inoueyuworksのブックマーク - はてなブックマーク

List of files installed from apt package
How do I get a list of files that were or will-be installed when I apt-get a package? Conversely, can I find what package(s) caused a particular file to be installed?
inoueyuworks 2021/07/08
パッケージでインストールされた(る)ファイルの一覧を表示する方法: dpkg -L $package

apt

debian
リンク
What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?
I am responsible for maintaining two Debian servers. Every time I have to do anything with security certificates, I Google for tutorials and beat away until it finally works. However, in my searches I often come across different file formats (.key, .csr, .pem) but I've never been able to find a good explanation of what each file format's purpose is. I was wondering if the good folks here at Server
inoueyuworks 2020/11/11
OpenSSL まわりのいろんな鍵についての関係性まとめ。

OpenSSL

der

pem

p12

csr
リンク
What's the meaning of '@' in a DNS zone file?
inoueyuworks 2020/08/02
@マークは、 RFC 1035 で定義される zone file の仕様。 $ORIGIN (ルートっぽいもの?) を表す。

DNS
リンク
How do I deal with a compromised server?
Want to improve this post? Provide detailed answers to this question, including citations and an explanation of why your answer is correct. Answers without enough detail may be edited or deleted. This is a Canonical Question about Server Security - Responding to Breach Events (Hacking) See Also: Tips for Securing a LAMP Server Reinstall after a Root Compromise? Canonical Version I suspect that one
inoueyuworks 2020/05/03
compromised なサーバーに対する対処方法の Canonical Question & Answer

security

セキュリティ

compromised
リンク
Ansible security best practices
I am going to introduce Ansible into my data center, and I'm looking for some security best practice on where to locate the control machine and how to manage the SSH keys. Question 1: the control machine We of course need a control machine. The control machine has public SSH keys saved on it. If an attacker has access to the control machine, it potentially has access to the whole data center (or t
inoueyuworks 2020/05/03
userify 社員っぽい人による serverfault 上での、 Ansible などプロビジョニングに関するセキュリティ問題についての解決指針についての回答

userify

ssh

ansible
リンク
How do MySQL logs compare to Postgresql logs?
inoueyuworks 2020/04/17
それぞれの DBMS におけるログの比較

mysql

PostgreSQL
リンク
Nested Nginx location (prefix blocks in regex blocks) not working
Stack Exchange Network Stack Exchange network consists of 183 Q&A communities including Stack Overflow, the largest, most trusted online community for developers to learn, share their knowledge, and build their careers. Visit Stack Exchange
inoueyuworks 2020/02/10
nested location の際には、親 regex -> 子 prefix のネスト関係は実現できない。親 prefix -> 子 regex は可能。

nginx
リンク
Do you use postfix or qmail and why
Stack Exchange Network Stack Exchange network consists of 183 Q&A communities including Stack Overflow, the largest, most trusted online community for developers to learn, share their knowledge, and build their careers. Visit Stack Exchange
inoueyuworks 2020/01/19
Postfix or Exim がもっともらしい選択肢らしい

postfix

qmail

sendmail

exim
リンク
nginx rate limiting with X-Forwarded-For header
I'm looking into rate-limiting using nginx's HttpLimitReqModule. However, requests are all coming from the same IP (a loadbalancer), with the real IP address in the headers. Is there a way to have nginx rate-limit based on the ip in the X-Forwarded-For header instead of the ip of the source?
inoueyuworks 2019/12/23
Rate Limiting において、"If you use realip module, $binary_remote_addr variable gets set correctly. "

nginx

rate limit
リンク
how to prune old CodePipeline artifacts
inoueyuworks 2017/08/19
端的に言うと: S3 の object management 使え、とのこと。

aws
リンク
1