s3fs-fuse and AWS Elastic Beanstalk

If you’re using WordPress or another web application that utilizes uploads in a load balanced and autoscaled environment, you know what a pain it can be to manage the uploads so they don’t disappear when an instance shuts down. Likewise, you need to make sure that every instance would have to have a copy of the resources because a request could go to any of them. Continue Reading…

Mercurial: Autopushing changes from a central repository

When you have hundreds of applications managed via a central repository which are checked out to multiple production and staging servers, it can become burdensome to manage and/or remember where every working copy of that code resides. We recently ran into this issue at my work so we needed a solution that was going to be developer friendly and easy to manage on a per-repository basis. Continue Reading…

Mercurial: GPG Sign Tags

I recently needed to write a pretxnchangegroup hook that would check if any new tags had been pushed, and if so, if they were GPG signed. I had the requirement that the changeset with the tag be signed, not the changeset that added the tag. I’m not a python coder, so I opted to go for a simple bash script to accomplish the task. The only option the script has is whether or not the hook can fail if a changeset does not have a valid signature. If the option is disabled, it will only throw an error, but the hook will still pass. Continue Reading…

L2TP/IPSec in Ubuntu 10.04 et al.

I’ve spent the last week looking through the web at everything I could possibly find in an effort to find some shred of information that made some sort of sense and didn’t take a rocket scientist to configure. I found plenty of instructions on manually installing Openswan, xl2tp and modifying their configuration files and entering a pre-shared key here, or putting a certificate there, blah, blah blah, blah blah. After many failed attempts, I was pretty much ready to give up. Continue Reading…

DDoS-Deflate Revisited

I recently had the task at work of setting up a simple DoS protection for our public web server. After poking around some bit, I settled on using DDoS-Deflate. We use Ubuntu 10.04 on our server and unfortunately, the script seems to have been last updated over 5 years ago and I needed some modifications to make it work in our environment. I also didn’t like the idea of the install script needing to download files from some web server and have packaged it up all in one (linked at the end of this post).

Continue Reading…