#+filetags :exoscale:
The goal is to switch a VM to an encrypted root. There are several challenges:
- add a
/bootpartition - convert the root partition to an encrypted one
- boot the VM with the encrypted root
Vincent Bernat vincentbernat
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package kafka | |
| import ( | |
| "strings" | |
| "github.com/prometheus/client_golang/prometheus" | |
| gometrics "github.com/rcrowley/go-metrics" | |
| "flowexporter/reporter" | |
| ) |
vincentbernat
/ Encrypted root.org
Created
December 7, 2018 15:15
vincentbernat
/ gist:1479c1f3112c226a781061270c35cfbe
Last active
June 14, 2018 14:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| global: | |
| config: | |
| as: 65000 | |
| router-id: 1.1.1.1 | |
| local-address-list: | |
| - 127.0.1.3 | |
| peer-groups: | |
| - config: | |
| peer-group-name: rr-client-v4 | |
| peer-as: 65000 |
vincentbernat
/ optimum-hypervisor.yaml
Created
April 30, 2018 14:48
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| '100 Kubernetes integration 1/n': | |
| chain: FORWARD | |
| comment: "" | |
| spec: | |
| - 'COPY CHAIN cali-.*' | |
| - 'COPY CHAIN KUBE-.*' | |
| - '-j cali-FORWARD' | |
| - '-j KUBE-FORWARD' | |
| '100 Kubernetes integration 2/n': | |
| chain: INPUT |
vincentbernat
/ vince-gnus-composition.el
Created
May 24, 2017 15:17
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ;; Introduction d'une citation | |
| (defun vince-sc-header-fr () | |
| "En ce beau matin/soir/après-midi/nuit/etc. du <date>, <from> nous disait... ; | |
| 1. Si <from> n'est pas trouvé, on le remplace par un inconnu | |
| 2. Si <date> n'est pas trouvé, seule la deuxième partie de la phrase est insérée" | |
| (let ((sc-mumble "")) ; Je ne sais pas à quoi ça | |
| ; sert, mais c'est dans tous | |
| ; les autres. Je crois que ça | |
| ; indique que renvoyer pour | |
| ; les sc-mail-field quand le |
vincentbernat
/ curl.go
Created
April 18, 2017 14:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "net/http" | |
| ) | |
| func main() { | |
| _, err := http.Get("https://api.exoscale.ch/compute") | |
| if err != nil { | |
| panic(err) |
vincentbernat
/ gist:9f70714cfb839f080b8159513831783e
Created
March 13, 2017 15:36
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| traceroute to 46.20.240.173 (46.20.240.173), 30 hops max, 60 byte packets | |
| 1 94-247-174-81-static.serverhotell.net (94.247.174.81) 0.687 ms 1.272 ms 1.452 ms | |
| 2 te-1-4.fbg-cr1.glesys.net (193.108.196.86) 0.304 ms 0.868 ms 1.067 ms | |
| 3 te-7-3.vbdc-cr1.glesys.net (46.21.96.131) 8.431 ms 8.776 ms 8.962 ms | |
| 4 193-108-196-45-static.serverhotell.net (193.108.196.45) 9.126 ms 9.277 ms 9.424 ms | |
| 5 te-0-0-0-6.cr1.ams1.nl.portlane.net (80.67.4.179) 31.549 ms 31.840 ms 31.974 ms | |
| 6 * * * | |
| 7 * * * | |
| 8 * * * | |
| 9 * * * |
vincentbernat
/ detect.sh
Created
January 12, 2017 11:06
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| for iface in /sys/class/net/*; do | |
| [ -f $iface ] || continue | |
| ip link set up dev ${iface##*/} | |
| done | |
| count=0 | |
| pci="" | |
| for iface in /sys/class/net/*; do | |
| [ -f $iface/device/product ] || continue | |
| case "$(cat $iface/speed 2> /dev/null)" in |
vincentbernat
/ README.md
Last active
September 7, 2018 08:53
You need to have cs (pip install cs) and configure it (see https://github.com/exoscale/cs)
- Create a VM. The OS doesn't matter.
- Get the virtual machine ID and execute:
cs attachIso id=5434aada-28cc-4a82-a1eb-8e2d533f66ad virtualmachineid=04aa487b-c6c1-4de2-9237-8f17860351cf - Reboot the VM and open the console. You should get netboot.xyz menu.
- When the new OS is installed, detach the ISO:
cs detachIso virtualmachineid=04aa487b-c6c1-4de2-9237-8f17860351cf
vincentbernat
/ Install random cloud image.org
Created
December 5, 2016 11:05
NewerOlder