***: sysvival is now known as OMGKitteh
OMGKitteh is now known as Guest88910
Guest88910 is now known as pyvpx
pyvpx is now known as Guest6369
Guest6369 is now known as _click
_click is now known as pyvpx
nznzx2 has joined #arpnetworks brycec: <Obligatory "You don't, you use a sensible web server like Nginx" response/> :p mhoran: I'm always surprised when I hear people still using apache.
and if you're already using php_fpm, why even use apache! brycec: Precisely.
Only thing I find Apache useful for: home directories, eg. blah.com/~user/ ***: tabthorpe has joined #arpnetworks mercutio: lots of of people use it for htaccess
adding htaccess and ~ support would probably get a lot of people off of it :)
oh the htaccess support would have to support apache rewrite rules too brycec: Yeah, though I can see why most webservers probably haven't picked up those features. They're very "multiuser" features (as in for systems with many users, where the users need some modicum of server configuration control) which seems to have largely fallen by the wayside these days. Either the user is the sysadmin and experienced, can modify the server configuration as necessary, host their files
wherever, or the user signs up for a {Tumblr,Wordpress,whatever} account. mercutio: well installation instructions are often easier to follow for apache
with the .htaccess mike-burns: doas pkg_add nginx && doas vi /etc/nginx/nginx.conf && doas /etc/rc.d/nginx start ***: Seji has quit IRC (Ping timeout: 264 seconds) brycec: Pretty sure mercutio was referring to the installation instructions given with projects like Wordpress or Drupal :P Not the server itself. mercutio: yeah i was nathani: Some hosts use nginx as front end proxy with Apache backend
So htaccess works ***: joepie91_ has quit IRC (Ping timeout: 252 seconds)
joepie91_ has joined #arpnetworks mnathani: http://forums.hostgator.com/nginx-t305821.html
HTTP headers report nginx 1.4.7, but phpinfo() reports Apache. ***: joepie91_ has quit IRC (Ping timeout: 252 seconds)
joepie91_ has joined #arpnetworks
Seji has joined #arpnetworks
nathani has quit IRC (Quit: WeeChat 1.4)
nathani has joined #arpnetworks
Seji has quit IRC (Ping timeout: 272 seconds) up_the_irons: Would anyone be interested in simple hosted MySQL, PostgreSQL, Redis, MongoDB, etc... service that was super high performance because it's backed my the massive parallel read/writes afforded to us by a Ceph cluster? Thinking it would be a value-add to our VPS / dedicated servers and not even necessarily a thing we'd charge for (but a paid tier would probably exist for those that wanted more space than
the free value-added one would allow)
Just putting that out there...
backed *by
I would tweet that if it would fit LOL... mercutio: you could just ask about hosted databases on twitter brycec: up_the_irons: As it happens, my employer would be interested in hosted Postgres. We were planning (tentative, few months out) to use Redshift/DynamoDB/etc for a "hosted, scalable and performant database" so if ARP had an offering, we'd be interested. ***: Nahual has joined #arpnetworks up_the_irons: brycec: so single hosted Postgres DB, any special requirements?
mercutio: how would you word it? mercutio: We're exploring interest for Hosted Databases. Who would be interested in such?
or something like taht
it's a bit weird having proper nouns before you have a name :)
maybe hosted MySQL, PostgreSQL, Redis, etc.. up_the_irons: got it :)
tweet sent :) mercutio: gizmoguy: your power monitoring looks cool
yeah i see it, and i saw gizmoguy's power graphs too :) gizmoguy: yeah it's quite cool!
