1
0
mirror of https://github.com/tommytran732/tommytran.io synced 2024-12-04 15:01:33 -05:00

Compare commits

...

13 Commits

Author SHA1 Message Date
b6f6d0f809
Update project description 2024-11-26 05:24:25 -07:00
6dd3cb9a54
Add -o pipefail 2024-11-26 05:21:11 -07:00
e64ee7444a
Unpin hugo version 2024-11-26 05:19:55 -07:00
74536991d1
Fix security.txt 2024-11-26 05:17:54 -07:00
2e504dd622
Mention PGP mail 2024-11-26 03:26:16 -07:00
0cb807989f
Update security.txt 2024-11-26 03:22:28 -07:00
da075487ad
Update project description 2024-11-26 03:07:54 -07:00
8f81b81dab
Add Polarix containers 2024-11-26 03:02:43 -07:00
798e8bf32d
Remove buttons 2024-11-26 02:52:09 -07:00
8539a8b750
Clean up navigation 2024-11-26 02:49:41 -07:00
423f03b29c
Remove gitea from account list
Signed-off-by: Tommy <contact@tommytran.io>
2024-11-26 02:39:32 -07:00
0820cda312
Remove PrivacyGuides
Wouldn't wanna be associated with anything related to Jonah, ew.

Signed-off-by: Tommy <contact@tommytran.io>
2024-11-26 02:38:13 -07:00
3464573da8
Remove gitea
Signed-off-by: Tommy <contact@tommytran.io>
2024-11-26 02:35:22 -07:00
9 changed files with 39 additions and 46 deletions

View File

@ -1,10 +1,10 @@
#!/bin/bash
set -eu
set -euo pipefail
#curl -L -s https://api.github.com/repos/gohugoio/hugo/releases/latest | grep "browser_download_url.*extended.*linux-amd64.tar.gz" | cut -d : -f 2,3 | sed 's/"//g' | xargs wget
curl -L -s https://api.github.com/repos/gohugoio/hugo/releases/latest | grep "browser_download_url.*extended.*linux-amd64.tar.gz" | cut -d : -f 2,3 | sed 's/"//g' | xargs wget
wget https://github.com/gohugoio/hugo/releases/download/v0.119.0/hugo_0.119.0_Linux-64bit.tar.gz
# wget https://github.com/gohugoio/hugo/releases/download/v0.119.0/hugo_0.119.0_Linux-64bit.tar.gz
tar xvf ./*.tar.gz
chmod u+x ./hugo

View File

@ -45,17 +45,10 @@ params:
title: Tommy Tran
subtitle: "System Administrator and Technical Writer"
imageUrl: "/avatar.png"
buttons:
- name: About
url: about
- name: Contact
url: contact
socialIcons:
- name: github
url: "https://github.com/tommytran732"
- name: gitea
url: "https://git.tommytran.io/Tomster"
- name: matrix
url: "https://invite.arcticfoxes.net/#/@tommy:arcticfoxes.net"
- name: telegram
@ -104,22 +97,26 @@ markup:
menu:
main:
- identifier: About
name: About
url: /about/
weight: 10
- identifier: Blog
name: Blog
url: https://privsec.dev
weight: 10
weight: 20
- identifier: Contact
name: Contact
url: /contact/
weight: 30
- identifier: Projects
name: Projects
url: /projects/
weight: 20
- identifier: Packages
name: Packages
url: /packages/
weight: 30
weight: 40
- identifier: PGP
name: PGP
url: tommy.asc
weight: 40
weight: 50
privacy:
disqus:

