Compte rendu du Meetup ArchLinux France du 10 Nov. 2015

Ce 10 Novembre 2015 a eu lieu le second meetup ArchLinux France, chez BlaBlaCar à Paris ! Pour rappel le premier Meetup avait eu lieu en Octobre 2014. Pour cette nouvelle édition, il y avait 5 présentations, et près de 70 personnes ! (vous pouvez retrouver le programme sur meetup).

»
Author's profile picture Skunnyk on archlinux

Enhance Apache Cassandra Logging

Cassandra usually output all its logs in a system.log file. It uses log4j old 1.2 version for cassandra 2.0, and since 2.1, logback, which of course use different syntax :)
Logs can be enhanced with some configuration. These explanations works with Cassandra 2.0.x and Cassandra 2.1.x, I haven't tested others versions yet.

»
Author's profile picture Skunnyk on cassandra

Working OCSP Stapling setup with free Wosign Certificate on Nginx

Chinese CA WoSign issues free multi-domain SSL certificates valid for 3 years. You can read some informations on how to get theses free certificates on https://www.ohling.org/blog/2015/02/wosign-free-2y-ssl-certificate.html.
FYI, I received my certificate around 1hour after submission :)

»
Author's profile picture Skunnyk

Awesome Weekly Newsletters !

Like the well known awesome-awesomeness repository on Github, below, you'll find a list of Weekly (some are not so weekly ^^) newsletters.

»
Author's profile picture Puckel_

How to change Cassandra compaction strategy on a production cluster

I'll talk about changing Cassandra CompactionStrategy on a live production Cluster.
First of all, an extract of the Cassandra documentation :

»
Author's profile picture Skunnyk on cassandra

HTTP alternative services and opportunistic encryption

HTTP Alternative services allow an origin's resources to be authoritatively available at a separate network location, possibly accessed with a different protocol configuration.
Opportunistic Encryption (OE) provides unauthenticated encryption over TLS for data that would otherwise be carried via clear text. It allows a http:// connection to use secure resources.

»
Author's profile picture Skunnyk

News from Xfce 4.12, part 3

A bunch of news from the development of Xfce 4.12 !
Since my previous post in november (read it !) , many things have happened.
First, the most awaited news ... wait for it... a date has been decided ! 4.12 will released by the last week end of February 2015 ! (yes, 1 week from now)

»
Author's profile picture Skunnyk on xfce

News from xfce 4.12, part 2 !

Update 19/02/2015 : A new post is available !

»
Author's profile picture Skunnyk on xfce

Slides du Premier Meetup Archlinux France

Ce 21 Octobre a eu lieu le premier meetup Archlinux France, dans les locaux d'Arkena à Paris.

»
Author's profile picture Skunnyk on archlinux

Nginx - create a cache based on upstream response time

The problem : be able to cache a backend response if it took more than 5 seconds. If not, don't cache it!
A good challenge from @florentsolt. He solves the problem with a nodejs reverse proxy behind nginx, but I prefer a pure nginx implementation ;)

»
Author's profile picture Skunnyk

Remote code execution through bash CVE-2014-6271

A new vulnerability has been discovered in bash, related to how environment variables are processed. You can read more on redhat security blog. This vulnerability can be used to execute remote code, even via ssh, if the remote shell is bash.

»
Author's profile picture Skunnyk

News from Xfce !

Update 19/11/2014 : A new post is available !

Some news from Xfce, my favourite Desktop Environment, that I use since something like 2006.

»
Author's profile picture Skunnyk on xfce

Chiffrement entre serveurs avec starttls et postfix

Depuis quelques temps, la question du chiffrement des mails en transit (de serveurs à serveurs) revient d'actualité. On peut voir google qui diffuse des statistiques dans son report "Safer email",

»
Author's profile picture Skunnyk

Fail2ban on FreeBSD

Fail2ban scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits…
It can be usefull to ban bots who try to bruteforce your ssh and flood your logs (another solution is to restrict allowed IP or change sshd port).

»
Author's profile picture Skunnyk

Archlinux.fr passé, présent, futur

Archlinux.fr est le principal site francophone autour de la distribution Archlinux. Comme tout site animé par une communauté, il a subi des hauts et des bas au niveau de son activité. Je vais tenter de faire un état des lieux et des projets futurs.

»
Author's profile picture Skunnyk on archlinux