cat /proc/bus/input/devices
dmesg | grep usb

curlftpfs ftpuser:pass@location /mnt/mountpoint

xrandr -q | grep 'VGA-1 connected' && xrandr --output LVDS-1 --off --output VGA-1 --auto

mount -t cifs //server-name/share-name /mnt/cifs -o username=shareuser,password=sharepassword,domain=

http://www.thegeekstuff.com/2013/01/mount-umount-examples/
[Improving Performance]

Dstat - http://dag.wieers.com/home-made/dstat/#screenshot

Sysstat - http://www.maketecheasier.com/monitor-linux-performance-with-sysstat/2012/05/15

Ifstat - http://linux.softpedia.com/get/System/Networking/ifstat-14020.shtml

Sysctl -  When it comes to actual performance tuning, you'll want to know sysctl. The sysctl utility is actually used to configure kernel parameters stored in /proc/sys/. The parameters will change with each kernel version, and how it's configured. To see all the parameters that are available, run sysctl -a, or sysctl -a | sort if you want them alphabetically.

It should go without saying that if you're going to tweak these settings you should either be working on a test system, or be quite sure what you're doing. Or both. Preferably both.

To change one of the parameters, run sysctl -w key.value="newvalue". Note that this will only hold the change until the next time the system is rebooted. To make a setting permanent, you can add it to /etc/sysctl.conf.

sudo echo [[ -z $DISPLAY && $XDG_VTNR -eq 1 ]] && exec startx >> /etc/zsh/zprofile

cp /etc/skel/.xinitrc ~
echo exec i3 >> ~/.xinitrc

/etc/X11/xorg.conf OR /etc/X11/xorg.conf.d/00-keyboard.conf
Section "InputClass"
          Identifier "keyboard-all"
          Driver "evdev"
          Option "XkbLayout"    "us,bg"
      Option "XkbVariant"   "intl,phonetic"
          Option "XkbOptions"   "grp:alt_shift_toggle,grp_led:scroll"
          MatchIsKeyboard "on"
EndSection

/etc/X11/xorg.conf.d/50-synaptics.conf
Section "InputClass"
        Identifier "touchpad catchall"
        Driver "synaptics"
        MatchIsTouchpad "on"
        Option "TapButton1" "1"
        Option "VertEdgeScroll" "1"
        Option "HorizEdgeScroll" "1"
EndSection

feh --bg-scale /path/to/image.file

echo sh ~/.fehbg & >> ~.xinitrc

~/.config/vlc/vlcrc

# Demux module (string)
demux=any

# Demux module (string)
demux=

mkdir /etc/acpi/local
vim /etc/acpi/local/lid.sh.post

 #!/bin/bash
 if grep -q closed /proc/acpi/button/lid/*/state
 then
     DISPLAY=:0.0 su $USER -c /usr/bin/i3lock
     /usr/sbin/pm-suspend
 fi

tune2fs -l /dev/sda1 | grep 'Filesystem created:'

sudo swapoff -a
sudo swapon -a

For testing, you can just write to the proper pseudo-file in /proc/sys/vm/, which will be undone on the next reboot:

echo 1 | sudo tee /proc/sys/vm/oom_kill_allocating_task

For a permanent fix, write the following to /etc/sysctl.conf or to a new file under /etc/sysctl.d/, with a .conf extension (/etc/sysctl.d/local.conf for example):

vm.oom_kill_allocating_task = 1

ulimit -a
/etc/security/limits.conf

https://wireless.wiki.kernel.org/en/users/documentation/iw
getting device capabilities  -> iw list
scanning                     -> iw dev wlan0 scan
listen to events             -> iw event -t(iming) -f(assoc/dissassoc/deauth)
getting link status          -> iw dev wlan0 link
establish a basic connection -> iw wlan0 connect foo freq keys
getting station statistics   -> iw dev wlan0 station dump
modifying TX legacy bitrate  -> iw wlan0 set bitrates legacy-2.4(band) 12 18 24
modifying TX HT MCS bitrate  -> iw dev wlan0 set bitrates mcs-5(band) 4
settintg TX power            -> iw dev <devname> set txpower <auto|fixed|limit> [<tx power in mBm>]
                             -> iw dev <phyname> set txpower <auto|fixed|limit> [<tx power in mBm>]
get power save               -> sudo iw dev wlan0 set power_save
set power save on/off        -> sudo iw dev wlan0 set power_save on
adding interfaces            -> iw phy phy0 interface add moni0 type mnitor|managed|mesh|wds|ibss
deleting interface           -> iw dev wlan0 del

df -m | awk ' NR>1 {print $2}' | paste -s -d '+' | awk '{print "("$0")/1024"}'

sshfs -o allow_other root@server:/home/whatever /mnt/mountpoint/

sudo mount.cifs -o uid=$UID //server/share /mnt/mountpoint

lspci | grep -i audio
Find the correct folder
find /sys/devices -name "*01:00.1*"
/sys/devices/pci0000:00/0000:00:01.0/0000:01:00.1/remove

