Archive for category Sysadmin

Let’s Encrypt ALL THE THINGS

Got my first domain using a cert from Let’s Encrypt in under ~10 minutes, including setting up Let’s Encrypt itself. Yes, this is rather game changing. Now to write ansible playbooks around it, and figure out how to get it working for proxied domains automatically.

,

No Comments

Generating a SSL key + CSR

Because I’ve had to look it up multiple times Generate the private key openssl genrsa -out domain.tld.key 2048 then, generate the CSR openssl req -sha256 -new -key domain.tld.key -out domain.tld.csr I’m certain there’s a one liner to do this, but didn’t find anything while looking (briefly).

, , ,

No Comments

nginx-pagespeed

Just bundled it into copr, so now there’s a yum repo for fedora 20, 21, 22 and rawhide & CentOS 6+7 – copr.fedoraproject.org/coprs/kyl191/nginx-pagespeed/ Amusingly, Rawhide changed the ABI, which the configure script had problems with. But I found a solution, which is going into ngx_pagespeed – github.com/pagespeed/ngx_pagespeed/issues/942. Documentation fix until the code is brought up […]

,

No Comments

Building Nginx SRPMS

Companion to my earlier post, this actually has commands

,

No Comments

Path to building Nginx Mainline RPMs for Fedora & CentOS

Or: How I spent an afternoon doing a deep dive into the RPM spec and solving a problem for myself tl;dr – Nginx Mainline packages are being built for Fedora & CentOS at copr.fedoraproject.org/coprs/kyl191/nginx-mainline/ My webserver’s running nginx 1.4.7, a version that hasn’t gotten non-bugfix attention since March 2013, according to the changelog. Oddly enough […]

, ,

1 Comment

My State of Serving, aka VPS recap

So I wrote a bunch about VPSes a few months ago, and what I thought my future looked like with them. Well, a bunch has changed since then, and will going forward, so let’s go: Full out cloud hosting Still good for buy-as-you-need systems, still not right for my usecase. Other than reading about price […]

No Comments

Ansible gotchas

Tasks do not like having the remote_user changed mid-playbook if you specify a SSH password Specifically, having an ‘ansible’ user created as the first task, then using that for everything in the rest of the playbook doesn’t work because ansible will always attempt to use the declared password for the newly created user, which promptly […]

No Comments

My state of VPSes

The VPS market is really really interesting to watch. Maybe it’s just me, but the idea of being able to get a year of a decent system for the price of a pizza is fascinating – and somewhat dangerous to my wallet. At my peak, I had 4 VPSes running at the same time – and […]

,

3 Comments

Booting from SD Card on a X230

The SD Card slot is unfortunately on the PCI bus, so it doesn’t show up as a bootable device. Solution: Have a /boot partition on an internal drive, point that at the SD card. Reclaimed ~900MB from Lenovo’s system restore partition to make a /boot partition. GRUB was added to the internal drive. As suggested […]

No Comments

TF2 on DigitalOcean

Or how I spent 3 cents on Digital Ocean to play MvM with my friends for 2 hours. Maybe the MvM servers were having issues, but 4 different people trying to create a game didn’t work (or at least TF2 kept on saying ‘connection error’ – for everyone. So I decided to try and spin […]

, ,

1 Comment