-
Notifications
You must be signed in to change notification settings - Fork 0
/
ideas.txt
227 lines (158 loc) · 9.42 KB
/
ideas.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
lets setup open web Analytics
CSP in the way...
open up csp and move owa to http -> can't have mixed content on site
try subdomain owa.viktorbarzin.me
try routing /owa path
certbot create new wildcard certificate
owa try with firefox
https://github.com/padams/Open-Web-Analytics/issues/71
------------------------------
Red is Dead
elasticsearch shard issues
https://thoughts.t37.net/how-to-fix-your-elasticsearch-cluster-stuck-in-initializing-shards-mode-ce196e20ba95
https://www.elastic.co/guide/en/elasticsearch/reference/current/indices-update-settings.html
https://discuss.elastic.co/t/default-number-of-replicas-for-new-indices/22612/3
https://www.fpcomplete.com/blog/2018/04/recover-your-elasticsearch
------------------------------
lets encrypt wildcard cert renewal operation
https://community.letsencrypt.org/t/how-to-specify-subject-name-on-san/52270
https://en.wikipedia.org/wiki/Wildcard_certificate
----------------------------------------
git story - rebasing and git-fu
rewriting history
https://git-scm.com/book/en/v2/Git-Tools-Rewriting-History
undoing, fixing or removing commits in git
https://sethrobertson.github.io/GitFixUm/fixup.html
show full hhistory of file
https://stackoverflow.com/questions/7203515/git-how-to-find-a-deleted-file-in-the-project-commit-history/7203551
git log --all --full-history -- **/thefile.*
changing commit dates
https://codewithhugo.com/change-the-date-of-a-git-commit/
git filter-branch delete file form entire History
https://help.github.com/articles/removing-sensitive-data-from-a-repository/
git filter-branch --force --index-filter \
'git rm --cached --ignore-unmatch PATH-TO-YOUR-FILE-WITH-SENSITIVE-DATA' \
--prune-empty --tag-name-filter cat -- --all
----------------------------------------
python selenium guide?
----------------------------------------
pulse audio network music streaming
https://blog.stigok.com/2018/09/17/pi-pulseaudio-network-stream-audio-linux.html
https://askubuntu.com/questions/151216/how-can-i-force-the-rediscovery-of-pulseaudio-virtual-sound-devices
https://www.raspberrypi.org/forums/viewtopic.php?t=11124
https://blogs.gnome.org/ignatenko/2015/07/31/how-to-set-up-network-audio-server-based-on-pulseaudio-and-auto-discovered-via-avahi/
https://wiki.archlinux.org/index.php/PulseAudio/Examples#PulseAudio_over_network
https://www.willprice.org/2013/05/10/pulseaudio-network-streaming.html
https://www.freedesktop.org/wiki/Software/PulseAudio/Documentation/User/Modules/#index22h3
https://raspberrypi.stackexchange.com/questions/11735/using-pi-to-stream-all-audio-output-from-my-pc-to-my-stereo
----------------------------------------
twitter cards
add twitter: meta tags
validator fails - https://cards-dev.twitter.com/validator
curl fails to validate certificate, maybe that's the issue?
update and replace certificate
still issues
cat fullchain.pem privkey.pem > viktorbarzin.me.pem - and done, it was supposed to work this way initially but something has gone wrong
----------------------------------------
kdeconnect + youtube-dl + python clap detection = profit
youtube-dl docs on string formatting
https://github.com/rg3/youtube-dl/blob/master/README.md#output-template-examples
bash traps to kill all children on script exit
http://tldp.org/LDP/Bash-Beginners-Guide/html/sect_12_02.html
bash formatting numbers in for loop
https://stackoverflow.com/questions/8789729/how-to-zero-pad-a-sequence-of-integers-in-bash-so-that-all-have-the-same-width
xargs weird behaviour
https://stackoverflow.com/questions/199266/make-xargs-execute-the-command-once-for-each-line-of-input#comment45908536_199270
bash $SECONDS variable to time
https://stackoverflow.com/questions/8903239/how-to-calculate-time-difference-in-bash-script
bash number comparison
https://stackoverflow.com/questions/18668556/comparing-numbers-in-bash
python clap detector
https://stackoverflow.com/questions/4160175/detect-tap-with-pyaudio-from-live-mic
https://github.com/xSparfuchs/clap-detection/blob/master/clap-detection.py
pyaudio library to connect to alsa
https://pypi.org/project/PyAudio/
-------------------- Future work --------------------
vlc-ctrl - control vlc over dbus for more advanced instructions
https://pypi.org/project/vlc-ctrl/
control media players cli
https://www.ostechnix.com/control-media-players-commandline-linux/
pactl set default sink
https://askubuntu.com/questions/71863/how-to-change-pulseaudio-sink-with-pacmd-set-default-sink-during-playback
playerctl
https://github.com/acrisci/playerctl
----------------------- Tracking pixels -----------------
----------------------- LaFortuna DuckyScript -----------------------
atmel usb keyboard demo wandering
keyboard_task.c - Usb_write_byte