View File

@ -9,6 +9,6 @@ Hey there 👋
My name is Thien, but I mostly go by "Tommy" nowadays. I am an Linux system administrator around 4 years of experience. I am familiar with most major Linux families, from Red Hat to Debian to SUSE to Arch Linux. Recently, my interest has shifted to immutable distributions such as Fedora Silverblue/CoreOS and openSUSE MicroOS.
Like most Linux users, I am an open source enthusiast and publish most of the projects made in my free time on [GitHub](https://github.com/tommytran732) and [my own Gitea instance](https://git.tommytran.io/tomster). I also made a couple of small contributions to various projets on GitHub as well.
Like most Linux users, I am an open source enthusiast and publish most of the projects made in my free time on [GitHub](https://github.com/tommytran732). I also made a couple of small contributions to various projets on GitHub as well.
If you are active in the privacy communities on Matrix, you may recognize me. I used to be a collaborator for [PrivacyGuides.org](https://privacyguides.org) and wrote a large portion of the site from around October 2021 - July 2022. Now, I am now working on my own website - [PrivSec.dev](https://privsec.dev) - with a couple of friends I "met" through [GrapheneOS](https://grapheneos.org). Oh, while we are on this topic, I am also a moderator in the official GrapheneOS channels as well (though not a developer or project member). Or, you may just know me as that one guy who loves throwing a hypervisor at every problem he encounters, typical of a Qubes OS user.
I have a collaborative blog - [PrivSec.dev](https://privsec.dev) - with a couple of friends I "met" through [GrapheneOS](https://grapheneos.org).

View File

@ -15,11 +15,13 @@ My Telegram is [TommyTran732](https://t.me/tommytran732). I do not check it as o
## Email
If you prefer to reach out to me via email, my address is [contact@tommytran.io](mailto:contact@tommytran.io). I do not use PGP for emails. Aliases:
If you prefer to reach out to me via email, my address is [contact@tommytran.io](mailto:contact@tommytran.io). Aliases:
- [tommy@privsec.dev](mailto:tommy@privsec.dev)
- [tommy@arcticfoxes.net](mailto:tommy@arcticfoxes.net)
Please use encryption if possible. My PGP key is available [here](https://tommytran.io/tommy.asc).
## Other Accounts
Discord:
@ -36,11 +38,10 @@ Reddit:
My Git accounts:
- [GitHub](https://github.com/tommytran732)
- [GitLab](https://gitlab.com/tommytran732) (inactive)
- [Gitea](https://git.tommytran.io/tomster)
Packaging:
- [AUR](https://aur.archlinux.org/account/TommyTran732) (login required)
- [Docker Hub](https://hub.docker.com/u/tommytran732) (inactive)
- [Quay.io](https://quay.io/tommytran732)
- [Quay.io](https://quay.io/tommytran732) (inactive)
Please by wary of anyone claiming to be me or using the handle "TommyTran732" reaching out to you. Chances are, they are an impersonator. You can always contact me via Matrix or Email for identity verification.

View File

@ -1,15 +0,0 @@
---
title: "Packages"
date: 2022-09-03
---
## Synapse
![Matrix](/images/matrix.jpg)
I have a [simple fork](https://github.com/tommytran732/Synapse-Docker) of [Wonderfall's hardened Synapse Docker image](https://github.com/Wonderfall/docker-synapse) with the [Mjolnir module](https://github.com/matrix-org/mjolnir/blob/main/docs/synapse_module.md) support and the default (as opposed to light) variant of the [Hardened Memory Allocator](https://github.com/GrapheneOS/hardened_malloc).
You can obtain the image by pulling `ghcr.io/tommytran732/synapse` or `quay.io/tommytran732/synapse`.
## Matrix.to
I made an Alpine Docker container for [Matrix.to](https://matrix.to) that you obtain by pulling `ghcr.io/tommytran732/matrix.to`. The default instance has been changed from [Element.io](https://app.element.io) to [ArcticFoxes.net](https://element.arcticfoxes.net).

