Last edit: May 05, 2019 11:23:48 AM CDT
List of all cheatsheets
Apache
Start from an alternate DocumentRoot
apache2 -k start -c "DocumentRoot /path/to/alt/folder" (-c processes after normal config directives, -C processes before)
Start with an alternate config
apache2 -k start -f conf/[path/to/alt/config]
Basic website benchmarking
ab -n [number of requests] -c [number of concurrent requests] http(s)://URL
e.g. ab -n 50 -c 5 https://www.apple.com/
Git
Basic flow
add »» «« commit »» «« push »»
------------ --------------------- ---------------------- ----------------------
# Working # | # Staging (index) # | # Local Repository # | # Remote Repository #
------------ --------------------- ---------------------- ----------------------
«« reset «« reset [commit] «« fetch
«« pull «« pull
Start tracking new or modified files
git init
List new or modified files
git status
Show changes to files not yet staged
git diff
List the change dates and authors of a file
git blame [file]
Show change history
git log
Show local branches
git branch
Show all local and remote branches
git branch -av
Create a new branch
git branch [name for new branch]
Merge one branch into another
git checkout [branch to merge]
git merge [branch accepting merge]
Refresh a clone
git remote update
Get latest files from original and merge
git pull
Move file to Staging
git add [file]
Move all files to Staging
git add .
Commit all staged files
git commit -m "commit message"
Revert everything to last commit
git reset --hard
Send changes to original
git push
Mail Service
SPF, DKIM & DMARC
SPF: Which servers can send my mail; prevent spoofed messages by flagging if sent from non-approved servers.
DKIM: Use this key to verify the message you received is from my domain to prevent forged senders.
DMARC: Use my SPF and DKIM records plus my processing suggestion in my DMARC record to process mail from my domain; here is how I recommend you should handle messages I've sent and you've received.
SPF Records
• Can only have one SPF record per domain
• Prefix Qualifiers: "+" = Pass (accept), "-" = Fail (reject), "~" = SoftFail (accept but mark), "?" = Neutral (accept)
• SPF records are capped at 255 length strings but can have multiple strings (which should be concatenated into one), e.g. "v=spf … first string""second string…" should be treated by remote host as "v=spf … first stringsecond string…"
• Can contain no more than 10 name lookups per record (IP:xxx.xxx.xxx.xxx listings do not add to count, just a:example.com or include:example.com)
Common Hosted Service SPF Prefixes
_spf.mdp.comcast.net, _spf.google.com
DKIM Selectors
• The selector can be found in the DKIM Signature header in a message's source. Might be listed as "s=" or "selector=". Might need to use domain listed in DKIM header ("d=") when performing lookups
• Use [select]._domainkey.[FQDN] for lookups
• G Suite DKIM Selector: google
• Office365 DKIM Selector: selector1, selector2
How to Lookup SPF, DKIM & DMARC Records for a Domain
Get SPF: dig example.com TXT +short | grep spf
Get DKIM: dig [selector]._domainkey.example.com txt +short | awk '/DKIM1/'
Get DMARC: dig _dmarc.example.com TXT +short
e.g.
