:p I'm always surprised when I hear people still using apache. and if you're already using php_fpm, why even use apache! Precisely. Only thing I find Apache useful for: home directories, eg. blah.com/~user/ lots of of people use it for htaccess adding htaccess and ~ support would probably get a lot of people off of it :) oh the htaccess support would have to support apache rewrite rules too Yeah, though I can see why most webservers probably haven't picked up those features. They're very "multiuser" features (as in for systems with many users, where the users need some modicum of server configuration control) which seems to have largely fallen by the wayside these days. Either the user is the sysadmin and experienced, can modify the server configuration as necessary, host their files wherever, or the user signs up for a {Tumblr,Wordpress,whatever} account. well installation instructions are often easier to follow for apache with the .htaccess doas pkg_add nginx && doas vi /etc/nginx/nginx.conf && doas /etc/rc.d/nginx start Pretty sure mercutio was referring to the installation instructions given with projects like Wordpress or Drupal :P Not the server itself. yeah i was Some hosts use nginx as front end proxy with Apache backend So htaccess works http://forums.hostgator.com/nginx-t305821.html HTTP headers report nginx 1.4.7, but phpinfo() reports Apache. Would anyone be interested in simple hosted MySQL, PostgreSQL, Redis, MongoDB, etc... service that was super high performance because it's backed my the massive parallel read/writes afforded to us by a Ceph cluster? Thinking it would be a value-add to our VPS / dedicated servers and not even necessarily a thing we'd charge for (but a paid tier would probably exist for those that wanted more space than the free value-added one would allow) Just putting that out there... backed *by I would tweet that if it would fit LOL... you could just ask about hosted databases on twitter up_the_irons: As it happens, my employer would be interested in hosted Postgres. We were planning (tentative, few months out) to use Redshift/DynamoDB/etc for a "hosted, scalable and performant database" so if ARP had an offering, we'd be interested. brycec: so single hosted Postgres DB, any special requirements? mercutio: how would you word it? We're exploring interest for Hosted Databases. Who would be interested in such? or something like taht it's a bit weird having proper nouns before you have a name :) maybe hosted MySQL, PostgreSQL, Redis, etc.. got it :) tweet sent :) gizmoguy: your power monitoring looks cool yeah i see it, and i saw gizmoguy's power graphs too :) yeah it's quite cool! http://power.sla.ac i'm not sure how to hook it up so you can tap into the mains power somehow at the base? we're counting the pulses coming from the smart meter oh so you need a smart meter? something that generates pulses do normal power meters generate pulses? https://openenergymonitor.org/emon/opticalpulsesensor this is the sensor we're using mercutio: you'll have to go have a look at your power meter ahh and then google it? if it's a digital (non-smart) meter it should still do pulses oh cool basically if it has a flashing red light on it you should be good hah shit it's raining hard that caught me by surprise i'll wait 10 minutes :) hahaa i suspect it is digital non smart but who knows they've actually wanted to install smart meter for ages but we told them weren't interested if smart meters had graphs like this i'd go for them so they do but from talking to my friends who work for power companies they usually can't be bothered to store the fine grained data so genesis will only store hourly data for example even though they get it 5-minutely I think yeah it's a lot of data oh they get every 5 minuntes on the smart zigbee ones it's something like that since we're counting pulses we get it instantly, but we're binning by minute can you do more than once a minute? yip we could move down to 30 second or 10 second damn it stopped raining :) I'm not sure how accurate the RTC on our sensors are though yeah it's not even digital s200.31 funny how you can google anything now and find youtube videos :) Yeah so that will be fun to monitor Your pulse is that spinning wheel wouldn't it be easier to monitor one jackpoint or something? You can get the clamp on monitors it'll be quite expensive though just get a smart meter ahh maybe when i move nearly everywhere has them anyway so how hard is it monitor 10amp circuits etc? https://www.sparkfun.com/products/11005 looks cheap oh wow damn now i'm getting tempted :) wow shipping prices aer ok there That it not suck :P In all seriousness though, nothing "special" I don't think. It would be nice if the traffic stayed on-net (privacy concerns, and avoiding using our bandwidth quota), and highly ("guaranteed") available. Or were you looking for a different "special requirements" answer? 