cron.weekly issue #93: Debian, Git, Jerakia, Lighthouse, hey, load, compression, OpenVPN & more

cron.weekly is a newsletter about Linux, open source & webdevelopment. Want to get it in your inbox every Sunday? Subscribe below!

I respect your privacy and you won't get spam. Ever. Just a weekly-ish newsletter about Linux and open source.

Want to help support this blog? Try out Oh Dear, the best all-in-one monitoring tool for your entire website, co-founded by me (the guy that wrote this blogpost). Start with a 10-day trial, no strings attached.

We offer uptime monitoring, SSL checks, broken links checking, performance & cronjob monitoring, branded status pages & so much more. Try us out today!

Image of Mattias Geniar

Mattias Geniar, August 13, 2017

Follow me on Twitter as @mattiasgeniar

Welcome to cron.weekly issue #93 for Sunday, August 13th, 2017.

It’s been a busy week with some lack of sleep, so if this seems like a shorter issue – it’s not your imagination, it is a shorter issue. But that doesn’t mean there isn’t enough content to share!

News

Git, SVN and Mercurial updates

A nicely coordinated update to both git, svn & mercurial to help fix a security problem with ssh:// upstreams in your version control.

GoCD – open source continuous delivery

GoCD is a continuous delivery tool specializing in advanced workflow modeling and dependency management. New AWS ECS elastic agents plugin just released. Optimizes your utilization and reduces infrastructure cost now. (Sponsored)

Why Github can’t host the Linux Kernel Community

Some pretty good arguments about how Kernel development, and its scale, require different approaches and how that doesn’t fit it with the way Github proposes to use git.

Looking at public Puppet servers

Puppet is a popular config management tool. This post looks at those Puppet server instances that are available on the internet and what information they expose. Tl;dr: make sure you firewall your Puppet servers.

Debian devel disables TLS 1.0 and 1.1

Something tells me this might get reverted due to legacy applications, but it’s a great move for security: the plan is to leave only TLS 1.2 as the supported SSL/TLS protocol version.

Why use Linux?

A new resources to help convince users to switch to Linux and help them choose a distribution that would suite them best.

Tools & Projects

Datadog: all your infrastructure, in one place

Track & alert on the health and performance of every server, container, and app in any environment, with Datadog. Sign up for a free 14-day trial(Sponsored)

Jerakia

Jerakia is a pluggable hierarchical data lookup engine. It is not a database, Jerakia itself does not store any data but rather gives a single point of access to your data via a variety of back end data sources. Jerakia is inspired by Hiera, and can be used a drop in replacement.

kube-spawn

kube-spawn is a tool to easily start a local, multi-node Kubernetes cluster on a Linux machine. While its original audience was mainly developers of Kubernetes, it’s turned into a tool that is great for just trying Kubernetes out and exploring.

gtop

A new system monitoring dashboard for terminal. Did anyone keep track of how many characters were still available to put before ‘top’? 🙂

stank

stank is a library and collection of command line utilities for sniffing files to identify shell scripts like bash, sh, zsh, ksh, …

sshuttle

Transparent proxy server that works as a poor man’s VPN. Forwards over ssh. Doesn’t require admin. Works with Linux and MacOS. Supports DNS tunneling.

up

Up deploys infinitely scalable serverless apps, APIs, and static websites in seconds, so you can get back to working on what makes your project unique. Up currently supports Node.js, Golang, Python, Crystal, and static sites out of the box. Up is provider-agnostic, supporting AWS Lambda and API Gateway as the first targets.

lighthouse

Lighthouse analyzes web apps and web pages, collecting modern performance metrics and insights on developer best practices.

http-flooder

This is actually the project that caused my lack of sleep this week. I’ve been experimenting with the Go language and wrote a simple tool to send random HTTP calls to a webserver. Nothing you’d actually use, but a fun trip down concurrency lane in Go.

hey

If you’re looking at HTTP load testing, this is probably more of a tool to use: it’s an HTTP load generator, ApacheBench (ab) replacement, formerly known as rakyll/boom.

servicebot

Open source service automation platform.

Mongoose OS

An open source Operating System for the Internet of Things. Supported microcontrollers: ESP32, ESP8266, STM32, TI CC3200. Amazon AWS IoT and Google IoT integrated. Code in C or JavaScript.

nettop

Utility to show network traffic (both TCP and UDP v4 and v6) split by process and remote host.

matterbridge

A bridge between mattermost, IRC, gitter, xmpp, slack, discord, telegram, rocket.chat,hipchat (via xmpp), steam and matrix with REST API.

Guides & Tutorials

Compression decompressed

Make sure to hit ‘toggle pointless gifs’ to make this article more readable (by hiding them). Lots of really good info on how compression works by giving a clear, visual explanation. Applies to all kinds of compression we use daily, like tar/gzip/zip/…

Linux Load Averages: Solving the Mystery

Ever wondered what goes into the calculation of the “load” on Linux? Brendan Gregg finds out for us. Absolutely recommend this read, lots of history and information around one our industry standard metrics.

Block User-Agent in htaccess for Apache Webserver

Ever wanted to block particular User-Agents from accessing your sites using some simple .htaccess code? This gets you going.

nmap cheat sheet

A nice & readable set of examples for nmap. I like how it’s ordered per section, makes it quick to look things up again.

Ask cron.weekly

OpenVPN routing

How do you add redundant gateways if you have multiple site-to-site VPNs sharing the same subnet?

Want to subscribe to the cron.weekly newsletter?

I write a weekly-ish newsletter on Linux, open source & webdevelopment called cron.weekly.

It features the latest news, guides & tutorials and new open source projects. You can sign up via email below.

No spam. Just some good, practical Linux & open source content.