http://power.sla.ac mercutio: i'm not sure how to hook it up
so you can tap into the mains power somehow at the base? gizmoguy: we're counting the pulses coming from the smart meter mercutio: oh so you need a smart meter? gizmoguy: something that generates pulses mercutio: do normal power meters generate pulses? gizmoguy: https://openenergymonitor.org/emon/opticalpulsesensor
this is the sensor we're using
mercutio: you'll have to go have a look at your power meter mercutio: ahh and then google it? gizmoguy: if it's a digital (non-smart) meter it should still do pulses mercutio: oh cool gizmoguy: basically if it has a flashing red light on it
you should be good mercutio: hah shit
it's raining hard
that caught me by surprise
i'll wait 10 minutes :) gizmoguy: hahaa mercutio: i suspect it is digital non smart
but who knows
they've actually wanted to install smart meter for ages
but we told them weren't interested
if smart meters had graphs like this i'd go for them gizmoguy: so they do
but from talking to my friends who work for power companies they usually can't be bothered to store the fine grained data
so genesis will only store hourly data for example
even though they get it 5-minutely I think mercutio: yeah it's a lot of data
oh they get every 5 minuntes gizmoguy: on the smart zigbee ones it's something like that
since we're counting pulses we get it instantly, but we're binning by minute mercutio: can you do more than once a minute? gizmoguy: yip
we could move down to 30 second or 10 second mercutio: damn
it stopped raining :) gizmoguy: I'm not sure how accurate the RTC on our sensors are though mercutio: yeah it's not even digital
s200.31
funny how you can google anything now
and find youtube videos :) gizmoguy: Yeah so that will be fun to monitor
Your pulse is that spinning wheel mercutio: wouldn't it be easier to monitor one jackpoint or something? gizmoguy: You can get the clamp on monitors
it'll be quite expensive though
just get a smart meter mercutio: ahh maybe when i move
nearly everywhere has them anyway
so how hard is it monitor 10amp circuits etc? -: mercutio hasn't even started monitoring his ups yet gizmoguy: https://www.sparkfun.com/products/11005
looks cheap mercutio: oh wow
damn
now i'm getting tempted :)
wow shipping prices aer ok there ***: Nahual has quit IRC (Ping timeout: 272 seconds) brycec: That it not suck :P In all seriousness though, nothing "special" I don't think. It would be nice if the traffic stayed on-net (privacy concerns, and avoiding using our bandwidth quota), and highly ("guaranteed") available. Or were you looking for a different "special requirements" answer? 18:23:16 @up_the_irons | brycec: so single hosted Postgres DB, any special requirements? up_the_irons: brycec: nope, that's perfect, thanks :)
"on-net" is interesting... I'm thinking about how that would be done mnathani: without having to manage rfc1918 space amongst all customers using the service mercutio: it could be like the backup service brycec: ^
I mean, I imagine the connection would be TLS-wrapped in the first place, but keeping it on-net is an extra bit of warm-fuzzy security. mercutio: i'm a little paranoid about mysql's security
so on-net only seems preferable to me brycec: well fuck MySQL :P (just my personal preference) mercutio: brycec: you know people will want it brycec: People don't know what they want... mercutio: https://www.cvedetails.com/vulnerability-list/vendor_id-185/product_id-316/Mysql-Mysql.html mnathani: define on-net?
at the same datacenter? mercutio: local network
although on-net doesn't mean "private" mnathani: so no routers
layer 2 network? mercutio: so it could be over normal internet ip addresses but be acl'ed, and still be on-net brycec: Not crossing/touching the public router.
Though I would accept VPN'd traffic mercutio: oh brycec has a different idea of on-net to me :) mnathani: wouldnt TLS or VPN be a huge performance hit for database traffic? brycec: (Ooh there's a thought, use VPN for extra added ACL to the database stuff) mercutio: tls is no concern at all now days brycec: TLS/VPN a huge performance hit? Next you'll be warning me about Y2K. mnathani: its a question, I dont really know brycec: Like mercutio, modern computers handle that like they handle blinking an LED, no significant overhead. mercutio: brycec: it was a huge overhead in apache brycec: How do you mean? (As someone that works from home 100%, all my traffic including to an Apache server at work is VPN'd with no noticeable issues.)
