-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
-
Comprendre la redirection de port (Port Forwarding)
October 17, 2016 04:44:28 PM GMT+02:00 * - permalink -ssh -L port-local:HOSTNAME:port-distant machine-distanteje cherche tjs cette fucking commande
- http://www.linux-france.org/prj/edu/archinet/systeme/ch13s04.html
-
![thumbnail]()
-
![thumbnail]()
arkenio/gogeta: Reverse proxy based on etcd hierarchy
October 17, 2016 10:40:02 AM GMT+02:00 * - permalink -ça peut être bien puissant avec un haproxy devant et un kubernetes / etcd derrière
- https://github.com/arkenio/gogeta
-
![thumbnail]()
-
![thumbnail]()
-
Note: mitm call app https - Arnaud's links
October 13, 2016 02:54:10 PM GMT+02:00 * - permalink -via blue
ngrep pas glop quand https, du coup : sudo apt install mitmproxy mitmdump -v -d Dans l'application, configurer la lib (curl ou autre..) pour utiliser un proxy http/https sur 127.0.0.1:8080 (mitmdump écoute sur ce port) ou bien plus violent : sysctl -w net.ipv4.ip_forward=1 iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080 iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8080 Dans tous les cas, la lib va raler car certif pas ok : utiliser insecure si possible dans l'app ou bien generer certif et le trust au niveau de l'os à partir de là on peut voir les call/response avec mitmdump- https://infomee.fr/links/?NTFdDw
-
![thumbnail]()
-
Runnablog — Distributing Docker Cache across Hosts
October 13, 2016 09:37:45 AM GMT+02:00 * - permalink -des tartes dans la gueule qui se perdent
- http://blog.runnable.com/post/145362675491/distributing-docker-cache-across-hosts
-
Automatic check of expiration date of certificatesKoen Van Impe – vanimpe.eu
October 12, 2016 05:25:15 PM GMT+02:00 * - permalink -#!/usr/bin/python # # Check Expiration Date of SSL certificates # # Koen Van Impe # # Uses the file ceds.checks as input ; one entry per line, format <host>:<port> # # ceds.checks : www.google.com:443 # imap.mydomain.tld:993 # from OpenSSL import SSL import socket, datetime import smtplib from email.mime.text import MIMEText servers_to_check = "ceds.checks" alert_days = 5 mail_rcpt = "<>" mail_from = "<>" mail_server = "127.0.0.1" servers = open( servers_to_check, "r") cur_date = datetime.datetime.utcnow() response = "" cert_tested = 0 for line in servers: host = line.strip().split(":")[0] port = line.strip().split(":")[1] try: context = SSL.Context(SSL.SSLv23_METHOD) sock = SSL.Connection(context, socket.socket(socket.AF_INET, socket.SOCK_STREAM)) try: sock.connect( (str(host) , int(port)) ) sock.send("\x00") # Send empty to trigger response get_peer_cert=sock.get_peer_certificate() sock.close() exp_date = datetime.datetime.strptime(get_peer_cert.get_notAfter(),'%Y%m%d%H%M%SZ') days_to_expire = int((exp_date - cur_date).days) cert_tested = cert_tested + 1 if days_to_expire < 0: response = response + "\n %s : %s EXPIRED" % (host, port) elif alert_days > days_to_expire: response = response + "\n %s : %s expires in %s dayes " % (host, port, days_to_expire) #else: #response = response + "\n %s : %s OK" % (host,port) except: response = response + "\n Unable to connect to %s : %s " % (host, port) except SSL.Error,e: print e if response: response = response + "\n\nTotal certificates tested : %s \n" % cert_tested try: message = MIMEText( response ) message["Subject"] = "Certificate check %s " % cur_date message["From"] = mail_from message["To"] = mail_rcpt smtpObj = smtplib.SMTP( mail_server ) smtpObj.sendmail(mail_from, mail_rcpt, message.as_string()) smtpObj.quit() except smtplib.SMTPException: print "Unable to send mail"en modifiant ça, je vias l'intégrer à mon prometheus. Merci l'open source :D
- https://www.vanimpe.eu/2014/04/28/automatic-check-expiration-date-certificates/
-
![thumbnail]()
-
Ulterius Progress Report: September 2016
October 11, 2016 09:58:39 AM GMT+02:00 * - permalink -lel un cron pour windows (entre autres)
- https://blog.ulterius.io/ulterius-progress-report-september-2016/
-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
