Some thing

Tuesday, 11 July 2006

Over the past two days I’ve started two community things:

  • The Debian Administration website now allows users to submit adverts which will be intermixed with the Google Adsense ones.
  • I’m looking at renting a dedicated host to share out as a semi-co-op with about six people.

The adverts are basically modelled after Kuro5hin.org’s community adverts – the difference is these are free. (Should remain free, but no promises.)

The idea of sharing out a Xen host with a few people means I’d get some seperation and wouldn’t overload my existing host which is getting a little strained with the Debian-Admin site, mostly because of my own lazy coding, and popularity.

Still work in progress. I’ve priced a couple of companies for the hardware and support and figure that it can be run just above cost with 6x (£10 a month). Still waiting for a few people to get back to me about whether they’ll commit to a years worth of cash up front..

| 20 comments.

 

Comments On This Entry

[gravitar] sno

Submitted at 11:23:42 on 24 october 2013

wow time flies! good luck with the bedroom re-org

[gravitar] Charles Darke

Submitted at 21:04:52 on 24 october 2013

Good luck! And I hope your plan works out for you! :)

[gravitar] Nux

Submitted at 15:39:11 on 26 october 2013

Wow, quite dramatic changes in your life.

I wish you good luck! :-)

What do you plan for your open source projects? Will you still "attend" to them?


[author] Steve

Submitted at 16:05:46 on 26 october 2013

I can't imagine giving such things up, no. Even if I were besieged upon all sides by wailing bairns!

[gravitar] Nux

Submitted at 00:05:51 on 27 october 2013

Hehe, good good!

[gravitar] John

Submitted at 16:54:11 on 30 october 2013

There is a lot of good things to say about Bytemark, But on every one of the 5 days since you posted you have left, my clients who use the BigV cloud service had outages. An odd coincidence.

[author] Steve Kemp

Submitted at 13:35:08 on 31 october 2013

Sadly that is just an unfortunate coincidence.

[gravitar] Pete Foster

Submitted at 18:52:35 on 29 march 2014

I realised the exact same as you about DNS.

I have 4 VMs (I think a couple may actually be containers) from 4 separate providers in 4 separate locations. They cost peanuts. The only time I have had problems where DNS stopped working altogether is when it was a PEBKAC problem.

[author] Steve Kemp

Submitted at 19:27:41 on 29 march 2014

I realize I'm simplifying a little, as you have to cope with glue records, and some TLDs have weird requirements.

(I think it is .it who require your nameservers respond on TCP, rather than UDP.)

The biggest potential issue is that changing the IPs of nameservers is an annoyance, so you want long-term-static IPs, and ideally you want IPv6 too.

Still of all the "Run XXX as a service" DNS has to be the simplest...

[gravitar] Paul Tansom

Submitted at 15:21:27 on 31 march 2014

I know what you mean about paying for DNS. Many domain registration agents offer the service for free (although some are pretty poor), and there are some very good free services around - I'm currently migrating, likely temporarily, to Hurricane Electric which have a nice setup and will even show you the zone file which is great for migrating to your own setup at some point.

I'd almost forgotten Dyn were still going. They bought up the service I was using a while back and, iirc, forced everyone across to a paid service. They also kicked me off the free dynamic DNS service I was using for my dad's connection because I hadn't logged into the web site - clearly a policy for jettisoning anyone not paying. The main pain there is that most consumer ADSL routers can be configured for Dyn, but aren't flexible enough to use other services.

On a more positive note, for a hosted service for only a few domains Hurricane Electric have a nice setup with good IPv6 support, proper SPF records and reverse DNS - setting up a reverse IPv6 zone was what prompted the move so I could get Google to accept mail from me over IPv6.

[gravitar] Peter

Submitted at 14:00:31 on 11 april 2015

Does your proxy support the X-Forwarded-Proto header?

[author] Steve Kemp

Submitted at 14:07:52 on 11 april 2015

Yes, I set:

X-Forwarded-Proto "https"

But lighttpd seems to ignore that. At the moment I'm being liberal and using:

extforward.headers = ("X-Forwarded-For")
extforward.forwarder = ("all" => "trust")
[gravitar] anon

Submitted at 14:59:04 on 11 april 2015

Did you try using a different port for https behind your proxy?

Would this then be possible (adapted from http://redmine.lighttpd.net/projects/lighttpd/wiki/HowToRedirectHttpToHttps?)

$HTTP["port"] == sslport { $HTTP["host"] == "sth.example.com" { url.redirect = ("^/phpmyadmin/.*" => https://sth.example.com$0") } }

[author] Steve Kemp

Submitted at 15:09:46 on 11 april 2015

At the moment the proxy does the SSL termination, which is kinda the reason why I'm in this situation at the moment. So the lighttpd instance is only listening on one-port.

If I did allow lighttped to listen on two ports, then that might provide a way out, but it feels like it shouldn't be required.

The page you link to does seem to have the right solution, the first one:

$HTTP["scheme"] == "https" {
    # capture vhost name with regex conditiona -> %0 in redirect pattern
    # must be the most inner block to the redirect rule
    $HTTP["host"] =~ ".*" {
        url.redirect = (".*" => "https://%0$0")
    }
}

That should work - but because lighttpd believes the connection is "http" not "https" it never matches. Even with the X-Forwarded-Proto header in-play.

The alternative solution of rewriting based on location just can't scale. I can't control whether people hit "example.com/docs" vs. "example.com/docs/".

What I really want is to update the proto, based on X-Forwarded-Proto, but that doesn't seem to work as I expect. I see that the code in lighttpd has changed, so I might have to try backporting from jessie to wheezy and seeing if that fixes the problem.

[author] Steve Kemp

Submitted at 15:23:13 on 11 april 2015

It looks like this is fixed with a newer lighttpd.

Compiling lighttpd 1.4.35 it works with no special changes - as curl shows me:

$ curl https://lumail.org/docs
..
..
Location: https://lumail.org/docs/
..

So for the moment I'll ignore the problem, and upgrade that host to Jessie very soon :)

[gravitar] Sami Liedes

Submitted at 01:37:42 on 28 december 2015

A very small country? :) By area, it's way larger than the UK. By population, slightly smaller than an average country.

Anyway, it's "minä haluan", not "minua haluan". And then the more difficult point: kahvia/kakkua/olutta (some coffee/cake/beer), or kahvin/kakun/oluen (a coffee/cake/beer). But in both cases, it's "minä haluan".

[author] Steve Kemp

Submitted at 08:38:57 on 30 december 2015

You're right about the size. I think mostly small in terms of population at around 5 million people.

But thanks for the correction, that's a mistake I keep making. Largely because I read/speak more than I write. I need more practice!

[gravitar] Gregor

Submitted at 22:41:53 on 30 december 2015

Didn't know you headed over to Finland. Congratulations! Hope it all goes well for you and your better half :)

Spent a week in Levi in November one year and the extreme lack of daylight was the oddest sensation. Daylight bulbs would be a good investment.

Take care!

[gravitar] Kahviukko

Submitted at 02:02:04 on 31 december 2015

Good post

[author] Steve Kemp

Submitted at 05:52:43 on 31 december 2015

Cheers Gregor! Yes we do have one of those hugely-bright sun-lamps, which make you feel like you're sitting in front of the sun.


 

Comments are closed on posts which are more than ten days old.

Recent Posts

Recent Tags