For educational reasons I've decided to create my own CA. Here is what I learned.
Lets get some context first.
陳傑夫 chienfuchen32
🎧
chienfuchen32
/ tcp_flags.txt
Created
October 20, 2021 06:58
— forked from tuxfight3r/tcp_flags.txt
tcpdump - reading tcp flags
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ##TCP FLAGS## | |
| Unskilled Attackers Pester Real Security Folks | |
| ============================================== | |
| TCPDUMP FLAGS | |
| Unskilled = URG = (Not Displayed in Flag Field, Displayed elsewhere) | |
| Attackers = ACK = (Not Displayed in Flag Field, Displayed elsewhere) | |
| Pester = PSH = [P] (Push Data) | |
| Real = RST = [R] (Reset Connection) | |
| Security = SYN = [S] (Start Connection) |
chienfuchen32
/ ca.md
Created
September 18, 2020 14:48
— forked from soarez/ca.md
How to setup your own CA with OpenSSL
chienfuchen32
/ mongodb-ssl.sh
Last active
August 6, 2018 08:19
— forked from kevinadi/mongodb-ssl.sh
Script to create self-signed CA certificates, server certificates, and client certificates for testing MongoDB with SSL
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Generate self signed root CA cert | |
| openssl req -nodes -x509 -newkey rsa:2048 -keyout ca.key -out ca.crt -subj "/C=AU/ST=NSW/L=Sydney/O=MongoDB/OU=root/CN=`hostname -f`/[email protected]" | |
| # Generate server cert to be signed | |
| openssl req -nodes -newkey rsa:2048 -keyout server.key -out server.csr -subj "/C=AU/ST=NSW/L=Sydney/O=MongoDB/OU=server/CN=`hostname -f`/[email protected]" | |
| # Sign the server cert |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| //reference: https://askubuntu.com/questions/66000/how-to-merge-partitions | |
| # fdisk /dev/sda | |
| ... | |
| Command (m for help): p | |
| ... | |
| Device Boot Start End Blocks Id System | |
| /dev/sda1 * 63 8016434 4008186 83 Linux | |
| /dev/sda2 8016435 1953520064 972751815 83 Linux | |
| You need to make sure that your new sda1 starts in the same location (here, 63) and ends where sda2 starts (here, 8016434). And double-check that where sda1 ends is immediately before where sda2 starts (here, 8016434 is immediately followed by 8016435) just to be sure. |
chienfuchen32
/ README.md
Created
May 20, 2017 14:56
— forked from gregersrygg/README.md
Use a Raspberry Pi as a baby monitor
What you need:
- Raspberry Pi RevB
- Raspberry Pi NoIR camera
Download raspbian and install to SD-card. Here is a good guide on how to install the .img file to the card: https://www.andrewmunsell.com/blog/getting-started-raspberry-pi-install-raspbian
Connect ethernet or wifi, then boot the Raspberry Pi and follow configuration options. Make sure you enable the camera option.
When you get to the command-line: