Alteroot:~#

On the root again

New blog engine!

Ok, the last article was 5 years ago, setup was 12 years old, time for a revamp!

Oh boy, 3 years without any blogpost ! So much things happened in the Xfce world!
First, we finally released Xfce 4.14 in August 2019, more than 4 years of effort, a migration to gtk3, and so much new things, but you already know that, and you surely already run it. We are now working on Xfce 4.16 , with the hope to release it this year (yes, in 2020) !
You can read more development news on our blog.
Some buzzwords: new icons, CSD, drop of gtk2 support, UI revamp, and tons of other stuff.

Road to Xfce 4.14, part 2

More than 1 year since my latest blogpost… wow !
Lots of activities these last months, on code and infra side :)
But the good news is that we had done a lots of background tasks (see the Infrastructure section) !

Road to Xfce 4.14

The looong road to xfce 4.14. I hope you still want some news about Xfce !
As usual, the xfce development is slow, has some organisation problems (only few members have access to servers, and are often not present), and lack “core” maintainers/mentors. But hey, we do our best :).

Compte rendu du Meetup ArchLinux France du 10 Nov. 2015

Ce 10 Novembre 2015 a eu lieu le second meetup ArchLinux France, chez BlaBlaCar à Paris ! Pour rappel le premier Meetup avait eu lieu en Octobre 2014. Pour cette nouvelle édition, il y avait 5 présentations, et près de 70 personnes ! (vous pouvez retrouver le programme sur meetup).

Enhance Apache Cassandra Logging

Cassandra usually output all its logs in a system.log file. It uses log4j old 1.2 version for cassandra 2.0, and since 2.1, logback, which of course use different syntax :)
Logs can be enhanced with some configuration. These explanations works with Cassandra 2.0.x and Cassandra 2.1.x, I haven’t tested others versions yet.

Working OCSP Stapling setup with free Wosign Certificate on Nginx

Chinese CA WoSign issues free multi-domain SSL certificates valid for 3 years. You can read some informations on how to get theses free certificates on https://www.ohling.org/blog/2015/02/wosign-free-2y-ssl-certificate.html.
FYI, I received my certificate around 1hour after submission :)

Awesome Weekly Newsletters !

Like the well known awesome-awesomeness repository on Github, below, you’ll find a list of Weekly (some are not so weekly ^^) newsletters.

How to change Cassandra compaction strategy on a production cluster

I’ll talk about changing Cassandra CompactionStrategy on a live production Cluster.
First of all, an extract of the Cassandra documentation :

HTTP alternative services and opportunistic encryption

HTTP Alternative services allow an origin’s resources to be authoritatively available at a separate network location, possibly accessed with a different protocol configuration.
Opportunistic Encryption (OE) provides unauthenticated encryption over TLS for data that would otherwise be carried via clear text. It allows a http:// connection to use secure resources.

News from Xfce 4.12, part 3

A bunch of news from the development of Xfce 4.12 !
Since my previous post in november (read it !) , many things have happened.
First, the most awaited news … wait for it… a date has been decided ! 4.12 will released by the last week end of February 2015 ! (yes, 1 week from now)

News from xfce 4.12, part 2 !

Update 19/02/2015 : A new post is available !

Following my first post about the Xfce development status 4 months ago (you can (re) read it here), let’s go for a bunch of reviews of the last commits.

Slides du Premier Meetup Archlinux France

Ce 21 Octobre a eu lieu le premier meetup Archlinux France, dans les locaux d’Arkena à Paris.

Nginx - create a cache based on upstream response time

The problem : be able to cache a backend response if it took more than 5 seconds. If not, don’t cache it!
A good challenge from @florentsolt. He solves the problem with a nodejs reverse proxy behind nginx, but I prefer a pure nginx implementation ;)

Remote code execution through bash CVE-2014-6271

A new vulnerability has been discovered in bash, related to how environment variables are processed. You can read more on redhat security blog. This vulnerability can be used to execute remote code, even via ssh, if the remote shell is bash.

News from Xfce !

Update 19/11/2014 : A new post is available !

Some news from Xfce, my favourite Desktop Environment, that I use since something like 2006.

Chiffrement entre serveurs avec starttls et postfix

Depuis quelques temps, la question du chiffrement des mails en transit (de serveurs à serveurs) revient d’actualité. On peut voir google qui diffuse des statistiques dans son report “Safer email”,

Fail2ban on FreeBSD

Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs – too many password failures, seeking for exploits…
It can be usefull to ban bots who try to bruteforce your ssh and flood your logs (another solution is to restrict allowed IP or change sshd port).

Archlinux.fr passé, présent, futur

Archlinux.fr est le principal site francophone autour de la distribution Archlinux. Comme tout site animé par une communauté, il a subi des hauts et des bas au niveau de son activité. Je vais tenter de faire un état des lieux et des projets futurs.

Replace a dead node in Cassandra

Note (June 2020): this article is old and not really revelant anymore. If you use a modern version of cassandra, look at -Dcassandra.replace_address_first_boot option !

Mise en place de DKIM avec Postfix

Cette documentation décrit la mise en place de DKIM (DomainKeys Identified Mail), une norme d’authentification du nom de domaine de l’expéditeur d’un mail.

Xfce - Xfwm4 zoom mode in 4.12

Xfce is my main desktop environment since more than 6 years, and I really like it. I try to make some patch from time to time, and if you search a project to contribute, it’s here ;-)

Use KDEConnect with android and Xfce

Update 14/06/2014 : kdeconnect is in community + typo

KdeConnect allow you to share notifications (sms, phone calls), files, clipboard and more things between your Android and your Linux desktop.

Playing with the new ownCloud share API

I use OwnCloud since v2, and really enjoy it, mainly since desktop clients are available. I can easily sync a file if I copy it in my ~/ownCloud/ directory (dropbox style) !

Mise en place d'un serveur mail - Postfix, Dspam et Dovecot

Update 14/01/14 : ajout de la liste complète des paquets nécessaires et correction de quelques typos. Thx @Puckel_ !

Share on Wallabag from Netvibes

Update 2014/30/01 : Poche is now Wallabag ! (see the blog for more informations). A WAAS (Wallabag As A Service) is available on Framabag :)

Setup de Mozilla Sync Server

Firefox sync est disponible depuis Firefox 4, et il est possible de l’installer en auto hébergement. Je m’en sers pour synchroniser firefox desktop avec celui de mon android. L’installation est relativement simple, surtout sur une Debian, il suffit de suivre la documentation de mozilla.