And add this to the /etc/rc.local
echo 1 > echo 1 > /sys/devices/pci0000:00/0000:00:01.0/0000:01:00.1/remove

ssh -C2qTnN -D 8080 root@192.168.0.1 -p 371
Configure Firefox to socks5 listen on 8080

wmctrl -l <-- get window id
wmctrl -i -r window_id -b toggle,maximized_vert,maximized_horz

ip link add link enp0s25 name eth0.100 type vlan id 100
ip -d link show eth0.100
ip addr add 192.168.100.1/24 brd 192.168.100.255 dev eth0.100
ip link dev eth0.100 up
ip link delete eth0.100 // removes the device

sed '/pattern to match/d' ./file

:update-cache -f
To update only marked / selected files regardless of modification time
:win-update-cache -f

SHOW VARIABLES WHERE Variable_Name LIKE "%dir";

SELECT USER,HOST from mysql.user;

SHOW grants for '<user>'@'localhost';

CREATE DATABASE <database_name>;

CREATE USER '<user>'@'localhost' IDENTIFIED BY '<password>';
GRANT ALL PRIVILEGES ON <database_name> . * TO '<user>'@'localhost';
FLUSH PRIVILEGES;

DROP USER '<user>'@'localhost';
FLUSH PRIVILEGES;

mysqldump -u root -p <database_name>  > dumpfilename.sql

mysql -u root -p<root_password> <database_name> < dumpfilename.sql

export  SSH_AUTH_SOCK=/tmp/ssh-tqiEl28473/agent.28473

tar -ztvf file.tar.gz
tar -jtvf file.tar.bz2

tar -cvzf tarballname.tar.gz itemstocompress

tar -xzvf tarballname.tar.gz -C /target/directory

debug2: channel 0: open confirm rwindow 0 rmax 32768

A problem can arise when you are trying to connect from behind a NAT router using OpenSSH. During session setup, after the password has been given, OpenSSH sets the TOS (type of service) field in the IP datagram. Some routers are known to choke on this. The fix is to make ssh send all its traffic via netcat, because netcat won't set the TOS field.

Test if nc resolves issue
-------------------------
ssh -o "ProxyCommand nc %h %p" {user-name}@server
If yes, then add: ProxyCommand nc %h %p to /home/.ssh/config

setfacl -R -m u:user:rwx /var/www/folder
Set sticky bit add user to group that has ownership of folder
chmod -R g+s /var/www/folder; usermod -a -G groupowner username

uname -r    <-- to determine the one in use
sudo rm -rf /usr/src/linux-headers-3.13.1-{37,39,41,43,44,46,48}{,generic}
sudo rm -rf /lib/modules/3.13.0-{37,39,41,43,44,46,48}*
sudo rm -rf /boot/*-3.13.0-{37,39,41,43,44,46,48}-generic
apt-get -f install
apt-get purge linux-{headers,image}-3.13.0-{37,39,41,43,44,46,48}.*

wpa_supplicant -D nl80211,wext -i wlan0 -c <(wpa_passphrase "your_SSID" "your_key")

setfont LatArCyrHeb-16

visudo
Defaults    env_keep+=SSH_AUTH_SOCK

openssl s_client -connect imap.example.com:993
a1 LOGIN username password
a2 LIST "" "*"
a3 EXAMINE INBOX
a4 FETCH 1 BODY[]
a5 LOGOUT

cat /proc/mdstat
mdadm --detail /dev/mdX
mdadm -E /dev/sda1
mdadm -Q /dev/sda1
mdadm -D /dev/sda1

mdadm --stop /dev/mdX

mdadm --manage /dev/mdX --fail /dev/sdXX
mdadm --manage /dev/mdX --remove /dev/sdXX
sfdisk -d /dev/sdY | sfdisk /dev/sdX
mdadm --manage /dev/mdX --add /dev/sdXX

mdadm --examine --scan >> /etc/mdadm/mdadm.conf

mdadm --create --verbose /dev/mdX --level=1 --name=name:1 --raid-devices=2 /dev/sdaX /dev/sdbY

mdadm --assemble --scan

mdadm --add /dev/md0 /dev/sdf1
mdadm --grow --raid-devices=5 --backup-file=/root/grow_md0.bak /dev/md0
umount /dev/md0
e2fsck -f /dev/md0
resize2fs /dev/md0

opkg install kmod-nf-nathelper-extra

ps -ylC apache2 | awk '{x += $8;y += 1} END {print "Apache Memory Usage (MB): "x/1024; print "Average Process Size (MB): "x/((y-1)*1024)}'

vim /etc/systemd/system.conf
vim /etc/security/limits.conf

on recv side: nc -l -p 7000 | tar x
on send site: tar cf - * | nc 192.168.0.2 7000

rsync -ru --owner=www-data --group=www-data --rsync-path="sudo rsync" --chown=www-data:www-data --progress --stats --human-readable ./testfile01.txt -e "ssh -p 2222" user@host:/home/user/

lxc-attach --elevated-privileges -n <container_name>

1. Shutdown the VM
2. lvresize -L+10G /dev/vgvirt/test
3. Boot VM with systemrescuecd
4. Use fdisk to delete and create partitions anew
5. Resize the PV -- pvresize /dev/vda5
6. Resize the LV -- lvextend -l +100%FREE /dev/mapper/test-vg--root
7. Resize FileSystem -- resize2fs /dev/mapper/test-bg--root

losetup /dev/loop0 /dev/mapper/vgvirt-test
kpartx -a /dev/loop0
mount /dev/mapper/loop0p1 /mnt

When down
dmsetup info
dmsetup remove loop0p1

Alternative way is to specify direct offset to partition:

mount image.img /mnt/image -o loop,offset=32256

To mount qcow2 images there is (at least in F-11 qemu) very useful qemu-nbd util. It shares image through kernel network block device protocol and this allows to mount it:

modprobe nbd max_part=63
qemu-nbd -c /dev/nbd0 image.img
mount /dev/nbd0p1 /mnt/image

If LVM is present on image it could be initialized with:

vgscan
vgchange -ay
mount /dev/VolGroupName/LogVolName /mnt/image

Finishing is done with (depending on how it was initalized):

umount /mnt/image
vgchange -an VolGroupName
killall qemu-nbd
kpartx -d /dev/loop0
losetup -d /dev/loop0

OR

modprobe nbd max_part=8
qemu-nbd --connect=/dev/nbd0 /home/dragast/disk2.qcow2
fdisk /dev/nbd0 -l
mount /dev/nbd0p1 /mnt/somepoint/
umount /mnt/somepoint/
qemu-nbd --disconnect /dev/nbd0

ssh -oHostKeyAlgorithms=ssh-dss -oKexAlgorithms=diffie-hellman-group1-sha1 user@host

ldapsearch -h 127.0.0.1 -b "dc=example,dc=com" -x -D "cn=admin,dc=example,dc=com" -W "cn=*"
ldapsearch -D 'cn=admin,dc=example,dc=com' -W -x -b 'dc=example,dc=com' 'uid=*'

# Find people belonging to specific group
ldapsearch -x -W -H ldaps://<HOST> -D 'OU=Users,DC=example,DC=com' -b 'DC=example,DC=com' '(&(objectClass=person)(memberOf=CN=<<GROUP_NAME>>,OU=Groups,DC=example,DC=com))'

ldappasswd -h 127.0.0.1 -x -D "cn=admin,dc=example,dc=com" -W -S "uid=peter.petrov,ou=People,dc=example,dc=com"

ldapdelete -x -D "cn=admin,dc=example,dc=com" -W 'uid=kor,ou=People,dc=example,dc=com'

Let's add a schema. It will first need to be converted to LDIF format. You can find unconverted schemas in addition to converted ones in the /etc/ldap/schema directory.

It is not trivial to remove a schema from the slapd-config database. Practice adding schemas on a test system.

Before adding any schema, you should check which schemas are already installed (shown is a default, out-of-the-box output):

sudo ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b cn=schema,cn=config dn

dn: cn=schema,cn=config

dn: cn={0}core,cn=schema,cn=config

dn: cn={1}cosine,cn=schema,cn=config

dn: cn={2}nis,cn=schema,cn=config

dn: cn={3}inetorgperson,cn=schema,cn=config

he following example we'll add the CORBA schema.

