Learning, Groking, Exploring

Ricardo rmdes

ProPublica Tor hidden service
Created July 26, 2016 13:06
Configuration for ProPublica’s Tor hidden service proxy.

These files contain the base configuration for ProPublica’s Tor hidden service mirror.

Of note:

  • We're using the nginx "subs_filter" and "headers more" modules to allow us to rewrite content and update headers, so that we can convert clearnet links into onion links, where possible.

  • Based on feedback we've received, we're using Unix sockets (instead of a TCP port) where nginx listens internally for the inbound connection from Tor. This ensures that a firewall misconfiguration can't expose the site running in nginx, which is likely overkill for an already-public (clearnet) website; this may also slightly improve performance and reduce socket overhead, however.

    If you try doing this and have issues using sudo service nginx restart due to leftover connections using the socket, you may have to nuke the previous sockets before starting a new nginx process:

rmdes
Created August 21, 2016 12:01
ArchLinux Installation Guide

ArchLinux Installation guide

This will use GPT partitions and GRUB2 on a BIOS enabled PC (see Wiki for EFI). The Installation Guide can be found at /root/install.txt.

Prepare USB stick

Get 2012.08.04 image or later from Following tutorial requires at least 2011.07.15 image.

dd if=/dev/zero of=/dev/sdx bs=1k count=1

utf8mb4.cnf
Created March 11, 2019 09:19
Correctly set MySQL to use utf8 on ubuntu
default-character-set = utf8mb4
default-character-set = utf8mb4
character-set-server = utf8mb4
collation-server = utf8mb4_unicode_ci
rmdes
Created October 3, 2019 07:29
A curated list of AWS resources to prepare for the AWS Certifications

A curated list of awesome AWS resources you need to prepare for the all 5 AWS Certifications. This gist will include: open source repos, blogs & blogposts, ebooks, PDF, whitepapers, video courses, free lecture, slides, sample test and many other resources.

rmdes
Created October 7, 2020 11:50
A list of RSS endpoints, readers and resources


Please refer to this blogpost to get an overview.

RSS endpoints

Replace *-INSTANCE with one of the public instances listed in the scrapers section. Replace CAPITALIZED words with their corresponding identifiers on the website.


rmdes
Created December 13, 2021 10:55
Log4j RCE CVE-2021-44228 Exploitation Detection

You can use these commands and rules to search for exploitation attempts against log4j RCE vulnerability CVE-2021-44228

Grep / Zgrep

This command searches for exploitation attempts in uncompressed files in folder /var/log and all sub folders

sudo egrep -I -i -r '\$(\{|%7B)jndi:(ldap[s]?|rmi|dns|nis|iiop|corba|nds|http):/[^\n]+' /var/log
rmdes
Created December 29, 2021 13:48
A script to produce a minimal Ubuntu image for VirtualBox (without the mini.iso)

Living without the Ubuntu mini.iso (in VirtualBox)

The mini.iso for the Ubuntu distribution is legacy since version 20.04LTS (Focal Fossa). This is a bad news for those (like me) that formerly used this distribution to produce lightweight virtual machines for development, teaching, testing, etc. A distribution of the mini.iso for Ubuntu 20.04 is indeed still available here, but there is no guarantee that its availability will continue after Focal Fossa. An askubuntu post on the topic (there are several) is here.

So I decided to find a way to do without the mini.iso, and I wrote this script that takes to the ''tasksel'' step starting from a cloud image in the ubuntu repository. You have many options here about the image format to use: I refer to the .ova file that you find in fo

release.yml
Created February 9, 2022 13:14
GitHub Actions workflows for custom Cloudron Apps
# Custom Cloudron App build/update workflow
# To use this template, ensure the following secrets
# * A Docker Hub account username
# * The Docker Hub password for DOCKER_USERNAME
# * The repository belonging to DOCKER_USERNAME to push updates to
const new_items = [];
const key_field = "guid";
console.log("key_field from json.key: " + key_field);
const now = $now
// Get static data stored with the workflow
data = $getWorkflowStaticData("node");
// delete the old cache, that didn't have time
data.ids = null;
rmdes / .gitconfig
Last active March 15, 2024 14:54
Sample of git config file (Example .gitconfig) (Place them in $XDG_CONFIG_HOME/git)
name = Ricardo Mendes
email = [email protected]
username = rmdes
defaultBranch = main
editor = nvim
whitespace = fix,-indent-with-non-tab,trailing-space,cr-at-eol
pager = delta