$ dig apple.com TXT +short | grep spf
"v=spf1 ip4:17.0.0.0/8 -all"
$ dig id0517._domainkey.id.apple.com txt | awk '/DKIM1/'
id0517._domainkey.id.apple.com. 1681 IN TXT "v=DKIM1\; k=rsa\; h=sha256\; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI6zFpff8bV1PBiqD9vjjt7ptIONmT1fTX0" "fG1m48lnqK9voiSXsTmx3zAwA2wTxHE2J3CCLTTx/t0Ma/4GVHfwl+DlVtDNAbkV8ykQyb/rc5vVAG0gcITdgTnAZbCle5dGIY3YSCi7FT3" "RGqmr+rfvdtOpBtloHCkN/I50993qnU1cGpIIGLRiL3GDqXep6lK1YbclJxG+GS9g/cdb74CHrRVWtHn757ddCDoDmw1Y2AN7cd1bKM3Sxm" "eFlvjS49y3KAxmvpKDedM9yEMNP/bzEHKXwFXvsz/o2vh9dzd32rUBv8PftKmeWYhQp4nGZIQD0ehtfzjZcdBrt62vn1QIDAQAB"
$ dig _dmarc.apple.com TXT +short
"v=DMARC1\;p=none\;ruf=mailto:d@ruf.agari.com\;rua=mailto:d@rua.agari.com\;fo=1"
See also *nix
Munki
Tk
Random Info
VLOOKUP
VLOOKUP=([What Value is your key to match; must be to left of columns being searched], [Range of cells to look through, e.g. $A$2:$G$220 (Don't forget to add the $)], [Place number of column to return results from], exact match)
Office 2016 activation (post-15.30) scheme
1. Office applications attempt to check-in every 8 hours and will remain fully operation for thirty days, even without a proper check-in with Microsoft
2. Users will start to receive a warning at 15 days to authenticate against Office 365
3. After 30 days without proper check-in or proper authentication, the Office applications switch to read-only operation
To force download the Outlook Offline Address Book (OAB)
/usr/bin/osascript -e 'tell application "Microsoft Outlook" to download oab of exchange account 1'
Get list of Microsoft application AppIDs
defaults read com.microsoft.autoupdate2
Adobe Updates Log location
~/Library/Logs/CreativeCloud/AdobeDownload/DLM.log
Adobe Service Addresses and Ports
*.adobe.com
*.adobe.io
*.adobesc.com
*.adobess.com
*.behance.net
*.ftcdn.net
*.licenses.adobe.com:80 and 443
*.okta.com
*.oktacdn.com
*.oktapreview.com
*.oobesaas.adobe.com:80 and 443
*.productrouter.adobe.com
*.services.adobe.com
*.typekit.com
*.typekit.net
*s3*.amazonaws.com
acc.adobeoobe.com
acrobat.com
activate.adobe.com:80 and 443
adbemdigitalmediarebootprod2.112.2o7.net
adobe.demdex.net
adobe.tt.omtrdc.net
adobeexchange.com/api
adobeid-na1.services.adobe.com:80 and 443
adobelogin.prod.ims.adobejanus.com
adobetag.com
aedash.adobe.com
ams.adobe.com:443
ans.oobesas.adobe.com
api-cna01.adobe-services.com
api.account.adobe.com
api.demandbase.com
ardownload.adobe.com 443
ardownload2.adobe.com 443
armmf.adobe.com
assets.adobe.com
assets.adobedtm.com
assets2.adobe.com
bam.nr-data.net
build.phonegap.com
businesscatalyst.com
ccmdl.adobe.com:80
ccmdls.adobe.com:80 and 443
cdn.tt.omtrdc.net
color.adobe.com
creative.adobe.com
digitalpublishing.acrobat.com
dnzuu5synxxfk.cloudfront.net
docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
dpm.demdex.net
echosign.adobe.com
federatedid-na1.services.adobe.com
helpx.adobe.com
ims-na1-cc1.adobelogin.com:80 and 443
ims-na1.adobelogin.com:80 and 443
ims-prod06.adobelogin.com:443
ims-prod07.adobelogin.com
interaction.adobe.com:443
kb2.adobe.:80
licensing.adobe.com
myportfolio.com
na1e-acc.services.adobe.com
na1r.services.adobe.com:80 and 443
ocsp.globalsign.com/rootr1
ocsp.verisign.com
oobe.adobe.com
photoshop.com
prod.acp.adobeoobe.com:443
prosite.com
scproxy-prod.adobecc.com
services.prod.ims.adobejanus.com
sstats.adobe.com
static.photoshop.com:80
store*.adobe.com
story.adobe.com
swupdl.adobe.com
swupmf.adobe.com
use.edgefonts.net
www-du1.adobe.com
www-prod.adobesunbreak.com
www.adobe.com
wwwimages*.adobe.com
Mac Plug-in and App Release Schedule
Adobe
Should release regular updates to Flash Player on the second Tuesday of the month. Updates to the Creative Cloud apps do not appear to have a regular release schedule.
https://helpx.adobe.com/security.html
Oracle
Regular Java updates are released four times a year on the Tuesday closest to the 17th of January, April, July and October
http://www.oracle.com/technetwork/topics/security/alerts-086861.html
Microsoft
Office 2016/2019 updates should be released on the second Tuesday of the month, but they slip around a lot.
https://macadmins.software
Firefox
Major versions roughly every eight weeks
https://wiki.mozilla.org/RapidRelease/Calendar
Google Chrome
Major versions roughly every six weeks
https://www.chromium.org/developers/calendar