Some notes about:
These notes assume some basic background knowledge about memory management, ulimits and cgroups.
| # AWS Version 4 signing example | |
| # | |
| # Example: | |
| # Authorization: AWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20150830/us-east-1/iam/aws4_request, SignedHeaders=content-type;host;x-amz-date, Signature=5d672d79c15b13162d9279b0855cfba6789a8edb4c82c400e06b5924a6f2b5d7 | |
| # Formulae: | |
| # CanonicalRequest = | |
| # HTTPRequestMethod + '\n' + | |
| # CanonicalURI + '\n' + | |
| # CanonicalQueryString + '\n' + |
| Put this in your `local-configure.yml` file, add as many users as you need: | |
| users: | |
| - name: fulvio | |
| sudoer: yes | |
| auth_key: ssh-rsa blahblahblahsomekey this is actually the public key in cleartext | |
| - name: plone_buildout | |
| group: plone_group | |
| sudoer: no | |
| auth_key: ssh-rsa blahblahblah ansible-generated on default |
| $ docker-compose up -d # start containers in background | |
| $ docker-compose kill # stop containers | |
| $ docker-compose up -d --build # force rebuild of Dockerfiles | |
| $ docker-compose rm # remove stopped containers | |
| $ docker ps # see list of running containers | |
| $ docker exec -ti [NAME] bash # ssh to the container | |
| # list all images | |
| docker images |
| $ s3cmd get s3://us-east-1.elasticmapreduce/libs/s3distcp/1.latest/s3distcp.jar | |
| $ hadoop jar ./s3distcp.jar --src s3a://<bucket>/input/ --dest=s3a://<bucket>/output |
| --- | |
| - name: Create Instance in AWS | |
| hosts: localhost | |
| connection: local | |
| gather_facts: false | |
| vars: | |
| aws_access_key: "xxxxxx" | |
| aws_secret_key: "xxxxxx" | |
| security_token: "xxxxxx" |
rebase vs merge).rebase vs merge)reset vs checkout vs revert)git rev-parse)pull vs fetch)stash vs branch)reset vs checkout vs revert)
This gist is a compilation of two tutorials. You can find the original tutorials here and here. What should you know before using this? Everything can be executed from the home folder. For easier cleanup at the end you can make directory where you'll download everything, and then just use rm -rf .. Although, you should be careful. If some strange bugs arise unexpectedly somewhere sometimes, just keep in mind that some user names have underscores in them (this is probably nothing to worry about).
sudo adduser --no-create-home --disabled-login --shell /bin/false --gecos "Prometheus Monitoring User" prometheus
sudo adduser --no-create-home --disabled-login --shell /bin/false --gecos "Node Exporter User" node_exporter
sudo adduser --no-create-home --disabled-login --shell /bin/false --gecos "Alertm
Recently, Let's Encrypt launched free wildcard certificates. While this is good news in and of itself, as it removes one of the last remaining reasons for expensive commercial certificates, I've unfortunately seen a lot of people dangerously misunderstand what wildcard certificates are for.
Therefore, in this brief post I'll explain why you probably shouldn't use a wildcard certificate, as it will put your security at risk.
It's generally pretty poorly understood (and documented!) how TLS ("SSL") works, so let's go through a brief explanation of the parts that are important here.
The general (simplified) idea behind how real-world TLS deployments work, is that you: