Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
Get a devDuck
Rubber duck debugging has never been so cute! Get your favorite coding language devDuckBuy Now
Search - "vps"
windows update code
This one time, a client wanted a complete overhaul of her website.
I asked her for the credentials to the VPS, She gave me some random crap to try, cause clearly the site hadn't been touched since 2003 (and boy was it fugly).
Me: Maam, these aren't the correct details.
She sends in more crap to try...2 days pass with this back and forth.
Client: "contact steve, he should have the login details"
Me: ****Calls Steve *****
Me: "Maam, he says the login details are in your mail"
Client: "well, I don't remember this fact. Steve handled everything.
Hack into the website and then reset it.
The Russians did not need login details to hack into America's system. So please, do what you have to do to get us moving."
No jokes...that was the exact crap that came out of her fingers23
*SSH's into VPS*
*Starts doing some general maintainance (updating, checking the logs etc)*
*runs the who command for fun*
*NOTICES THAT THERE"S ANOTHER ACTIVE SESSION*
*FURIOUSLY STARTS TO TRY AND LOOK HOW THAT USER MIGHT HAVE GOTTEN IN (root)*
*Goes one terminal to the left after a few minutes to see if I can use that one as well*
*notices an active and forgotten SSH session to that VPS*
I am stupid.23
So I got the job. Here's a story, never let anyone stop you from accomplishing your dreams!
It all started in 2010. Windows just crashed unrecoverably for the 3rd time in two years. Back then I wasn't good with computers yet so we got our tech guy to look at it and he said: "either pay for a windows license again (we nearly spend 1K on licenses already) or try another operating system which is free: Ubuntu. If you don't like it anyways, we can always switch back to Windows!"
Oh well, fair enough, not much to lose, right! So we went with Ubuntu. Within about 2 hours I could find everything. From the software installer to OpenOffice, browsers, email things and so on. Also I already got the basics of the Linux terminal (bash in this case) like ls, cd, mkdir and a few more.
My parents found it very easy to work with as well so we decided to stick with it.
I already started to experiment with some html/css code because the thought of being able to write my own websites was awesome! Within about a week or so I figured out a simple html site.
Then I started to experiment more and more.
After about a year of trial and error (repeat about 1000+ times) I finally got my first Apache server setup on a VirtualBox running Ubuntu server. Damn, it felt awesome to see my own shit working!
From that moment on I continued to try everything I could with Linux because I found the principle that I basically could do everything I wanted (possible with software solutions) without any limitations (like with Windows/Mac) very fucking awesome. I owned the fucking system.
Then, after some years, I got my first shared hosting plan! It was awesome to see my own (with subdomain) website online, functioning very well!
I started to learn stuff like FTP, SSH and so on.
Went on with trial and error for a while and then the thought occured to me: what if I'd have a little server ONLINE which I could use myself to experiment around?
First rented VPS was there! Couldn't get enough of it and kept experimenting with server thingies, linux in general aaand so on.
Started learning about rsa key based login, firewalls (iptables), brute force prevention (fail2ban), vhosts (apache2 still), SSL (damn this was an interesting one, how the fuck do you do this yourself?!), PHP and many other things.
Then, after a while, the thought came to mind: what if I'd have a dedicated server!?!?!?!
I ordered my first fucking dedicated server. Damn, this was awesome! Already knew some stuff about defending myself from brute force bots and so on so it went pretty well.
Finally made the jump to NginX and CentOS!
Made multiple VPS's for shitloads of purposes and just to learn. Started working with reverse proxies (nginx), proxy servers, SSL for everything (because fuck basic http WITHOUT SSL), vhosts and so on.
Started with simple, one screen linux setup with ubuntu 10.04.
Running a five monitor setup now with many distro's, running about 20 servers with proxies/nginx/apache2/multiple db engines, as much security as I can integrate and this fucking passion just got me my first Linux job!
It's not just an operating system for me, it's a way of life. And with that I don't just mean the operating system, but also the idea behind it :).20
https://git.kernel.org/…/ke…/... sure some of you are working on the patches already, if you are then lets connect cause, I am an ardent researcher for the same as of now.
So here it goes:
As soon as kernel page table isolation(KPTI) bug will be out of embargo, Whatsapp and FB will be flooded with over-night kernel "shikhuritee" experts who will share shitty advices non-stop.
1. The bug under embargo is a side channel attack, which exploits the fact that Intel chips come with speculative execution without proper isolation between user pages and kernel pages. Therefore, with careful scheduling and timing attack will reveal some information from kernel pages, while the code is running in user mode.
In easy terms, if you have a VPS, another person with VPS on same physical server may read memory being used by your VPS, which will result in unwanted data leakage. To make the matter worse, a malicious JS from innocent looking webpage might be (might be, because JS does not provide language constructs for such fine grained control; atleast none that I know as of now) able to read kernel pages, and pawn you real hard, real bad.
2. The bug comes from too much reliance on Tomasulo's algorithm for out-of-order instruction scheduling. It is not yet clear whether the bug can be fixed with a microcode update (and if not, Intel has to fix this in silicon itself). As far as I can dig, there is nothing that hints that this bug is fixable in microcode, which makes the matter much worse. Also according to my understanding a microcode update will be too trivial to fix this kind of a hardware bug.
3. A software-only remedy is possible, and that is being implemented by all major OSs (including our lovely Linux) in kernel space. The patch forces Translation Lookaside Buffer to flush if a context switch happens during a syscall (this is what I understand as of now). The benchmarks are suggesting that slowdown will be somewhere between 5%(best case)-30%(worst case).
4. Regarding point 3, syscalls don't matter much. Only thing that matters is how many times syscalls are called. For example, if you are using read() or write() on 8MB buffers, you won't have too much slowdown; but if you are calling same syscalls once per byte, a heavy performance penalty is guaranteed. All processes are which are I/O heavy are going to suffer (hostings and databases are two common examples).
5. The patch can be disabled in Linux by passing argument to kernel during boot; however it is not advised for pretty much obvious reasons.
6. For gamers: this is not going to affect games (because those are not I/O heavy)
Meltdown: "Meltdown" targeted on desktop chips can read kernel memory from L1D cache, Intel is only affected with this variant. Works on only Intel.
Spectre: Spectre is a hardware vulnerability with implementations of branch prediction that affects modern microprocessors with speculative execution, by allowing malicious processes access to the contents of other programs mapped memory. Works on all chips including Intel/ARM/AMD.
For updates refer the kernel tree: https://git.kernel.org/…/ke…/...
For further details and more chit-chats refer: https://lwn.net/SubscriberLink/...
(Originally written by Adhokshaj Mishra, edited by me. )23
Maintain your LinkedIn, write little articles about implementations on a tech blog, check issues on popular github projects and make PRs, create a portfolio website. Register as a company and do some freelance work, even if it's just a cheap website for your grandma's knitting club.
Do the tour/tutorial of every popular language/framework. Learn the basics of react/vue as a backend dev, learn some sql as a frontend dev. Set up a vps server at DO or AWS, host a few small services. Fullstack is bullshit, but communication is key in development, which means you need to know about the whole playing field.
Recruiters can be useful, but knowing developers in your area is even more valuable. So especially if you're unemployed, go to hackathons, conferences and meetups.4
1st link: react is the best one.
2nd link: Angular is the best one.
8th link: Vue is the best one.
Me: I knew it.20
Sometimes I just randomly start installing a new vps, configure the server, put a random sub domain on it, forward nginx with SSL, print something random on the page and then just remove the thing again.
Solely because I enjoy installing servers/configuring them.
Am I weird? 😅70
So I own a webshop together with a guy I met at one of my previous contract jobs. He said he had a great idea to sell product X because he can get them very cheap from another European country. Actually it is a great idea so we decided to work together on this: I do everything tech related, he does the non tech stuff.
Now we are more than 1 year in business. I setup a VPS, completely configured it, installed and setup the complete webshop, built 2 custom PrestaShop modules, built many customizations, built a completely new order proces (both front and back end), advertised quite some products, did some link building, ensured everything is in place to do proper SEO, wrote some content pages, did administration and tax declarations, rewrote a part of a PrestaShop component because it was so damn inefficient and horribly slow, and then some more. Much more.
He did customer relation management, supplier management and some ad words campaigns. Promised me many times to write the content for our product pages. This guy has an education in marketing but literally said: I'm not gonna invest in creating some marketing plan. I have no ambition in online marketing.
What?! You have the marketing knowledge and skills but refuse to use it to market our webshop and business? What the fuck is wrong with you?!
Today he says to me: 'Hey man, this is becoming an expensive hobby as we don't sell much and have lots of costs. I don't understand why I should be the one to write these content pages. Everything you did in the past 8 months can be done in less than 20 hours! You are a joke and just made it a big deal by spreading your work over so many months. I know for sure because I currently work at a company where I'm surrounded by front end devs! Are you fucking crazy?! You're a liar.'
He talks like this to me every 2 months or so while he can't even deliver the content for 1 single product in 6 fuckin' months! We even had to refund a few of our customers because Mr. client relations manager didn't respond to their e-mails within 1 fucking week!! So I asked him how could that have happened as you do the client relations and support. Well, he replied to me: 'Why didn't YOU respond to our clients? You don't log on in our back office at least once a day?!'.
Of course I do asshole. But YOU don't. He replied that I was lying just like I was lying about what I did for our business.
So, asshole, let's have a look at PrestaShops logs to see who's logging in daily. Well, you can probably guess who's IP was there in most of the entries. It wasn't his.
So, what the fuck have you been doing then?! You can't even manage to respond quickly to a client?!! We have maybe 50 clients and if we get 1 question a month by email it is already a lot. But you keep bitching, complaining and insulting me instead?!!!
Last time he literally admitted on a WhatsApp conversation that he had and still has the hope that he could just sit back and relax and watch me do ALL the work.
Well, guess what you fucking moron. That's not what we agreed upon. You fuckin' retard think you're so smart but you say EVERYTHING on WhatsApp! Including your promises to me. Thank you you fuckin' piece of dog shit because now I have hard evidence and will hand it over to my lawyer to make you pay every god damn cent for all the hours I've spent working on our business. Oh, and I'll take over the webshop and make it a success on my own because I know damn well how to get relevant traffic and thus customers.
You just go get yourself fucked in the ass without lubricant you fuckin' asshole. I have told you you shouldn't fuck with me because I take business very seriously. I even warned you when you were crossing a line again. Well, if you don't listen... You will pay for the consequences. I will be so damn happy to tell you 'I told you so' with a very very big smile on my face. That momemt WILL come, 'partner'.
Fuck you. You will be fucked. Count on that. Fucking asshole.7
I have to let it out. It's been brewing for years now.
Why does MySQL still exist?
It was lousy as hell 8 years ago, and since then it hasn't changed one bit. Why do people use it?
First off, it doesn't conform to standards, allowing you to aggregate without explicitly grouping, in which case you get god knows what type of shit in there, and then everybody asks why the numbers are so weird.
Second... it's $(CURRENT_YEAR) for fucks sake! This is the time of large data sets and complex requirements from those data sets. Just an hour through SO will show you dozens of poor people trying to do with MySQL what MySQL just can't do because it's stupid.
Recursion? 4 lines in any other large RDBMS, and tough luck in MySQL. So what next? Are you supposed to use Lemograph alongside MySQL just because you don't know that PostgreSQL is free and super fast?
Window functions to mix rows and do neat stuff? Naaah, who the hell needs that, right? Who needs to find the products ordered by the customer with the biggest order anyway? Oh you need that actually? Well you should write 3-4 queries, nest them in an incredibly fucked up way, summon a demon and feed it the first menstrual blood of your virgin daughter.
There used to be some excuses in the past "but but but, shared hosting only has MySQL". Which was wrong by the way. This was true only for big hosting names, and for people who didn't bother searching for alternatives. And now it's even better, since VPS and PaaS solutions are now available at prices lower than shared hosting, which give you better speed, performance and stability than shared hosting ever did.