Like, are we talking adding a millisecond? Seconds? mercutio: it used a lot of memory, back when memory was epensive
the overhead of adding ssl onto sites increased memory requirements a lot brycec: Ohhh you mean Apache as the SSL endpoint. mercutio: yeah brycec: (I was mentally stuck on VPNs) mercutio: openvpn isn't as efficient as it could be
but for most uses straight tls is fine brycec: (And TLSv1.3 is looking promising for reducing latency/improving connection times) mercutio: yeah i read about that from microsot implementing tcp fast open
tls quickstart kind of failed before brycec: CloudFlare just announced TLSv1.3 terminations/endpoints.
https://blog.cloudflare.com/introducing-tls-1-3/ mercutio: oh wow
is chrome doing it yet brycec: (no idea) mercutio: i find cloudflare kind of slow :( brycec: Firefox 49 does, according to Googling mercutio: but they're definitely doing a lot of innovative interesting things brycec: "Experimental, disabled by default" mercutio: and getting a lot of market share brycec: https://en.wikipedia.org/wiki/Template:TLS/SSL_support_history_of_web_browsers BryceBot: Template:TLS/SSL support history of web browsers :: Notes ➔ Back to article "Transport Layer Security" References... mercutio: firefox 49 hmm up_the_irons: I would imagine it being something like the backup service, but probably not require an extra NIC... mnathani: I thought ceph was designed for storage. Does it handle highly available databases too? up_the_irons: I mean, your VM NIC is already VLAN tagged... on the "other" end (hosted DB box), it would terminate your VLAN, among other customers who also have the service
mnathani: no it doesn't, but your DBs can use an rbd volume for their storage mercutio: it has a generic object store up_the_irons: An rbd volume from Ceph can be faster than a single disk, b/c it stripes the volume over the cluster mnathani: so the compute portion of the database would be tied to an individual ceph host
or other db host that uses ceph for storage mercutio: yeah up_the_irons: "other db host that uses ceph for storage" is the right answer mnathani: that makes it high performance, not highly available up_the_irons: and *that* DB host can be a very large VM too, which has the ability to be live migrated around the cluster, if needed or in the case of hardware failure mercutio: it could migrate between hosts
it makes it HA in normal HA speak up_the_irons: It would be more highly available than a DB on a single host mercutio: but not active/active ha up_the_irons: b/c that DB would be stuck to that host mnathani: high available to me means it can survive a node going down mercutio: survive means how much downtime mnathani ? mnathani: none
it would have to be behind a load balancer mercutio: so HA means to you active/active mnathani: and active active
yea up_the_irons: load balancer ain't a bad idea mercutio: haha
https://www.google.co.nz/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0ahUKEwii28LnlrbPAhVJ6oMKHdb2B5MQFggcMAA&url=https%3A%2F%2Fwww.ibm.com%2Fdeveloperworks%2Fcommunity%2Fblogs%2Fmhhaque%2Fentry%2Fconfigure_two_node_highly_available_cluster_using_kvm_fencing_on_rhel7&usg=AFQjCNH21Ebq2hUmT10-NWYh95P5BNeWfA&sig2=L3t8gg8JNEBIBM3snE7LWA
oh i thought it was a normal url
but no it's a tracking url mnathani: I get Sorry! developerWorks is offline mercutio: exactly
but look at the url mnathani: yea it is funny
even active/passive would be highly available mercutio: well with ceph active/passive is easy
if host goes down can start on another host mnathani: as long as the passive node promotes itself to active upon failure
would you track cpu usage by the database?
like bill for more recurring complex queries
or perhaps by i/o bandwidth up_the_irons: i don't think we'd go that granular mnathani: fair use policy applies I guess
should not impact other users
would you require ARP VPS or Dedicated to access the database, or allow external hosts as well
perhapas as secondary users inspecting the database and running routine queries, but not the primary user - that would be the ARP VPS or Dedicated box up_the_irons: since access would come through account VLAN (most likely), I imagine it could be accessed through either a VPS or dedicated server
i mean, that would be a good way to do it
and not have complicated access rules ***: Seji has joined #arpnetworks