View File

@ -11,15 +11,25 @@ date: 2022-09-02
We focus on in-depth system configuration, security analysis, and software/hardware recommendations. Our site is based on technical merits, not ideologies and politics.
## Polarix Containers
![Polarix Containers](/images/containers.jpg)
[Polarix Containers](https://github.com/Polarix-Containers) is a collection of OCI containers aiming to improve security over upstream builds.
Some containers are simple daily rebuilds of upstream containers. Others are remade from scratch with Alpine Linux/Red Hat UBI and unprivileged users. hardened_malloc is included in most builds.
## ArcticFoxes.net
![ArcticFoxes.net](/images/arcticfoxes.png)
[ArcticFoxes.net](https://arcticfoxes.net) is a group of self hosted and federated services run by me. It consists of:
- [A Matrix server](https://matrix.arcticfoxes.net) using my [hardened docker image](https://github.com/tommytran732/Synapse-Docker). I also have a [web client](https://element.arcticfoxes.net) and TURN server as accessories for the Matrix server.
- [A Matrix server](https://matrix.arcticfoxes.net).
- [A OpenVPN to ONC converter](onc.arcticfoxes.net). This is a simple fork of [thomkeh/ovpn2onc](https://github.com/thomkeh/ovpn2onc) with a dark theme.
It also formerly included Nitter and Signal TLS Proxy instances.
Most of the configurations and deployment files are available on [GitHub](https://github.com/ArcticFoxes-net).
## Linux Setup Scripts
@ -32,7 +42,7 @@ Features include, but are not limited to:
- Removal of unnecessary packages
- Hardened boot parameters
- Hardened sysctl settings
- Kernel module blacklist from Whonix's [security-misc](https://github.com/Kicksecure/security-misc/blob/master/etc/modprobe.d/30_security-misc.conf)
- Kernel module blacklist from [secureblue](https://github.com/secureblue/secureblue)
- Mac Address randomization for desktop installations
- SSH client and server hardening
- Installation of Hardened Malloc on Red Hat systems

View File

@ -2,15 +2,15 @@
Hash: SHA256
Contact: https://matrix.to/#/@tommy:arcticfoxes.net
Contact: https://simplex.chat/contact#/?v=1-4&smp=smp%3A%2F%2FN_McQS3F9TGoh4ER0QstUf55kGnNSd-wXfNPZ7HukcM%3D%40smp19.simplex.im%2F03zrijd3pM0hi2AG6XLiMMpxEsjEqj_5%23%2F%3Fv%3D1-2%26dh%3DMCowBQYDK2VuAyEAx3xSpEh_hRUiGatqlRxGajqIcg6H6xc9jf-2UfeJGA4%253D%26srv%3Di53bbtoqhlc365k6kxzwdp5w3cdt433s7bwh3y32rcbml2vztiyyz5id.onion
Contact: mailto:contact@tommytran.io
Expires: 2026-12-24T00:00:00.000Z
Expires: 2028-01-01T00:00:00.000Z
Encryption: https://tommytran.io/tommy.asc
Preferred-Languages: en-US, vi-VN
Canonical: https://tommytran.io/security.txt
Canonical: https://tommytran.io/.well-known/security.txt
-----BEGIN PGP SIGNATURE-----
iHUEARYIAB0WIQR7t0D0xuMPQ9QHbwNVXJAqNOyWjwUCZZEPagAKCRBVXJAqNOyW
j3U0AQCiNSKueVaa+w7W7EU3bF7gb1AwfBg0p7WjUo+TNxqB3gEA3XVT2Dpb4vm1
Cg80jbBEbPkOEBwIWwBl8Jb0e0e8Jgo=
=vLVh
iHUEARYIAB0WIQR7t0D0xuMPQ9QHbwNVXJAqNOyWjwUCZ0W8GAAKCRBVXJAqNOyW
j5OuAP9KIR8b6U8o0/4brFKsr+PPJeIdbWuisrvh0uaEMB+OpQD/do5IxxZtGEEC
9wc7VsMFgjhjYX0xDSAfnHaYsw8Cuw4=
=5kZo
-----END PGP SIGNATURE-----

Binary file not shown.

After

Width:  |  Height:  |  Size: 1.8 MiB

Binary file not shown.

Before

Width:  |  Height:  |  Size: 69 KiB