Quickly get up with Git and Git going with more important stuff like your code:
https://rogerdudler.github.io/git-guide/
Category Archives: Uncategorized
Install VirtualBox on Mac Mojave
The developer team identifier or KEXT of the install is not trusted by the operating system. There’s no way to allow an exception through the regular interfaces for the installer to successfully run. One must manually add the developer team identifier so that it can run. This is done in recovery mode. Unless you’re a developer used to hacking your Mac to allow things like this to happen, you’d never get it done.
Many thanks to “rayan a” for providing the solution:
https://forums.virtualbox.org/viewtopic.php?f=8&t=89769
Re: Unable to run on Mojave
by ryan a » 29. Jan 2019, 21:33I was able to get the kernel extensions to load the KEXTs without user approval by adding the VirtualBox Apple Developer Team ID in spctl kext-consent
I used the following command to get the Team ID: codesign -dv --verbose=4 /Applications/VirtualBox.app
Result: TeamIdentifier=VB5E2TV963
- Turn on your Mac, then immediately press and hold Command-R to start up from macOS Recovery.
- Select Disk Utility from the Utilities window, then click Continue.
- From the Disk Utility sidebar, select the volume that you’re using, then choose File > Mount from the menu bar. (If the volume is already mounted, this option is dimmed.)
- Then enter your administrator password when prompted.
- Quit Disk Utility.
- Choose Terminal from the Utilities menu in the menu bar.
- Type the command:
spctl kext-consent add VB5E2TV963
- When done, choose Apple () menu > Restart.
Get CPU Usage Using PowerShell
So I’m writing a script to do a process dump of IIS CPU utilization goes to 100% and an IIS Worker Process of an app pool is to blame. I’ve done all kinds of searches and it seems many have bits and pieces of the solution, but not the entire thing and in a clean little package.
What we really want is to be able to get all the data that Task Manager produces on on the Process tab, but do it in PowerShell so we can parse the results and act on it.
Here’s the PowerShell script to continuously display the overall percent usage of CPU with a break out of the processes that are actually consuming CPU. I wanted a clean list, so I filtered out all the 0% processes.
Usage:
-Loop switch to continuously loop
-ComputerName to sample remote machine. No parameter assumes localhost.
Param( [Parameter(Mandatory=$false)][String]$ComputerName = "localhost", [Parameter(Mandatory=$false)][Switch]$Loop ) function GetTotalCPU { $cpu = Get-Counter -ComputerName $ComputerName -Counter "\processor(_total)\% processor time" $cpu = [math]::Round($cpu.CounterSamples.CookedValue) return $cpu } function GetRawProcessData { $Procs = (Get-Counter -ComputerName $ComputerName -Counter "\process(*)\% processor time" -ErrorAction SilentlyContinue).CounterSamples | Where-Object { $_.CookedValue -ne 0} $idle = ($Procs | Where-Object {$_.InstanceName -eq "idle"}).CookedValue $total = ($Procs | Where-Object {$_.InstanceName -eq "_total"}).CookedValue $Procs | ForEach-Object { $_.CookedValue = [math]::Round($_.CookedValue/$total*100,1) $_.InstanceName = $_.Path.Substring($_.Path.indexof("(")+1) $_.InstanceName = $_.InstanceName.Substring(0,$_.InstanceName.indexof(")")) } return $Procs } function GetRefinedProcessData ($Procs) { $procsList = @() $idProcess = (Get-Counter -ComputerName $ComputerName -Counter "\process(*)\ID Process" -ErrorAction SilentlyContinue).CounterSamples foreach ($Proc in $Procs) { $procName = $Proc.InstanceName $procPID = $idProcess | ? {$_.Path -match $procName } | Select-Object CookedValue $procPID = $procPID.CookedValue $procCPU = $Proc.CookedValue if ($procName -ne "_total") { $procsList += New-Object PSObject -Property @{Name = $procName; PID = $procPID; CPU = $procCPU} } } return $procsList } do { $cpu = GetTotalCPU $Procs = GetRawProcessData $ProcsList = GetRefinedProcessData $Procs clear "{0} CPU: {1}%" -f $ComputerName, $cpu $ProcsList | Sort-Object CPU -Descending | FT Name, PID, @{Label="CPU"; Expression={"{0}%" -f $_.CPU}} } while ($Loop)
A Really Good Git Tutorial
At least, this was about my speed and pretty thorough.
Build a basic Kubernetes lab
Lab to build one Master and two slave nodes.
Use kubeadm tool to bootstrap the environment. (https://kubernetes.io/docs/tasks/tools/install-kubeadm/)
- Build three Linux (ubutnu 14.04.4 LTS) virtual machine as kubernetes hosts.
- Install the OS
- Select OpenSSH server as an option.
- Assign static IP Addresses(10.0.51.0/24) ex. kube-master 10.0.51.10; kube-node1,2,3 10.0.51.11,12,13). The snippet below is an example config file for the regular Ubuntu 16.04 distribution. If you’re using Ubuntu on Azure, configure a static IP through the portal or CLI.
nano /etc/network/interfaces # The primary network interface auto ens32 #iface ens32 inet dhcp iface ens32 inet static address 10.0.51.12 netmask 255.255.255.0 gateway 10.0.0.1 dns-nameservers 8.8.8.8
- swapoff -a
- REM out swap file in /etc/fstab (swap is disabled by default on Azure 16.04 Ubuntu image.)