"But but but Wordpress uses MySQL" - well then kill it! There are other platforms out there, that aren't just outrageously horrible on the inside and outside. Wordpress is crap, and work on it pays crap. Learn Laravel, Symfony, Zend, or even Drupal. You'll be able to create much more value than those shitty Wordpress sites that nobody ever visits or pay money on.
"But but but my client wants some static pages presented beside their online shop" - so why use Wordpress then? Static pages are static pages. Whip up a basic MVC set-up in literally any framework out there, avoid MySQL, include a basic ACL package for that framework, create a controller where you add a CKEditor to edit page content, and stick a nice template from themeforest for that page and be done with that shit! Save the mock-up for later use if you do that stuff often. Or if you're lazy to even do that, then take up Drupal.
But sure, this is going a bit over the scope. I actually don't care where you insert content for your few pages. It can be a JSON file for all I care. But if I catch you doing an e-commerce solution, or anything else than just text storage, on MySQL, I'll literally start re-assessing your ability to think rationally.12
Before anyone starts going batshit crazy, this is NOT a windows hate post. Just a funny experience imo.
So I was tasked with installing ProxMox on a dedicated server at my last internship. The windows admin was my guider (he could also do debian). (he was a really nice/chill guy)
So we were discussing what VM's we wanted and the boss (really cool dude by the way) said he wanted a VPS for storing some company stuff as well. Fair enough, what would we use? I suggested debian and centos. Then we started discussing what we'd do if the systems would fuck up etc (at installation or whatever).
So I didn't wanna look like a Linux Nazi so I suggested windows. Then the happy/positive guider/windows admin suddenly became dead serious (I was actually like 'woah' for a second) and said this:
No. We're not going to fucking use windows for this. For general servers etc sometimes, fair enough but we're talking about sensitive company data here. I don't want that data to be stored on a proprietary/closed source system, hell what if there's some kinda fucking backdoor build in, who can fucking verify that? We're using Linux, end of discussion.
I was pretty flabbergasted as he's a nice guy and actually really likes windows!
Linux it became.5
Can't ssh to my vps at work; hello new hobby project!
(server hosted on vps, http request -> shell -> http response)
Next up is supporting an interactive shell18
I get an email from a customer who want to end the contract. I inform him that the contract runs to the end of March and it will be terminated the last of march.
Customer agrees and I do not hear a word from him. Until now when I closed down all his services.
Why did you close the server and email? are you **** stupid!?
21/9 2016, you wanted to terminate all services you had with us. That means that your domains, DNS-services, VPS, email and Office 365 was going to be closed today.
Why is this not uncommon?!5
Got my front end friend (also my irl best friend) to agree on me setting up a vm/vps on one of my dedi's with a sub domain so he can learn to work with servers.
He agreed on me leaving root access for myself in case he couldn't figure something out and I (a Linux server engineer myself) would have to help him out.
He seemed so excited, will set this up when I get home 😊7
enabling firewall on a vps to secure my docker containers and forgetting to add openssh to allowed list --> ssh blocked 😃🔫24
Grab a $5/mnth vps from digital ocean and a cheapo 88 cent domain from name cheap, then put something, anything of your own on that vps, it looks so much better to an employer if you can point them at something you've made that's out there.
If it's open source that's a bonus too19
The best minds of my generation are thinking about how to make people click ads…That sucks.
- Jeffrey Hammerbacher, former Facebook engineer1
Sooooo me and the lead dev got placed in the wrong job classification at work.
Without sounding too mean, we are placed under the same descriptor and pay scale reserved for secretaries, janitors and the people that do maintenance at work(we work for a college as developers) whilst our cowormer who manages the cms got the correct classification.
The manager went apeshit because the guidelines state that:
Making software products
Administration of dbs
Server maintenance and troubleshooting
And a lot of shit is covered on the exemption list and it is things that we do by a wide fucking margin. The classification would technically prohibit us from developing software and the whole it dptmnt went apeshit over it since he(lead developer) refuses (rightfully so) to touch anything and do basically nothing other than generate reports.
Its a fun situation. While we both got a substantial raise in salary(go figure) we also got demoted at the same time.
There is a department in IT which deals with the databases for other major applications, their title is "programmers" yet for some reason me and the lead end up writing all the sql code that they ever need. They make waaaaay more money than me and the lead do, even in the correct classification.
Resolution: manager is working with the head of the department to correct this blasphemy WHILE asking for a higher pay than even the "programmers"
I love this woman. She has balls man. When the president of the school paraded around the office asking for an update on a high priority app she said that I am being gracious enough to work on it even though i am not supposed to. The fucking prick asked if i could speed it up to where she said that most of my work I do it on my off time, which by law is now something that I cannot do for the school and that she does not expect any of her devs to do jack shit unless shit gets fixed quick. With the correct pay.
Naturally, the president did not like such predicament and thus urged the HR department(which is globally hated now since they fucked up everyone's classification) to fix it.
Dunno if I will get above the pay that she requested. But seeing that royal ammount of LADY BALLS really means something to me. Which is why i would not trade that woman for a job at any of my dream workplaces.
Meanwhile, the level of stress placed my 12 years of service diabetic lead dev at the hospital. Fuck the hr department for real, fuck the vps of the school that fucked this up royally and fuck people in this city in general. I really care for my team, and the lead dev is one of my best friends and a good developer, this shit will not fucking go unnoticed and the HR department is now in low priority level for the software that we build for them
Still. I am amazed to have a manager that actually looks out for us instead of putting a nice face for the pricks that screwed us over.
I have been working since I was 16, went through the Army, am 27 now and it is the first time that I have seen such manager.
She can't read this, but she knows how much I appreciate her.5
Client: You can develop a e-commerce system for me right?
Me: Yeah sure, whats your budget?
Client: 100$ and I want a really good vps included in the price.
** FManzi left the conversation **
No more work for inexperienced5
Our website once had it’s config file (“old” .cgi app) open and available if you knew the file name. It was ‘obfuscated’ with the file name “Name of the cgi executable”.txt. So browsing, browsing.cgi, config file was browsing.txt.
After discovering the sql server admin password in plain text and reporting it to the VP, he called a meeting.
VP: “I have a report that you are storing the server admin password in plain text.”
WebMgr: “No, that is not correct.”
Me: “Um, yes it is, or we wouldn’t be here.”
WebMgr: “It’s not a network server administrator, it’s SQL Server’s SA account. Completely secure since that login has no access to the network.”
<VP looks over at me>
VP: “Oh..I was not told *that* detail.”
Me: “Um, that doesn’t matter, we shouldn’t have any login password in plain text, anywhere. Besides, the SA account has full access to the entire database. Someone could drop tables, get customer data, even access credit card data.”
WebMgr: “You are blowing all this out of proportion. There is no way anyone could do that.”
WebMgr: “Who would do that? They would have to know a lot about our systems in order to do any real damage.”
VP: “Yes, it would have to be someone in our department looking to do some damage.”
<both the VP and WebMgr look at me>
Me: “Open your browser and search on SQL Injection.”
<VP searches on SQL Injection..few seconds pass>
WebMgr: “Our team is already removing the SQL, but our apps need to read the SQL server login and password from a config file. I don’t know why this is such a big deal. The file is read-only and protected by IIS. You can’t even read it from a browser.”
VP: “Well, if it’s secured, I suppose it is OK.”
Me: “Open your browser and navigate to … browse.txt”
VP: “Oh my, there it is.”
WebMgr: “You can only see it because your laptop had administrative privileges. Anyone outside our network cannot access the file.”
VP: “OK, that makes sense. As long as IIS is securing the file …”
Me: “No..no..no.. I can’t believe this. The screen shot I sent yesterday was from my home laptop showing the file is publicly available.”
WebMgr: “But you are probably an admin on the laptop.”
<couple of awkward seconds of silence…then the light comes on>
VP: “OK, I’m stopping this meeting. I want all admin users and passwords removed from the site by the end of the day.”
Took a little longer than a day, but after reviewing what the web team changed:
- They did remove the SQL Server SA account, but replaced it with another account with full admin privileges.
- Replaced the “App Name”.txt with centrally located config file at C:\Inetpub\wwwroot\config.txt (hard-coded in the app)
When I brought this up again with my manager..
Mgr: “Yea, I know, it sucks. WebMgr showed the VP the config file was not accessible by the web site and it wasn’t using the SA password. He was satisfied by that. Web site is looking to beat projections again by 15%, so WebMgr told the other VPs that another disruption from a developer could jeopardize the quarterly numbers. I’d keep my head down for a while.”8
Me *shows friend website hosted on Ubuntu VPS*
Friend: You using UBLUNTOOTH?
Me: Excuse me? This is going on devRant.8
It's very satisfying to setup Pi-Hole on a vps, point your dns to it, adding the words Facebook and Google to the wildcard blacklist and seeing that literally any request containing either one of those words gets blocked.
On the other hand, it's funny to see that devRant (devrantron) performs around 1k+ requests to devRant every 15 minutes.19
Can my vps provider already email me my new vps details?
It's only been 5 minutes, yes but I'm IMPATIENT.
I want to set it up right now 😊11
Once I used to wonder how youtube made money.
Now every time I watch a youtube video I am reminded how.13
With permission of @dfox
An mate and me are starting our own server hosting company and we are looking for some people that want to test our services before we officially release.
Some of the things we have are: Dedicated servers, Fully isolated VPS's, Container based app services and a custom build Status pages (https://status.mikote.net/).
if you are interested let me know here and send us a message on our site https://www.mikote.net/ (still in development)
All of the pricing will be custom and if you include "<!DOCTYPE devrant>" in your first message or email and you will get a custom discount of up to 90%62
Installing a new Debian VM/VPS.
Nearly done with all steps and decide to lay down.
Fall asleep and wake up half an hour later.
The grub option is on screen.
I am sleepy as fuck.
Accidently selected the manual option and just pressed enter at the screen where I have to enter the device name.
Well, let's install this fucker again.7
A while ago the company I'm working for had this independent designer on contract so I was assigned to set up his workstation. Brand new pc dual monitor Photoshop license gaming keyboard and mouse cause "the lights kept him focused". We're talking about a 2000€+ machine and tools. I don't know exactly what that wanted him to do as I didn't ask. Who cares. The best part is below.
So I set up his things and all and make him a shortcut to the file server on his desktop. I then proceed to explain to him that this server has the files of every dpt in the company and told him where he could find his.
His only response was when he asked "how about my internet access?"
Me: everything except some "very certain sites"
He: Eeeehh well I kinda need those. Just give me access, I won't tell anyone.
Me: Sorry sir, I cannot do that company policy.
He: I'm telling you I need the access, I'm not kidding.
Me: Ok sir, if you really need it, open a ticket to the admin and if you explain your reasons I'm sure you will come to an agreement.
He: That's bullshit kid, if you won't do it I'm gonna report you for denial of service and do it myself.
Me just nodding and walking away: You do that sir.
So ofc I went and informed the admin that this guy might pull something.
Soon enough, a few weeks later the admin calls me over to his desk and points at the screen trying not to burst in laughter.
The guy (designer) brought an HDD and filled his folder on the server with porn. We're talking about 200gb or something.
When confronted he said something about severe anxiety and that porn was his way of calming down. Some guys told me my name came up in the VPs office but after the "evidence" nothing really happened except his contract getting terminated.
I think we learned something that day. Don't jerk off in the office guys :)10
Since I was little I was fascinated by club light shows I saw on TV shows. I just couldn't find out how they made light react to sound, which were two completely unrelated things to me back then. But I wasn't dumb and somehow figured out that if I hooked some low energy fairy lights to my amp and turned the bass up, they would lightup to the beat.
3 fried fairy lights and angry parents for to loud music later I swore to myself that I would someday build something that could light up my whole room and react to the music I was playing.
I started coding about the age 13 (turned 20 a month ago) with some old school bat scripts. But I wanted something that would generate a .exe so I googled and ended up installing Visual Studio Express (again angry parents for installing without asking) and started copying my first VB.Net program together. From there no one could stop me. I wanted to archive something with an application and googled until I found what I needed and learned to code this way.
I learned writing decent vb.net code and itvwas about this time I came into contact with IRC. I lurked arround there and this is were I came into contact with Linix servers, because I wanted to code IRC (eggdrop) bots, so I learned TCL and got used to Linux. Time passed and I ended uo being a Global OP on some network back then.