Create the conversion configuration file schema_convert.conf containing the following lines:

include /etc/ldap/schema/core.schema
include /etc/ldap/schema/collective.schema
include /etc/ldap/schema/corba.schema
include /etc/ldap/schema/cosine.schema
include /etc/ldap/schema/duaconf.schema
include /etc/ldap/schema/dyngroup.schema
include /etc/ldap/schema/inetorgperson.schema
include /etc/ldap/schema/java.schema
include /etc/ldap/schema/misc.schema
include /etc/ldap/schema/nis.schema
include /etc/ldap/schema/openldap.schema
include /etc/ldap/schema/ppolicy.schema
include /etc/ldap/schema/ldapns.schema
include /etc/ldap/schema/pmi.schema

Create the output directory ldif_output.

Determine the index of the schema:

slapcat -f schema_convert.conf -F ldif_output -n 0 | grep corba,cn=schema

cn={2}corba,cn=schema,cn=config

When slapd ingests objects with the same parent DN it will create an index for that object. An index is contained within braces: {X}.

Use slapcat to perform the conversion:

slapcat -f schema_convert.conf -F ldif_output -n0 -H ldap:///cn={2}corba,cn=schema,cn=config -l cn=corba.ldif

The converted schema is now in cn=corba.ldif

Edit cn=corba.ldif to arrive at the following attributes:

dn: cn=corba,cn=schema,cn=config
...
cn: corba

Also remove the following lines from the bottom:

structuralObjectClass: olcSchemaConfig
entryUUID: 52109a02-66ab-1030-8be2-bbf166230478
creatorsName: cn=config
createTimestamp: 20110829165435Z
entryCSN: 20110829165435.935248Z#000000#000#000000
modifiersName: cn=config
modifyTimestamp: 20110829165435Z

Your attribute values will vary.

Finally, use ldapadd to add the new schema to the slapd-config DIT:

sudo ldapadd -Q -Y EXTERNAL -H ldapi:/// -f cn\=corba.ldif

adding new entry "cn=corba,cn=schema,cn=config"

Confirm currently loaded schemas:

sudo ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b cn=schema,cn=config dn

dn: cn=schema,cn=config

dn: cn={0}core,cn=schema,cn=config

dn: cn={1}cosine,cn=schema,cn=config

dn: cn={2}nis,cn=schema,cn=config

dn: cn={3}inetorgperson,cn=schema,cn=config

dn: cn={4}corba,cn=schema,cn=config

su - postgres
psql --username=postgres

openssl x509 -in certfile.crt -text -noout

openssl crl2pkcs7 -nocrl -certfile file.crt | openssl pkcs7 -print_certs -text -noout

btrfs fi show

btrfs fi df /mount/point

btrfs fi balance start -dusage=5 /mount/point

btrfs balance status /mountpoint
btrfs balance status /mountpoint

wget --cut-dirs=2 -r --no-host-directories --no-parent --reject "index.html*" -e robots=off https://<host>

lxc profile device add default eth1 nic nictype=bridged parent=br1

/etc/default/grub add cryptkey=rootfs:path to GRUB_CMDLINE_LINUX; aka GRUB_CMDLINE_LINUX=".. cryptkey=roofs:/file.bin"

lvcreate -L<size>G -s -n nameofbackup /dev/vgroup/volume

lvconvert --merge /dev/vgroup/snapshotname

/etc/sysconfig/network-scripts/ifcfg-devicename

virsh connect qemu:///system
virsh -c qemu:///system

virsh list

virsh dumpxml <guest_name>

virsh # attach-disk <guestname>  /dev/sdb9 vdj

su - postgres
/usr/lib/postgresql/9.3/bin/postgres -d 3 -D /var/lib/postgresql/9.3/main -c config_file=/etc/postgresql/9.3/main/postgresql.conf

ionice -c 2 find . -type d \( -name dev -o -name proc -o -name sys -o -name tmp -o -name run -o -name mnt -o -name media -o -name lost+found \) -prune -o -exec stat -c "%N %a %u %g" {} \; > /home/username/outfile.txt

grub rescue> ls
grub rescue> cryptomount -a
grub rescue> insmod normal
grub rescue> normal

netstat -tan | grep ':80 ' | awk '{print $6}' | sort | uniq -c

zpool import -m -R <mount location> <pool name>

mount --rbind /dev dev
mount --rbind /proc proc
mount --rbind /sys sys
env -i HOME=/root TERM=$TERM chroot . bash -l

eselect locale list
eselect locale <locale number>
source /etc/profile

find / -maxdepth 1 -type d -not -path "/" -not -path "/proc" -not -path "/dev" -not -path "/sys" -not -path "/run" -exec du -sh {} \;

namei -l </path/>

/usr/bin/clamscan --recursive --infected /srv/sites --move /home/clamav/infected -l /home/clamav/clamscan_$(date +%Y-%m-%d)

ldbsearch -H /var/lib/samba/private/sam.ldb '(objectclass=*)'

iostat -dmy 1

grep . /sys/block/sd*/queue/scheduler
echo [deadline,noop,cfq] > /sys/block/sda/queue/scheduler

