Bookmarks for 18 Apr 2016 through 22 Apr 2016

These are my links for 18 Apr 2016 through 22 Apr 2016:

  • Alfresco: some useful database queries – Blog dbi services – In my previous post, I talked about the Lifecycle of Alfresco Nodes. You may have noticed that I tried to insert in my explanations some elements that are specific to databases (tables, fields, aso…). These elements are quite essential to prepare a post like this one: more database oriented. I already explained what exactly are the consequences on the database side when a node is removed and I will try in this post to share some useful queries regarding these points but not only! For this post, I used my local Alfresco Community 4.2.c installation with a PostgreSQL database. For your information, it just take 30 minutes to get this test environment ready with the Alfresco’s installer (Windows, Mac or Unix). Of course, use the Database only for your daily administration work is certainly not the best idea but in some cases, it can really be faster and easier to just run some SQL commands at the DB level…
  • tweekmonster/tmux2html: :cat2: Render full tmux windows or individual panes as HTML – Render full tmux windows or individual panes as HTML
  • Shrinkpdf – A simple wrapper around Ghostscript to shrink PDFs (as in reduce filesize) under Linux. Inspired by some code I found in an OpenOffice Python script (I think). The script feeds a PDF through Ghostscript, which performs lossy recompression by such methods as downsampling the images to 72dpi. The result should be (but not always is) a much smaller file
  • Cisco ASA privilege separation for a local user or read only user on ASA | yurisk.info
    privilege show level 3 mode exec command running-config username jonghe password Ohsaib1soh privilege 3
  • How to create a read only user in Cisco devices | Cisco & Juniper Networking Note Book
    Here is the thing, can you believe there is no straight forward way to configure a read only user in Cisco devices. If you know any way to do it please correct me here.

Bookmarks for 8 Mar 2016 through 14 Mar 2016

These are my links for 8 Mar 2016 through 14 Mar 2016:

  • Zsoldier’s Tech Blog: Add Portgroups/VLANs to vmware standard switches via PowerCLI – Wrote a simple little script to insert a portgroup into a targeted vSwitch of all VM hosts in a targeted cluster. This is not an issue if you use distributed vSwitches.
  • siph0n – exploits : leaks : dumps : papers : hashes – Hello and welcome to "siph0n", we are a group of security enthusiasts that want to make people
    more aware of security risks and the risks behind compromised(stolen) data.
    By using this Site, you signify your assent to these Terms of Service if you do not agree to any of these conditions,
    do not use this website.
  • Hardening Framework – […] Server hardening is a well-known topic with many guides out in the wild. Why this project? At Deutsche Telekom we need to manage thousands of servers for customers and ourselves. All servers need to be configured properly and maintained, which is difficult and time-consuming to get right. To answer these needs for security, compliance, and maintainability, we decided to launch this project as a common ground for requirements and their fulfillment.[…]
  • Node-RED – Node-RED is a tool for wiring together hardware devices, APIs and online services in new and interesting ways.
  • zachlatta/sshtron: Play Tron over SSH – SSHTron is a multiplayer lightcycle game that runs through SSH

Bookmarks for 28 set 2015 through 3 ott 2015

These are my links for 28 set 2015 through 3 ott 2015:

  • AWS Performance Tuning – This guide introduces best practices for tuning Riak cluster performance in the Amazon Web Services (AWS) Elastic Compute Cloud (EC2) environment.
  • Guide to Windows Batch Scripting – /* steve jansen */ – This series will share some of the tips and tricks I’ve picked up through the years of working with Windows professionally. I’ll be the first to admit the Unix shells of the world are far superior to the Windows command prompt (or even Windows PowerShell). Windows is a fact of life for most professionals writing code for coporate customers; this series aims to make life with Windows a little easier.
  • donnemartin/saws · GitHub – A Supercharged AWS Command Line Interface (CLI). http://bit.ly/git-saws

Bookmarks for 6 ago 2015 through 21 set 2015

These are my links for 6 ago 2015 through 21 set 2015:

