cron.weekly issue #57: PHP 7.1, Crypto, NTP, runv, Multibinder, Grafana, FPM & more!

cron.weekly is a newsletter about Linux, open source & webdevelopment. Want to get it in your inbox every Sunday? Subscribe below!

I respect your privacy and you won't get spam. Ever. Just a weekly-ish newsletter about Linux and open source.

Want to help support this blog? Try out Oh Dear, the best all-in-one monitoring tool for your entire website, co-founded by me (the guy that wrote this blogpost). Start with a 10-day trial, no strings attached.

We offer uptime monitoring, SSL checks, broken links checking, performance & cronjob monitoring, branded status pages & so much more. Try us out today!

Image of Mattias Geniar

Mattias Geniar, December 04, 2016

Follow me on Twitter as @mattiasgeniar

Welcome to cron.weekly issue #57 for Sunday, December 4th, 2016.

There’s a new PHP release, interesting tools from Google & Github, a very extensive crypto-guide to learn about cryptology, Grafana has entered the monitoring market & many more new things.

Get comfortable, grab a coffee, distract your kids and take your time for this weeks’ cron.weekly.

News

Crypto 101

Crypto 101 is an introductory course on cryptography, freely available for programmers and sysadmins of all ages and skill levels. The course already contains over 250 pages and is still considered a work in progress.

Announcing OSS-Fuzz: Continuous Fuzzing for Open Source Software

Google is running a fuzzer on many critical open source tools and libraries, to automatically find and notify the maintainers of security vulnerabilities, buffer overflows, use-after-free bugs, …

Font Awesome 5 goes open source

One of the most popular webfonts used today is Font Awesome. For version 5, the team decided to do a Kickstarter campaign that now reached a whopping 1.000.000$ in funding. The best part? Because they reached that goal, all tools and processes used to create those fonts are going to be open sourced.

Making every (leap) second count with our new public NTP servers

Google has made their NTP servers publicly available, allowing everyone to sync against them. They do really interesting things with time, like ‘smearing’ time for leap seconds: instead of jumping a second (which computers don’t like), 10h in advance they ‘smear’ the time by stretching every second for 0.0014%. Similar to what the ntimed NTP project promised to do.

Node.js goes ‘VM neutral’

The node.js project has always run on Google’s V8 JavaScript engine. Now, they’re making efforts to become VM neutral and allow other JavaScript engines, like Microsoft’s Chakra. As a dev or sysadmin, you’ll be able to choose which JavaScript engine you want to run.

Unix Horring Stories

“The good thing about Unix, is when it screws up, it does so very quickly.”

DNS over HTTPs

It isn’t easy to encrypt DNS (the protocol), so middleware DNS servers like CoreDNS are looking into using an HTTPS endpoint to query for DNS records, offering privacy to the user as your DNS queries become fully encrypted.

Tools & Projects

Datadog: Cloud Monitoring as a Service

With Datadog, you can see all your data in one place. See Amazon stats on your servers, as well as detailed numbers of your PostgreSQL, Elasticsearch, Node & other applications. Sign up for a free 14-day trial. (Sponsored)

Netlimiting

This tool uses iptables, tc and bash to allow you to rate limit connections based on the TCP port.

Multibinder

The team at GitHub introduces ‘multibinder’, a clever tool that allows you to pass a LISTEN socket from one pid to another, causing zero-downtime reloads or restarts of any service.

runv

Runv is a hypervisor -based runtine for the open container initiative. It allows you to run containers inside a lightweight VM, using KVM, Xen or VirtualBox. This will offer greater isolation at the cost of (some) performance.

PHP 7.1

Many new features for developers, but some goodies for sysadmins too: async signal handling, OpenSSL AEAD support & HTTP/2 server side push. If you want more reading material: what’s new in PHP 7.1.

wpcli 1.0

The first stable 1.0 release for the wpcli project: with wpcli, you can manage your WordPress installations via the CLI: update the core, install plugins, manage content, …

Browsix

“Unix in your browser tab”, Browsix is a research project that bridges the gap between the OS and the browser. It does this by mapping low-level Unix primitives, like processes and system calls, onto existing browser APIs, like Web Workers and postMessage.

Grafana 4

The new major release from Grafana offers alerting, making the transition from a visualization tool, to a full monitoring tool. For an overview of all the features, check out the Grafana 4 beta release announce post.

conn-check

This is a network connection verification utility that supports multiple protocols.

mtail

mtail is a tool for extracting metrics from application logs to be exported into a timeseries database or timeseries calculator for alerting and dashboarding.

Awesome-Selfhosted

A good list for us sysadmins that want to keep control over things: a list of Free Software network services and web applications which can be hosted locally.

Guides & Tutorials

25 most frequently used iptables examples

From blocking IPs to opening ports to rate limiting based on source IPs, some good copy/paste-able examples in that post.

htop and top explained

A very extensive write-up on both htop and top, with every possible parameter clearly explained.

Introduction to strace

Strace is one of my favourite debugging tools, this post shows some of the basic commands and usages to troubleshoot running applications.

Performance tuning HAProxy

This post covers most of the performance-related parameters you can tweak in HAProxy, covering multiprocessing & CPU pinning, CPU affinity, load balancer algorithms, …

FPM documentation

The FPM package manager is getting serious about its documentation. Have a look when you want to implement FPM in your processes.

Learn from your attackers – SSH HoneyPot

Step-by-step instructions for when you want to run your own SSH honeypot: let the bad guys in and record their SSH sessions to see what they’re up to.

Want to subscribe to the cron.weekly newsletter?

I write a weekly-ish newsletter on Linux, open source & webdevelopment called cron.weekly.

It features the latest news, guides & tutorials and new open source projects. You can sign up via email below.

No spam. Just some good, practical Linux & open source content.