I did go further, coded Minecraft Mods, thus Java, changed back to C#, learned PHP and started setting things up on my VPS, Mails server, web server, etc.
Nowadays I work as a Systemadmin / Developer Hybrid, earning my first real money doing what I love to do and guess what? In the meantime I proved myself I can accomplish what I wanted as kid. I bought some Club LED DMX capital lights and programmed a controller for them which can control them in C#, but in a way I can run it on my raspi using mono. I also coded a client which runs on windows which uses some native libraries to calculate the dominant color of the shown picture in realtime (Handels 24fps 1080p) and uses the lights as ambient light, like you see them behind TVs sometimes.
The same app uses Bass.NET and an algorithm to dedect a beat in realtime and switches the light colors. Exactly what I wanted as akid, but better.
I can even control the lights via the new Google Assistant and/or Tasker.
Feels fcking good.
Some of my work lies on github among other, mostly trash: https://github.com/Kimmax - didn't updated there in a while tho.
I plan on writing a new free opensource plugin based modular home automatication server and pretty sure could use some helping hands..
I don't know why I wrote all this, just felt like it.
Also: first Rant
Please don't kill me for errors in the text, I'm to lazy to read through it again right now :P9
*deploys new VPS*
Click clack tap.. alright, done.
*notices that I accidentally made an Ubuntu 14.04*
Well shit... Guess I'll have to update that immediately to 18.04 then.
*logs in, immediately disables SSH password auth*
# systemctl restart sshd
> systemctl: command not found.
What the fuck..?
What was the command for that old init again.. >_<
# /etc/init.d/ssh restart
WHY THE FUCK IS THIS UBUNTU STILL USING THAT OLD INIT?!! Goddamit, Canonical living up to the philosophy of its Debian counterpart indeed!12
Submitting long written text on browser.
2. Ctrl+a Ctrl+c
Finally got my new VPS details.
It's very funny to login to your vps from your phone and install a firewall instead of doing it from a bigger screen!
Also the time just went scarily fast while doing that O_o43
So I'm moving to a new/bigger place with faster Internet soon so I think it's time to rebuild my current home/remote server setup.
I want to setup the following things:
- vps for server monitoring (open source pushover alternative + netdata)
- Zero tier network for connecting all my servers to the same network
- pihole/pivpn (or the Angristan vpn installer, look it up :)
- second blocking thingy next to pihole to make sure that I literally can't access google/fb etc anymore, even if I really needed/wanted to
- bunch of general servers.
After returning back from the company we were purchasing a new phone system (hardware+software, $100K+, kind of a big deal)
VP: “I need the new phone system software integration for our CRM by next week. I need to demo the system for the other VPs”
Me: “No problem. Were you able to get their API like I asked?”
VP: “Salesman didn’t know for sure what that was, but he said all the developer software documentation is on their site.”
Me: “Did he give you a URL? Their main site is all marketing mumbo-jumbo. I assume there is another one specific for developers.”
VP: “Yea, he might have said something, but I don’t understand why you need it. The salesman said the integration would be seamless. He showed me several demos.”
Me: “No, I mean I need to know, is the API a full client install? a simple dll? is this going to be a web service integration? How will I know what to program against?”
VP: “I think I heard him say something about COM? Does that sound like an API?”
Me: “It’s a start. Did he provide you anything, a disk, a flash drive, anything with the software?”
VP: “No, only thing he told me was our CRM integration would be seamless and our development team would have no problems.”
Me: “OK..OK…I get it…he’s a salesman. Is there an 1-800 number I can call? A technical support email address? Anyone technical I can reach out to?”
VP: “Probably, but I don’t understand what the problem is. I need the CRM integrated by next week. I gave the other VPs a promise we would get it done. I do not break promises.”
Me: “Wait…when are we installing the new system?”
VP: “Well, the purchase order will be cut at the end of the month’s billing cycle, the company has about a two month turnaround time to deliver and install the hardware, so maybe 3 months from now? Are you going to be able to have the integration ready for next week?”
Me: “If we won’t see any of the hardware for 3 months, what exactly am I integrating with?”
VP: “That API you wanted or whatever it is. COM…yea, it’s COM. I was told the integration would be seamless and our developers would have no problem. I don’t understand why you can’t simply write the code to make it work. Getting the hardware installed is going to be the hardest part.”
Me: “OK, so I have no documentation, we have no hardware, no software, and no idea what this ‘seamless integration’ means. I’m afraid there isn’t anything I can do right now. ”
VP: “Fine!...I’ll just have to tell the other VPs you were not able to execute the seamless integration with the CRM.”
Which he did. When the hardware+software was finally installed, they hired consultants (because I “failed”). I think the bill was in the $50K range to perform the ‘integration’ which consisted of Excel spreadsheets (no kidding). When approached with the primary CRM integration, the team needed our API documentation, a year’s development time and $300K. I was pissed off enough, and I had the API documentation, I was able to get the basic CRM integration within 3 days. When an agent receives a call, I look up the # in our database, auto-fill the form with the customer info, etc. Easy stuff when you have the documentation.
The basics worked and the VP was congratulated by ‘saving’ the company $300K. May or may not have been bonuses involved, rumors still out on that one, but I didn't see em'. Later my manager told me the VP was really ticked that I performed the integration ‘behind his back’, but because it was a success, he couldn’t fire me.10
I'm just amazed what 512MB of RAM can do :O
That's htop from my VPS I feel sorry for the CPU though.
It is running three docker containers:
1. Dotnet Core
From a design meeting yesterday:
MyBoss: "The estimate hours seem low for a project of this size. Is everything accounted for?"
WebDev1: "Yes, we feel everything for the web site is accounted for."
-- ding ding...my spidey sense goes off
Me: "What about merchandising?"
MerchDevMgr: "Our estimate pushed the hours over what the stakeholders wanted to spend. Web department nixed it to get the proposal approved."
MyBoss: "WTF!? How the hell can this project go anywhere without merchandising entering the data!?"
WebDev2: "Its fine. We'll just get the data from merchandising and enter it by hand. It will only be temporary"
Me: "Temporary for who? Are you expecting developers to validate and maintain data?"
WebDev1: "It won't be a big deal."
MyBoss: "Yes it is! When the data is wrong, who are they going to blame!?"
WebDev1: "Oh, we didn't really think of that."
MerchDevMgr: "I did, but the CEO really wants this project completed, but the Web VPs would only accept half the hours estimated."
Me: "Then you don't do it. Period. Its better to do it right the first time than half-ass. How do think the CEO will react to finding out developers are responsible for the data entry?"
MerchDevMgr: "He would be pissed."
MyBoss: "I'm not signing off on this design. You can proceed without my approval., but I'll make a note on the document as to why. If you talk to Eric and Tom about the long term implications, they'll listen. At the end of the day, the MerchVPs are responsible to the CEO."
WebDev1: "OK, great. Now, the database, it should be SQLServer ..."
I checked out after that...daydreamed I was a viking.2
Thank you guys. Especially thank you @linuxxx. Because of your help, patience and advice I accomplished to setup and manage my new VPS on my own. I even moved to linux on my local machine.
It has been a long path. But I feel confident now. Thank you for growing that feeling in me.6
I have a VPS for under a year from Digital Ocean. No idea what to do with it.
Debian 8.9 x64
A spare domain from Namecheap
Hello devRant, a question for you.
I'm looking to redisign/setup my server 'infrastructure'.
It'll exist out of:
7 vps's (6+gb ram/500gb+/100mbs up/down per vps)
2 dedicated servers running as virtualization servers. (16gb/4tb/1gbit up/down and another one but let's leave that one out for now because it's gonna take a shit ton of time to solve that clusterfuck)
One server will function as an entry point for all websites I run, multiple database servers and multiple backup ones.
Just a very serious hobby thing :)28
I hate GoDaddy, we all hate GoDaddy. We know this. I had VPS running a single site that was there for 8 years and only hanging on there for a few business reasons. It was to move this past May to another server, then June, then July ... continually waiting for the final phase to pass so I can move it. Backups running nightly to a separate GoDaddy FTP server ... for 8 years. All good for 8 years. Our company gets a new credit card ... I'm away and forget to update it with GoDaddy ... billing fails 3 times and they delete EVERTHING. No care about being a good customer for 8 years (14 total with other servers), no phone call, no nothing. Poof, gone. Now, I know I should have transferred backups locally or, at the very least, somewhere else. I just never expected this type of treatment. FUCK GODADDY!11
*How to graduate in style*
(And prob get arested)
(Because i am graduating soon)
-Make a simple reverse_tcp payload with persistence and encode it with veil or do it yourself. Make sure it connects to your VPS.
- Give it to your classmates and teachers! Sharing is caring!
- make a wallpaper that says "Happy graduation class 404!" (Isn't our class number awesome?!)
- wait until graduation to... i think you know what i plan to do ;)30
An important message:
PrOpErLy managing servers is HARD.
I get pissed off at customers with ZERO server knowledge who think they can manage their VPS. “Just get a control panel and a VPS” from some flashy provider that makes server management look way too easy.. Clicking around in their fancy control panel, until:
- they need help with their *self-managed* VPS;
- their email ends up in spam;
- they suffer from performance issues;
- they need to restore a backup;
- something breaks, because YES, things break
Way too little people are able to answer:
- when and how do you make backups?
- how do you monitor your servers and which services?
- how do you keep track of trend analysis?
Then I come by with necessary software. SNMP for trend analysis, Graphite for infrastructure health, Sensu for monitoring, Kibana, Ansible for configuration management..
Things that servers need but that customers have never even heard of.. because they can do everything in their control panel..
Until they come crying to me because it broke and they don’t even know how to get into SSH.
I think the ones to blame are VPS providers that tell the tale of how easy it is to install a control panel and never look at your server again.
Customers become responsible for something *business-critical*! Yet they don’t know how it works.6
Feeling productive at a Sunday evening. Let's install a DNS server and a fucking mail server on two forgotten VPS's I am still paying for.
SO A-FUCKING-PPEARANTLY, THEIR WEB MANAGEMENT PANEL IS FUCKED UP SO I CANNOT REINSTALL MY MOTHERFUCKER VPS's. HOW FUCKING FUCKING FUCKING FUCKING DIFFICULT CAN IT BE.15
Dear Chrome/firefox developers,
If someone presses the back button after they click on a link it means don't load that page and not go back to previous page.4
First company I worked for, built around 40 websites with Drupal 7...in only a year (don't know if it's a lot for today's standards, but I was one guy doing everything). Of course I didn't have the time to keep updating everything and I continually insisted to the boss that we need more people if we are going to expand. Of course he kept telling me to keep working harder and that I "got this". Well, after a year a couple of websites got defaced, you know the usual stuff if you've been around for some time. Felt pretty bad at the time, it was a similar feeling to having your car stolen or something.
Anyways, fast forward about 2 years, started working on another company, and well...this one was on another level. They had a total of around 40 websites, with about 10 of them being Joomla 1.5 installations (Dear Lord have mercy on my soul(the security vulnerabilities from these websites only, were greater than Spiderman's responsibilities)) and the others where WordPress websites, all that ON A SINGLE VPS, I mean, come on... Websites being defaced on the daily, pharma-hacks everywhere, server exploding from malware queing about 90k of spam emails on the outbox, server downtime for maintenance happening almost weekly, hosting company mailing me on the daily about the next malware detection adventure etc. Other than that, the guy that I was replacing, was not giving a single fuck. He was like, "dude it's all good here, everything works just fine and all you have to do is keep the clients happy and shit". Sometimes, I hate myself for being too caring and responsible back then.
I'm still having nightmares of that place. Both that office and that VPS.
Question for networking persons or persons who might know more about this than me in general.
I'm looking at setting up a server as vpn server (that part I know) which tunnels everything through multiple other vpn connections.
So let's say I've got a vps which I connect to through vpn. I then want that vps to have one or multiple connections to other vpn servers.
That way i can connect my devices to this server which routes everything to/through other services like mullvad :).