  • /bin/bash based SSL/TLS tester: testssl.sh – testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more. [ via quasi.dot: https://delicious.com/farmando ]
  • Policy NAT for L2L VPN • LearnIOS.com – I kind of missed the wood for the trees here. The static policy NAT is failing because you are trying to map a network 192.168.0.0 to a single IP address 172.20.n.1. However it's just occured, why are you doing policy NAT for the Internet. I tested in lab and if you do this
  • Encrypted Data Bags on Cloud on AWS – Many customers have asked us how they should handle shared secrets, passwords and other sensitive data in Chef and now we have a good solution. With the release of our stable-v4 stack, we introduced Chef 10 to the platform, and with it came data bags. Now with the 3.0 release of the engineyard gem, we can officially support data bags and encrypted data bags. You may be wondering what data bags are, how data bags work or how to implement data bags. This blog post will walk you through the entire process.
  • How to set disk alignment in Linux | Dirty Cache – As you might know, if disk partitions containing Oracle datafiles are not aligned with the underlying storage system, then some I/O’s can suffer from some overhead as they are effectively translated in two I/O’s. If you want more info, google for “EMC disk alignment” and you’ll find plenty of information, explaining the issue.
  • Add Private Route 53 DNS to your AWS VPC | CloudTrek – A really cool feature of Amazon’s Route 53 DNS Management Service is the private hosted DNS zone.  Basically, you get the ability to manage the DNS in your private VPC without setting up your own DNS infrastructure (yuck!) [ Just a friendly reminder Note 1: the resolution is working only inside the VPC. Note 2: if you don't have the AmazonProvidedDNS in your DHCP-OPTION you won't resolve the zone. Note 3: if you are using linux, you can use as DNS 169.254.169.253 it won't work on windows 2008 Ref: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_DHCP_Options.html http://docs.aws.amazon.com/Route53/latest/DeveloperGuide/hosted-zones-private.html http://aws.amazon.com/route53/faqs/ ]

Bookmarks for 28 nov 2014 through 1 dic 2014

These are my links for 28 nov 2014 through 1 dic 2014:

  • SIAMO GEEK – Sperimentatori, entusiasti della tecnologia | Rigenerare le chiavi ssh – Quanto è vecchia la vostra chiave ssh? Rigenerare le chiavi ssh usate per collegarsi ai server è una rottura di scatole, ma potrebbe essere una rottura di molte unità di grandezza inferiore rispetto allo scoprire che una chiave ssh viene usata da mesi a nostra insaputa. Quanto sono corte/lunghe le chiavi ssh registrate nei file authorized-keys dei vostri server? Per fortuna a questa ultima domanda c’è una risposta veloce sotto forma di un pratico script shell.
  • Downloading Java RPM from wget | Giuseppe Paternò – This is a very basic post, but I consider it for myself rather for public consumption. I needed to download the Java RPM from the Oracle website from command line, as I’m connected to my systems from a low bandwidth site. I needed to find the cookies that Oracle website uses for “accepting” Oracle license to use properly wget from command line.
  • urlwatch – a tool for monitoring webpages for updates (thp.io) – This script is intended to help you watch URLs and get notified (via email or in your terminal) of any changes. The change notification will include the URL that has changed and a unified diff of what has changed. The script supports the use of a filtering hook function to strip trivially-varying elements of a webpage.
  • Gravit – unlock your design potential. – Meet Gravit – the cutting-edge design app that will take your creativity to new heights. Gravit offers the creative possibilities of a full-scale design suite – but in a snug app-sized package. Powerful yet easy-to-handle, Gravit has been custom designed from the ground up with an emphasis on versatility, fluidity and elegance – complex design tasks are made simple through its robust suite of tools and highly responsive smart work environment. Express yourself in a new way with Gravit – the new must-have tool for today’s pioneering design professionals! [ via http://www.lffl.org/2014/11/gravit-il-nuovo-software-di-disegno-vettoriale-open-per-linux-windows-e-mac.html ]

Bookmarks for 3 nov 2014 through 5 nov 2014

These are my links for 3 nov 2014 through 5 nov 2014:

  • Policy Daemon – Policyd is an anti-spam plugin for Postfix (written in C) that does Greylisting, Sender-(envelope, SASL or host / ip)-based throttling (on messages and/or volume per defined time unit), Recipient rate limiting, Spamtrap monitoring / blacklisting, HELO auto blacklisting and HELO randomization preventation.
  • DevStack – an OpenStack Community Production — documentation – A documented shell script to build complete OpenStack development environments. An OpenStack program maintained by the developer community. Setup a fresh supported Linux installation. Clone devstack from git.openstack.org. git clone https://git.openstack.org/openstack-dev/devstack Deploy your OpenStack Cloud cd devstack && ./stack.sh
  • vim modeline – Tips and Tricks – ph3nix.Net – Generally you either love or hate Vim.  It boils down to a matter of personal preference.  However love or hate you have to admit it is extremely powerful for a command line, text only file editor.  For those who love it – or just have to make use of it on a regular basis, the Vim modeline feature is a very useful and powerful way of customizing the visual and editing preferences as well as several other options on a file by file basis.
  • Development Foo – using vim and sshfs to propel development | New Goliath
  • Front-end engineering and so on: OpenSSL: Convert private key to PEM format for AWS ELB – You might get message "Error: Invalid Private Key" while configuring SSL on Elastic Load Balancer on Amazon Web Services (AWS). It means your private key isn't in PEM format. No worries, it easy to fix.

Bookmarks for 9 set 2014 through 11 set 2014

These are my links for 9 set 2014 through 11 set 2014:

  • Hughes Systique Corp. > Research & Innovation > Newsletter > Issue 2 > mySQL – A typical MySQL cluster requires at least 4 nodes for deploying a High Available MySQL database cluster. The typical configuration of any enterprise application is a 2 Node solution (Active-Standby mode or Active-Active Mode). This is where the real challenge lies: in fitting the MySQL Cluster Nodes in the 2 Nodes offering the application services and then making it work in the configuration without a single point of failure.
  • Corosync / Pacemaker – Execute script on failover – Raymii.org – With Corosync/Pacemaker there is no easy way to simply run a script on failover. There are good reasons for this, but sometimes you want to do something simple. This tutorial describes how to change the Dummy OCF resource to execute a script on failover. In this example it is a script which triggers a few SNMP traps, sends an alert to Nagios and sends some data to Graphite. SNMP alone could be done with the ocf:heartbeat:ClusterMon resource, but the other stuff not.
  • Home – A Banana Pi powered website
  • UrBackup – Client/Server Open Source Network Backup for Windows and Linux – UrBackup is an easy to setup open source client/server backup system, that through a combination of image and file backups accomplishes both data safety and a fast restoration time. File and image backups are made while the system is running without interrupting current processes. UrBackup also continuously watches folders you want backed up in order to quickly find differences to previous backups. Because of that incremental file backups are really fast. Your files can be restored through the web interface or the Windows Explorer while the backups of drive volumes can be restored with a bootable CD or USB-Stick (bare metal restore). A web interface makes setting up your own backup server really easy.

Bookmarks for 7 ago 2014 from 09:19 to 13:34

These are my links for 7 ago 2014 from 09:19 to 13:34:

  • Orabig/Sbire – Sbire is a set of scripts whose aim is to help deploy, modify and maintain remote NRPE scripts.
  • raspbian – How do I reset a USB device using a script? – Raspberry Pi Stack Exchange – I have a USB GSM modem that does not alwasys work property (Huawei E367u-2) Sometimes it gets reset (USB device disconnect/reconnect in logs) and when it comes back up, it's has different ttyUSB numbers. Sometimes on boot, usb_modswitch seems to just not get fired. The computer is a Raspberry Pi running Raspbian. I have a simple solution to this, every minute CRON runs the following script
  • redirect_blame/Readme.md at gh-pages · will/redirect_blame – Zero-downtime deploys are hard. Why bother when you can trick your users into thinking their internet is a little flaky? They'll keep refreshing until your deploy is over. Set this as your error page, and your users will see an error page that looks like their browser is having some trouble.