18:23:16 @up_the_irons | brycec: so single hosted Postgres DB, any special requirements? brycec: nope, that's perfect, thanks :) "on-net" is interesting... I'm thinking about how that would be done without having to manage rfc1918 space amongst all customers using the service it could be like the backup service ^ I mean, I imagine the connection would be TLS-wrapped in the first place, but keeping it on-net is an extra bit of warm-fuzzy security. i'm a little paranoid about mysql's security so on-net only seems preferable to me well fuck MySQL :P (just my personal preference) brycec: you know people will want it People don't know what they want... https://www.cvedetails.com/vulnerability-list/vendor_id-185/product_id-316/Mysql-Mysql.html define on-net? at the same datacenter? local network although on-net doesn't mean "private" so no routers layer 2 network? so it could be over normal internet ip addresses but be acl'ed, and still be on-net Not crossing/touching the public router. Though I would accept VPN'd traffic oh brycec has a different idea of on-net to me :) wouldnt TLS or VPN be a huge performance hit for database traffic? (Ooh there's a thought, use VPN for extra added ACL to the database stuff) tls is no concern at all now days TLS/VPN a huge performance hit? Next you'll be warning me about Y2K. its a question, I dont really know Like mercutio, modern computers handle that like they handle blinking an LED, no significant overhead. brycec: it was a huge overhead in apache How do you mean? (As someone that works from home 100%, all my traffic including to an Apache server at work is VPN'd with no noticeable issues.) Like, are we talking adding a millisecond? Seconds? it used a lot of memory, back when memory was epensive the overhead of adding ssl onto sites increased memory requirements a lot Ohhh you mean Apache as the SSL endpoint. yeah (I was mentally stuck on VPNs) openvpn isn't as efficient as it could be but for most uses straight tls is fine (And TLSv1.3 is looking promising for reducing latency/improving connection times) yeah i read about that from microsot implementing tcp fast open tls quickstart kind of failed before CloudFlare just announced TLSv1.3 terminations/endpoints. https://blog.cloudflare.com/introducing-tls-1-3/ oh wow is chrome doing it yet (no idea) i find cloudflare kind of slow :( Firefox 49 does, according to Googling but they're definitely doing a lot of innovative interesting things "Experimental, disabled by default" and getting a lot of market share https://en.wikipedia.org/wiki/Template:TLS/SSL_support_history_of_web_browsers Template:TLS/SSL support history of web browsers :: Notes ➔ Back to article "Transport Layer Security" References... firefox 49 hmm I would imagine it being something like the backup service, but probably not require an extra NIC... I thought ceph was designed for storage. Does it handle highly available databases too? I mean, your VM NIC is already VLAN tagged... on the "other" end (hosted DB box), it would terminate your VLAN, among other customers who also have the service mnathani: no it doesn't, but your DBs can use an rbd volume for their storage it has a generic object store An rbd volume from Ceph can be faster than a single disk, b/c it stripes the volume over the cluster so the compute portion of the database would be tied to an individual ceph host or other db host that uses ceph for storage yeah "other db host that uses ceph for storage" is the right answer that makes it high performance, not highly available and *that* DB host can be a very large VM too, which has the ability to be live migrated around the cluster, if needed or in the case of hardware failure it could migrate between hosts it makes it HA in normal HA speak It would be more highly available than a DB on a single host but not active/active ha b/c that DB would be stuck to that host high available to me means it can survive a node going down survive means how much downtime mnathani ? none it would have to be behind a load balancer so HA means to you active/active and active active yea load balancer ain't a bad idea haha https://www.google.co.nz/url?sa=t&rct=j&q=&esrc=s&source=web&cd=1&cad=rja&uact=8&ved=0ahUKEwii28LnlrbPAhVJ6oMKHdb2B5MQFggcMAA&url=https%3A%2F%2Fwww.ibm.com%2Fdeveloperworks%2Fcommunity%2Fblogs%2Fmhhaque%2Fentry%2Fconfigure_two_node_highly_available_cluster_using_kvm_fencing_on_rhel7&usg=AFQjCNH21Ebq2hUmT10-NWYh95P5BNeWfA&sig2=L3t8gg8JNEBIBM3snE7LWA oh i thought it was a normal url but no it's a tracking url I get Sorry! developerWorks is offline exactly but look at the url yea it is funny even active/passive would be highly available well with ceph active/passive is easy if host goes down can start on another host as long as the passive node promotes itself to active upon failure would you track cpu usage by the database? like bill for more recurring complex queries or perhaps by i/o bandwidth i don't think we'd go that granular fair use policy applies I guess should not impact other users would you require ARP VPS or Dedicated to access the database, or allow external hosts as well perhapas as secondary users inspecting the database and running routine queries, but not the primary user - that would be the ARP VPS or Dedicated box since access would come through account VLAN (most likely), I imagine it could be accessed through either a VPS or dedicated server i mean, that would be a good way to do it and not have complicated access rules