*     *     *   *    *  <command to be executed>
-     -     -   -    -
|     |     |   |    |
|     |     |   |    +----- day of week (0 - 6) (Sunday=0)
|     |     |   +------- month (1 - 12)
|     |     +--------- day of month (1 - 31)
|     +----------- hour (0 - 23)
+------------- min (0 - 59)

lvresize -r -L +10G /dev/mapper/vg/lv

router#conf t
router(config)username root password <paswd>
router(config)#line vty 0 4
router(config-line)#login local

curl -v https://site.com --stderr - | grep "*  expire date:"

ssh -L 8888:10.0.0.1:22 root@10.0.0.11
        ^      ^     ^          ^
        |      |     |          \- hop through which to go through
        |      |     \- remote port
        |      \- remote IP
        \- local port

lxc config device add {containername} {foldername_inside} disk source={path/to/folder} path={path/inside/the/container}

lxc config device add {containername} {device name} unix-block path=/dev/mapper/vg/

knotc zone-begin lan.example.org
knotc zone-set lan.example.org lan.example.org. 3000 A 1.1.1.1
knotc zone-diff lan.example.org
knotc zone-commit lan.example.org
knotc zone-read lan.example.org

If ~/.ssh/ec2/primary.pem is a key generated by EC2 itself:
openssl pkcs8 -in ~/.ssh/ec2/primary.pem -nocrypt -topk8 -outform DER | openssl sha1 -c

If ~/.ssh/ec2/primary.pem is a private key you generated yourself and from which you created a public key and imported that into EC2:
openssl pkey -in ~/.ssh/ec2/primary.pem -pubout -outform DER | openssl md5 -c

curl -s --unix-socket /var/lib/lxd/unix.socket a/1.0/operations | jq .

curl -s --unix-socket /var/lib/lxd/unix.socket a/1.0/operations/008bc02e-21a0-4070-a28c-633b79a46517 | jq .

echo | openssl s_client -connect mail.site.com:465 2>/dev/null | openssl x509 -noout -dates

iscsiadm -m node --portal 10.0.0.1 --logout
iscsiadm -m session -P 1
iscsiadm -m discovery -t st -p 10.0.0.1

on recv side: nc -l 4444 > /dev/mapper/vg0-test
on send side: cat /dev/mapper/vgvirt-test | pv | nc 10.0.0.0 4444
copy and edit the .xml file (network, storage device)
restart libvirt: systemctl restart libvirtd.service

for container in `lxc list | awk 'NF > 1 {print $2}' | awk '(NR > 1) && (!/\|/) {print}'`; do lxc config show $container; done

for container in $(lxc list | awk '(NR > 2) && (NF > 1) {print $2}'); do lxc config show $container; done

# Add new disk to the system that can contain the expanded partition
# Copy the original disk layout to the new disk
sfdisk -d /dev/sdX > /tmp/orig_disk_partition_table
# sfdisk /dev/sdY < /tmp/orig_disk_partition_table
# Delete the partition and create it with the new size (if there is a SWAP partition after the root one, delete and recreate it as well)
# If partition starts at sector 63 instead of 2048, use compatability for DOS
fdisk /dev/sdY
d
n
p
1
+size
e2fsck -f /dev/sdY1
resize2fs /dev/sdY1
# If SWAP was recreated
mkswap /dev/sdY2
blkid
mount /dev/sdY1 /mnt
vim /etc/fstab # Edit the SWAP partition UUID
# Possibly regenerate the grub config
mount -t proc none /mnt/proc
mount -o bind /dev /mnt/dev
mount -t sysfs sys /mnt/sys
chroot /mnt/ /bin/bash
update-grub
/usr/sbin/grub-install --recheck --no-floppy /dev/sdY

