Links

Upgrade database failed after ugrade to Zabbix 5...

Upgrade database failed after ugrade to Zabbix 5… Upgrade Zabbix (4.0, 4.2, 4.4) to 5.0 / 5.2 | Step by Step Guide

Monday, May 3, 2021 Read

High Performance Go Workshop

Wednesday, April 28, 2021 Read

Bypass X-Frame-Options with Nginx

Bypass X-Frame-Options with Nginx The X-Frame-Options HTTP response header tells the browser whether a page can be displayed inside <frame>, <iframe>, <embed>, or <object>. Sites can prevent clickjacking by ensuring their pages are not embedded elsewhere. By using Nginx as a forward proxy, we can bypass X-Frame-Options and embed a third-party page in our own page. X-Frame-Options has three possible values: deny: the page cannot be displayed in a frame, even on the same origin. sameorigin: the page can be displayed in a frame on the same origin. allow-from uri: the page can be displayed in a frame only from the specified origin. When Chrome tries to load frame content and X-Frame-Options denies it, the console shows an error like: Refuse to display 'http://192.168.20.101:8080' in a frame because it set 'X-Frame-Options' to 'deny'.

Monday, April 26, 2021 Read

Setting up JWT Authentication

Setting up JWT Authentication Nginx 实现 JWT 验证-基于 OpenResty 实现

Friday, April 23, 2021 Read

SSH failing with Error : fatal: daemon() failed: No such device

SSH failing with Error : fatal: daemon() failed: No such device /var/log/secure Oct 10 10:58:05 vps sshd[23799]: fatal: daemon() failed: No such device # rm -vf /dev/null removed `/dev/null` -bash-3.2# mknod /dev/null c 1 3 Started SSH and the SSH started responding: # service sshd restart Stopping sshd: [ OK ] Starting sshd: [ OK ] -bash-3.2# service sshd status openssh-daemon (pid 30608) is running…

Thursday, March 4, 2021 Read

Enable GitLab project integration: Mattermost slash commands

Thursday, January 28, 2021 Read

Nginx SSL/TLS configuration with TLSv1.2 and TLSv1.3 - ECDHE and strong ciphers suite (Openssl 1.1.1)

Nginx SSL/TLS configuration with TLSv1.2 and TLSv1.3 - ECDHE and strong ciphers suite (Openssl 1.1.1) ssl.conf ## # SSL Settings (TLSv1.2 and TLSv1.3) ## ssl_protocols TLSv1.2 TLSv1.3; ssl_ciphers 'TLS13+AESGCM+AES128:EECDH+AES128'; ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:50m; ssl_session_timeout 1d; ssl_session_tickets off; ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1 universal-ssl.conf ## # SSL Settings (TLSv1.0 + TLSv1.1 + TLSv1.2 + TLSv1.3) ## ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3; ssl_ciphers 'TLS13+AESG+AES128:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES25GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:DHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-R-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-S:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS'; ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:50m; ssl_session_timeout 1d; ssl_session_tickets off; ssl_ecdh_curve X25519:sect571r1:secp521r1:secp384r1;

Friday, January 22, 2021 Read

Let Zsh read macOS system proxy settings and set env vars

Let Zsh read macOS system proxy settings and set env vars $ system_profiler SPNetworkDataType # get full network configuration $ networksetup -listallnetworkservices # list all network services $ networksetup -getwebproxy Wi-Fi # get system proxy settings for a specific service $ scutil --proxy # get enabled proxy settings (wrapper for system_profiler)

Monday, January 11, 2021 Read

WSL 2 .wslconfig configuration explained

WSL 2 .wslconfig configuration explained Release Notes for Windows Subsystem for Linux | Microsoft Docs - Build 18945 Install WSL 2 on Windows 10 Build a multi-Linux development environment with WSL 2 Steps to install WSL 2: Join the Windows Insider Program (required) Enable required WSL components Install a Linux distribution Set the Linux distribution to use WSL 2 WSL 2 troubleshooting: compressed virtual disk files cannot be converted to the WSL 2 architecture Install and start Docker Install Docker Desktop v2.2.1.0 # Enable required WSL components dism.exe /online /enable-feature /featurename:Microsoft-Windows-Subsystem-Linux /all /norestart dism.exe /online /enable-feature /featurename:VirtualMachinePlatform /all /norestart # Set the Linux distribution to WSL 2 wsl --set-version ubuntu 2 wsl --set-default-version 2 Edit %UserProfile%\.wslconfig

Wednesday, December 30, 2020 Read

Day 19 BGP Protocol (1)

Day 19 BGP Protocol (1) Day 20 BGP Protocol (2)

Wednesday, December 30, 2020 Read

Style PowerShell with oh-my-posh

Style PowerShell with oh-my-posh # This downloads and installs the posh-git and oh-my-posh modules from PowerShell Gallery. # The former shows Git info in the prompt, and the latter provides the themes. Install-Module posh-git -Scope CurrentUser Install-Module oh-my-posh -Scope CurrentUser # Next, edit the PowerShell profile loaded at startup. In PowerShell, $PROFILE shows the current # user's profile path. The file may not exist; run the commands below to create it and open it. if (!(Test-Path -Path $PROFILE )) { New-Item -Type File -Path $PROFILE -Force } notepad $PROFILE Add the following commands to the profile file:

Thursday, December 10, 2020 Read

An introduction to hacker tools: the tip of the iceberg

An introduction to hacker tools: the tip of the iceberg [Hacker Tools Day10] Web security testing - Burp Suite [Hacker Tools Day11] Website path traversal - DirBuster [Hacker Tools Day12] Password brute force - Hydra [Hacker Tools Day13] Password wordlist generator - crunch [Hacker Tools Day16] Penetration tool - Metasploit [Hacker Tools Day18] Windows password extraction tool - mimikatz [Hacker Tools Day25] CTF exploit Python library - pwntools

Tuesday, December 8, 2020 Read