For excessively paranoid client authentication.
Updated Apr 5 2019:
because this is a gist from 2011 that people stumble into and maybe you should AES instead of 3DES in the year of our lord 2019.
some other notes:
mtigas
/ gist:952344
Last active
October 16, 2024 09:03
Mini tutorial for configuring client-side SSL certificates.
hlfbt
/ n2dissite.sh
Created
February 6, 2012 04:08
Nginx-to-ensite and Nginx-to-dissite - Two simple scripts that enable and disable Nginxs virtualhost VHOST. Adapt VHOSTEN and VHOSTAV accordingly, place in /usr/sbin and enjoy.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Author: Alexander Schulz | |
| VHOSTEN="/etc/nginx/sites-enabled/" | |
| if [[ $1 == "-h" ]] || [[ $1 == "--help" ]] | |
| then | |
| echo 'Usage: n2dissite VHOST' | |
| echo 'Disables Nginxs virtualhost VHOST.' |
reyjrar
/ elasticsearch.yml
Last active
May 12, 2023 11:58
ElasticSearch config for a write-heavy cluster
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ################################################################## | |
| # /etc/elasticsearch/elasticsearch.yml | |
| # | |
| # Base configuration for a write heavy cluster | |
| # | |
| # Cluster / Node Basics | |
| cluster.name: logng | |
| # Node can have abritrary attributes we can use for routing |
dergachev
/ GIF-Screencast-OSX.md
Last active
November 5, 2024 18:44
OS X Screencast to animated GIF
- Measure time spend on index, flush, refresh, merge, query, etc. (TD - done)
- Take hot threads snapshots under read+write, read-only, write-only (TD - done)
- Adjust refresh time to 10s (from 1s) and see how load changes (TD)
- Measure time of a rolling restart doing
disable_flushanddisable_recovery(TD) - Specify routing on query -- make it choose same node for each shard each time (MD)
- GC new generation size (TD)
- Warmers
- measure before/after of client query time with and without warmers (MD)
plentz
/ nginx.conf
Last active
November 16, 2024 14:10
Best nginx configuration for improved security(and performance)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # to generate your dhparam.pem file, run in the terminal | |
| openssl dhparam -out /etc/nginx/ssl/dhparam.pem 2048 |
There are a lot of ways to serve a Go HTTP application. The best choices depend on each use case. Currently nginx looks to be the standard web server for every new project even though there are other great web servers as well. However, how much is the overhead of serving a Go application behind an nginx server? Do we need some nginx features (vhosts, load balancing, cache, etc) or can you serve directly from Go? If you need nginx, what is the fastest connection mechanism? This are the kind of questions I'm intended to answer here. The purpose of this benchmark is not to tell that Go is faster or slower than nginx. That would be stupid.
So, these are the different settings we are going to compare:
- Go HTTP standalone (as the control group)
- Nginx proxy to Go HTTP
- Nginx fastcgi to Go TCP FastCGI
- Nginx fastcgi to Go Unix Socket FastCGI
brianredbeard
/ tmux.conf
Created
February 12, 2014 20:10
A better starting tmux config. Live like screen, but better
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # make CTRL+a the 'prefix' ala screen. | |
| bind C-a send-prefix | |
| set -g prefix C-a | |
| # get rid of the tmux standard of CTRL+b | |
| unbind C-b | |
| set -s escape-time 1 | |
| set -g base-index 1 | |
| setw -g pane-base-index 1 | |
| # make it easy to reload the config (CTRL+r) |
imZack
/ README.md
Created
April 19, 2014 16:41
— forked from oodavid/README.md
This gist assumes:
- you have a local git repo
- with an online remote repository (github / bitbucket etc)
- and a cloud server (Rackspace cloud / Amazon EC2 etc)
- your (PHP) scripts are served from /var/www/html/
- your webpages are executed by apache
- apache's home directory is /var/www/
einthusan
/ go1.4arc65-ubuntu.sh
Last active
July 10, 2018 23:43
Install Golang 1.4.1 on Ubuntu 14.04 AWS EC2
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # OPTIONAL FLAGS: | |
| # | |
| # -geoip true | |
| # this will install maxmind geoip and auto update crontab file | |
| # | |
| # -cloudwatch true | |
| # this will install aws cloud watch metrics and send them to aws dashboard | |
| # |
OlderNewer