Nginx: enable HSTS (force SSL for users)

18 September 2014 in Debian, Hi-Tech, Linux, Red Hat, Security, Web

I recently heard of HSTS which is a way to force users to come back to your website in SSL if they’ve already be to HTTPS once. It is simple, just add this line: # HSTS (force users to come in SSL if they've already been once) add_header Strict-Transport-Security "max-age=31536000; includeSubdomains"; If you want to have an overview of a complete configuration with it, look at the my wiki.

Feedbacks: Upgrading from PHP 5.4 to 5.5

16 September 2014 in Debian, Hi-Tech, Linux

Because of the recent announce from DotDeb about PHP 5.6 availability on Debian, I saw that I totally forgot to move from PHP 5.4 to 5.5. As I’m hosting several WordPress, Mediawiki, Piwik and other PHP web software, I was not very comfortable with that migration. I knew that the major change was on PHP cache. I was intensively using APC cache but in PHP 5.5, it is deprecated and Opcache replace it.

ElasticSearch setup HA and basic usages

10 September 2014 in Databases, Debian, Hi-Tech, Linux, NoSQL

I recently played with ElasticSearch Cluster and I totally fall in love! How easy it is, everything is automatic, it works perfectly, wowwww!!! I made a little documentation on how to setup one, you can find it there. ElasticSearch is a really powerful solution and I really like working with it. If you’re searching a full text search solution, try ElasticSearch, you’ll be happy!

Packer: 1 command line to create a Debian VirtualBox/Vagrant box

4 September 2014 in Debian, Hi-Tech, Linux, Vagrant

I recently wanted to update my Vagrant box running Debian Wheezy. The problem is, the box size is growing on each updates for several reasons. And I prefer to create a new box from scratch on any new Debian release. Starting from scratch each time is a little bit boring, that’s why I created a preseed file (french). That made the install automatically, however I always had to do other step by hands (or need to write a script for it).

Naemon/Nagios: LXC check resources

2 September 2014 in Debian, Developement, Hi-Tech, Linux, LXC, Nagios

You may know that I really like LXC and the major problem when you want to use that solution in production is: how do you monitor memory and CPU? Regarding the CPU side, I do not have an easy answer for the moment :-(. However regarding the memory, I’ve made a Nagios/Naemon check which will check the memory (RAM) and SWAP of a container. Here is how to use it:

LXC 1.0 on Debian Wheezy

29 August 2014 in Debian, Hi-Tech, Linux, LXC

I’m using for my own servers LXC for about a year now. I’m still fed up about bugs introduced by the beta version of LXC (0.8b) present in Debian Wheezy. As now LXC project has released a stable version, I’ve looked at the Debian backports, but didn’t have any chance to find a newer version on it :-(. However, a version 1.0.4 exist on Debian Jessie. I took the Debian sources and recompiled them on Wheezy (available here).

Nagios/Naemon: Free Mobile SMS notification

27 August 2014 in Debian, Hi-Tech, Linux, Nagios, Web

Thanks to Free Mobile (French mobile provider) to provides an SMS API. I enabled it for my own monitoring escalation, just in case I have problem receiving emails. I’ve made a short documentation on how to setup SMS notification through Free Mobile for Nagios or Naemon (in french). Enjoy :-)