| # Post-install steps for HashiCorp training workstation | |
| git config --global core.autocrlf false | |
| install-module posh-git -AllowClobber |
| resource "azurerm_network_security_group" "catapp-sg" { | |
| name = "${var.prefix}-sg" | |
| location = "${var.location}" | |
| resource_group_name = "${azurerm_resource_group.myresourcegroup.name}" | |
| security_rule { | |
| name = "HTTP" | |
| priority = 100 | |
| direction = "Inbound" | |
| access = "Allow" |
Nmap is an all-purpose network and port scanner. It can scan hundreds of hosts and ports quickly, across a variety of protocols and situations. Here are a few basic commands that you can use:
Check that ports 8200 and 8201 are listening on a host. The Pn flag tells nmap to skip the preliminary ping to see if the host is up.
nmap -p 8200,8201 10.0.1.10 -Pn
| url - https://aws.amazon.com/blogs/security/a-safer-way-to-distribute-aws-credentials-to-ec2/ | |
| Finding hard-coded credentials in your code | |
| Hopefully you’re excited about deploying credentials to EC2 that are automatically rotated. Now that you’re using Roles, a good security practice would be to go through your code and remove any references to AKID/Secret. We suggest running the following regular expressions against your code base: | |
| Search for access key IDs: (?<![A-Z0-9])[A-Z0-9]{20}(?![A-Z0-9]). In English, this regular expression says: Find me 20-character, uppercase, alphanumeric strings that don’t have any uppercase, alphanumeric characters immediately before or after. | |
| Search for secret access keys: (?<![A-Za-z0-9/+=])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+=]). In English, this regular expression says: Find me 40-character, base-64 strings that don’t have any base 64 characters immediately before or after. | |
| If grep is your preferred tool, run a recursive, Perl-compatible search using the following commands |
| # Aliases | |
| alias ls='lsd' | |
| alias l='ls -l' | |
| alias la='ls -a' | |
| alias lla='ls -la' | |
| alias lt='ls --tree' | |
| alias e='explorer.exe' | |
| # Useful cd paths | |
| setopt auto_cd |
| terraform { | |
| required_providers { | |
| lacework = { | |
| source = "lacework/lacework" | |
| version = "~> 0.2.7" | |
| } | |
| } | |
| } | |
| provider "aws" {} | |
| provider "lacework" {} |
Goal- centralized UI, and scheduler, for managing automated builds
- Terraform Enterprise - HashiCorp
| resource "azurerm_resource_group" "example" { | |
| name = "example" | |
| location = "Central US" | |
| } |
| summary { color: cyan; } | |
| hr.cyan { background-color: cyan; } | |
| hr.thick { background-color: cyan; color: cyan; height: 2px; } | |
| h2.cyan { color: cyan; } |