- Install the OS
- Install Docker on all three: (https://docs.docker.com/install/linux/docker-ce/ubuntu/#upgrade-docker-ce-1
https://www.itzgeek.com/how-tos/linux/ubuntu-how-tos/how-to-install-docker-on-ubuntu-16-04.html)- Current (7/2018) Kubernetes release requires 17.03.x
- Update repository cache:
apt-get update
- Install package for https and certificates:
apt-get install -y apt-transport-https software-properties-common ca-certificates curl
- Add GPG key for Docker repository:
wget https://download.docker.com/linux/ubuntu/gpg apt-key add gpg
- Add the Docker repository:
### Ubuntu 16.04 ### echo "deb [arch=amd64] https://download.docker.com/linux/ubuntu xenial stable" | sudo tee /etc/apt/sources.list.d/docker.list ### Ubuntu 17.10 ### echo "deb [arch=amd64] https://download.docker.com/linux/ubuntu artful stable" | sudo tee /etc/apt/sources.list.d/docker.list #### Ubuntu 14.04 ### echo "deb [arch=amd64] https://download.docker.com/linux/ubuntu trusty stable" | sudo tee /etc/apt/sources.list.d/docker.list
- Update apt database:
apt-get update
- If installing from the official Docker repository, you’ll see the desired version. Ubuntu default repository may not have the desired version. Run the following to see the list:
apt-cache policy docker-ce
- Look for the latest 17.03 release:
17.03.2~ce-0~ubuntu-xenial 500 500 https://download.docker.com/linux/ubuntu xenial/stable amd64 Packages
- Specifically install Docker 17.03.2:
apt-get -y install docker-ce=17.03.2~ce-0~ubuntu-xenial
- Verify that 17.03.2-ce is installed:
docker version
- Install kubeadm on all three (kubeadm, kubelet, kubectl)
- Install the apt-transport-https package:
apt-get update && apt-get install -y apt-transport-https curl
- Add Google GPG key:
curl -s https://packages.cloud.google.com/apt/doc/apt-key.gpg | apt-key add -
- Add the sources list into sources.list and update repository:
cat <<EOF >/etc/apt/sources.list.d/kubernetes.list deb http://apt.kubernetes.io/ kubernetes-xenial main EOF apt-get update
- Install kubeadm and related tools:
apt-get install -y kubelet kubeadm kubectl
- Install the apt-transport-https package:
- Initialize the master server. On the kube-master node:
kubeadm init --pod-network-cidr=10.244.0.0/16 --apiserver-advertise-address=10.0.51.10
- As a regular user, run the following commands:
mkdir -p $HOME/.kube sudo cp -i /etc/kubernetes/admin.conf $HOME/.kube/config sudo chown $(id -u):$(id -g) $HOME/.kube/config
- Collect the kubeadm join command to set things up on the other nodes. The tokens expire after 24 hours. If later, you’d like to add another node, one would need to generate another token. Do this on the master:
kubeadm token create
A new token will be created. Take the same command that was generated to join and substitute the old token for the new one.
- As a regular user, run the following commands:
- Set up a POD Network (cluster network) for communications between cluster nodes. On the master node:
kubectl apply -f https://raw.githubusercontent.com/coreos/flannel/v0.10.0/Documentation/kube-flannel.yml
- Check if CoreDNS pod is running to verify pod network is installed:
kubectl get pods --all-namespaces
- ensure that kube-dns-* is running before joining worker nodes.
- Check if CoreDNS pod is running to verify pod network is installed:
- Join worker nodes to the master node
- Run the kubeadm join command previously collected on all the worker nodes.
Get a certificate with Subject Alternative Names using certreq
If one needs to use certreq to obtain a certificate, but the certificate signing request does not explicitly ask for it, here’s the command to get it anyway:
certreq -f -q -submit -attrib “CertificateTemplate:WebServer\nSAN:dns=<hostname>&dns=<hostname>.mydomain.com&ipaddress=<IP Address>” -config “<Config Name>” <Certificate Request File>.csr <Certificate File>.cer
The key part is in the attrib string following the new line “\n” bit where SAN: is then defined. In this example, three are defined: the hostname, fully qualified domain name and the IP address.
Powershell to check IP Address format
This one regex check will validate if the string is formatted to be an IP address, but it won’t actually validate the octets. It’s still useful.
If (($IPAddress -match "\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}") -and ($IPAddress [$IPAddress .Length -1] -match "\d")) {"This is formatted like an IP Address."}
What is my IP? PowerShell one liner
There’s a site out there that’s super useful: http://ifconfig.co
Leveraging that, here’s a one-liner that will get your IP:
Invoke-RestMethod -Uri "http://ifconfig.co/port/8080" | FL ip
Pretty cool. Although a simple “curl ifconfig.co” in bash is shorter if you’re on Linux.
Active Directory Integrated DNS Wildcard Search
So NSLOOKUP is the typical way one may query DNS. Ever wanted to just grab the results as objects while using a wildcard filtered search? If your DNS is Active Directory integrated, then it’s really pretty simple. After all, each DNS entry is essentially an AD Object. Why not query AD like we do for so many other things? Basically, you just need the Distinguished name for the DNS zone and tell Get-ChildItem to look at Active Directory. For example, if you wanted to find all host records ending in “-DC” in example.com:
Get-ChildItem "AD:DC=example.com,CN=MicrosoftDNS,CN=System,DC=example,DC=com" -Filter "name=*-dc"
By the way, if you get an error stating something similar to this:
Cannot find drive. A drive with the name 'ad' does not exist.
Then you may need to import the Active Directory module.
Import-Module ActiveDirectory
A quick test is to do a change directory to AD.
cd ad:
and the prompt should read “PS AD:\>”
Disable TLS on Windows 2012 R2 (IIS 8)
A handy GUI tool to make this an easy one-off thing is IIS Crypto.
Here’s the actual registry change that is made if you need to script it:
Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client] "Enabled"=dword:00000000 "DisabledByDefault"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server] "Enabled"=dword:00000000 "DisabledByDefault"=dword:00000001
A reboot is required for the change to apply.