For educational reasons I've decided to create my own CA. Here is what I learned.
Lets get some context first.
Lucas Servén Marín squat
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| urlencode() { | |
| # urlencode <string> | |
| old_lc_collate=$LC_COLLATE | |
| LC_COLLATE=C | |
| local length="${#1}" | |
| for (( i = 0; i < length; i++ )); do | |
| local c="${1:$i:1}" | |
| case $c in |
bodokaiser
/ pool.c
Last active
July 3, 2023 13:42
Simplistic thread pool implementation with pthread and libuv QUEUE
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include "queue.h" | |
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <unistd.h> | |
| #include <pthread.h> | |
| #define THREADS 3 | |
| /** | |
| * Task queue. |
- Setup SoftwareRAID for the CoreOS root partition without data-loss.
- Only for ext4!
- The Trick is to use the right volume label and fs-types :)
- We assume CoreOS is on
/dev/sdaXand the second RAID Device is/dev/sdb - Drawback: only
/gets mirrored, Node goes down when sda fails
- Boot into any recovery system like Grml
- If not already done: install CoreOS
ericchiang
/ k8s-service-account-kubeconfig.sh
Created
November 1, 2017 15:23
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash -e | |
| # Usage ./k8s-service-account-kubeconfig.sh ( namespace ) ( service account name ) | |
| TEMPDIR=$( mktemp -d ) | |
| trap "{ rm -rf $TEMPDIR ; exit 255; }" EXIT | |
| SA_SECRET=$( kubectl get sa -n $1 $2 -o jsonpath='{.secrets[0].name}' ) |
AnnoyingTechnology
/ Apple's SuperDrive tweak for use with Linux.md
Last active
December 14, 2025 00:37
Make Apple's USB SuperDrive work on Linux
I was ready to throw it away, I opened it up and didn't find anything wrong with it. After a quick Google Search, turns out Apple fucked up their users (again) and locked this drive to only one laptop : the MacBook Air.
Bellow is the tweak (found online) to make it usable on Linux
# Debian/linux only - Linux SCSI generic driver
sudo apt install sg3-utils -y
mhofman
/ MacOS Screen sharing on localhost only.md
Last active
December 2, 2025 09:57
MacOS ScreenSharing on localhost only
All the following has been validated on MacOS Mojave 10.14.6
While there is a command line preference to accept only local VNC connections, that setting still doesn't prevent the daemon from listening to the wildcard address, and advertise the service on Bonjour. I haven't actually tried to see if it restricted anything in modern versions of the operating system, but here it is for reference:
sudo defaults write /Library/Preferences/com.apple.RemoteManagement.plist VNCOnlyLocalConnections -bool yes
Here's how I configured a GitHub Action so that a new version issued by GitHub's release interface will build a Dockerfile, tag it with the version number and upload it to Google Artifact Registry.
Before you attempt the steps below, you need the following:
- A GitHub repository that contains a working Dockerfile
- The Google Cloud SDK tool gcloud installed and authenticated