Autorun Tmux 6 panels layout on startup

 

1. Create /root/.tmux.conf

new-session -d -s MYDESK

set -g status off

set -g set-titles on

set -g set-titles-string ""
set -g pane-border-lines double
set -g pane-border-status top
set -g pane-border-format "#P #{pane_tty} PID=#{pane_pid}  PATH=#{pane_current_path} Command=#{pane_current_command} #{pane_title}"
split-window -h -l 80%
select-pane -t 0
split-window -v
split-window -v
select-pane -t 3
split-window -v
split-window -v
select-pane -t 0
send-keys -t MYDESK "cd /opt/proc1" C-m
send-keys -t MYDESK "proc1.sh" C-m
select-pane -t 1
send-keys -t MYDESK "cd /opt/proc2" C-m
send-keys -t MYDESK "proc2.sh" C-m
select-pane -t 2
send-keys -t MYDESK "cd /opt/proc3" C-m
send-keys -t MYDESK "proc3.sh" C-m
select-pane -t 3
send-keys -t MYDESK "cd /opt/proc4" C-m
send-keys -t MYDESK "proc4.sh" C-m
select-pane -t 4
send-keys -t MYDESK "cd /opt/proc5" C-m
send-keys -t MYDESK "proc5.sh" C-m
select-pane -t 5
send-keys -t MYDESK "mc" C-m

OpenSSL p12 extract keys and certs, convert ca and user keys to p12, decrypt encrypted key

Create unencrypted key file:

openssl pkcs12 -in mykeys.p12 -out unencrypted.key -nodes -nocerts

Extract certificates to file:

openssl pkcs12 -in mykeys.p12 -out mycerts.crt -nokeys

CA and user certificate will be in the same file!

Convert keys to p12:

openssl pkcs12 -export -certfile ca.crt -in user.crt  -inkey user.key -out mykeys.p12

Decrypt user key:

openssl rsa -in encrypted.key -out decrypted.key

Mysql/MariaDB table delete records by schedule

 1. /root/cleanup_records.sql

use DATABASE_NAME;
delete from TABLE_NAME where `DATE_FIELD` < DATE_SUB(CURDATE(),INTERVAL 3 MONTH);

2. crontab -e (/var/spool/cron/crontabs/root)

# m h  dom mon dow   command

0 0 * * * mysql -uroot <~/cleanup_records.sql

ufw cheatsheet

ufw disable/enable
ufw status verbose
ufw status numbered
ufw delete NUM
ufw delete deny NUM
ufw insert 1 deny in from XXX.XXX.XXX.XXX to any port 25 proto tcp
ufw app info 'OpenSSH' (see /etc/ufw/applications.d)
ufw allow proto tcp from XXX.XXX.XXX.XXX/24 to any port YYYY 
ufw reload (to apply rules)
ufw allow in on eth0 to any port 22
ufw logging on/off/low/medium/high/full
fot NAT - /etc/ufw/before.rules

ufw allow 22/tcp comment 'open port 22 for ssh'

ufw allow <PORTFROM>:<PORTTO>/udp