# Explanation of Raid Levels:
['Primary-0, Secondary-0, RAID Level Qualifier-0'] = RAID-0
['Primary-1, Secondary-0, RAID Level Qualifier-0'] = RAID-1
['Primary-5, Secondary-0, RAID Level Qualifier-3'] = RAID-5
['Primary-6, Secondary-0, RAID Level Qualifier-3'] = RAID-6
['Primary-1, Secondary-3, RAID Level Qualifier-0'] = RAID-10

vim zonefile
rndc freeze ZONE in VIEW
rndc reload ZONE in VIEW
rndc thaw ZONE in VIEW

hpssacli ctrl slot=0 pd all show all

hpssacli ctrl slot=0 ld all show all

hpssacli ctrl slot=0 create type=ld drives=1I:1:1,1I:1:2 raid=1

hpssacli controller slot=0 licensekey 34T62-N84MB-7DQGY-G7XGT-YTQ63

hpssacli ctrl slot=0 create type=ld drives=1I:1:4 raid=0

hpssacli ctrl slot=0 ld 3 show detail

hpssacli ctrl slot=0 ld 3 show status

hpssaacli ctrl slot=0 rescan

hpssacli ctrl slot=1 ld 2 modify led=on
hpssacli ctrl slot=1 ld 2 modify led=off

hpssacli ctrl slot=0 show config detail

ssacli controller slot=0 ld 2 modify reenable forced

get data partition on to computer's disk and untar
intall app again from store
push app data from root adb
adb push data/com.fsck.k9/* /data/data/com.fsck.k9/
dumpsys package com.fsck.k9 | grep userId
chown -R $id:$id /data/data/com.fsck.k9/
restorecon -Rv /data/data/com.fsck.k9

hdparm -tT /dev/sdX

set-window-option -g mode-keys vi
Ctrl+B + [  // enter copy mode
Space       // Start selection
Enter       // End selection | Leave copy mode
Ctrl+B + ]  // Paste
bind-key -T copy-mode-vi 'v' send -X begin-selection
bind-key -T copy-mode-vi 'y' send -X copy-selection-and-cancel
set-option -g lock-command vlock // enable vlock for tmux
set-option -g lock-after-time 900 // Lock after 15 mins of inactivity

:for i from 2 to 12 do={ /routing filter set $i set-in-nexthop=1.1.1.1 }

vtysh
vtysh# conf t
(config)# router bgp <AS number>
(config-router)# neighbor <IP addr> shutdown
(config)#

clear bgp <neighbour IP>

cd /sys/fs/cgroup/memory/lxc && for i in $(echo */); do echo $i && cat $i/cgroup.procs; done

dmesg -n 4

Weak (MD5) hashes in certificate signature (SSL_CTX_use_certificate md too weak)
Starting with OpenSSL version 1.1, OpenSSL rejects weak signatures in certificates like MD5.

MD5 signatures are insecure and should not be used anymore. MD5 collisions can be created in few hours at a minimal cost.. You should update the VPN certificates as soon as possible.

Unfortunately, older easy-rsa distributions included the config option "default_md md5". If you are using an old easy-rsa version, update to the latest version) or change md5 to sha256 and regenerate your certificates.

If you really want to use old and broken certificates use the custom configuration option tls-cipher "DEFAULT:@SECLEVEL=0"

openssl x509 -in ca.crt -days 4650 -out ca_new.crt -signkey ca.key

bamboo_istall_dire$ ln -s atlassian-bamboo-X.Y/ current
vim /etc/init.d/bamboo

#!/bin/sh
set -e
### BEGIN INIT INFO
# Provides: bamboo
# Required-Start: $local_fs $remote_fs $network $time
# Required-Stop: $local_fs $remote_fs $network $time
# Should-Start: $syslog
# Should-Stop: $syslog
# Default-Start: 2 3 4 5
# Default-Stop: 0 1 6
# Short-Description: Atlassian Bamboo Server
### END INIT INFO
# INIT Script
######################################

# Define some variables
# Name of app ( bamboo, Confluence, etc )
APP=bamboo
# Name of the user to run as
USER=bamboo
# Location of application's bin directory
BASE=/opt/atlassian/bamboo/current

case "$1" in
  # Start command
  start)
    echo "Starting $APP"
    /bin/su - $USER -c "export BAMBOO_HOME=${BAMBOO_HOME}; $BASE/bin/startup.sh &> /dev/null"
    ;;
  # Stop command
  stop)
    echo "Stopping $APP"
    /bin/su - $USER -c "$BASE/bin/shutdown.sh &> /dev/null"
    echo "$APP stopped successfully"
    ;;
   # Restart command
   restart)
        $0 stop
        sleep 5
        $0 start
        ;;
  *)
    echo "Usage: /etc/init.d/$APP {start|restart|stop}"
    exit 1
    ;;
esac

exit 0
chmod a+x /etc/init.d/bamboo
update-rc.d bamboo defaults // For Debian
/sbin/chkconfig --add bamboo // For RedHat

echo ',,fd;' | sfdisk /dev/sdb

mount -t tmpfs -orw,nodev,nosuid,size=1G tmpfs /tmp/

\_s finds newline or space or tab: an underscore adds a newline to any character class

