Just spent the day digging through a box of old gear to relegate for network extension duties. These tests were done in bridge mode from about 20 ft from the main router through 2 walls.
Netgear X4S – No surprises here.
Asus RT-N66U – A bit long in the tooth. Pings aren’t consistent.
TEW-680MB – Pings are very consistent as well as connection speed. Great value!
There was a time when you could determine the size of a file by counting the number of characters it had. One character equates to one byte. Simple. In fact, it was how I found the office perpetrator who printed out a nasty letter for everyone to see. I went through all the print logs and counted the bytes.
In many cases, this is still true. However, for languages, such as Chinese, with thousands of characters, 8 bits (2^8 = 256) is not enough. For this reason a multitude of encoding standards (ISO-8859, Mac OS Roman, Big5, MS-Windows char sets, etc) have been implemented but it has been a headache to make consistent across applications and delivery systems. In some cases, in order to have multiple encodings or character sets in one document would require yet another encoding standard or would just be impossible. This not only applies to text documents, but web pages and databases as well.
We needed a standard that encompass it all. That standard is called Unicode.
Unicode is just a giant mapping table of numbers (code points) to characters. That’s about it. The kicker is that it includes every character imaginable on this planet. Basically it’s the superset of all character sets in existence today. It even includes ancient scripts like Egyptian Hieroglyphs, Cuneiform, and Gothic. The characters make up the code space.
Unicode encodings (e.g., UTC-8) specify how these numbers (with their own code points) are represented as bits.
Consists of 17 planes of 65,536 (=2^16) code points each. That’s 1,114,112 code points. That’s enough code points to map all past, present, and future characters created by mankind. The first plane, Basic Multilingual Plane (BMP) contains most commonly used characters.
Character sets are technically just list of distinct characters and symbols. They could be used by multiple languages (e.g., Latin-1 is used for the Americas and Western Europe).
Encoding is the way these characters are stored in memory. An encoding maps these characters to a binary representation.
Character sets that have encodings are called coded character sets. Unsurprisingly, this is a bit confusing because many systems use them interchangeably. For example, MySQL calls a characters and their encodings simply as a character set. What they really mean is a coded character set (or code pages).
Every encoding must have a character set associated with it but a character set could have multiple encodings. The most relevant example of this is the Unicode character set with multiple encodings (UTF-8, UTF-16 BE, UTF-16 LE, UTF-32, etc). The same character in one encoding could be represented by a larger/smaller number of bytes in another encoding.
This W3C article does a fine job explaining this.
It’s mostly a Microsoft Windows-specific encoding that is based on standard encodings with a few modifications. It could also be generically a coded character set.
UTF-8
UTF-16
UTF-32
A font defines the “glyphs” for usually a single character set or a subset of a character set. If there’s a character undefined in the font, you’ll typically get a replacement character like a square box or question mark.
Basically, fonts are glyphs that are mapped to code points in a coded character set.
At this time, most systems are using UTF-8. It’s efficient as far as storage (as long as it’s mostly ASCII characters). It has the possibility of mapping any character imaginable so there’s really no reason not to use it.
When you type on your keyboard, you’re using a certain encoding scheme. When you save that file and display the text again using the same encoding, you’ll get consistent results. The biggest problem we run into is seeing random looking characters in our files. The only explanation for this is that the encoding used to view the file is incorrect.
It’ll be important to note: conversion from one encoding to another is not for the faint of heart. You have to know what you’re doing or you’ll lose your original bits forever. Sometimes it’s not even possible to perform the conversion.
From this point forward, a byte no longer equates to character. Be wary of the encoding scheme used, especially if you start to see a snowman and cellphones in your CSV file.
Bottomline: Use UTF-8.
After years of having to manually renew certificates (I’ve used StartSSL in the past), Let’s Encrypt is finally live and will allow you to automate this process by installing an agent and a cron job.
Here I’m trying to install certificates on multiple blogs on the same server.
It’s stupidly easy to do:
Amazing right? Well I did run into a few errors but they were easily solved:
Also be sure to protect your sites from POODLE. Analyze your site here: https://www.ssllabs.com/ssltest/analyze.html
That’s all folks. If you have any issues please let me know in the comments.
Generally there are three ways of reverting changes:
If you just need to revert specific files, you could run git checkout to retrieve an exact version. In the below example, I wanted to revert the “app.rb” file so that it only contains “Some app work.