Tried it before but ended up losing ssh access until reboot 😬
This kind of random stuff happens to me often:
*comes home from going out*
*wants to sleep badly*
Brain: heyyy, why don't we take a look at some vps discounts!!!
Me: please, I want to FUCKING sleep.
Brain: oh come on...
Me: pls don't do this to me..
Brain: But vps discounts...
Me: oh FUCK YOU, I'll go look up some stuff.
My brain can be weird and annoying.8
Trying to run a process on each CPU thread in our vps only to find that our vps has just one CPU and no multi threading. :/
We need an upgrade.1
Just bought a nice speced and cheap VPS.
2 vCPU XEON E7
All for 20Euro a month.
Guess what its gonna do ? (Haxk20 Rant)
COMPILE ANDROID !!!!!!!!!!!!!!!!!!!!6
So I manage multiple VPS's (including multiple on a dedicated server) and I setup a few proxy servers last week. Ordered another one yesterday to run as VPN server and I thought like 'hey, let's disable password based login for security!'. So I disabled that but the key login didn't seem to work completely yet. I did see a 'console' icon/title in the control panel at the host's site and I've seen/used those before so I thought that as the other ones I've used before all provided a web based console, I'd be fine! So le me disabled password based login and indeed, the key based login did not work yet. No panic, let's go to the web interface and click the console button!
*clicks console button*
*New windows launches.....*
I thought I would get a console window.
The window contained temporary login details for my VPS... guess what... YES, FUCKING PASSWORD BASED. AND WHO JUST DISABLED THE FUCKING PASSWORD BASED LOGIN!?!
WHO THOUGHT IT WOULD BE A GOOD IDEA TO IMPLEMENT THIS MOTHERFUCKING GOD?!?
Found a cheap-ass VPS.
- 2 cores
- 4GB RAM
- 300GB Storage
- get this: _4€ a month_
Self-hosting, here I come.30
So during my internship I learned a lot about Linux, Docker and servers and I recently switched from a shared hosting to my own VPS. On this VPS I currently have one nginx server running that serves a static ReactJs application. This is temponarily, I SFTP-ed the build files to the server and added a config file for ssl, ciphers and dhparams. I plan to change it later to a nextjs application with a ci/di pipeline etc. I also added a 'runuser' that owns the /srv/web directory in which the webserver files are located. Ssh has passwords disabled and my private keys have passphrases.
Now that I it's been running for a few days I noticed a lot of requests from botnets that tried to access phpmyadmin and adminpanels on my server which gave me quite a scare. Luckily my website does not have a backend and I would never expose phpmyadmin like that if I did have it.
Now my question is:
Do you guys know any good articles or have tips and tricks for securing my server and future projects? Are there any good practices that I should absolutely read and follow? (Like not exposing server details etc., php version, rate limiting). I really want to move forward with my quest for knowledge and feel like I should have a good basis when it comes to managing a server, especially with the current privacy laws in place.
Thanks in advance for enduring my rant and infodump 😅7
So my host of choice decided to migrate an old site to a new set of IPs without warning yesterday, down side to a VPS I guess.
Now this wouldn’t be an issue if it wasn’t on a dedicated IP you wankers.
DNS won’t resolve to new location yet and Virtual hosts contained the old IPs and for some fuck of a reason the httpd file is auto generated 😡so updating it will be lost on reboot.
Like What the flying fuck you imbeciles, this site has been up and running for 5+ years on this IP.
I barely do any maintenance for t as it’s just an old horse sitting on the web but fuck you don’t need to fuck with it or atleast give some fucking warning before you go drop it offline 😡1
I have spent the last 24 hours trying to connect a postgres db and a docker contained application both running on the same vps.
What no one told me was docker applications run on a separate network interface…
I need sleep...5
This is the craziest shit... MY FUCKING SERVER JUST SET ON FIRE!!!
Like seriously its hot news (can't resist the puns), it's actually really bad news and I'm just in shock (it's not everyday you find out your running the hottest stack in the country :-P)... I thought it slow as fuck this morning but the office internet was also on the fritz so I carried on with my life until EVERYTHING went down (completely down - poof gone) and within 2 minutes I had a technician from the data centre telling me that something to do with fans had failed and they caught fire, melted and have become one with the hardware. WTF? The last time I went to the data centre it was so cold I pissed sitting down for 2 days because my dick vanished.
I'm just so fucking torn right now because initially I was absolutely fucking ecstatic - 1 week ago after a year of doomsday bitching about having a single point of failure and me not being a sysadmin only to have them look at me like I'm some kind of techie flat earther I finally got approval to spend around 5x more per month and migrate all our software to containerized micro services.
I'll admit this is a bit worse than I expected but thanks to last week at least I have recent off site images of the drives - because big surprise I have to set this monolithic beast back up (No small feat - its gonna be a long night) on a fresh VPS, I also have to do it on premises or the data will only finish uploading sometime next week.
Pro Tip: If your also pleading for more resources/better production environment only to be stone walled the second you mention there's a cost attached be like me - I gave them an ultimatum, either I deploy the software on a stack that's manageable or they man the fuck up and pay a sys admin (This idea got them really amped up until they checked how much decent sys admins cost).
Now I have very flexible pockets because even if I go rambo the max server costs would only be 15-20% of a sys admins paycheck even though that is 13 x more than our current costs.3
Ok, a few days ago I recommended contabo.com as a good and cheap VPS, because our company uses it and it is blazingly fast. BUT! I am definitely NOT doing this!
"False or fraudulent orders are commonplace on the Internet. We have to take measures to prevent such false or fraudulent orders. Our system has identified your order as a possible false order. We must now prove your order as a valid order, otherwise we cannot provide you with the services you bought. We need your help with this. Please send us a copy of your passport or national identity card or something similar which corresponds to the data you have provided to us. Alternatively, you can send us your telephone or electricity bill if it contains your address. The address must match the address you provided on our homepage. It is sufficient if you simply take a photo of the document. The only purpose of this is to prove your order as authentic. This is why it does not matter which of the mentioned documents you send us and it does not matter if you make a scan or take a photo. A scammer could not provide any of these documents, this means one document is already enough to prove that your order is authentic and valid."13
I bought my first VPS today. After years of hosting my email, websites, databases and backups services on my own physical servers both home and in real serverrooms.
Strange feeling, but it feels like something heavy was lifted from myself, I do not need to buy hardware if something fails.13
Managing a VPS while having an internet connection that makes everything I type appear in the terminal around half a minute later... I need a f*cking stress ball3
Why the fuck did you guys change my vps to read only file system.
WHAT IS FUCKING WRONG WITH YOU, THIS IS LIKE THE 6TH TIME.
What do you expect to tell my clients?
I should look into if I have legal rights to migrate everything to a more stable provider.
Sick and tired of having issues because other people fck up. It's a shame I have been using this provider for 5 years without any problems. And now servers left and right start having problems.22
trying out this hot new VPS host named Skysilk, aside from the EAI_AGAIN networking issues and a too basic dashboard, it works fine. Other than that its a good host. Would recommend3
Why the fuck is it that I get fucking newsletters that I don't want from my shitty VPS provider, but THEY DON'T SEND ME AN EMAIL TO TELL ME THAT I HAVE TO PAY AN INVOICE?!
I thought they'd automatically charge the money from my bank, now I find out my website is down. I logged onto the provider's website and my profile is full of messages telling me about this. SEND ME A MAIL YOU DENSE FUCKS! I HAVE ABSOLUTELY NO REASON TO EVEN VISIT YOUR WEBSITE…
Meh, now I have to set everything up again, and my website visitor stats are gone :(
This was a while back. I was hosting a site at a hosting company's 'vps'. I had 1gig for the mysql databases. Problem is, for some reason the server didnt let me have more than 300mbs including everything (there were some videos on the site). I contacted them and they only replied that its ok on their end. Okay, makes sense. So i opened ssh and started looking for the problem. After a bit, i figured out that my site is hosted on a 1tb drive and i could see all the other partitions. Meaning they just slapped a bunch of users data on the same drive. So i wrote an assembly program to offset the mysql files by ~500 mbs. Turns out that put me in an unoccupied 100gb partition and the site was still working properly. So i offset everything to there and i had a 100gb vps for like $5.2
I’ve found a variant of a variant of Mirai in a client’s server, tried to remove it, failed, shut off the server and disconnected it.
The server was our ownership but was situated at the client’s building in their network.
We asked for this server to be in a DMZ segregated from the actual production network just because in the production network there’s the core business as well as credit card data.
They failed to implement our requests and they got hacked.
I hope I discovered the threat in time, but I’m quite sure some head will fall off.
Hell, I’m sorry for those guys but I love my job ❤️
I traced back the malware maker/s and dumped their VPS just because.2
So... I finally decided to secure my VPS, so I started with sudo less /var/log/auth.log ...
Short story, not even gonna read every line, just gonna reset my VPS lol11
I was looking to purchase a VPS to host my stuff on. I've looked at DigitalOcean, but their packages seem rather expensive.
Is there a cheaper VPS provider? I'd like a machine with at least 2GB of RAM.19
So I decided to install Arch on my Vps.
Problem: no connection from Vps to internet.
Info: I have terminal access from my hostings panel.
Solution: basic troubleshooting and Google
Problem: this hosting uses outdated install image with broken systemd-networkd.
Solution: install networkmanager
Problem: no internet
Solution: download networkmanager and dependencies on my laptop
Problem: How do I upload them?
Solution: put them in a tar archive, then base64 it and copy paste it via the panel.
Problem: That base64 is over 30MB. No browser lets me copy and paste so much text.
Solution: Write a quick and dirty Java that reads a .txt file and presses buttons.
Problem: Browser freezes after one second
Solution: Thread.sleep(10) after each character, and Thread.sleep(1000) after 10k characters for the browser to catch up.
It's currently going and I have no idea how long it will take. I'll post an update when it finishes.
And people ask me why I love programming. It can help solve so much problems with so little work.
Edit: according to some quick calculations this will take about 5-6 hours, so I'm cancelling it, sine it's past midnight now. I'll start it up tommorow before going to college1
TLDR: There's some days where the Gods of IT are not with you. Just lost a whole day of work.
So this morning, we (me and my team) big performance issues with our web app. Lot's of requests time out, big latency, etc
Try to ssh to VPS, latency of 10 seconds between user input and output.
Usual checks: RAM ok, Proc ok, hard drive ok, reboot server (20 minutes), update/upgrade
We decide to call OVH. After 15 minutes call, we try to reboot in rescue mode. Reboot fails at 60% + everything freezes.
After an hour, OVH opens an incident ticket on +200 vps instances (including mine) everything is down during +1h
Finally everything is okay ! Even had time to migrate my new database schema.
Still, quick heavy on the mind but feels good to go home with everything working out correctly
Does anyone use https://vpsserver.com ?
Looking at migrating from an expensive VPS host to something self managed and potentially dedicated for my personal sites.
these guys seem to stand out at the price point without going to something like digital ocean / aws.
Or does anyone have any recommendations before I drop a few quid into them?3
Super duper Marketing guy gets hired to boosts Eshop sales. Sends a huge wall of text about moving the site to the X VPS hosting plan, put SSL to the site etc..
Me: We are already on that hosting plan. We have SSL and everything else you mention. Are you sure you checked the right Eshop before you made that Grand Plan of boosting sales? 🤣🤣🤣1
A while ago I stumbled upon this cheap vps provider called dedistation (lowest was $15/year), so I end up buying a one year subscription and transferred all of my personal sites to it. Fast forward six month later, uptime robot notified me that my vps is down. No problem, I'll just submit a ticket. Few days go by and I yet to receive a response. Not a problem, I'll just try and login via the serial interface and get my shit, no luck there either.
Seems like these motherfuckers just packed up and went offline without a shit given.
No response, no notification untill today! How more twat a company could be?
Lessons learned the hard way
- always backup regularly
- check and transfer nameserver or no emails for days.
- you get what u pay for (haven't learned this fully yet. Went again with a cheap legit-ish provider (arubacloud)7
Finally got my anime api somewhat working.
Tomorrow (or in a couple of hours 😅) I'll try to register my first domain and and get my first vps(?) up and running
The api features the data from /r/animethemes, so it'll have 2000+ animes entries with opening / ending urls.