<div id="microformat">
<title>FreqGen - YouTube</title>
<link rel="canonical" href="https://www.youtube.com/channel/UCKTPHbGGXtZ8xKoRCx3Wj4Q">

mkdir -p .config/systemd/user
vim .config/systemd/user/ssh-agent.service

[Unit]
Description=SSH key agent

[Service]
Type=forking
Environment=SSH_AUTH_SOCK=%t/ssh-agent.socket
ExecStart=/usr/bin/ssh-agent -a $SSH_AUTH_SOCK

[Install]
WantedBy=default.target


vim .zshrc
# Add SSH-agent
export SSH_AUTH_SOCK="$XDG_RUNTIME_DIR/ssh-agent.socket"

systemctl --user enable ssh-agent
systemctl --user start ssh-agent

vim .ssh/config
AddKeysToAgent yes

# Create new gpg key
gpg --full-generate-key

root@mantis:/var/log/nginx# cat /etc/logrotate.d/nginx
/var/log/nginx/*.log {
  daily
  missingok
  rotate 14
  compress
  compresscmd /root/logrotate_encrypt.sh
  compressext .gz.gpg

root@mantis:/var/log/nginx# cat /root/logrotate_encrypt.sh
#!/bin/bash
# This captures all datastream input and saves it as a single file, that is then passed to gzip and gpg
echo "$(cat)" | gzip | gpg -e -r "logs@test.com"

command="/usr/bin/rsync --server --sender -logDtpre.iLsf ./var/backups/postgres/",no-pty,no-agent-forwarding,no-port-forwarding <ssh-key>

echo -n 'user:' >> /etc/nginx/.htpasswd
openssl passwd -apr1 >> /etc/nginx/.htpasswd

mount -o remount,size=1G cowspace

ip -o -4 a show eth0 | awk '/inet/ {split($4,ip,"/"); print ip[1]}'

1. Create md-raid
2. Create LVM pv, vg and lv on the RAID
3. Modify /etc/mkinitcpio.conf and add the following line
HOOKS=(base systemd udev autodetect modconf block mdadm_udev sd-lvm2 filesystems keyboard fsck)

root # mount -t proc /proc /mnt/proc
root # mount --rbind /sys /mnt/sys
root # mount --make-rslave /mnt/sys
root # mount -rbind /dev /mnt/dev
root # mount --make-rslave /mnt/dev
root # chroot /mnt /bin/bash
root # source /etc/profile

read -r -d '' VARIABLE_NAME << 'EOF' <- quoted EOF will not expand $variables | EOF (unquoted will expand) 
$text more text
$text22 etc
EOF

SELECT table_name,CCSA.character_set_name FROM information_schema.TABLES T, information_schema.COLLATION_CHARACTER_SET_APPLICABILITY CCSA WHERE CCSA.collation_name = T.table_collation AND T.table_schema = 'TEST'

SELECT table_name,column_name,character_set_name FROM information_schema.`COLUMNS` WHERE table_schema = 'TEST' AND character_set_name is not NULL order by character_set_name;

awk 'START {table=""} /CREATE TABLE/,/^)/ {if (/CREATE TABLE/) {gsub("`","",$3) ; table=$3} ; if (/varchar/) {gsub("`","",$1) ; print table"."$1}}' test.sql

curl -X GET "https://esignature.ec.europa.eu/efda/tl-browser/api/v1/browser/tl/bg" -H  "accept: application/json" | jq -r '.serviceProviders[].services[] | select(.active == true) | select(.digitalIdentity.certificates[].subjectShortName | ascii_downcase | test("ocsp| tsa| tsp|time|timestamp"; "i") | not) | "-----BEGIN CERTIFICATE-----\n" + .digitalIdentity.certificates[].base64 + "\n-----END CERTIFICATE-----"'

for host in /sys/class/scsi_host/*/scan; do echo "$host" && echo "- - -" > "$host"; done

echo 1 > /sys/class/block/sdX/device/rescan

curl -s -X GET --header "PRIVATE-TOKEN: <TOKEN_HERE>" https://gitlab/api/v4/projects/<PROJ>/members/all | jq -r '.[] | .name, (.access_level | tostring | sub("30" ; "developer") | sub("50"; "owner")) | @sh' | xargs printf "%-30s\t%s\n"

printf '=%.0s' {1..15}

tcpdump -A -qni any -s 0 'tcp port <PORT_NUMBER> and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)'

ssh user@host 'tcpdump -qni any <FILTER> -s 0 -w -' | wireshark -k -i -

openssl pkcs12 -export -out Cert.p12 -in cert.pem -inkey key.pem -passin pass:root -passout pass:root

pecl config-set php_suffix 7.4

apt-key adv --keyserver-options http-proxy=<proxy-ip>:3142/ --keyserver keyserver.ubuntu.com --recv-keys <key>

sss_cache -u <user>

docker run --rm -it -v $PWD:/tmp <docker image> /bin/bash
--rm    == remove after exit
-it     == interactive TTY
-v      == mount directory : to /tmp inside container