Revert will create a new commit undoing the changes made during a specific commit. It remove an entire commit in your project history. In this example, I’m going to undo the changes in last commit. As you could see, the history of the revert is kept.
Unlike revert, reset will undo all subsequent commits. It has the potential Only use this to undo local changes. Most use reset to unstage files to match the most recent commit and perhaps create more focused commits/snapshots. The working directory is unchanged unless “–hard” option is set.
You could also reset to a tag.
If you haven’t done so, install Vagrant for your OS here.
|
1 |
vagrant plugin install vagrant-digitalocean |
|
1 2 3 |
mkdir vagrant_project cd vagrant_project vagrant init |
Generate your key pairs. If using Windows, use puttygen. In Windows you’re going to have to use the OpenSSH key formats:
|
1 |
ssh-keygen -t rsa |
Edit VagrantFile. Make sure the private key does not have an extension. The public key should have extension “.pub” with the same file name as the private key (e.g., “do.pub”).
Create your API V2 token from your DO control panel:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
Vagrant.configure('2') do |config| config.vm.provider :digital_ocean do |provider, override| # Windows override.ssh.private_key_path = "C:\\path\\of\\private\\key\\do" # Linux override.ssh.private_key_path = "~/.ssh/id_rsa" override.vm.box = 'digital_ocean' override.vm.box_url = "https://github.com/smdahlen/vagrant-digitalocean/raw/master/box/digital_ocean.box" provider.token = 'YOUR DIGITALOCEAN TOKEN' provider.image = 'ubuntu-14-04-x64' provider.region = 'sfo1' provider.size = '512mb' end end |
Most of these lines are self-explanatory. To get a list of images and regions you could click on “Create Droplet” from your web account or you could run the following:
|
1 |
curl -X GET -H 'Content-Type: application/json' -H 'Authorization: Bearer YOUR_DIGITALOCEAN_TOKEN' "https://api.digitalocean.com/v2/images?page=1&per_page=100" |
Here’s a sample list of regions and images:
| Regions | Images |
|---|---|
|
|
Now just change into the Vagrant project folder and run “vagrant up”
OpenVPN Access Server’s free license provides two user accounts free of charge.
|
1 2 3 |
sudo wget http://swupdate.openvpn.org/as/openvpn-as-2.0.12-Ubuntu14.amd_64.deb sudo dpkg -i openvpn-as-2.0.12-Ubuntu14.amd_64.deb sudo passwd openvpn |
Open ports:
Admin UI: https://YourIpAddress:943/admin
Client UI: https://YourIPAddress:943/
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 |
curl https://sdk.cloud.google.com | bash |- Installing: BigQuery Command Line Tool -| |============================================================| |- Installing: BigQuery Command Line Tool (Platform Spec... -| |============================================================| |- Installing: Cloud DNS Admin Command Line Interface -| |============================================================| |- Installing: Cloud SDK Core Command Line Tools -| |============================================================| |- Installing: Cloud SDK Core Libraries (Platform Specific) -| |============================================================| |- Installing: Cloud SQL Admin Command Line Interface -| |============================================================| |- Installing: Cloud Storage Command Line Tool -| |============================================================| |- Installing: Cloud Storage Command Line Tool (Platform... -| |============================================================| |- Installing: Compute Engine Command Line Interface -| |============================================================| |- Installing: Compute Engine Command Line Tool (depreca... -| |============================================================| |- Installing: Compute Engine Command Line Tool (depreca... -| |============================================================| source .bashrc gcloud auth login copy and paste the verification code gcloud config set project gcloud auth list gcloud config set account [Email Address] |
If you see:
CommandException: arg (XXXXX) does not name a directory, bucket, or bucket subdir.
Keep in mind rsync works on directories, cp works on files.
|
1 |
gcloud cp testing.zip gs://[bucket location] |
My goal is to host multiple Wordpress blogs on a single Ubuntu server. This will be for outbound email only. Setting up SMTP for each of my blogs by selecting from a plethora of plugins isn’t a sound solution. With sendmail/postfix and default PHP mail() settings, it isn’t difficult to send mail. However, the problem is that seemingly valid email often times gets marked as spam (e.g., Password Reset). Case in point:
Gmail’s spam filter is incredibly sophisticated and a bit more stringent than others. Reason being, the sender address can be easily spoofed. However, the originating server can not be forged so easily. Even then, there are further checks to make sure the email isn’t spam.
