Written for fairly adept technical users, preferably of Debian GNU/Linux, not for absolute beginners.
|
You'll probably be working with a single smartcard, so you'll want only one primary key ( |
Wiktor Kwapisiewicz wiktor-k
๐บ๐ฆ
goyalankit
/ two-hour.service
Last active
July 3, 2024 09:36
Systemd unit files to restart service every two hours.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Unit] | |
| Description=Service that restarts my spread_goodness.service every two hours. | |
| [Service] | |
| Type=oneshot | |
| ExecStart=/usr/bin/systemctl try-restart spread_goodness.service |
ageis
/ YubiKey-GPG-SSH-guide.md
Last active
November 30, 2025 16:23
Technical guide for using YubiKey series 4 for GPG and SSH
kaihendry
/ Update at 3am every week
Last active
June 26, 2022 20:21
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /system scheduler | |
| add interval=1w name="Upgrade Router Weekly and Reboot" on-event=\ | |
| "/system package update check-for-updates; /system package update download; /system reboot;" policy=\ | |
| ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=jan/01/2018 start-time=03:00:00 |
tagno25
/ Mikrotik auto-update
Created
October 12, 2018 14:20
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Update at 3am once a week | |
| # Make sure the time on the Mikrotik is correct or update will occur "randomly" or never | |
| /system scheduler | |
| add interval=1w name=Auto-Upgrade on-event="/system package update\r\ | |
| \ncheck-for-updates once\r\ | |
| \n:delay 1s;\r\ | |
| \n:if ( [get status] = \"New version is available\") do={ install }" policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon start-date=jan/01/2017 start-time=03:00:20 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| module Main | |
| data Direction = North | South | West | East | |
| turn : Direction -> Direction | |
| turn North = East | |
| turn South = West | |
| turn West = North | |
| turn East = South |
jakecraige
/ pkcs11-ecdh1-derive.go
Last active
May 22, 2023 01:13
Example of the differences between deriving a non-sensitive ECDH key with `CKM_ECDH1_DERIVE` with SoftHSM2, AWS CloudHSM and YubiHSM2's PKCS#11 interface
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * This script shows an example of how with PKCS#11 ECDH1 key derivation and how it differs when | |
| * communicating with SoftHSM2 vs AWS CloudHSM vs YubiHSM2. This seems to boil down to how they treat | |
| * the `CKA_SENSITIVE` attribute on the derived key. | |
| * - SoftHSM2 does what you expect, if you say it is sensitive it won't allow exporting. If you say | |
| * it's not it will. | |
| * - CloudHSM errors when you attempt to mark the derived key as not-sensitive. It behaves as | |
| * expected when you say it is. AWS docs seem to indicate that the derived key is available on the | |
| * "client" but it's unclear what client they are referring to, and it doesn't seem to be |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| image: "rust:latest" | |
| default: | |
| before_script: | |
| - rustc --version | |
| - cargo --version | |
| stages: | |
| - test |
This Python script is not maintained and was replaced by the more robust Rust version below:
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import cryptography | |
| import datetime | |
| import pgpy | |
| pkalg = pgpy.constants.PubKeyAlgorithm.ECDSA | |
| curve = pgpy.constants.EllipticCurveOID.NIST_P384 | |
| super_secret_number = 12345 | |
| created = 0 # datetime |
solarkraft
/ syncthing-automerge.py
Last active
November 27, 2025 18:25
Monitors a Syncthing-synced directory and tries to merge conflicting files (based on https://www.rafa.ee/articles/resolve-syncthing-conflicts-using-three-way-merge/). Probably adaptable for other directory types, but only tested with Logseq (works for meโข๏ธ).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This script automatically handles Syncthing conflicts on text files by applying a | |
| # git three-way merge between the previously synced version and each divergent version. | |
| # It depends on the watchdog package and git. | |
| # For automatic dependency installation when running with ยดuv run --script deconflicter.pyยด: | |
| # /// script | |
| # requires-python = ">=3.10" | |
| # dependencies = [ | |
| # "watchdog", |