Automated rebuilding of varnish modules using docker …
Category: sysadmin
Time to update to Varnish 6?
Random config dump for varnish 6 + hitch on Debian Linux. (includes http2 support)
AWS vs Azure … round 1, fight!
So, for whatever reason, I need to move some virtual machines and things from AWS (EC2, RDS), to an Azure. I have a few years experience with AWS, but until recently I’ve not really used Azure …. Here are some initial notes…… AWS tooling feels more mature (with the ‘stock’ ansible that ships with Ubuntu… Continue reading AWS vs Azure … round 1, fight!
docker proxy image download
Docker doesn’t like me for some reason, and I often get really bad download speeds from my home IP address. One crude fix, is use an external server I can access as a SOCKS proxy. To do so, edit / create /etc/systemd/system/docker.service.d/http-proxy.conf and put in it : [Service] Environment=”HTTP_PROXY=socks5://localhost:8888″ Then, restart/reload systemd ( systemctl daemon-reload… Continue reading docker proxy image download
rsyslog filtering (with loggly)
Filtering rsyslog output being sent to loggly (e.g. from an apache imfile input)
Using hitch with varnish on Debian Jessie
I ended up needing to install hitch on a server recently, so the https:// traffic could be routed through Varnish (along with the existing ‘http’ stuff) for performance reasons. The server only runs WordPress sites, so there are WordPress specific things in the Varnish configuration (vcl) file below. Versions: Varnish 5.2, Hitch 1.4.4, Apache 2.4 and… Continue reading Using hitch with varnish on Debian Jessie
postsrsd monit config
This might work to configure monit on Debian (Jessie) to monitor postsrsd. check process postsrsd matching “/usr/sbin/postsrsd” group postsrsd start program = “/etc/init.d/postsrsd start” stop program = “/etc/init.d/postsrsd stop” if failed host localhost port 10001 then restart if failed host localhost port 10002 then restart
Random wordpress malware
A customer’s server was compromised ages ago with lots of lots of WordPress malware. The developers are now on top of it, thanks to a combination of : * Removing wordpress’s write permission (moving over to just use SFTP) * Adding maldet (Linux Malware Detection). * Tightening up the firewall so only incoming connections to… Continue reading Random wordpress malware
adventures with cgroups for resource control
What? Control Groups aka cgroups – see the docs . Resource control and monitoring. Some examples follow for throttling i/o speed(s) for a process control group (cgroup).
Avoiding unnecessary commands in bash….
Some alternative bash things…. ( avoiding unneecessary use of cat / awk / grep …. )