From my experience, there a few factors which determine whether an email is going to be marked as spam by Gmail.
|
1 2 |
spf=pass (google.com: domain of admin@geekbacon.com designates 104.236.156.225... dkim=pass header.i=@geekbacon.com |
This one is straight forward. Create a TXT record “v=spf1 ip:[IP ADDRESS] ~all”
Here is an example from DigitalOcean:
DKIM is included in Exim 4.7+. I’m installing Exim version 4.82 on Ubuntu 14.04.1 LTS, Trusty Tahr.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
# Let's remove any residual installations apt-get --purge remove exim4 exim4-base exim4-config exim4-daemon-heavy # Installation sudo apt-get install exim4 -y # Select <strong>"internet site; mail is sent and received directly using SMTP"</strong> # and <strong>split files.</strong> sudo dpkg-reconfigure exim4-config # Make sure exim4 is your default MTA netstat -ltnp | grep :25 tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 16122/exim4 tcp6 0 0 ::1:25 :::* LISTEN 16122/exim4 # Create keys mkdir /etc/exim4/keys chown -R Debian-exim:adm keys openssl genrsa -out dkim.key 1024 openssl rsa -in dkim.key -out dkim.pub -pubout -outform pem chmod 600 /etc/opendkim/dkim.key |
You need to create a DKIM record: “v=DKIM1; k=rsa; p=[Your public key]”
Here’s another example from DigitalOcean:
|
1 2 3 4 5 6 7 |
cat dkim.pub -----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHKj656cdca3dkJNFw5Lji63O+ R+sZWDdWiHUcwnf40sSEarmShXG8u3o6QwaDAiaVAboIpUDa0I68Lz+aP2Ws9Y5w tE9jPO57QeGjDdByX6nXrvBgOAyZ072oF70+C3VqkN3zjA1YNuMjP5ugjo6B4sds DR5MBOcVHc3wNFZ1FwIDAQAB -----END PUBLIC KEY----- |
You’ll replace the “p=” section with your own public key without any line breaks.
Now create a new file /etc/exim4/dkim_vhosts. Here you would list out all the virtual hosts and allowed sender addresses in your domains. For example:
|
1 2 |
*@geekbacon.com: geekbacon.com admin@testdomain.com: testdomain.com |
Now edit /etc/exim4/conf.d/transport/30_exim4_config_remote_smtp. The entire file should look something like this:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 |
remote_smtp_dkim: debug_print = "T: remote_smtp_dkim for $local_part@$domain" driver = smtp .ifdef REMOTE_SMTP_HOSTS_AVOID_TLS hosts_avoid_tls = REMOTE_SMTP_HOSTS_AVOID_TLS .endif .ifdef REMOTE_SMTP_HEADERS_REWRITE headers_rewrite = REMOTE_SMTP_HEADERS_REWRITE .endif .ifdef REMOTE_SMTP_RETURN_PATH return_path = REMOTE_SMTP_RETURN_PATH .endif .ifdef REMOTE_SMTP_HELO_DATA helo_data=REMOTE_SMTP_HELO_DATA .endif dkim_domain = ${lookup{$sender_address}lsearch*@{/etc/exim4/dkim_vhosts}} dkim_selector = mail dkim_private_key = /etc/exim4/keys/dkim.key dkim_canon = relaxed dkim_strict = false #dkim_sign_headers = DKIM_SIGN_HEADERS |
Now restart exim4 (and Apache if you wish):
|
1 2 |
sudo service exim4 restart sudo service apache2 restart |
Now just send a test email from WordPress and it shouldn’t be marked as spam anymore! Lastly, I want to stress that the sender email should be valid, that includes “no-reply” addresses.
When updating rvm getting error message like the following.
GPG signature verification failed for '/usr/local/rvm/archives/rvm-1.26.5.tgz' - 'https://github.com/wayneeseguin/rvm/releases/download/1.26.5/1.26.5.tar.gz.asc'!
try downloading the signatures:|
1 |
sudo gpg --keyserver hkp://keys.gnupg.net --recv-keys 409B6B1796C275462A1703113804BB82D39DC0E3 |
|
1 |
or if it fails: |
|
1 |
command curl -sSL https://rvm.io/mpapis.asc | sudo gpg --import - |
|
1 |
the key can be compared with: |
|
1 2 |
https://rvm.io/mpapis.asc https://keybase.io/mpapis |
Type the following in terminal to fix it.
sudo gpg --keyserver hkp://keys.gnupg.net --recv-keys D39DC0E3