Category Archives: Virtualization

In computing, virtualization refers to the act of creating a virtual version of something, including virtual computer hardware platforms, storage devices, and computer network resources.

AWS: S3 Cross-Region Replication with DeleteMarkers set up
0 (0)

17 July 2019

At this moment I’m configuring a new CDN for our project. Will use CloudFront and Cloudflare here so need to create two dedicated buckets with different names – cdn.cfr.example.com => CloudFront and cdn.cfl.example.com => Cloudflare. To avoid coping data each time to both buckets – an AWS S3 Cross-Region Replication can be used, so data… Read More: AWS: S3 Cross-Region Replication with DeleteMarkers set up0 (0) »

Loading

SonarQube: running tests from Jenkins Pipeline in Docker
0 (0)

18 June 2019

The task is to run our backend PHP tests using SonarQube from a jenkins Pipeline job. Jenkins running in Docker and all its builds also uses Docker. The main issue I faced during this setup was the fact that SonarQube’s container inside spawns another process with Elastisearch (while Docker concept says “1 service per one… Read More: SonarQube: running tests from Jenkins Pipeline in Docker0 (0) »

Loading

AWS: IAM users keys rotation, EC2 IAM Roles and Jenkins
0 (0)

30 May 2019

Today I checked our IAM-users and “suddenly” recalled that it’s good to update their credentials sometimes: Well, that’s good to do but here is a question: it’s simple enough to set an expire for keys in IAM, but what to do with all scripts which are used in our Jenkins and which are using those… Read More: AWS: IAM users keys rotation, EC2 IAM Roles and Jenkins0… »

Loading

Debian: unattended-upgrades – automatic upgrades installation with email notifications via AWS SES
0 (0)

23 May 2019

A unattended-upgrades package performs automated upgrades installation on Debian/Ubuntu systems. It’s a Python script (1500 lines) located at /usr/bin/unattended-upgrade (and /usr/bin/unattended-upgrades is a symlink to the /usr/bin/unattended-upgrade). CentsOS/RHEL analog – yum-cron. Install it: [simterm] $ sudo apt -y install unattended-upgrades [/simterm] The main config file is /etc/apt/apt.conf.d/50unattended-upgrades where upgrade types, email settings etc can be… Read More: Debian: unattended-upgrades – automatic upgrades installation with email notifications via… »

Loading

Sentry: running self-hosted errors tracking system on an AWS EC2
0 (0)

18 May 2019

Previously we used cloud-based Sentry version but then reached emails limit and our backend-team left without those notifications which are critical for their work. A self-hosted version was planned a long time ago so now we have a chance to spin it up. The post below describes how to start self-hosted Sentry on an AWS… Read More: Sentry: running self-hosted errors tracking system on an AWS EC20… »

Loading

AWS: VPC peering DNS resolution and DNS settings for OpenVPN Access Server
0 (0)

17 May 2019

We have a VPC with OpenVPN Access Server running. This VPC is connected with other VPCs in our AWS account. The issue is that currently when a user is connected to VPN for the DNS resolution into EC2 instances private IPswe are using dnsmasq service on the VPN-host which has a /etc/dnsmasq.hosts file where are manually… Read More: AWS: VPC peering DNS resolution and DNS settings for OpenVPN… »

Loading

AWS: MariaDB RDS – kill: You are not owner of thread
0 (0)

14 May 2019

We have AWS RDS with MariaDB. The error below and its solution aren’t specific to AWS RDS and MariaDB. The next error appears during attempt to kill() a thread in MySQL: [simterm] MariaDB [(none)]> kill 759; ERROR 1095 (HY000): You are not owner of thread 759 [/simterm] The solution is to use the mysql.rds_kill() procedure… Read More: AWS: MariaDB RDS – kill: You are not owner of… »

Loading

Bitwarden: an organization’s password manager self-hosted version installation on an AWS EC2
0 (0)

1 May 2019

We consider Bitwarden as a passwords keeper for our project with the main goal to have an ability to have separated access to secrets by user roles and/or ACLs. I.e. Pass or KeePass are good for self-usage by one person but they have no main things – a normal web-interface and role-based access to data.… Read More: Bitwarden: an organization’s password manager self-hosted version installation on an… »

Loading

Authy: step by step Multi-Factor Authentication configuration for Github and AWS
0 (0)

17 April 2019

I’m sure that using MFA (Multi-Factor Authentication) today is oblivious. For 2FA (2-Factor Authentication) the most used method is TOTP – Time-based One-time Password, when alongside with the common login:password also needs to enter a code generated by a device or software. The most known implementation is Google Authenticator but also there is a lot… Read More: Authy: step by step Multi-Factor Authentication configuration for Github and… »

Loading

Jenkins: a job to check a Github organization’s public repositories list
0 (0)

16 April 2019

Proceeding with a Github repositories checker. To recall: the idea is to have such a check in case if somebody from developers accidentally will share our project’s private repository as public, or will create a public repository instead of making it as a private one – we will get a Slack alarm about such a… Read More: Jenkins: a job to check a Github organization’s public repositories… »

Loading