Bookmarks for 15 mag 2014 through 2 giu 2014

These are my links for 15 mag 2014 through 2 giu 2014:

  • Babun | A windows shell you will love! – Would you like to use a linux-like console on a Windows host without a lot of fuzz? Try out babun!
  • OpenSSH – Wikibooks, open books for an open world – The OpenSSH suite provides secure remote access and file transfer. Since its initial release, it has grown to become the most widely used implementation of the SSH protocol. During the first ten years of its existence, ssh has largely replaced older corresponding unencrypted tools and protocols. The OpenSSH client is included by default in most operating system distributions, including OS X, Linux, BSD and Solaris. Any day you use the Internet, you are using and relying on dozens if not hundreds of machines operated and maintained using OpenSSH. A survey in 2008 showed that of the SSH servers found running, just over 80% were OpenSSH. [1] OpenSSH was first released towards the end of 1999. It is the latest step in a very long and useful history of networked computing, remote access and telecommuting. This book is for fellow users of OpenSSH to help them save effort and time through using OpenSSH, and especially SFTP, where it makes sense to use it.
  • ssl-cert-check » Linux Shtuff – […] Digital certificates have become an essential part of Internet commerce, and are widely used to verify the identity of clients and servers. All digital certificates contain an expiration date which most client and server applications will check before using the certificates contents. If a client or server application detects that a certificate has expired, one or more implementation specific actions (e.g., abort connection, check or update a revocation list, alert user, etc.) are typically performed.[…]

Bookmarks for 28 mar 2014 through 29 mar 2014

These are my links for 28 mar 2014 through 29 mar 2014:

  • LDAP org chart | bitcube.co.uk – For centralised authentication and authorisation, LDAP is the de-facto standard. Whether in its pure form on Unix or in Active Directory guise on Windows, everyone uses it. What many people don't realise is that you can store all sorts of useful (and not so useful) information in LDAP. One field which can be useful is the "manager" attribute. One of our customers use that and so we've written a small script to graph it using the excellent Graphviz tool. It will probably need customising for specific cases, however we hope that people find it useful nonetheless. If you want to alter the output, do have a look at the record format documentation.
  • Puppet errors explained | bitcube.co.uk – Puppet is a wonderful system automation tool, however the learning curve can be a little steep. We've collected some of the errors messages and "strange" behaviour you may come across together with explanations to help overcome these hurdles and boost adoption of this fabulous tool. If you have any useful errors and explanations, please do send them in and we'll update this article.
  • SCAP: Guide To The Secure Configuration of Red Hat Enterprise Linux 5 – This guide has been created to assist IT professionals, in effectively securing systems with Red Hat Enterprise Linux 5.
  • DNS Load Balancing and Using Multiple Load Balancers in the Cloud – […] Load balancing in general is a complicated process, but there's some secret sauce in managing DNS along with multiple load balancers in the cloud. It requires that you draw from a few different sets of networking and “cloudy” concepts. In this second article in my best practices series (my first post covered how to use credentials within RightScale for storing sensitive or frequently used values), I'll explain how to set up load balancers to build a fault-tolerant, highly available web application in the cloud. Here's what you’ll need: Multiple A records for a host name in the DNS service of your choice Multiple load balancers to protect against failure […]
  • gdnsd – gdnsd is an Authoritative-only DNS server which does geographic (or other sorts of) balancing, redirection, weighting, and service-state-conscious failover at the DNS layer. gdnsd is written in C using libev and pthreads with a focus on high performance, low latency service. It does not offer any form of caching or recursive service, and notably does not support DNSSEC. There's a strong focus on making the code efficient, lean, and resilient. The code has a decent regression testsuite with full branch coverage on the core packet parsing and generation code, and some scripted QA tools for e.g. valgrind validation, clang-analyzer, etc. The geographically-aware features also support the emerging EDNS Client Subnet draft for receiving more-precise network location information from intermediate shared caches.