commit 85d253710fab0237b8aaa989b9ab1073dd84c5b7 Author: root Date: Thu Jan 18 22:44:30 2024 +1030 First commit diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..dc48fa3 --- /dev/null +++ b/.gitignore @@ -0,0 +1,6 @@ +gitea/data +dev-box/home +winton/home +apprise-api +tvheadend-not-in-use +dev-box/projects diff --git a/audiobookshelf/.smb b/audiobookshelf/.smb new file mode 100644 index 0000000..b9e4b4e --- /dev/null +++ b/audiobookshelf/.smb @@ -0,0 +1,3 @@ +user=nasuser +password=nasuser +domain=WORKGROUP diff --git a/audiobookshelf/compose-old.yaml b/audiobookshelf/compose-old.yaml new file mode 100644 index 0000000..9fb8b45 --- /dev/null +++ b/audiobookshelf/compose-old.yaml @@ -0,0 +1,12 @@ +version: "3.7" +services: + audiobookshelf: + image: ghcr.io/advplyr/audiobookshelf:latest + ports: + - 13378:80 + volumes: + - /mnt/Media/Audiobooks:/audiobooks + - /mnt/Media/Podcasts:/podcasts + - /root/audiobookshelf/config:/config + - /root/audiobookshelf/metadata:/metadata + restart: always diff --git a/audiobookshelf/compose.yaml b/audiobookshelf/compose.yaml new file mode 100644 index 0000000..d5194b4 --- /dev/null +++ b/audiobookshelf/compose.yaml @@ -0,0 +1,23 @@ +version: "3.7" +services: + audiobookshelf: + image: ghcr.io/advplyr/audiobookshelf:latest + ports: + - 13378:80 + volumes: + - cifs_audiobooks:/audiobooks + - cifs_podcasts:/podcasts + - /root/audiobookshelf/config:/config + - /root/audiobookshelf/metadata:/metadata + restart: always +volumes: + cifs_audiobooks: + driver_opts: + type: cifs + o: username=nasuser,password=nasuser,uid=0,noperm + device: //192.168.0.69/Media/Audiobooks + cifs_podcasts: + driver_opts: + type: cifs + o: username=nasuser,password=nasuser,uid=0,noperm + device: //192.168.0.69/Media/Podcasts diff --git a/audiobookshelf/config/absdatabase.sqlite b/audiobookshelf/config/absdatabase.sqlite new file mode 100644 index 0000000..6ce5689 Binary files /dev/null and b/audiobookshelf/config/absdatabase.sqlite differ diff --git a/dev-box/Dockerfile b/dev-box/Dockerfile new file mode 100644 index 0000000..fd869a2 --- /dev/null +++ b/dev-box/Dockerfile @@ -0,0 +1,9 @@ +FROM quay.io/archlinux/archlinux + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl tmux base-devel +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +EXPOSE 22 + +CMD ["/usr/sbin/sshd", "-D"] diff --git a/dev-box/Dockerfile_old b/dev-box/Dockerfile_old new file mode 100644 index 0000000..08f4a20 --- /dev/null +++ b/dev-box/Dockerfile_old @@ -0,0 +1,9 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl tmux base-devel +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +EXPOSE 22 + +CMD ["/usr/sbin/sshd", "-D"] diff --git a/dev-box/compose.yaml b/dev-box/compose.yaml new file mode 100644 index 0000000..c779f62 --- /dev/null +++ b/dev-box/compose.yaml @@ -0,0 +1,20 @@ +version: "3.7" +services: + dev-box: + build: + context: . + ports: + - "2222:22" + - "8080:8080" + - "3000:3000" + volumes: + - /root/dev-box/projects:/projects + - /root/dev-box/home:/root + restart: always + tty: true + #volumes: + # cifs_projects: + # driver_opts: + # type: cifs + # o: username=nasuser,password=nasuser,uid=0,noperm + # device: //192.168.0.69/Data/Projects diff --git a/downloader/Dockerfile b/downloader/Dockerfile new file mode 100644 index 0000000..a1acf24 --- /dev/null +++ b/downloader/Dockerfile @@ -0,0 +1,11 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl yt-dlp tmux openvpn pipewire-jack ffmpeg +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +COPY ./authorized_keys /root/.ssh/authorized_keys + +EXPOSE 22 + +CMD ["/usr/sbin/sshd", "-D"] diff --git a/downloader/bbc/Dockerfile b/downloader/bbc/Dockerfile new file mode 100644 index 0000000..3a94183 --- /dev/null +++ b/downloader/bbc/Dockerfile @@ -0,0 +1,11 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl yt-dlp tmux openvpn pipewire-jack ffmpeg +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +COPY ./authorized_keys /root/.ssh/authorized_keys + +EXPOSE 22 + +CMD /bin/zsh diff --git a/downloader/bbc/authorized_keys b/downloader/bbc/authorized_keys new file mode 100644 index 0000000..3a4bfa2 --- /dev/null +++ b/downloader/bbc/authorized_keys @@ -0,0 +1,3 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMXq4wnDTk0SotF6xwJvBdhSuMJywDHookr221XfPcB4 +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGGc1bmh2MoGXtR0bn6oh9bY/Lx50N25ieT5AOZLwYH8 +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB2Ol1o9PQEENPz/mnEKHc7TgOZAHkMRRVPHekTvsNHj danmac@dan-macbook diff --git a/downloader/bbc/openvpn/login.conf b/downloader/bbc/openvpn/login.conf new file mode 100644 index 0000000..7d7060c --- /dev/null +++ b/downloader/bbc/openvpn/login.conf @@ -0,0 +1,2 @@ +p6617668 +Qm5Y56Sdczck diff --git a/downloader/bbc/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn b/downloader/bbc/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn new file mode 100755 index 0000000..2c69a9a --- /dev/null +++ b/downloader/bbc/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn @@ -0,0 +1,72 @@ +client +dev tun +proto udp +remote uk-2.privacy.network 1198 +resolv-retry infinite +nobind +persist-key +persist-tun +cipher aes-128-cbc +auth sha1 +tls-client +remote-cert-tls server + +auth-user-pass +compress +verb 1 +reneg-sec 0 + +-----BEGIN X509 CRL----- +MIICWDCCAUAwDQYJKoZIhvcNAQENBQAwgegxCzAJBgNVBAYTAlVTMQswCQYDVQQI +EwJDQTETMBEGA1UEBxMKTG9zQW5nZWxlczEgMB4GA1UEChMXUHJpdmF0ZSBJbnRl +cm5ldCBBY2Nlc3MxIDAeBgNVBAsTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMSAw +HgYDVQQDExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4GA1UEKRMXUHJpdmF0 +ZSBJbnRlcm5ldCBBY2Nlc3MxLzAtBgkqhkiG9w0BCQEWIHNlY3VyZUBwcml2YXRl +aW50ZXJuZXRhY2Nlc3MuY29tFw0xNjA3MDgxOTAwNDZaFw0zNjA3MDMxOTAwNDZa +MCYwEQIBARcMMTYwNzA4MTkwMDQ2MBECAQYXDDE2MDcwODE5MDA0NjANBgkqhkiG +9w0BAQ0FAAOCAQEAQZo9X97ci8EcPYu/uK2HB152OZbeZCINmYyluLDOdcSvg6B5 +jI+ffKN3laDvczsG6CxmY3jNyc79XVpEYUnq4rT3FfveW1+Ralf+Vf38HdpwB8EW +B4hZlQ205+21CALLvZvR8HcPxC9KEnev1mU46wkTiov0EKc+EdRxkj5yMgv0V2Re +ze7AP+NQ9ykvDScH4eYCsmufNpIjBLhpLE2cuZZXBLcPhuRzVoU3l7A9lvzG9mjA +5YijHJGHNjlWFqyrn1CfYS6koa4TGEPngBoAziWRbDGdhEgJABHrpoaFYaL61zqy +MR6jC0K2ps9qyZAN74LEBedEfK7tBOzWMwr58A== +-----END X509 CRL----- + + + +-----BEGIN CERTIFICATE----- +MIIFqzCCBJOgAwIBAgIJAKZ7D5Yv87qDMA0GCSqGSIb3DQEBDQUAMIHoMQswCQYD +VQQGEwJVUzELMAkGA1UECBMCQ0ExEzARBgNVBAcTCkxvc0FuZ2VsZXMxIDAeBgNV +BAoTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMSAwHgYDVQQLExdQcml2YXRlIElu +dGVybmV0IEFjY2VzczEgMB4GA1UEAxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3Mx +IDAeBgNVBCkTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMS8wLQYJKoZIhvcNAQkB +FiBzZWN1cmVAcHJpdmF0ZWludGVybmV0YWNjZXNzLmNvbTAeFw0xNDA0MTcxNzM1 +MThaFw0zNDA0MTIxNzM1MThaMIHoMQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0Ex +EzARBgNVBAcTCkxvc0FuZ2VsZXMxIDAeBgNVBAoTF1ByaXZhdGUgSW50ZXJuZXQg +QWNjZXNzMSAwHgYDVQQLExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4GA1UE +AxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3MxIDAeBgNVBCkTF1ByaXZhdGUgSW50 +ZXJuZXQgQWNjZXNzMS8wLQYJKoZIhvcNAQkBFiBzZWN1cmVAcHJpdmF0ZWludGVy +bmV0YWNjZXNzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPXD +L1L9tX6DGf36liA7UBTy5I869z0UVo3lImfOs/GSiFKPtInlesP65577nd7UNzzX +lH/P/CnFPdBWlLp5ze3HRBCc/Avgr5CdMRkEsySL5GHBZsx6w2cayQ2EcRhVTwWp +cdldeNO+pPr9rIgPrtXqT4SWViTQRBeGM8CDxAyTopTsobjSiYZCF9Ta1gunl0G/ +8Vfp+SXfYCC+ZzWvP+L1pFhPRqzQQ8k+wMZIovObK1s+nlwPaLyayzw9a8sUnvWB +/5rGPdIYnQWPgoNlLN9HpSmsAcw2z8DXI9pIxbr74cb3/HSfuYGOLkRqrOk6h4RC +OfuWoTrZup1uEOn+fw8CAwEAAaOCAVQwggFQMB0GA1UdDgQWBBQv63nQ/pJAt5tL +y8VJcbHe22ZOsjCCAR8GA1UdIwSCARYwggESgBQv63nQ/pJAt5tLy8VJcbHe22ZO +sqGB7qSB6zCB6DELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRMwEQYDVQQHEwpM +b3NBbmdlbGVzMSAwHgYDVQQKExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4G +A1UECxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3MxIDAeBgNVBAMTF1ByaXZhdGUg +SW50ZXJuZXQgQWNjZXNzMSAwHgYDVQQpExdQcml2YXRlIEludGVybmV0IEFjY2Vz +czEvMC0GCSqGSIb3DQEJARYgc2VjdXJlQHByaXZhdGVpbnRlcm5ldGFjY2Vzcy5j +b22CCQCmew+WL/O6gzAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBDQUAA4IBAQAn +a5PgrtxfwTumD4+3/SYvwoD66cB8IcK//h1mCzAduU8KgUXocLx7QgJWo9lnZ8xU +ryXvWab2usg4fqk7FPi00bED4f4qVQFVfGfPZIH9QQ7/48bPM9RyfzImZWUCenK3 +7pdw4Bvgoys2rHLHbGen7f28knT2j/cbMxd78tQc20TIObGjo8+ISTRclSTRBtyC +GohseKYpTS9himFERpUgNtefvYHbn70mIOzfOJFTVqfrptf9jXa9N8Mpy3ayfodz +1wiqdteqFXkTYoSDctgKMiZ6GdocK9nMroQipIQtpnwd4yBDWIyC6Bvlkrq5TQUt +YDQ8z9v+DMO6iwyIDRiU +-----END CERTIFICATE----- + + +disable-occ diff --git a/downloader/compose.yaml b/downloader/compose.yaml new file mode 100644 index 0000000..39add31 --- /dev/null +++ b/downloader/compose.yaml @@ -0,0 +1,36 @@ +version: "3.7" +services: + downloader_local: + build: + context: ./local + ports: + - "2223:22" + volumes: + - cifs_media:/media + restart: always + hostname: downloader_local + tty: true + downloader_bbc: + build: + context: ./bbc + dns: + - "10.0.0.243" + ports: + - "2224:22" + - "1198:1198" + volumes: + - cifs_media:/media + - /root/downloader/bbc/openvpn:/root/openvpn + restart: always + hostname: downloader_bbc + tty: true + cap_add: + - NET_ADMIN + devices: + - /dev/net/tun:/dev/net/tun +volumes: + cifs_media: + driver_opts: + type: cifs + o: username=nasuser,password=nasuser,uid=0,noperm + device: //192.168.0.69/Media/ diff --git a/downloader/local/Dockerfile b/downloader/local/Dockerfile new file mode 100644 index 0000000..6cc1df5 --- /dev/null +++ b/downloader/local/Dockerfile @@ -0,0 +1,11 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl yt-dlp tmux pipewire-jack ffmpeg at +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +COPY ./authorized_keys /root/.ssh/authorized_keys + +EXPOSE 22 + +CMD ["/usr/sbin/sshd", "-D"] diff --git a/downloader/local/authorized_keys b/downloader/local/authorized_keys new file mode 100644 index 0000000..3a4bfa2 --- /dev/null +++ b/downloader/local/authorized_keys @@ -0,0 +1,3 @@ +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMXq4wnDTk0SotF6xwJvBdhSuMJywDHookr221XfPcB4 +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGGc1bmh2MoGXtR0bn6oh9bY/Lx50N25ieT5AOZLwYH8 +ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIB2Ol1o9PQEENPz/mnEKHc7TgOZAHkMRRVPHekTvsNHj danmac@dan-macbook diff --git a/gitea/config/app.ini b/gitea/config/app.ini new file mode 100644 index 0000000..0ca89e5 --- /dev/null +++ b/gitea/config/app.ini @@ -0,0 +1,98 @@ +APP_NAME = Gitea: Git with a cup of tea +RUN_USER = git +RUN_MODE = prod +WORK_PATH = /var/lib/gitea + +[repository] +ROOT = /var/lib/gitea/git/repositories + +[repository.local] +LOCAL_COPY_PATH = /tmp/gitea/local-repo + +[repository.upload] +TEMP_PATH = /tmp/gitea/uploads + +[server] +APP_DATA_PATH = /var/lib/gitea +SSH_DOMAIN = gitea.15bt.xyz +HTTP_PORT = 3000 +ROOT_URL = http://gitea.15bt.xyz:3030/ +DISABLE_SSH = false +; In rootless gitea container only internal ssh server is supported +START_SSH_SERVER = true +SSH_PORT = 2222 +SSH_LISTEN_PORT = 2222 +BUILTIN_SSH_SERVER_USER = git +LFS_START_SERVER = true +DOMAIN = gitea.15bt.xyz +LFS_JWT_SECRET = uMe5qgE-uZLrRE_IInYF1ZpbMc7O5aTfoZSR8M39ZF8 +OFFLINE_MODE = false + +[database] +PATH = /var/lib/gitea/data/gitea.db +DB_TYPE = sqlite3 +HOST = localhost:3306 +NAME = gitea +USER = root +PASSWD = +SCHEMA = +SSL_MODE = disable +LOG_SQL = false + +[session] +PROVIDER_CONFIG = /var/lib/gitea/data/sessions +PROVIDER = file + +[picture] +AVATAR_UPLOAD_PATH = /var/lib/gitea/data/avatars +REPOSITORY_AVATAR_UPLOAD_PATH = /var/lib/gitea/data/repo-avatars + +[attachment] +PATH = /var/lib/gitea/data/attachments + +[log] +ROOT_PATH = /var/lib/gitea/data/log +MODE = console +LEVEL = info + +[security] +INSTALL_LOCK = true +SECRET_KEY = +REVERSE_PROXY_LIMIT = 1 +REVERSE_PROXY_TRUSTED_PROXIES = * +INTERNAL_TOKEN = eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJuYmYiOjE3MDQ2OTUxNjd9.RJEhHmJAKW-UOCs0scVnM-KWxs1K8YjiolwzyzSK8uM +PASSWORD_HASH_ALGO = pbkdf2 + +[service] +DISABLE_REGISTRATION = false +REQUIRE_SIGNIN_VIEW = false +REGISTER_EMAIL_CONFIRM = false +ENABLE_NOTIFY_MAIL = false +ALLOW_ONLY_EXTERNAL_REGISTRATION = false +ENABLE_CAPTCHA = false +DEFAULT_KEEP_EMAIL_PRIVATE = false +DEFAULT_ALLOW_CREATE_ORGANIZATION = true +DEFAULT_ENABLE_TIMETRACKING = true +NO_REPLY_ADDRESS = noreply.localhost + +[lfs] +PATH = /var/lib/gitea/git/lfs + +[mailer] +ENABLED = false + +[openid] +ENABLE_OPENID_SIGNIN = true +ENABLE_OPENID_SIGNUP = true + +[cron.update_checker] +ENABLED = false + +[repository.pull-request] +DEFAULT_MERGE_STYLE = merge + +[repository.signing] +DEFAULT_TRUST_MODEL = committer + +[oauth2] +JWT_SECRET = GGYsu43EY8LzFKNIXRREt7kf7J7tDtqTTqzVuPSpWXw diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml new file mode 100644 index 0000000..ed61600 --- /dev/null +++ b/gitea/docker-compose.yml @@ -0,0 +1,14 @@ +version: "2" + +services: + server: + image: gitea/gitea:1.21.3-rootless + restart: always + volumes: + - ./data:/var/lib/gitea + - ./config:/etc/gitea + - /etc/timezone:/etc/timezone:ro + - /etc/localtime:/etc/localtime:ro + ports: + - "3030:3000" + - "2244:2222" diff --git a/live-stream-dvr b/live-stream-dvr new file mode 160000 index 0000000..e82095b --- /dev/null +++ b/live-stream-dvr @@ -0,0 +1 @@ +Subproject commit e82095b13196e8ced4c33db995e2c40808d65527 diff --git a/random b/random new file mode 160000 index 0000000..588dedd --- /dev/null +++ b/random @@ -0,0 +1 @@ +Subproject commit 588deddf3d3bd1bc063bbecd0dc269f41010737f diff --git a/uk-stream-router/Dockerfile b/uk-stream-router/Dockerfile new file mode 100644 index 0000000..cfac629 --- /dev/null +++ b/uk-stream-router/Dockerfile @@ -0,0 +1,11 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh nginx openvpn + +EXPOSE 443 +EXPOSE 80 + +COPY ./config/* /root/config/ +COPY ./start_server.sh /root/ + +CMD /root/start_server.sh diff --git a/uk-stream-router/compose.yaml b/uk-stream-router/compose.yaml new file mode 100644 index 0000000..592813c --- /dev/null +++ b/uk-stream-router/compose.yaml @@ -0,0 +1,14 @@ +version: "3.7" +services: + router: + build: + context: . + dns: + - "10.0.0.243" + restart: always + hostname: router + tty: true + cap_add: + - NET_ADMIN + devices: + - /dev/net/tun:/dev/net/tun diff --git a/uk-stream-router/config/nginx.conf b/uk-stream-router/config/nginx.conf new file mode 100644 index 0000000..9bed714 --- /dev/null +++ b/uk-stream-router/config/nginx.conf @@ -0,0 +1,15 @@ +worker_processes 1; + +events { + worker_connections 512; +} + +http { + server { + listen 80; + + location /bbc_one.m3u8 { + proxy_pass https://vs-hls-push-uk-live.akamaized.net/x=4/i=urn:bbc:pips:service:bbc_one_hd/t=3840/v=pv14/b=5070016/main.m3u8; + } + } +} diff --git a/uk-stream-router/config/openvpn/login.conf b/uk-stream-router/config/openvpn/login.conf new file mode 100644 index 0000000..7d7060c --- /dev/null +++ b/uk-stream-router/config/openvpn/login.conf @@ -0,0 +1,2 @@ +p6617668 +Qm5Y56Sdczck diff --git a/uk-stream-router/config/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn b/uk-stream-router/config/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn new file mode 100755 index 0000000..2c69a9a --- /dev/null +++ b/uk-stream-router/config/openvpn/uk_2-aes-128-cbc-udp-dns.ovpn @@ -0,0 +1,72 @@ +client +dev tun +proto udp +remote uk-2.privacy.network 1198 +resolv-retry infinite +nobind +persist-key +persist-tun +cipher aes-128-cbc +auth sha1 +tls-client +remote-cert-tls server + +auth-user-pass +compress +verb 1 +reneg-sec 0 + +-----BEGIN X509 CRL----- +MIICWDCCAUAwDQYJKoZIhvcNAQENBQAwgegxCzAJBgNVBAYTAlVTMQswCQYDVQQI +EwJDQTETMBEGA1UEBxMKTG9zQW5nZWxlczEgMB4GA1UEChMXUHJpdmF0ZSBJbnRl +cm5ldCBBY2Nlc3MxIDAeBgNVBAsTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMSAw +HgYDVQQDExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4GA1UEKRMXUHJpdmF0 +ZSBJbnRlcm5ldCBBY2Nlc3MxLzAtBgkqhkiG9w0BCQEWIHNlY3VyZUBwcml2YXRl +aW50ZXJuZXRhY2Nlc3MuY29tFw0xNjA3MDgxOTAwNDZaFw0zNjA3MDMxOTAwNDZa +MCYwEQIBARcMMTYwNzA4MTkwMDQ2MBECAQYXDDE2MDcwODE5MDA0NjANBgkqhkiG +9w0BAQ0FAAOCAQEAQZo9X97ci8EcPYu/uK2HB152OZbeZCINmYyluLDOdcSvg6B5 +jI+ffKN3laDvczsG6CxmY3jNyc79XVpEYUnq4rT3FfveW1+Ralf+Vf38HdpwB8EW +B4hZlQ205+21CALLvZvR8HcPxC9KEnev1mU46wkTiov0EKc+EdRxkj5yMgv0V2Re +ze7AP+NQ9ykvDScH4eYCsmufNpIjBLhpLE2cuZZXBLcPhuRzVoU3l7A9lvzG9mjA +5YijHJGHNjlWFqyrn1CfYS6koa4TGEPngBoAziWRbDGdhEgJABHrpoaFYaL61zqy +MR6jC0K2ps9qyZAN74LEBedEfK7tBOzWMwr58A== +-----END X509 CRL----- + + + +-----BEGIN CERTIFICATE----- +MIIFqzCCBJOgAwIBAgIJAKZ7D5Yv87qDMA0GCSqGSIb3DQEBDQUAMIHoMQswCQYD +VQQGEwJVUzELMAkGA1UECBMCQ0ExEzARBgNVBAcTCkxvc0FuZ2VsZXMxIDAeBgNV +BAoTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMSAwHgYDVQQLExdQcml2YXRlIElu +dGVybmV0IEFjY2VzczEgMB4GA1UEAxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3Mx +IDAeBgNVBCkTF1ByaXZhdGUgSW50ZXJuZXQgQWNjZXNzMS8wLQYJKoZIhvcNAQkB +FiBzZWN1cmVAcHJpdmF0ZWludGVybmV0YWNjZXNzLmNvbTAeFw0xNDA0MTcxNzM1 +MThaFw0zNDA0MTIxNzM1MThaMIHoMQswCQYDVQQGEwJVUzELMAkGA1UECBMCQ0Ex +EzARBgNVBAcTCkxvc0FuZ2VsZXMxIDAeBgNVBAoTF1ByaXZhdGUgSW50ZXJuZXQg +QWNjZXNzMSAwHgYDVQQLExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4GA1UE +AxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3MxIDAeBgNVBCkTF1ByaXZhdGUgSW50 +ZXJuZXQgQWNjZXNzMS8wLQYJKoZIhvcNAQkBFiBzZWN1cmVAcHJpdmF0ZWludGVy +bmV0YWNjZXNzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPXD +L1L9tX6DGf36liA7UBTy5I869z0UVo3lImfOs/GSiFKPtInlesP65577nd7UNzzX +lH/P/CnFPdBWlLp5ze3HRBCc/Avgr5CdMRkEsySL5GHBZsx6w2cayQ2EcRhVTwWp +cdldeNO+pPr9rIgPrtXqT4SWViTQRBeGM8CDxAyTopTsobjSiYZCF9Ta1gunl0G/ +8Vfp+SXfYCC+ZzWvP+L1pFhPRqzQQ8k+wMZIovObK1s+nlwPaLyayzw9a8sUnvWB +/5rGPdIYnQWPgoNlLN9HpSmsAcw2z8DXI9pIxbr74cb3/HSfuYGOLkRqrOk6h4RC +OfuWoTrZup1uEOn+fw8CAwEAAaOCAVQwggFQMB0GA1UdDgQWBBQv63nQ/pJAt5tL +y8VJcbHe22ZOsjCCAR8GA1UdIwSCARYwggESgBQv63nQ/pJAt5tLy8VJcbHe22ZO +sqGB7qSB6zCB6DELMAkGA1UEBhMCVVMxCzAJBgNVBAgTAkNBMRMwEQYDVQQHEwpM +b3NBbmdlbGVzMSAwHgYDVQQKExdQcml2YXRlIEludGVybmV0IEFjY2VzczEgMB4G +A1UECxMXUHJpdmF0ZSBJbnRlcm5ldCBBY2Nlc3MxIDAeBgNVBAMTF1ByaXZhdGUg +SW50ZXJuZXQgQWNjZXNzMSAwHgYDVQQpExdQcml2YXRlIEludGVybmV0IEFjY2Vz +czEvMC0GCSqGSIb3DQEJARYgc2VjdXJlQHByaXZhdGVpbnRlcm5ldGFjY2Vzcy5j +b22CCQCmew+WL/O6gzAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBDQUAA4IBAQAn +a5PgrtxfwTumD4+3/SYvwoD66cB8IcK//h1mCzAduU8KgUXocLx7QgJWo9lnZ8xU +ryXvWab2usg4fqk7FPi00bED4f4qVQFVfGfPZIH9QQ7/48bPM9RyfzImZWUCenK3 +7pdw4Bvgoys2rHLHbGen7f28knT2j/cbMxd78tQc20TIObGjo8+ISTRclSTRBtyC +GohseKYpTS9himFERpUgNtefvYHbn70mIOzfOJFTVqfrptf9jXa9N8Mpy3ayfodz +1wiqdteqFXkTYoSDctgKMiZ6GdocK9nMroQipIQtpnwd4yBDWIyC6Bvlkrq5TQUt +YDQ8z9v+DMO6iwyIDRiU +-----END CERTIFICATE----- + + +disable-occ diff --git a/uk-stream-router/start_server.sh b/uk-stream-router/start_server.sh new file mode 100755 index 0000000..0273b24 --- /dev/null +++ b/uk-stream-router/start_server.sh @@ -0,0 +1,9 @@ +#!/bin/sh + +echo "nameserver 8.8.8.8" > /etc/resolv.conf + +/bin/openvpn --config /root/config/uk_2-aes-128-cbc-udp-dns.ovpn --auth-user-pass /root/config/login.conf --daemon + +/bin/nginx -c /root/config/nginx.conf + +tail -f /dev/null diff --git a/winton/Dockerfile b/winton/Dockerfile new file mode 100644 index 0000000..4200f4c --- /dev/null +++ b/winton/Dockerfile @@ -0,0 +1,9 @@ +FROM docker.io/archlinux:latest + +RUN pacman -Sy --noconfirm openssh git vim go zsh curl +RUN /usr/bin/ssh-keygen -A +RUN /usr/bin/sed -i 's/bash/zsh/' /etc/passwd + +EXPOSE 22 + +CMD ["/usr/sbin/sshd", "-D"] diff --git a/winton/compose.yaml b/winton/compose.yaml new file mode 100644 index 0000000..d2dd7e9 --- /dev/null +++ b/winton/compose.yaml @@ -0,0 +1,14 @@ +version: "3.7" +services: + winton: + build: + context: . + ports: + - "8022:22" + volumes: + - /root/winton/home:/root + restart: always + tty: true + domainname: 15bt.xyz + hostname: winton +