I've also tried to implement some form of searching ('%term%' stuff 🤣), but you better know your abime by its romanized name, or you're gonna have a bad time since I have no alternative names per anime yet.8
Spent 30 minutes searching for openVPN on my VPS to end up remembering I have it as a docker container and not installed directly on the system :\
I started noticing something about startups here. They all think they r innovative and full of fresh ideas, but they all just copy bigger companies. My old coworker started a small web dev company and they are using php with react, the company ladder is the fucking same as anywhere else.
I noticed these as i was collecting ideas for a company (if i write that word again pls shoot me). So far we are thinking
0) no, or minimal local storage, we would have a github subscription, jira cloud, vps
1) no strict hierarchy, ultimately the ceos would make the decisions but in every meeting we would include even the interns
2) the stack would not be set in stone, java spark and vuejs are good starting points but frameworks exist to serve a purpose
3) like 2-3 days office time per week, if someone wants to work from a café, why not2
TL;DR my first vps got hacked, the attacker flooded my server log when I successfully discovered and removed him so I couldn't use my server anymore because the log was taking up all the space on the server.
The first Linux VPN I ever had (when I was a noob and had just started with vServers and Linux in general, obviously) got hacked within 2 moths since I got it.
As I didn't knew much about securing a Linux server, I made all these "rookie" mistakes: having ssh on port 22, allowing root access via ssh, no key auth...
So, the server got hacked without me even noticing. Some time later, I received a mail from my hoster who said "hello, someone (probably you) is running portscans from your server" of which I had no idea... So I looked in the logs, and BAM, "successful root login" from an IP address which wasn't me.
After I found out the server got hacked, I reinstalled the whole server, changed the port and activated key auth and installed fail2ban.
Some days later, when I finally configured everything the way I wanted, I observed I couldn't do anything with that server anymore. Found out there was absolutely no space on the server. Made a scan to find files to delete and found a logfile. The ssh logfile. I took up a freaking 95 GB of space (of a total of 100gb on the server). Turned out the guy who broke into my server got upset I discovered him and bruteforced the shit out of my server flooding the logs with failed login attempts...
I guess I learnt how to properly secure a server from this attack 💪3
Today, I got a DMCA notice from Digital Ocean for a VPS I'm running a VPN on. The notice stated that apparently someone downloaded some movies using said VPN. That someone definitely was not me. Fuck. *Quietly destroys VPS.*11
Fucking christ this year is a fucking shitfest:
- wpa2 krack
- "DUHK Attack Lets Hackers Recover Encryption Key Used in VPNs & Web Sessions"
- "Hacker Hijacks CoinHive's DNS to Mine Cryptocurrency Using Thousands of Websites"
- "Bad Rabbit: New Ransomware Attack Rapidly Spreading Across Europe"
My fucking router didn't yet get patched, my fucking phone is outdated and I can't change to my patched one because devrant just shits the bed in extended desktop mode. Windows 8.1 loses support in 3 months, rendering my last chance of using it on my surface pro done, making me use windows 10 with its fucking shit ass not optimized tablet interface. I have just fucking constant paranoia what else could be hacked tomorrow, nothing is fucking safe anymore for fucks sake. I even went as far as implement 3 step auth and intrusion detection on my shitty ass VPS nodes, fucking give me a break you fucking assholes.5
The VPS where I host my owncloud instance has had its service tier upgraded since I spun it up. Opening a new one for the same price give you much better hardware stats now. Also, it's running Debian 8, which no longer gets updates from the owncloud repo. So yesterday I took this opportunity to make a new VPS, and try out nextcloud with it. I am floored. It is so much simpler for me. I'm not locked into whatever backend nextcloud chooses-- I have a choice.
Also, I can set up Apache to work however I want. I assume it'll work fine with nginx too.
Once it was installed and ready to go, I noticed I have much more granular and controlled access to my settings.
While sitting in a train (5 hours trip) I really want to code something, unfortunately I dont have my laptop with me, so i just connected with ssh from my phone to my ubuntu vps, created some project via npm and use android app to edit the code. It is not perfect but works. Someone else code like that?3
Fuck isps where you have to pay like $50 for a static ip. Im tryna set up a wemos for automating stuff, and the only way to ping from my phone is pinging a vps that has an open socket towards the wemos :/3
I'm currently planning to set myselv up with some vps/dedicated server's for a project. What i plan to do to secure these servers is.
*Use centos 7
* Setup Wireguard and join all of the servers +1 client (my pc) to that network
*Disable SSH Access from outside that VPN
*Only allow RSA Key login to the Servers
*Install Cockpit for monitoring
*Intall docker/kubernetes for the applications i plan to run
What do you guys think of that as a baseline? Im not sure if my lower powered VPS (VPS M SSD from Contabo) will work as Kubernetes Nodes, does anyone have experience with that?
In general these Servers will be used for my projects and other fooling around.
If you guys have other suggestions for Securing/monitoring or other software i could put on to have more control without eating up to much of the Servers power, let me know :D13
Man, running a Minecraft server with 5 players on a VPS with 1 vCore and 1GB of ram is *really* pushing this thing to its limits!
Thank goodness Ubuntu Server doesn't need much ram to run, because Minecraft is a real resource hog.
I hope Hetzner approves my account on monday, so we can move to a 2 core VPS with 4GB of ram!20
Working with acutal BigData. Will be ''promoted'' to a new team where I will work on a system wrote in php+mysql with literal millions of requests and database rows. We are currently seeing server crashes around once a week on peak usage. Stack is a vps 64gb ram server + i dont know how many cpu/ cores. Apache, php, mysql.Best ways to optimise and adapt in this case? Kafka? Rabbitmq?ngnix? More hardware?26
!rant + question for Bulgaria ranters
I've recently came through vps.ag owned by BelCloud (https://www.belcloud.net/)
Was wondering, do you recommend it? I liked the fact they don't ask for personal details + have low prices for my needs
I'm checking their payment options and found those, I'm a bit freaking out here as I only heard about Paypal and crypto coins.
Oh man setting up postfix and dovecot (plus things like rspamd) is a pain in the ass.
But it's worth it, having your own mail server is just quite a good feeling.
Now I just need to find out how to get it to pass the spam filter of Google, despite the server and the DNS zone being well-configured (better than my school's mail server according to tests, but that one still manages to pass. I have no idea why.)9
So I asked this question yesterday to linuxxx and he had some great tips. But I thought there might be some Linux fanatics here who also have some experience working with vps's that you might have somethings to add something 😁
Recently I got asked if I want to help maintain our webservers (they all run Ubuntu 18.04 with standard webserver stuff, nginx, MySQL, php, ssh)
Does anyone know of some tips or share some helpful knowledge regarding maintaining a VPS? / Keeping it healty?6
There is nothing quite so arousing, than getting your own VPS and hosting your applications*
*Not including boobs.2
This host WTF. What is their business model? These prizes are insanely expensive5
Anyone else get called cute nicknames working in IT?
My favourite is one of the VPs at my company calls me a warlock, because I can read code that he calls "archaic scribble"8
So... I've been messing arround with my first VPS (with little knowledge of Linux).
First installed lxde to learn how to do it, then back to the terminal. then I started with Apache, watching online tuts ...
Then I changed for nginx... Looks way better.
Installed my sql, php and got stuck. Dropped it for a few days.
Today I restarted, deleted Apache, mysql, reinstalled nginx, my php (with lots of problems because of old instalations). Everything is working now except php.
After going round and arround I changed my focus to relax a bit, and remembered I still have Apache on the firewall...
OK Apache and other stuff that I installed.
New rules only for nginx and reset.
Cant ssh to the server... What?
Oh... Forgot to add rules to OpenSSH...
No matter, I can access the terminal directly on the website....
And it loads to ldxe, with no user set...
Oh BTW I'm in a trial free period with no support...20
HELP ME OUT BRUTHA AND SISTUR..
I've finally finished my website - now's the time to do the tedious thing and get a decent hosting for as little money as possible.
Does anyone know a hosting that has:
- High privacy ethics (not that I'm gonna store porn there, just my screenshots posted via ShareX)
- VPS-based hosting I can put a nice Linux on.
- Unlimited or 'really high' bandwidth.
- Located in Europe (UK included lol).
I would be most thankful :P25
please bare with me :)
What is the difference between having a VPS with OpenVPN and connecting to it and between registering for a VPN provider?10
Just figured out that while I was on vacation they made a really well thought (not) decision to switch to Firebase despite having 4 fully managed VPS with low usage.
Wanna know what the big deal is?
The only one who looks like knows anything is the fucking intern.
I was trying to understand the thought process and everything revolved around "its real time" argument.
No one knows how the api really works, the benefits of "real time" , and we are using the free plan :)
Yeah... People really do overthink things here...
It promised full-blown CRDT functionality. So I decided to adopt it.
Disappointment number one: you have to use CouchDB, so your data model is under strict regulations now. Okay.
Disappointment number two: absolutely messed up hack required to restrict users from accessing other users’ data, otherwise you have to store all the user data in single collection. Not the most performant solution.
Disappointment number three: pagination is utter mess. Server-side timestamps are utter mess. ANY server-side logic is utter mess.
Just to set it to work, you need PouchDB itself, websocket adapter (otherwise only three simultaneous syncs), auth adapter (doesn’t work via sockets), which came out fucking large pile of bullshit at the frontend.
Disappointment number four, the final one: auth somehow works but it doesn’t set cookie. I don’t know how to get access.
GitHub user named Wohali, number one CouchDB specialist over there, doesn’t know that either.
It also doesn’t work at Incognito mode, doesn’t work at Firefox at all.
So, if you want to use PouchDB, bear that in mind:
1. CouchDB only
2. No server-side logic
3. Authorization is a mess
4. Error logs are mess too: “ERROR 83929629 broken pipe” means “out of disk space” in Erlang, the CouchDB language.
5. No hosting solutions. No backup solutions, no infrastructure around that at all. You are tied to bare metal VPS and Ansible.
6. Huge pile of bullshit at frontend. Doesn’t work at Incognito mode, doesn’t work at Firefox.8
I have a low cost gameserver running at my home and my friends told me that said server is apparently offline.
So i wanted to check whats wrong, but there is one thing, im @work and no PC is near me so no chance to ping my local server to see if it responds.
BUT i have my trusty VPS which i can connect to via my android phone (Termins app / SSH) so i logged onto it and send a ping requests to my local server which was succesful!
tl:dr ping my local gameserver from my VPS which i reached from my Android phone2
What are your experiences with vps services. I'm looking for vpss to run a mail server setup(like @Linux has) 2-3 web servers,mongoDB instances,a gitlab server and a backup solution.
Which vps services would you recommend/have had good experiences with, so far?14
Bought my first VPS, because the shared plan we are using is shit.
Spent just half an hour trying to log in, because upon registration they encouraged a strong password with simbols and everything.
But in reality a root password can only contain letters, numbers, underscore and minus sign... The fuck is wrong with you? Reducing the entropy is one thing, but really fucking up the most essential part of a VPN setup?7
That moment when even your Sysadmin teacher asks you questions about ssh config during a lab ... Ah did I forgot to say that all the other students were also asking me questions ?
Sometimes uni is tiring ...4
Working on migrating my stuff from DigitalOcean to Contabo. Did a little test drive over the weekend and was very happy with the service. Most of all, I was very happy with the price: paying around a 4th of what I paid to DO to get the same specs ^^7
Recently I started coding a project for my school with two of my friends. The first one is a person which spends most of his time reading 4chan and joking about Pope, you know this kind of person. The second, Michael, is a really good partner for coding, he's just an opposite of Jedrzej, the first one. Jedrzej used to call people 'cancer' and this kind of sh**. Lately Michael said, that he's mother has breast cancer and he left our conversation on Facebook. Later I told Jedrzej, that he has to tell Michael 'sorry', but he wrote something stupid (doesn't matter what) and the situation only went wrong. At least I told them that they have to bury the hatchet and start working. The only problem here is that Michael and I made 99.7% of our project, Jedrzej only updated README and shared his VPS. I'm a full-stack dev, but our project is on laravel and I don't know what kind of sorcery is this framework so Michael does the back-end. My question to all of you who read this rant - what should I do with lazy Jedrzej?7
Do you all have your own VPS server to host your own portfolio website ? If yes provide me with a decent one.8
I'm looking for a (second) VPS provider and stumbled upon one called SSDNodes. They have a 8GB RAM offer for $120/yr. Which sounds far better than the popular choices like DigitalOcean, Vultr, etc.
