有CDN的情况下让nginx获取真实IP

By default, Cloudflare acts as a reverse proxy.  As such, all connections to your origin web server come from Cloudflare IP addresses, and there are some issues that you need to aware of:

  • If your web application is using the originating IP of the visitor as part of its logic, it will now use a Cloudflare IP address instead
  • If you use the content of your access logs, they now contain a Cloudflare IP address as the  $remote_addr

However, Cloudflare follows industry standards and includes the visitor’s IP address in the X-Forwarded-For header. We also add a CF-Connecting-IP header that may be used as well. You can use these headers to either restore the originating IP of your visitor for your web application or to be include it in your logs.

 

Restoring the original visitor IP for your web application

Please use the following Nginx module and the following configuration parameters:

That list of prefixes needs to be updated regularly, and we publish the full list in Cloudflare IP addresses.
Including the original visitor IP in your logs

You can include the variables $http_cf_connecting_ip and $http_x_forwarded_for in the log_format directive.

Also see: Cloudflare and Nginx

MacOS进程报错accept: too many open files解决方法

It seems like there is an entirely different method for changing the open files limit for each version of OS X!

For OS X Sierra (10.12.X) you need to:

1. Create a file at /Library/LaunchDaemons/limit.maxfiles.plist and paste the following in (feel free to change the two numbers (which are the soft and hard limits, respectively):

2. Change the owner of your new file:

3. Load these new settings:

4. Finally, check that the limits are correct:

电信光猫HG2xx超级管理员权限获取方法

测试环境:

设备基本信息

设备型号: HG225GS
设备标识号: xxxxxxxxxxx
硬件版本: BCM.V2.0
软件版本: HG225GS_D1.00_JS1606

1、在浏览器上输入 http://192.168.1.1/logoffaccount.html,设置隐藏用户改为启用,这样就可以用工程账号登陆了。

2、登录工程帐号(用户名:fiberhomehg2x0密码:hg2x0),登录网址http://192.168.1.1/

3.打开http://192.168.1.1/backupsettings.conf下载“backupsettings.conf文件”,用记事本打开,Ctrl+F查找“password”,复制<Password>标记中间一行64BASE加密的字符串。

4.telecomadmin+密码登录

Caddy无法启动报错:caddy.service: Main process exited, code=exited, status=1/FAILURE 解决方案

https://caddy.community/t/caddy-wont-start-could-not-start-http-server-for-challenge-listen-tcp-80-bind-permission-denied/2543

修改服务文件,取消以下注释:

;CapabilityBoundingSet=CAP_NET_BIND_SERVICE
;AmbientCapabilities=CAP_NET_BIND_SERVICE
;NoNewPrivileges=true

开启unicorn对NEON(STP SIMD)的支持

IDA切换ARM和THUMB指令

ARM AND THUMB MODE SWITCH INSTRUCTIONS

This processor has two instruction encodings: ARM and THUMB.
IDA allows to specify the encoding mode for every single instruction.
For this IDA uses a virtual register T. If its value is zero, then
the ARM mode is used, otherwise the THUMB mode is used.
You can change the value of the register T using
the ‘change segment register value’ command
(the canonical hotkey is Alt-G)