":"global"},"tag1"]
@longtian
longtian / export.sh
Last active March 1, 2023 07:53
kubernetes 导出 pkcs12 证书的脚本
CONFIG="/root/.kube/config"
echo -n $(cat $CONFIG | grep certificate-authority-data | cut -d: -f2) | base64 -d > my-ca-cert.crt
echo -n $(cat $CONFIG | grep client-certificate-data | cut -d: -f2) | base64 -d > my-client.crt
echo -n $(cat $CONFIG | grep client-key-data | cut -d: -f2) | base64 -d > my-client.key
openssl pkcs12 -export -out k8s.pfx -inkey my-client.key -in my-client.crt -certfile my-ca-cert.crt
@longtian
longtian / readme.md
Last active July 21, 2020 03:44
gmail csp 设置

20200721

记录 https://mail.google.com/mail/u/0/#inbox 页面 的 CSP 设置

content-security-policy: script-src https://clients4.google.com/insights/consumersurveys/ https://www.google.com/js/bg/ 'self' 'unsafe-inline' 'unsafe-eval' https://mail.google.com/_/scs/mail-static/ https://hangouts.google.com/ https://talkgadget.google.com/ https://*.talkgadget.google.com/ https://www.googleapis.com/appsmarket/v2/installedApps/ https://www-gm-opensocial.googleusercontent.com/gadgets/js/ https://docs.google.com/static/doclist/client/js/ https://www.google.com/tools/feedback/ https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://apis.google.com/_/scs/abc-static/ https://apis.google.com/js/ https://clients1.google.com/complete/ https://apis.google.com/_/scs/apps-static/_/js/ https://ssl.gstatic.com/inputtools/js/ https://inputtools.google.com/request https://ssl.gstatic.com/cloudsearch/static/o/js/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/common_sharing/static/client/js/ https://
@longtian
longtian / druid-metrics.conf
Created June 20, 2019 04:21
基于 Telegraf 的 Druid 指标监控
[[inputs.http_listener_v2]]
service_address = "0.0.0.0:3000"
data_format = "json"
tag_keys = [
"host",
"service",
"dataSource",
"type",
@longtian
longtian / defaults_main.yml
Last active November 1, 2017 11:01
Reset virtualbox to snapshot using ansible
---
VBOX_DEFAULT_ROLE: base
VBOX_GUEST_SSH_PORT: 22
@longtian
longtian / README.md
Last active October 10, 2017 09:31
Ansible 知识点拾遗

1.在使用 --tags 的时候,如果一个 task 始终需要执行,可以指定 tags 是 always

- name: make sure haproxy is running
  service: name=haproxy state=started enabled=true
  tags: always

2.role 的 hosts 默认使用另一个 role 的 hosts 可以这么写

@longtian
longtian / server.conf
Created August 3, 2017 03:10
使用域名中截取的一部分 IP 作为 Nginx 的 Upstream
server {
listen 80;
server_name ~^(?<sip>([\d\.]*))\.example\.com$;
location / {
proxy_pass http://$sip:9001;
proxy_set_header Host $http_host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
@longtian
longtian / README.md
Last active June 29, 2017 04:04
阿里云 SLB 的一些发现

所有问题的答案其实都在 https://help.aliyun.com/knowledge_detail/55202.html

take aways:

  • 即使 ECS 上没有压缩,SLB 会进行压缩
  • SLB 对 Content-Length 小于 1024 的不会进行压缩
  • SLB 只会针对某些类型的 Content-Type 进行压缩
  • SLB 和 ECS 之间的压缩使用 HTTP 1.0 协议
  • 4 层使用 LVS+Keepalived ,7 层使用 Tengine
  • 提供 5G 的 DDOS 安全防护
@longtian
longtian / README.md
Last active June 15, 2017 06:34
A collection of public grafana dashboards