But the only reviews I can find about them are from their blog or some unknown websites.
Has anyone used them or heard about them? Also, any alternative suggestions? I'm going to be using it for Docker powered personal web projects. Not expecting a lot of users.6
HEY Y'ALL! I need help.
So...... recently me and a friend are trying to move servers from a paid one to our own, named Vector. All of the web-side is basically done. However, port 25 is blocked by the ISP. After a few days of messing around in various Linux VMs, we gave up.
Point is, does anyone know where we could get a cheap VPS for email hosting?8
Aaaand I did it again T_T
Installed knockd for some reason it wasn't working well, couldn't unlock the port and guess what, internet disconnected for five minutes ==> My SSH session closed and I am locked out of my VPS :')
What is even worse Scaleway doesn't have a root user password when creating the server it uses a pre-entered ssh key that I put in my account, so I was pretty much locked out.
But I was able to remove it, they have custom scripts for booting so I was able to fireup a shell session during boot and removed knockd
Either I fail at using Linux or I really need to work on my self lol2
Either a really big coincidence, or I'm officially creeped out.
I've been looking into buying a vps, so researching that a lot. Then today, I went to work, at a monitoring station, so we have to use remote desktops to access anything other than very specific sites.
Then I looked at an article about c#, and there was a Google ad, about a vps.. Keep in my mind, I'm at work, on a remote desktop, that gets cleared every time it's closed.
I know a vps isn't the most unpopular thing, but haven't seen an ad for it before.5
Most exited I've been about some code? Probably for some random "build a twitter clone with Rails" tutorial I found online.
I've been working on my CS degree for a while (theoretical CS) but I really wanted to mess with something a bit more practical. I had almost none web dev experience, since I've been programming mostly OS-related stuff till then (C). I started looking around, trying to find a stack that's easy to learn since my time was limited- I still had to finish with my degree.
I played around with many languages and frameworks for a week or two. Decided to go with Ruby/Rails and built a small twitter clone blindly following a tutorial I found online and WAS I FUCKING EXITED for my small but handmade twitter clone had come to life. Coming from a C background, Ruby was weird and felt like a toy language but I fell in love.
The next few months were spent studying and working on my project. It was hard. I had no experience on any web dev technology so I had learn so many new things all at once. Picked up React, ditched it and rewrote the front end with Vue. Read about TDD, worked with PostgreSQL, Redis and a dozen third party APIs, bought a vps and deployed everything from scratch. Played it with node and some machine learning with python.
Long story short, one year and about 30 books later, my project is up and running, has about 4k active monthly users, is making a profit and is steadily growing. If everything goes well, next week I'll close a deal with a pretty big client and I CANT BE FKING HAPPIER AND MORE EXCITED :D Towards the end of the month I'll also be interviewed for a web dev position.
That stupid twitter clone tutorial made me excited enough to start messing with web technologies. Thank you stupid twitter clone tutorial, a part of my heart will be yours forever.2
Have a question about my career:
So far my career out of uni has been like this:
8 months in first place working as C# .NET dev, creating native desktop apps for windows. job was shitty, was not getting any best practices skills so I left.
12 months in 2nd place working as android dev in a startup. was working all alone and had to rebuilt my app up to 5-6 times to learn best practices. startup didnt care about android app at all so I left and now doing just some small freelance work for them.
3 months in new startup as android dev.Today I was told that its decided to focus on iOS and do all marketing (also uplift of new design) only on iOS. basically for next 3-4 months they don't plan to do much on android side. they saw that I showed some interest in backend and now they are asking me to talk with two other senior guys about starting with some small tasks for me on backend.
Our backend is mainly using python. Also backend guys will be pretty busy for next few months because they will have to deliver many new features in next few upcoming months. I've talked with one of them and he said that this is a bad idea to force frontend to start working on backend. However I feel that he's sort of gateekeping and probably just doesn't want to help me with getting up to speed.
In my defense, my knowledge doesn't end with C# .NET desktop apps and native mobile apps for android.
Also I've had a small hosting "company" where with available tools I've managed to automate VPS(virtual private server) ordering, web hosting ordering and domain ordering. Basically I owned a dedicated server and did everything using whmcs, cpanel and proxmox virtualization.
I trust myself in learning this backend stuff and doing whats required, however I learned everything by myself and I won't follow all of these best practices.
Should I accept more responsibility on backend or should I continue focusing on android?7
Why is it that in my IT class, peoplle think it is a great idea to say they know how to use mySQL to create databases and then end up destroying the CentOS VPS they had installed for them... like if you really are that retarded, use Microsoft Access, or better yet, LEARN FUCKING MYSQL BEFORE USING IT3
Been stuck for 3 days with web socket config on VPS and it turned out one of the libraries I use gets fucked when compiled to JS. Deadline this weekend. Oh well.1
Linux VPS + Apache2 + https
I'm a noob in Linux, got my VPS live, but I'm serving http... Even if my page doesn't save even cookies It will marked as unsecure.
Is it possible to config Apache2 to serve https?
PS.: Googled and got nothing special, only info about Apache29
Anyone know of a good vps company (like digitocean) that is not based in the US?
Currently using DO but want to switch because of the ruling (net neutrality).25
Someone here who wants to give a poor 15 y/o developer a 1gb ram vps (or 528 mb) with Ubuntu 16.04 lts server for free
TL;DR: TIL for heavy queries use PDO and not some frameworks DB class
ffs I was trying to save 300k+ lines at once with Laravel for weeks. Mind you from a text file. 1gb ram on the vps so while trying to prepare the text to save: Fatal Error: Allowed Memory Size of bla bla Bytes Exhausted
ok so lets put it in a loop: Fatal error: Maximum execution time of 30 seconds exceeded (set_time_limit(0); lol)
optimising, varying the code got me into a situation when the content got saved in the BD but inconsistent (duplicates) and the table had often more than 1,5M rows. That was what told me its not a performance issue, my code is the issue. (dah)
I was starting to think it would be easier to export a prepared query to a sql file and load the file into the db as thats the fastest possible option...I even started to think about switching to python, then it hit me, Laravel has a shitload of routes to the DB so I switched to PDO
benchmark on 1vCPU, 1GB RAM VPS with SSD
379k lines with 11 columns in less than 10 sec with a loop of saving every ~6000 rows (if i tried choking it to save the whole thing at once it went up to 16-17sec)2
Where do y'all host your servers at?
I'm currently renting at Contabo.com (4 Cores, 12GB RAM, 300GB SSD, 100/100 unlimited for 9 bucks a month) but I'm interested in other options as well ^.^7
TL;DR (it is indeed a text wall) => read the tags, it should be enough for you.
Context : my sister works as an "everything"-manager for a small non-profit company dispensing classes in some crafting art. Her boss (let's call him Nic) is also a friend of her, and he's more of a "thousand ideas a second" type of guy than a "more monies for me", so he speaks very friendly, directly, and doesn't always think about the management and costs of his decisions.
His website, on which users can book for classes, is a Wordpress (you already know it's gonna be bad). I already talked to him about getting a custom and fine-tuned website. Having seen my sister use it for administrative tasks, it's a real pain and really not suited for their particular needs. Also, getting a custom website would permit some manual tasks automated (so less work for her). But he won't accept because "SEO is better on Wordpress".
Yesterday, 23:30 (11:30pm) she called me on Messenger, asking if I could dispense some advice to her boss because he struggled migrating the companys website to another server. Looking at the time, I said she could put me though so he could tell me quickly his problem, but I wouldn't do anything until at least tomorrow. Things went a bit like this (on Messenger) :
Nic : Yo. What's up ?
Me : I'm fine, thanks, and you ?
N : Fine, but not the server... It's so slow and I can't seem to get the perfs up. It's pissing me off. I switch from /Offer 1 from hosting provider/ to /Offer 2 from hosting provider (SSD included !)/, I thought it'd be better but the TTFB is still struggling at min 5 seconds. You know what I mean ?
Me : Yes...
N : Anyway, here is the speed test for the original server, and here is the speed test for the VPS one. [me to myself : oh, it's a VPS, ok...]
You see, it's worse on the VPS. Of course, without any plugin everything is perfect, but I just need them.
Me : AFAIK, but I'm no expert on the subject, a VPS will already be slower, because it's virtualized. But I may be wrong here. Anyway, the problem is clearly Wordpress : your plugins are adding a shitload of operations on your server, so SSD or not, if the CPU is overwhelmed, having better I/O won't change anything. They aren't always written by developpers with speed and optmization in mind, so you may be using a rocket-launcher just to kill a fly.
N : I already told you that a custom website means shitty SEO. Having a clean and quick code may be nice, but if nobody uses it, you're screwed. If Wordpress represents 1 out of 3 websites worldwide it's for a reason. Aren't you stubborn ? Anyway, can you work on that or not ?
Me : I didn't say you NEEDED a custom website. I just said that, just as you admitted earlier, the problem is clearly caused by the plugins. You told me about your matter, I tried to find an explication. Unfortunately I'm really not able to do anything about this side of things. It may not be the best explaination, nor the only one, but it's 23:40 now and I'm not experienced on Wordpress and server optmization.
Anyway, Wordpress' SEO may be excellent, but it doesn't mean it's crap on other websites. You "only" have to be cautious with it. [it's not as if you hadn't to be cautious with WP SEO too, anyway...]
But I won't insist, rest assured. Who's the most stubborn out of you and me, by the way ?
I can try to find some info, but won't promise you to do anything. Maybe send me a list of your plugins, so I can try to find some info on them tomorrow when I come home? [I was expecting to find out if one of them was known to slow down the system, so we could potentially narrow down his problem]
... wait for his answer ...
N : There are 62 of them. It'll be simpler if I just send you the passwords so you can look at it by yourself.
Me: [Wait wut] Ok.
... By the way, having people click on your website is good, but having them to stay on it (when you know that most users leave if the page isn't loaded in 2 seconds) is better. You have to find a good balance between speed and SEO. Or have big monies to get a server on steroïds. GAFA has all 3, the rest of the world finds compromises.
N : Here's the solution ! I put a 500 Mbps on my i7 7700 !
... A night passes, I don't answer ...
N : You good at configuring servers ? Especially for CDN ? If I put one in /location A/ and one in /location B/ (for security and SEO)... I have a i7 8350 8Go, it should be enough, and I could later add another in /location C/...
I haven't answered yet. Because I never configured a server, and also because I still can't do anything about his website because a) it's Wordpress and b) he didn't even send me the access codes. I'm just trying to stay calm for the moment.
I just tested a VPS and it was kind of impressive: I just had shared hosting until now and it is a total difference when you're having full root access.
Kind of hating these greedy shared hosting fuckers now ;)
Because it was just for testing purposes, I wanted to try the mysterious command "rm -rf / --no-preserve-root".
It was working for around 5 minutes and after that literally no command worked anymore!
Not even reboot worked :P
Then I tried reboot it via the VPS panel :) End of the story: vps panel chrashed with error message: unable to start vps :P
I thought it was kind of funnny and nice to share & thanks for reading 'til here!5
I just realised my VPS ssh private key was in my servers web root for the last 4 months. Luckily nobody found it (hopefully).2
Contemplating buying a domain for 1€/year for my personal projects.
I don't even need it really. I'd just mess around with it and attach it to a random vps or something, just for fun.
My hands are itching. Please stop me!7
due to some error on GCP, my and friend got locked out of a prod server over ssh.
And the fucking admin was not giving us privileges to do it through serial port, why you ask cause submitting keys from dashboard was not working.
Later, found out google runs a startup script from startup-script metadata tag.
