Posts

Linux: Managing Security & System Logs

Not a linux novice by any means, so this last year (2019) I had been tracking logs on my server. I'll come back to this article and clean it up but incase I dont these definitely helped me track things until I start using a third party tool. sudo ip6tables -I INPUT -m geoip --src-cc IT,FI,GB,CA,MX,CN,DE,TR,ID,RU,IN,IL,BR -j DROP http://blog.jeshurun.ca/technology/block-countries-ubuntu-iptables-xtables-geoip https://unix.stackexchange.com/questions/92560/list-all-connected-ssh-sessions  cat /var/log/auth.log | grep 'Connection closed' |  tail -n 40 sudo iptables -L  iptables -A INPUT -m state --state INVALID -j DROP Notes http://ipset.netfilter.org/iptables.man.html https://unix.stackexchange.com/questions/345114/how-to-protect-against-port-scanners https://unix.stackexchange.com/questions/318859/how-to-use-watch-command-with-a-piped-chain-of-commands-programs https://daenney.github.io/2017/01/07/geoip-filtering-iptables http://xmodulo.com/block-network-traffic

ReUsed Flexcode ADOC Connection

Back in 2019 I was working for a consulting firm which this came in handle, I dont think I will ever need to go back to an ERP system and specially dont think I will need to work with flexcode again. Still this was something that I found and might help someone else. Public Sub Database_Connection()  Do      If cn1.State = 1 Then Exit Sub      On Error Resume Next      Set cn1 = macForm.ConnInfo.OpenADOConn      On Error GoTo 0  Loop  End Sub

Aspnet Dotnet Notes: Custom Authorization & App_Data

Trying to handle a secure folder  where the files are not pushed to the server at deploy. Like all files in wwwroot they are in source control, these will not. The files I'm storing are so big that moving them is a separate process do outside of my application. https://stackoverflow.com/questions/36775942/how-do-i-serve-static-files-only-to-authorized-users https://github.com/ClintBailiff/MiddlewareDemo/blob/master/Startup.cs get current user   inside an MVC controller: From the  Controller  base class, you can get the  IClaimsPrincipal  from the  User  property System . Security . Claims . ClaimsPrincipal currentUser = this . User ; You can check the claims directly (without a round trip to the database): bool IsAdmin = currentUser . IsInRole ( "Admin" ); var id = _userManager . GetUserId ( User ); // Get user id: Other fields can be fetched from the database's User entity: Get the user manager using dependency injection private

Dynamically sitemap.xml in Aspnet Core

Someday I'd like to complete this project but for now I have very little time so I'll just hold onto these notes. The goal or idea would be for me to create a SEO friendly site but with all my experience with cms or spa applications I'd create it more based on a headless cms. If I get the chance I'd want to work with orchard core on this. Notes https://stackoverflow.com/questions/50311264/how-to-create-dynamically-sitemap-xml-in-net-core-2 https://rehansaeed.com/dynamically-generating-sitemap-xml-for-asp-net-mvc/ https://github.com/uhaciogullari/SimpleMvcSitemap#google-sitemap-extensions

Still a use case for slow-cheetah

With .net 6 out I'm still finding myself maintaining application dependent on .net framework 4.7.2 which isnt too difficult to move them over just time consuming. So as a real quick reminder for myself there's a way to handle debug/local environments. Since most employer's dont know about this cool library or dont see the advantage, over using #DEBUG  in code. Which I really hate handling so instead I install slow-cheetah and using the foling.  xdt:Locator="Match(name)" add this to your App.{env}.config and call it a day with handling your environment! Notes https://www.c-sharpcorner.com/article/transform-config-using-slow-cheetah/ https://marketplace.visualstudio.com/items?itemName=vscps.SlowCheetah-XMLTransforms

Azure functions appsettings.json instead of local.settings.json

 Currently one of the services I manage needs to properly set configurations similar to appsetting.json so that the parent name of the config doesnt need to change. This is because of service that calls for the config is looking specifically at the parent name. However since its a azure function using this I ran into an issue of using a different name rather than "Values" where db connections or other properties need to be in order to be read. I tried using the following example... { "CustomParent": {      "test":"true"      }    "Values": {          "test": "true"       } } For my custom name I can grab the test value, just what's in values parent. https://adamstorr.azurewebsites.net/blog/why-wont-you-load-my-configuration-azure-functions https://stackoverflow.com/questions/51781298/read-custom-settings-from-local-settings-json-in-azure-functions https://github.com/Azure/Azure-Functions/issues/1023 https://stack

Hybrid Connection for On Premise connections

This week I got to setup a on premise connection with one of our database, which to my surprise worked out great. The project was creating a Azure function connect to one azure database and on remote machine located in the office. The issues I faced included access to the machine itself to questions about the firewall or service. Originally mixed up the machine which send me down the path for most of the links. However the final solution was to just restart the service after it was all send and done. I probably would had ran into firewall issues or maybe just proxy network issues like I found for a few articles if it had not already be setup for me by the IT team. Still work noting incase, the other major issue was just testing/prototyping. So for that I create a store proc on both databases to test a connection was made, another way to prove it was via an email get results from both databases. Still dont quite get the Testing console in Azure so for triggering it I just set a timer ev

Popular posts from this blog

Installing Windows on Acer chromebook 15 cb3-532

Entity Framework: ToListAynsc & WhereAsync

NLog 4.6.2 Console Application