usb_keys - list of keys to be send
_delay_ms to wait for initializing on the host
python to parse DuckyScript and create usb_keys array
Usb_write_byte modifier keys
bitwise or to send multiple modifiers
_delay_ms requires constant sleep time - so loop constant times :P
https://www.avrfreaks.net/forum/error-1-builtinavrdelaycycles-expects-integer-constant
----------------------- automating certificate renewals on viktorbarzin.me-----------------------
----------------------- thyme for activity tracking-----------------------
https://github.com/sourcegraph/thyme
----------------------- vscode for latex dev-----------------------
----------------------- fix security onion and improve logging on vpn clients only-----------------------
pcaps in /nsm/sensor_data/so-ens36/dailylogs
----------------------- zabbix monitoring vmware -----------------------
http://mjmohebbi.com/en/blog/How-to-monitor-your-VMware-vSphere-infrastructure-using-Zabbix-&-Grafana
https://www.zabbix.com/documentation/3.4/manual/vm_monitoring
https://techexpert.tips/zabbix/zabbix-monitor-vmware-esxi/
----------------------- Cracking Mifare cards for fun -----------------------
http://www.cs.ru.nl/~rverdult/Ciphertext-only_Cryptanalysis_on_Hardened_Mifare_Classic_Cards-CCS_2015.pdf - hardnested attack
https://github.com/vk496/mfoc/tree/hardnested - mfoc with hardnested attack
----------------------- Docker secrets sharing with multi-staged builds -----------------------
multi-stage builds
put secret as ARG with the docker build command
use another base image as final
gpg in docker - https://www.rzegocki.pl/blog/how-to-make-gnupg2-to-fall-in-love-with-docker/
dockerhub build hooks - https://docs.docker.com/docker-hub/builds/advanced/#custom-build-phase-hooks
----------------------- Migrting to Terraform and K8s -----------------------
https://www.haproxy.com/blog/dissecting-the-haproxy-kubernetes-ingress-controller/
https://kubernetes.github.io/ingress-nginx/deploy/baremetal/
https://metallb.universe.tf/
volumio wireguard
volumio uses custom kernel
volumio kernelsource to get headers
openwrt edit /etc/config/firewall to allow from lan to vpn
https://forum.volumio.org/kernel-header-files-t5146.html
https://engineerworkshop.com/2020/02/20/how-to-set-up-wireguard-on-a-raspberry-pi/
https://blog.levine.sh/14058/wireguard-on-k8s-road-warrior-style-vpn-server
https://medium.com/@juniarto.samsudin/ip-address-changes-in-kubernetes-master-node-11527b867e88
https://medium.com/@jmarhee/configuring-and-managing-routes-between-multiple-networks-with-wireguard-61ad995c887c
https://unix.stackexchange.com/questions/290987/resolving-hostname-takes-5-seconds
MTU issues with wireguard - ask mailing list
flashing volumio over the network
https://github.com/alssndro/page-scroll-indicator
https://medium.com/@subtlepseudonym/pi-hole-on-kubernetes-87fc8cdeeb2e
https://matthewpalmer.net/kubernetes-app-developer/articles/kubernetes-networking-guide-beginners.html
----------------------- Getting latest updates on fedora -----------------------
https://utcc.utoronto.ca/~cks/space/blog/linux/FedoraBodhiGetPackages
----------------------- Letsencrypt Renew -----------------------
https://runnable.com/blog/how-to-use-lets-encrypt-on-kubernetes
cannot renew wildcard with https - https://community.letsencrypt.org/t/wildcard-certificates-and-http-challenge/102060
bind with letsencrypt - https://www.vcloudnine.de/using-lets-encrypt-dns-01-challenge-validation-with-local-bind-instance/
----------------------- Share NAS securely -----------------------
1st idea: just use k8s as pivot
issue: k8s cannot access 192.168.1.1/24 net bc it's hidden behind wireguard pod
2nd idea: k8s redirect similar to f1.viktorbarzin.me
nas overwrites nginx config on service reload
let's use nginx on rpi then!
nginx proxy_pass to https backend
issue is that nginx needs certs or client ---http--- rpi --https---nas which is insecure
tcp stream nginx? nah can't secure login
use nginx to allow only /sharing path and it's dependencies
add $request_uri to ingress to silently insert the new port
----------------------- iDRAC snmp prometheus-----------------------
idrac prometheus yaml - https://github.com/urosorozel/snmp_monitoring/blob/master/snmp_exporter/snmp.yml
idrac mib - https://github.com/urosorozel/snmp_monitoring
temperature in tenths - http://oidref.com/1.3.6.1.4.1.674.10892.5.4.700.20.1.6
temperature probe type - http://www.circitor.fr/Mibs/Html/I/IDRAC-MIB.php
add a label - https://albersdevelopment.net/2019/08/28/prometheus-adding-a-label-to-a-target/
join 2 metrics - https://stackoverflow.com/questions/44461801/how-can-i-join-two-metrics-in-a-prometheus-query
prometheus relabeling presentation - https://www.slideshare.net/roidelapluie/taking-advantage-of-prometheus-relabeling-109483749
----------------------- Auto renew lets encrypt on k8s -----------------------