It felt like showing a middle finger to the admin and google
I have a VPS for years by a local provider (the Netherlands). Just came to the conclusion that Digital Ocean have the exact same VPS (specs) for half the money. :'(
I updated my hosting packages, purchasing a new VPS. Half way through my download of all the hosted sites, I wondered why it had stopped. Yeaaaaah... I'd updated the DNS to point to the new server mid transaction. Hodor.2
This extension is awesome. You can have dark theme on every website. Although sometimes it fucks up the website layout a bit.
What's your favorite vps hoster?
I'm currently using scaleway and love it, but recently learned that they offer no protection against data loss.
So I'm looking for an alternative for a project in production that has automatic backups as well as unmetered bandwidth.7
I'm thinking about school for computer science and I found that laptops are not provided but recommended. I'm not sure this makes sense but could I set up a DE, ssh, and a vnc server on a vps and just connect to it via tunneled vnc? Then as long as I have good internet I'd have a private encrypted access to a remote computer with all the processing power I'd need on any device I have access to at the time, right? Any other ideas / where am I wrong?4
spent all day with a new project, maybe you guys can help.
I have two p2p cameras that I want to setup and access when my family goes on vacation.
Cameras are working (with mildly success) , now, what Is the best option to access them from the Internet?
I can send e-mails, but can't config the SMTP server (don't know why always gives connection error, but guessing that maby this kind of products are blocked from sending e-mails), tried Gmail, mail, and Hotmail.
ftp-server.. don't have any online (have a VPS with 200 mb free ram...)
What interesting uses for a VPS do you guys know?
I've setup my website on VPS and it only takes 25% of 256MB RAM, despite having mysql, apache2 and other cool things running (which is why I love Linux).
Any ideas what to do with 75% that's left?15
Question- what are y'alls opinions on VPN services? On one hand, I'm concerned about the reality that my ISP is 100% sniffing my traffic and also like being able to assume reasonable security on other networks, but I also don't at all trust companies who claim to make "The World's Most Advanced and Secure" anything (in the words of VYPR, which I currently use). I've tried using my own VPS, but I don't have the resources to ensure it's properly maintained. I'm specifically looking at VPN options, I have a completely different use case for those than TOR.8
Was hiring a front-end dev once. Job ad was for basic html/css and graphic design skills. Perfect part-time job for intern or high school kid to get their feet wet. Boss sits in on interview and after I asked all the necessary questions related to position, boss starts asking him programming related questions similar to my position. (php, Mysql, apis, managing vps, custom shopping cart code )
Way to drop a bomb on a kid who is potentially interested in working here.
Does anyone of you know a cheap vps-hoster in a country, where my data is relatively secure (Switzerland, Panama,...)?4
Follow up to my previous rant ( https://devrant.com/rants/1680373/... )
I've contacted digital ocean support and asked them about that blocked port. They said that they didn't block it and that I must've messed up with configuration. The thing is, when I set postfix to port 2525 it works perfectly fine and I can connect no problem. Will see how they respond to that...4
My vps made me crazy last night when it showed me no space left on device, & i was like wtf dude merely using 2gb out of 50gb. The providers support almost convinced me to do a fresh install my already heavily configured vps. Then all of a sudden the vps back to normal this morning and I again was like wtf dude my night wasted on this shit 😒3
3 months ago:
"Hey, the domain I want isn't taken and Vultr has some cheap hosting plan, only 2.5$ a month for VPS WOW, gotta get it!"
5 minutes later:
"Okay, I bought the domain, time to buy hosti- where is the plan?.. SOLD OUT? How?.. Okay, that's not a big deal, I'll wait a day, week or even a month if I have to, maybe the plan will be available then"
That was 3 months ago, the plan is still 'Sold Out' and me being a starving uni student, I won't invest my hard earned money into 5$ plan if I know 2.5$ plan exists!
(Help me, as in - suggest a cheapo but goodie hosting, if that's not agains rules heh).20
Just asking for some advice.
Vultr vs Linode vs DigitalOcean
for a website that contains streaming and high traffic which is best for dev start and then maybe deployment?15
So, where do you guys store your passwords?
It's getting hard to keep track of so many logins and passwords now that I have the time to learn, try new stuff, meddle with VPS and shit and I can't keep track of everything.
Ps: must save somewhere online (or at least backups) and be multi platform (windows + Linux + Android11
I reset my Linode VPS to vanilla Arch after the blundered attempt to use an unsupported Linux distro. Now I'm reinstalling OpenVPN and decided to try out IPv6 networking over the tunnel. Got my free address block and it is SO AWESOME, even typing the addresses feels nicer. I never want to touch IPv4 octets again.7
The guy sends a login to a VPS in GoDaddy, forgets to point the domain to the DNS servers and sends a "done, you can put it online NOW" on WhatsApp.
Fuck me sideways and diagonally today, Good Friday 13th to y'all!
I uploaded my static site on AWS. Doesn't load when I typed the public IP in the URL. Googled, found StackOverflow answer to traffic and ports as a security group to AWS. Tried it and it still doesn't work.
Hey Bluehost, sorry I left but I'm back now7
Now I have enough of this shit I fucking go grab a chainsaw and cut you into the tiniest pieces possible then pour gasoline on your fucking servers and lit them on fire. How the fuck should I remain calm if there is at least two fucking email I can't send because your fucking piece of shit server gets blacklisted EVERY FUCKING WEEK.
Oh how cool you made ipv6 available to shared plans so outlook servers won't blacklist mails. But guess what, it STILL DOESN'T WORK!!! Not to mention that you automatically modify my existing SPF record and set the shared storage ipv6 address to the main domain which should be pointing to the vps (still working though but have no idea why). I am so fucking fed up with people for today, and it's only just morning.
I might have asked this before, but why when I turn on my personal VPN (personal vps) Internet suddenly becomes faster?
Is it because filtering no longer works?9
Finally back! Bit of news, bought a domain and a VPS (https://fox8091.xyz), bought a Google Home Mini and plan on replacing a lot of equipment with IoT, bought a new phone (two, actually! ZTE Blade X Max and a OnePlus One), began learning Rust, and just generally have been living life.4
Why do companies spend the premium of Amazon EC2 and Azure Cloud when there are cheaper and probably better performing providers out there. I.e DigitalOcean or Vultr3
The sad moment when you realise that you're locked out of your VPS without your pc, because you forgot to add your phone's ssh key to the list and password login is disabled :(
Hope everything keeps working until I get back 😱2
!rant but sometime you need to share some positive vibes.
Found out I could get $50 credit for digital ocean from github because I am a student.
So now I can learn a lot for free, and if I mess something up I can just create a new machine.
So now I am first learning how to work with docker and the communication between containers.
Good to see people want to encourage devs :)2
Last weekend I was working on a small project for a friend of mine: a dockerized webapp, plus API backend and DB. I had some problems with the installation on the vps and had to try out different images and never really did a complete setup of my usual dotfiles. Got it running on an Ubuntu distro. Everything great.
It was the first release so I still had to check that every configuration worked ok, like letsencrypt companion container, the reverse proxy and all that stuff, so I decided to clone the whole project on the server tho make the changes there and then commit them from there.
Docker compose, 10 lines of code, change the hosts and password. Boom everything working. Great... Except for the images in the webapp.
WTF? Check the repo, here they are, all ok. I try different build tactics. Nothing. Even building the app on another docker always the same. Checked browser cache, all the correct ports are open. I even though that maybe react was still using some weird websocket I didn't know, but no.
Damn, I spent 5 hours checking why the f*** the server wouldn't make it out.
Then, finally, the realization...
I didn't install the f******* git-lfs plugin and all I was working with were stupid symbolics links! Webpack never even throw an error for any of the stupid images and the browser would only show a corrupted image, when decoding the base64 string.
Literally the solution took 5 minutes.
F*** changes on production, now I do everything on a fully automated CI.
A newbie to nodejs and linux VPS (ubuntu) would appreciate any tips you could throw my way on how to push locally developed nodejs webapp to prod in vps server 😊
I've started to get more into the TOR idea over the last couple of weeks.
I know I'm way to "non protective" of my privacy but changing would mean I'd have to break many habits and stop using things I'm used to.
A couple years back (I guess it was in like 8th grade or so) I had a presentation in German (my first language) for an extra mark. It was about tor. In the process of researching all of it I learned quite a lot about it. All of this knowledge has stuck to me the whole time, unused.
Fast forward to today, I've finally decided to use the couple of bitcoins I have (like 15€ or so) from my home mining experiment to rent a vps for a tor relay. First, I was lucky enough to find a service provider that accepts bitcoin for a 3€. They advertised "Fair use Traffic", later found out, after committing for three months since I was like "yeah... will be fine", in the customer panel there is a graph that shows me that I have used x% of 1.5 TB... I guess the customer support will get an email from me asking what "Fair use" exactly means... But that's fine... Oh... And ipv6 wasn't a thing to be found...
To wrap it up... I've now got a 2 weeks old little tor relay <3
(I didn't wanted to put it on my main vps where I have 200mbit guaranteed at unlimited for 5€ a month since that's where I have my mail server running and a hidden service for my next cloud)1
Story of my first successful project
Being part of a great team, I've shared in a lot of successes, one I am particularly proud of is my first attempt to use agile methodologies in a deeply waterfall-managment culture.
Time was June/July-ish and we applied for a national quality award where one key element in the application stated how well we handled customer complaint resolution.
While somewhat true (our customer service is the top-shelf good stuff), we did not have a systematic process in resolving customer complaints. Long story short,
the VP lied on her section of the application. Then came the 'emergency', borderline panic meeting (several VPs, managers, etc) to develop a process to better manage
complaints before the in-house inspection in December.
As most top priority projects go, the dev manager allocated 3 developers, 2 DBAs, and any/all network admins we would need (plus all the bureaucratic management that wanted their thumb in the pie).
Fast forward to August, after many, many planning meetings, lost interest, new shiny bouncing balls, I was the only one left on the project. The VP runs into the dev manager in the hallway and asks "Is my program done yet? If its not ready before December with report-able data, we will not win the award."
The <bleep> hit the fan...dev manager comes by...
Frank: "How the application coming along? Almost done?"
Me:"No, haven't really started coding. You moved Jake and Tom over to James's team, Tina quit, and you've had me sidetracked helping other teams because the DBAs are too busy."
Frank: "So, it's excuses. You really think the national quality award auditors care about your excuses? The specification design document has been done for months. This is unacceptable."
Me: "The VP finished up her section yesterday and according to the process, we can't start coding until the document is signed off."
Frank: "Holy f<bleep>ing sh<bleep>t! No one told you *you* couldn't start. You know how to create tables and write code."
Me: "There is no specification to write to. The design document is all about how they plan on reporting the data, not how call agents will be using the application to serve customers."
Frank: "The f<bleep> it isn't. F<bleep>ing monkeys could code against that specification, I helped write it! NO MORE F<bleep>ING EXCUSES! This is your top priority from now on!"
I was 'cleared' to work directly with the call center manager and the VP to develop a fully integrated customer complaint management system before December (by-passing any of the waterfall processes that would get in the way).
I had heard about this 'agile' stuff, attended a few conference tracks on the subject, read the manifesto, and thought "I could do this.".
Over the next month, I had my own 'sprints' and 'scrums' with the manager (at the time, 'agile' was a dirty word so I had to be careful of my words and what info I shared) and by the 2nd iteration had a working prototype.
Feature here, feature there (documenting the 'whys' and 'whats' along the way), and by October, had a full deployed application.
Not thinking I would get a parade or anything, the dev manager came back from a meeting where the VP was showing off the new app to the other VPs (and how she didn't really 'lie' on the application)
Frank: "Everyone is pleased how well the project turned out, except one thing. Erin said you bothered him too much with too many questions."
Me: "Bothered? Did he really say that?"
Frank: "No, not directly, but he said you would stop by his office every day to show him your progress and if he needed you to change anything. You shouldn't have done that."
Me: "Erin really seemed to like the continuous feedback. What we have now is very different than what we started with."
Frank: "Yes, probably because you kept bothering him and not following the specification document. That is why we spend so much time up front in design is so we don't waste management's time, which is exactly what you did."
