The internet is the second source of opinions (first being Politicians). But what does that have to do with Technical Blogs? Recently I embarked on a security focused project of adding 2 Factor authentication to the some network authentication systems at work. A few google searches later and you’ll find a bunch of results for ‘How to configure Radius with Google Continue reading Not all technical blog posts are created equal.
HAProxy is offering some Free Aloha Pockets for Students & Interns for their Labs! I confess I did email them and hope they opt to send me a pair. In either case, over the next few weeks I’m going to test using haproxy instead of nginx as the frontend for my apache2 site. This must do HTTP/2, SSL and some headers Continue reading Next Steps, HAProxy!
So if you were to connect to www.jacobdevans.com via IPv6 you likely also have IPv4 connectivity, or if you connect via IPv4 you may or may not have IPv6. But what about IPv6 ONLY Clients, can you load the site? Well Yes Actually, you can load ths site via IPv6 only, but here’s what you’ll lose. Serverfault.com: at the right Continue reading IPv6 Only (Lonely)
So followup post, I was having some issues with http2 browser support since I was missing ALPN, so after a lot of trial and error, here’s what I ended up with. Partially followed https://fak3r.com/2015/09/29/howto-build-nginx-with-http-2-support/ with a few differences. I installed openssl1.0.2h from this ppa: https://launchpad.net/~ondrej/+archive/ubuntu/php And then used nginx 1.11.1 from http://nginx.org/download/ and also grabbed the headers-more-nginx-module-0.30 and ngx_pagespeed-master off Continue reading HTTP2 without ALPN is not quite HTTP2
So after a long debate I’ve decided to drop cloud-flare in lieu of HTTP/2 support. A few months ago I added Lets-encrypt my (3) MX Servers, https://jersey.jacobdevans.com for example, which means I also added Mutual-TLS Email support (yay security and encryption). Since that was going so well I decided to go with nginx as an SSL proxy and keep apache Continue reading SSL Everything
Since I started working in DevOps, ansible has been a key system to deploy and maintain systems and applications. One of the first systems I converted is now available for download on the ansible-galaxy. This site is a great place to get pre-made scripts to deploy solutions. So what does it do? It configures a list of raspberry pi’s to Continue reading My first Ansible-Galaxy role!