Browsed by
Category: Uncategorized

Note to self

Note to self

Make sure that bamboo isn’t backed off to the RDS instance you deleted, and if it is, make sure you take that final snapshot so that you can easily move it over. Oh, also be aware that mariadb isn’t compatible with bamboo unless you throw in some startup arguments.

It was a fun couple of hours at least. Yay.

DB backups

DB backups

Since we’ve got a dedicated DB server, not running as a spot instance now (so it shouldn’t just disappear whenever the hell it wants) and we’re not running RDS, I’ve re-implemented nightly sql backups to S3.

Gosh technology, isn’t it great?

Testing DB migration

Testing DB migration

Yet another DB migration – this time to a dedicated box running mariadb. Testing to make sure that posting a new post works and it appears in the right database….

Certbot and Let’s Encrypt

Certbot and Let’s Encrypt

The only way to use Amazon’s free SSL certificates is if you pipe them through something like cloudformation, use them with cloudfrout or a load balancer.

Tried that for December and it turns out its fairly expensive to run an ELB for a month – it’s all fine and dandy whilst I’ve got EDU credit to burn through but I can’t afford $20 a month to shortcut an easy way to SSL cert up the site.

I started to look at certbot and lets encrypt as an automatic way of getting a cert in place, changed my apache config and here we are – running through a straight connection on port 443 to the web server.

To be fair, it was a little silly having a load balancer in front of a single web server, but I didn’t have the time to do anything else with it.

I’ve got a little bit of time now, so setting things up properly.

Helpful tip

Helpful tip

It’s always a good idea not to forget your password. Especially to your blog, especially when you haven’t posted to it for months.

So, yeah, it’s also a good idea to not remember your password and then be fooled by it not working because you’ve locked your account out yet there’s no visual feedback of having done so.

I find more and more that I’m just letting my phone randomly create a password for me/store it in my keychain – seems better that way, plus when I do actually start forgetting important things it won’t matter, because my phone will for all intents and purposes be me anyway.

Happy New year everyone!

Happy Black Friday!

Happy Black Friday!

Today is the day we get to see which retailers have elastic scaling infrastructure and half decent architects with forward planning and those who do not.
 
CDKeys and ChaosCards have already been hit with downtime post mail shots – don’t email your customer base if you can’t cope with them all clicking the link at the same time.
 
Chaos tried to put a queing system in front but the site still ended up offline mid browse.
WAF is pricey – for personal use

WAF is pricey – for personal use

Turns out that WAF costs $5 per acl and $5 per rule per month. And that $10 protection I had in place for a simple geo block against China and a few other countries I was getting probing attacks from wasn’t included in the AWS credit I’ve got so I’ve turned it off.

 

 

Done some playing around with ALBs and fail2ban including setting up a custom filter for script attacks but need to do some further refinement with x forwarded for headers and what not.

 

Hopefully i’ll get some more time to have a fiddle with it over the weekend.

We’re SSL enabled

We’re SSL enabled

Since I’ve got $300 of AWS credit to use up before December 2019 and my t3 micro instance isn’t really doing a good job of that, I decided I might as well throw up a load balancer, get the certificate assigned to it and set up route53 properly to that alias.

So far so good.  Green padlocks are fun.

What next?

What next?

So I passed my AWS solutions architect associate exam on the 27th September. I think I ended up with about 87%

Pretty happy with that. Now trying to decide if I’m going to go for the systems administrator exam and developer exam or if I’m going to concentrate on solutions architecture.

I’m also eyeing up an open university degree in computing. I say I’m eyeing it up, I’ve registered and I’m waiting to see if I get approved for a part time student loan.

BSc (Honours) Computing and IT

Sounds impressive doesn’t it?

From a career perspective, it won’t give me much more in terms of experience and career usable knowledge – especially in an ever changing cloud landscape.

What it will give me, is a revisit to solid maths for the first time in over 20 years and a grounding in programming that I felt has always been missing from my repertoire.

I feel a deeper understanding of the maths side of things along with some hardcore software development will help with both my python and bash scripting.

I can read most code (even badly commented code) and tell you what it does. What I struggle with is writing something from scratch. Hoping this will help. Plus there’s some cool modules like robotics which I’ve always had an interest in.

If I decided to go for the networking speciality there’s always the option to revisit the CCNA too. We’ll see.

Next few months promise to be exciting regardless.

Digital Mickey

Digital Mickey

Picked up the October Mickey Mouse memories edition from the Disney store this week.

Wasn’t sure about it when I first saw it but after looking at it for a few minutes and realising it’s the same terminal colour scheme as I use on SecureCRT for my Mac, and it’s full of binary, I absolutely love it.

Pretty sure the binary will say something. Haven’t worked it out it googled it yet.

Love it.

There’s a mug and a pin set too. I haven’t picked those up. Yet.