Me: "We beat the deadline by two months, so I don't think I wasted anyone's time. In fact, this is kind of a big win for us, right?"
Frank: "Not really. There was breakdown in the process. We need better focus on the process, not in these one-hit-wonders."
End the end, the company won the award (mgmt team got to meet the vice president, yes the #2 guy). I know I played a very small, somewhat insignificant role in that victory, I was extremely proud to be part of the team.
So I've been sitting on the phone with OVH for the last hour because their VPS refuses to let me change my password and come to find out they don't really know why either. Fml.
What VPS would you suggest for a game server? I found Contabo and it seems to offer really powerful servers for really low prices, the best out there. Any experience with them?4
This is not a rant. Rather just a question or an ask for advice, as I have seen a lot of people talk about web development around here. I am planning to create a website for my search engine. I created a Rest API for my VPS so I can do http requests and retrieve some links for certain key words. But I need some good ideas to do this from a website. As I am not sure what would be the best way to do http requests. As far as I know it's possible with Js and PHP, but I am not sure what's better, more secure or convenient? So here I am to ask you guys, especially those who have experience with this, what I should consider to do.
Oh and please forgive me my limited knowledge about Js and PHP 😅😊3
Setup a VPS from Linode today (they hair started offering 2 GB for 10 USD), and was really pissed when I discovered that their “cloud enhanced” kernel had disabled SELinux and generally removed all sorts of useful features and security features from the default CentOS kernel.6
That feeling when the cluster your ovh vps runs on goes down the exact moment your application is supposed to go live, and everyone is blaming you :|3
Just wasted whole day with plesk webhosting :D
Decided to move to a DDOS protected hosting by OVH.com
Chose plesk web hosting
Turns out in order to park domain to plesk webhosting it's necessary to change GLUE records and nameservers to point to plesk VPS IP
My domain registrar where I have 10+ domains does not allow changing GLUE records. Only way to make it work would be to move all domains to new registrar and pay for each domain as it's a new one.
FML just wasted 16 euros on this useless plesk webhosting. Need to take regular webhosting :D3
A lot of people use AWS to run theire VPSServers. I wanted to know if there are also some Vultr/Digital Ocean users here?9
I've been wondering about renting a new VPS to get all my websites sorted out again. I am tired of shared hosting and I am able to manage it as I've been in the past.
With so many great people here, I was trying to put together some of the best practices and resources on how to handle the setup and configuration of a new machine, and I hope this post may help someone while trying to gather the best know-how in the comments. Don't be scared by the lengthy post, please.
The following tips are mainly from @Condor, @Noob, @Linuxxx and some other were gathered in the webz. Thanks for @Linux for recommending me Vultr VPS. I would appreciate further feedback from the community on how to improve this and/or change anything that may seem incorrect or should be done in better way.
1. Clean install CentOS 7 or Ubuntu (I am used to both, do you recommend more? Why?)
2. Install existing updates
3. Disable root login
4. Disable password for ssh
5. RSA key login with strong passwords/passphrases
6. Set correct locale and correct timezone (if different from default)
7. Close all ports
8. Disable and delete unneeded services
9. Install CSF
10. Install knockd (is it worth it at all? Isn't it security through obscurity?)
11. Install Fail2Ban (worth to install side by side with CSF? If not, why?)
12. Install ufw firewall (or keep with CSF/Fail2Ban? Why?)
13. Install rkhunter
14. Install anti-rootkit software (side by side with rkhunter?) (SELinux or AppArmor? Why?)
15. Enable Nginx/CSF rate limiting against SYN attacks
16. For a server to be public, is an IDS / IPS recommended? If so, which and why?
17. Log Injection Attacks in Application Layer - I should keep an eye on them. Is there any tool to help scanning?
If I want to have a server that serves multiple websites, would you add/change anything to the following?
18. Install Docker and manage separate instances with a Dockerfile powered base image with the following? Or should I keep all the servers in one main installation?
19. Install Nginx
20. Install PHP-FPM
21. Install PHP7
22. Install Memcached
23. Install MariaDB
24. Install phpMyAdmin (On specific port? Any recommendations here?)
I am sorry if this is somewhat lengthy, but I hope it may get better and be a good starting guide for a new server setup (eventually become a repo). Feel free to contribute in the comments.22
I needed a tool that was super simple to transfer email from a non-cpanel server to a new WHM-based VPS. Ended up coding one and launched http://transfermyemail.ca - have had a few server companies jump on board because they needed migration tools too! Was it worth it from a development time point of view? Not yet...maybe next year :)
Don't get me wrong, I love git-annex, but when I skip a week of pacman -Syu, I get a pretty large list of updates, thanks to haskell.
Thankfully this is a VPS, so it has very high bandwidth and doesn't actually take that long :D
What do you think is the best software for an e-mail server running on Ubuntu 16.04 (Gotta use Ubuntu for a few different reasons). Haven’t been able to find a good solution for me to use. Needs to be able to run a few different email domains, roughly 5 domains.
Hell, any suggestions on a VPS host? I’ve been thinking of OVH. (Best bang for the buck so far that I’ve found)11
does anyone have a vps server? i just need to borrow it for a minute to see if i can create a new spotify account10
Not enough space in my Linux vps? Ok upgraded plan.
Was figuring out how to expand the free space within the partition, wasted 2hours and all I gotten myself now its a fucking free upgrade from fucking CentOS to fucking gnu grub bash Ubuntu WHAT THE FUCK2
First week at the University, i became a circular mail with an offer for a place in the webteam. Requirements were a basic knowledge in linux/ubuntu and its packagemanagement and also some minor basics with nginx.
one day later i decides to mail my interest and that i mostly self-taughted me using linux since some years and began programinga year ago with python and recently deployed my first project in a VPS with nginx.
either, my qualification is quite high for that job or i was the one and only applicant, but who cares, i'm in.
this is my first employment in the it area,so i'm quite exited, even its mostly an administrative position. i gonne administrate the vm's for some websites and a special portal for students.
but! due to the fusion of two faculties at my university, there will also be two websites to be merged( our is on zope/plone and the other is a typo3) (computer science vs media... no really^^
well, now i have to wait for the doodle for the first meeting
I've been trying to setup a mail server on my vps. Postfix is setup fine, I can send and receive mail with SSH, but I couldn't connect any mail client to the server. After a couple reinstalls, following a million tutorials, I finally found the reason.
The fucking reason was that fucking digital ocean FUCKING BLOCKS THE FUCKING PORT 25 BECAUSE FUCKING SPAMMERS ABUSED IT.
Switched postfix to use port 2525 instead and everything works as it should.
Fucking digital ocean, I swear I wouldn't use it if I didn't get free 50 dollars from github student pack.
On a side note, can anyone recommend a cheap vps provider that doesn't block ports?2
Greetings guys and gals.
I found an old laptop of mine and since I don't really use it anymore, I want to try "the linux" on it.
My question is, what's a nice linux distribution to make the windows transition smoother.
I have a vps so I'm not afraid to use the terminal.
I just want vscode and a browser on it, no gaming, no video editing, nothing fancy.
Anyone here uses scaleway VPS?
The tickets I raised got deleted without any proper resolution. And that is shady AF. The tickets were attended by some customer support guy and he had told he would call to verify. But that never happened.
And now all the tickets I raised has disappeared.
I can't activate my account because phone verification is not possible since the code they never arrives3
Maybe a wierd question, I'm transitioning from a VPS with panel to a dedicated server without (because I want to learn how to do it my self) but I'm having problems with the email server. It is a Ubuntu based server and I was wondering if someone can teach me how to set it up.13
I finally configured my VPS. (haven't used linux before that)
Now when I installed my laravel 5.2 project and wanted to use composer to get all the dependencies I came across an deprecated dependency. So now I'll either do a quick fix and update the dependency or upgrade to laravel 5.3. The second option is obviously better but takes more time. If only someone else could do this shit for me and I'd just be busy writing code. : /1
I have raspberry pi 3 lying around; at the same time, I want to make a minecraft server to play on with 4-6 friends. Is the pi3 capable of running a server? I tried running it once but it was so slow you could outrun the world rendering with as few as 2 players. Would trying to run it multithreadedly help?
Or should I just resign to a server rental site? it'd preferably be a vps since I really don't like these 'management' sites gaming providers often make - any recommendations that are as cheap as possible)1
Question: to those who may have been hosting resellers. Will upgrading to a VPS decrease performance for clients as compared to when you resell shared hosting?
Also, would anyone happen to know any good shared hosting reseller plans? :/5
Can I use raspberry pi as Go server and also for public access?
or better find a cheap vps? (there aren't any actually, after I convert the price into local currency)10
I am planning to create a broadcasting channel app.
there is a group of people who are managing 20-25 whatsapp groups and are sending religious messages.
They tried broadcasting feature of whatsapp but they prefer managing group which makes sure that people are receiving messages.
broadcaster's number needs to be saved in receivers contacts for whatsapp broadcasting and all subscribers were not doing so, and complaining about not receiving messages.
so this group decided to manages whatsapp groups and put guidelines that no users other than admins are allowed to post anything.
so ultimately they want a broadcasting medium.
another problem here is that it is hard to find old messages to refer to. they are posting everything on blog too, but not all the subscribers are comfortable using that.
so I am planning to create an app which will store the received messages offline(last 30 days) and anyone can read older messages within the app and also can share it on other social media.
would you guys please suggest me architecture for this app?
I have learned PHP and thinking about using phalcon PHP framework, but it required VPS and it is costly.
any suggestions welcomed.3
I'm so fucking sick of auto pay bull shit. Auto renews, auto debit for bills... Fuck off folks. AWS just charged me 150 bucks and now it will cause my rent to be returned nsf because their shit only has ACH.
Fuck you amazon. Going back to my 7 dollar VPS. May be an outdated OS version andimited but at least I don't need lube to use them.5
! Rant... Advice.
Looking for a new server to host my clients websites.
Worked with WHM and CPanel until now.
Think it's time for a Vps and looking at prices between managed and self managed and after some experienced advice.
Where do I start with learning about managing a server, what's best options (I'd like to stay with Apache and cpanel as I understand it).
Any recommendations for Aussie vps?
Spend half an hour with the "git remote add ..." yada yada after setting up an git repo on a vps where I failed to create the home directory with the user and had to do it manually.
As I was against making a trash commit to win against the Schrödinger repo I begun torture myself with the PowerShell SSH compatibility.
I gave up at the end and made an commit with some libs I am going to use. After a last SSH port fight with git got everything up and running.
Lastly installed the new magical windows git credential manager and I am hoping to see some fairy dust in the next days.
throw new EverythingWrongException("Git gud");
I wanted to ask for advice about hosting providers. Specifically looking for vps servers.
I'm currently using OVH, but I got some recommendations that would give me a lot more for the price.
The recommendations I got were Contabo, Hetzner and Netcup
Maybe some of you have experience with those Providers and can recommend one, or maybe even some not on that list.
Thanks for taking your time to read7
I am so fucking done with Webstekker. This is one bad fucked up webhosting company in The Netherlands. In the past we had so many issues: managed hosting websites getting hacked (you can brute force.ftp etc they don't monitor anything), not restoring db views after they migrate a db server, week down time because they fucked something up etc. Last 2 years were ok but today I discovered that one of my money making adsense websites is running on a cms database from another website!! What the fuck?!! I haven't touched that site for at least 2 years and it was running fine.
No Webstekker I don't want to check all of ny websites every day to see if everything works properly. I want to trust you to do a proper managed hosting job. But you retards have proven to be incapable over and over again.
That said, anyone here can recommend a good, solid, trustable Dutch webhosting company for asp.net hosting on Windows?
I do run other sites on VPS but that is much more work for me and don't want to manage all (small) websites myself but unstead rely on a solid company with competent people to do that for me.
i want to create a service that periodically logs in to a 3rd party service to check if anything has changed in their account, then send a message via firebase to notify the user who's account has been changed.
can you recommend any program/hosting/server that would be ideal for this?
i prefer dart (because i built the frontend in flutter, but i'd use most any language).
i'd prefer not to pay for a dedicated server because of price, so if i could just create processes that run every hour or so, that would be ideal.3