Import-Module Webadministration
Get-ChildItem -Path "IIS:\Sites"

Get-Content <filename> -Tail 1 -Wait | where {$_.contains("pattern")}

tmsh delete sys software volume HD1.X

ipmitool raw 0xc 0x2 0x1 0xc0 0x0 0x0

The output will be one of the following:
11 00 00 - indicates shared on-board (expected here)
11 01 00 - indicates dedicated on-board
11 02 00 - indicates shared add-in (via ML2 adapter)

# Set to Dedicated mode
ipmitool raw 0xc 0x1 0x1 0xc0 0x1

# Set to Shared mode
ipmitool raw 0xc 0x1 0x1 0xc0 0x0

# Do the network setup
ipmi lan print 1
ipmitool lan set 1 ipsrc static
ipmitool lan set 1 ipaddr XXX.XXX.XXX.XXX
ipmitool lan set 1 netmask 255.255.255.0
ipmitool lan set 1 defgw ipaddr XXX.XXX.XXX.XXX
ipmitool lan set 1 auth ADMIN MD5
ipmitool lan set 1 access on

# Verify the config
ipmitool lan print 1

# Get the users
ipmitool user list 1

# Create new user
ipmitool user set name 4 <USER>

# Set the password
ipmitool user set password 4

# Set the privilege level
ipmitool channel setaccess 1 4 link=on ipmi=on callin=on privilege=5

# Enable the user
ipmitool user enable 4

# Verify the user config
ipmitool user list 1

# To show the current status
tmsh list sys db lcd.showmenu

# To disable the LCD panel
tmsh modify sys db lcd.showmenu value disable

# To enable the LCD panel
tmsh modify sys db lcd.showmenu value enable

SSLKEYLOGFILE=/tmp/curl_ssl_decrypt.log curl -A 'Debian APT-HTTP/1.3' https://url/path/to/resource

ffprobe -v error -hide_banner -select_streams v:0 -of default=noprint_wrappers=0 -print_format json -show_entries format=filename,size:stream=codec_name,duration,width,height <filename>

openssl x509 -in <filename> -noout -text -certopt no_header,no_version,no_signame, -certopt no_validity,no_subject,no_issuer,no_pubkey,no_sigdump,no_aux,no_serial

openssl req -noout -modulus -in  server.csr | openssl md5

openssl rsa -noout -modulus -in myserver.key | openssl md5

openssl x509 -noout -modulus -in ssl-bundle.crt | openssl md5

iscsiadm -m discovery -t sendtargets -p ipaddress

iscsiadm -m node -l

iscsiadm -m node -T targetname -p ipaddress -l

iscsiadm -m node -u

iscsiadm -m node -T targetname -p ipaddress -u

iscsiadm -m node -T targetname -p ipaddress

iscsiadm -m node -s -T targetname -p ipaddress

iscsiadm -m session

iscsiadm -m discovery -o show

iscsiadm -m node -o show

iscsiadm -m session -o show

iscsiadm -m session -P3

sed -e 's/\x1b\[[0-9;]*m//g'

SELECT oid FROM pg_database WHERE datname='mydb'
SELECT oid, relname FROM pg_class WHERE relname = 'mytable';

find /location -type f -name '*.mp4' | parallel 'ffprobe -v error -show_entries format=filename,duration,size -of csv="p=0:s=\ "' :::

find /location -type f -name "*$(basename ${PWD})*" -exec bash -c 'cp -v ${@} $(basename ${@/pending_/})' _ {} \;

if (/(^\w+)/) { if (defined $start) {print "$start - FAIL" unless $seen} $start = $1 ; $seen = 0;} if (/PATTERN2/ and defined $start) {print "$start - OK"; $seen = 1} END {print "$start - FAIL" if defined $start and !$seen}'

cat name-of-APK-latest.apk | openssl dgst -binary -sha256 | openssl base64 | tr '+/' '-_' | tr -d '='

curl --resolve example.com:443:192.168.0.1 https://example.com/