- Understanding how uid and gid work in Docker containers Jan 2017
- Processes In Containers Should Not Run As Root Sept 2017
Prior to Docker supporting User Namespaces
ohforest
ohforest
/ ip_blacklist.lua
Created
September 6, 2022 07:49
— forked from chrisboulton/ip_blacklist.lua
Redis based IP blacklist for Nginx (LUA)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- a quick LUA access script for nginx to check IP addresses against an | |
| -- `ip_blacklist` set in Redis, and if a match is found send a HTTP 403. | |
| -- | |
| -- allows for a common blacklist to be shared between a bunch of nginx | |
| -- web servers using a remote redis instance. lookups are cached for a | |
| -- configurable period of time. | |
| -- | |
| -- block an ip: | |
| -- redis-cli SADD ip_blacklist 10.1.1.1 | |
| -- remove an ip: |
ohforest
/ 00.install-android-sdk.sh
Created
September 13, 2022 06:54
— forked from nhtua/00.install-android-sdk.sh
Run a Headless Android Device on Ubuntu server (no GUI)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash -i | |
| #using shebang with -i to enable interactive mode (auto load .bashrc) | |
| set -e #stop immediately if any error happens | |
| # Install Open SDK | |
| apt update | |
| apt install openjdk-8-jdk -y | |
| update-java-alternatives --set java-1.8.0-openjdk-amd64 | |
| java -version |
ohforest
/ python_email_parse.py
Created
September 22, 2022 10:40
— forked from strayge/python_email_parse.py
email parse pop3 python
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import poplib | |
| import email | |
| from base64 import b64decode | |
| pop3_server = 'pop.gmail.com' | |
| pop3_port = '995' | |
| username = 'XXXXXXXXXX@gmail.com' | |
| password = 'XXXXXXXXXXXXXX' | |
| M = poplib.POP3_SSL(pop3_server, pop3_port) |
ohforest
/ Install.txt
Created
October 27, 2022 03:27
— forked from soderlind/Install.txt
macOS DoH! (DNS over HTTPS) using cloudflared
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1) Install cloudflared using homebrew: | |
| brew install cloudflare/cloudflare/cloudflared | |
| 2) Create /usr/local/etc/cloudflared/config.yaml, with the following content | |
| proxy-dns: true | |
| proxy-dns-upstream: | |
| - https://1.1.1.1/dns-query | |
| - https://1.0.0.1/dns-query |
ohforest
/ nginx.conf
Created
October 28, 2022 11:49
— forked from arehmandev/nginx.conf
Nginx transparent proxy
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| events { | |
| worker_connections 1024; | |
| } | |
| http { | |
| # google's DNS server | |
| resolver 8.8.8.8; | |
| resolver_timeout 5s; | |
| server { | |
| # proxy server port |
ohforest
/ README.md
Created
January 30, 2023 06:53
— forked from mrtns/README.md
Docker Host and Container User Mapping
ohforest
/ generate-nginx-cloudflare-allow.sh
Created
February 1, 2023 10:27
— forked from badwallass/generate-nginx-cloudflare-allow.sh
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| set -e | |
| cf_ips() { | |
| echo "# https://www.cloudflare.com/ips" | |
| echo "geo \$realip_remote_addr \$cloudflare_ip {" | |
| echo "default 0;" | |
| for type in v4 v6; do |
ohforest
/ readme.md
Created
February 17, 2023 10:46
— forked from fengyuentau/readme.md
Enable X11 forward for ssh to load images from remote server on MacOS Mojave
-
Install
Xquartzto get X11 support on MacOS. You can googleXquartzand download it from its official site, or install using HomeBrew.brew cask install xquartz
-
Launch
Xquartz. Go toPreference->Security, click the boxAllow connections from clients. NOTE: You have to lauchXquartzwithAllow connections from clientsenable everytime you want tosshto remote server with X11 forwarding support.
ohforest
/ curl_range.md
Created
February 21, 2023 10:58
— forked from mocchira/curl_range.md
HTTP GET with Range header by curl
- normal(explicitly specified start AND end)
curl -v -X GET -H "range: bytes=1-8" http://localhost:8080/bbb/test
- specified ONLY start(end will be specified at the end of file)
curl -v -X GET -H "range: bytes=10-" http://localhost:8080/bbb/test
- specified ONLY one negative value(last N bytes of file will be retrieved)
ohforest
/ chn_fonts.reg
Created
March 31, 2023 06:39
— forked from swordfeng/chn_fonts.reg
Chinese font settings in wine
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| REGEDIT4 | |
| [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\FontLink\SystemLink] | |
| "Arial"="wqy-microhei.ttc" | |
| "Arial Black"="wqy-microhei.ttc" | |
| "Arial CE,238"="wqy-microhei.ttc" | |
| "Arial CYR,204"="wqy-microhei.ttc" | |
| "Arial Greek,161"="wqy-microhei.ttc" | |
| "Arial TUR,162"="wqy-microhei.ttc" | |
| "Courier New"="wqy-microhei.ttc" |