I hereby claim:
- I am valorin on github.
- I am valorin (https://keybase.io/valorin) on keybase.
- I have a public key whose fingerprint is 7C1C 5C4A 3017 C21F 9AE5 34DE C1C4 BEBF 0442 284B
To claim this, I am signing this object:
Stephen Rees-Carter valorin
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # System | |
| alias dotfiles='git --git-dir=/home/valorin/.dotfiles/ --work-tree=/home/valorin' | |
| alias dt='git --git-dir=/home/valorin/.dotfiles/ --work-tree=/home/valorin' | |
| alias fixinodes='echo fs.inotify.max_user_watches=524288 | sudo tee -a /etc/sysctl.conf && sudo sysctl -p' | |
| alias ll='ls -lah' | |
| alias tarsnap-backup='sudo tarsnap -cvf backup-$(date +%Y-%m-%d_%H-%M-%S) /home /root /etc /var' | |
| # Security | |
| alias safe-composer='composer install --ignore-platform-reqs --no-plugins --no-scripts --audit' | |
| alias sqlmap="python3 ~/tools/sqlmap/sqlmap.py" |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Dev Services | |
| alias start-all='sudo wslact time-sync && sudo service redis-server start && sudo service mysql start && sudo service php8.2-fpm start && sudo service nginx start && mailcatcher' | |
| alias stop-all='sudo service redis-server stop && sudo service mysql stop && sudo service php8.2-fpm stop && sudo service nginx stop && killall mailcatcher ; sleep 1 && ps ax' | |
| alias restart-all='sudo service redis-server restart && sudo service mysql restart && sudo service php8.2-fpm restart && sudo service nginx restart' | |
| alias use-php7.4='sudo update-alternatives --set php /usr/bin/php7.4' | |
| alias use-php8.0='sudo update-alternatives --set php /usr/bin/php8.0' | |
| alias use-php8.1='sudo update-alternatives --set php /usr/bin/php8.1' | |
| alias use-php8.2='sudo update-alternatives --set php /usr/bin/php8.2' |
valorin
/ .env.example
Last active
September 15, 2025 07:05
CSP Middleware - the simple CSP middleware I use across all of my projects.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Add to your .env.example and .env files | |
| CSP_ENABLED=true | |
| CSP_REPORT_ONLY=true |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash -xe | |
| if [[ $WSL_DISTRO_NAME = Ubuntu* ]]; then | |
| sudo add-apt-repository ppa:ondrej/php -y | |
| if [ $WSL_DISTRO_NAME == "Ubuntu-18.04" ]; then | |
| sudo add-apt-repository ppa:certbot/certbot -y | |
| fi | |
| fi |
valorin
/ wordpress-setup-attack.sh
Created
August 23, 2019 23:48
Proof of concept WordPress setup script attack - sets up a new WP installation and injects a simple shell into /wp-content/themes/twentynineteen/404.php and /wp-hello.php.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # | |
| # WordPress Setup Attack Script | |
| # | |
| # Created by Stephen Rees-Carter (https://stephenreescarter.net/) | |
| # | |
| # This script injects a remote shell into a fresh copy of WordPress that hasn't been set up yet. | |
| # Once the shells have been set up, it removes the config file with the custom database connection to reset the site back to a fresh install. | |
| # |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /var/www/vhosts/my.app/storage/logs/*.log { | |
| size 100M # Max log file size 100M | |
| weekly # Rotate weekly, if not sooner | |
| missingok # Ignore if missing file | |
| rotate 12 # Keep 12 files | |
| compress # Compress rotated files | |
| notifempty # Ignore empty files | |
| create 755 www-data www-data # Create new log file with perms and owner | |
| } |
valorin
/ blockchain-id
Created
January 10, 2016 21:14
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Verifying that +valorin is my blockchain ID. https://onename.com/valorin |
valorin
/ mosh-allow-ufw.yml
Created
December 6, 2014 21:31
Ansible tasks to configure Mosh and UFW to play nice
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| - name: Install Mosh PPA | |
| apt_repository: repo='ppa:keithw/mosh' | |
| - name: Install Mosh | |
| apt: > | |
| state=latest | |
| pkg=mosh | |
| update_cache=yes |
valorin
/ mosh-allow-ufw.sh
Created
December 6, 2014 20:49
Script to open and close Mosh ports in UFW
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Load active ports | |
| PORTS=`lsof -i | grep mosh-serv | cut -f2 -d":"` | |
| STATUS=`sudo ufw status` | |
| # Add Rules for new ports | |
| for PORT in $PORTS; do | |
| echo $STATUS | grep "$PORT/udp" > /dev/null |
valorin
/ keybase.md
Created
September 18, 2014 10:11
NewerOlder