cron.weekly issue #57: PHP 7.1, Crypto, NTP, runv, Multibinder, Grafana, FPM & more!

December 4, 2016

Welcome to cron.weekly issue #57 for Sunday, December 4th, 2016.

There’s a new PHP release, interesting tools from Google & Github, a very extensive crypto-guide to learn about cryptology, Grafana has entered the monitoring market & many more new things.

Get comfortable, grab a coffee, distract your kids and take your time for this weeks’ cron.weekly.

News#

Crypto 101 #

Crypto 101 is an introductory course on cryptography, freely available for programmers and sysadmins of all ages and skill levels. The course already contains over 250 pages and is still considered a work in progress.

Announcing OSS-Fuzz: Continuous Fuzzing for Open Source Software #

Google is running a fuzzer on many critical open source tools and libraries, to automatically find and notify the maintainers of security vulnerabilities, buffer overflows, use-after-free bugs, …

Font Awesome 5 goes open source #

One of the most popular webfonts used today is Font Awesome. For version 5, the team decided to do a Kickstarter campaign that now reached a whopping 1.000.000$ in funding. The best part? Because they reached that goal, all tools and processes used to create those fonts are going to be open sourced.

Making every (leap) second count with our new public NTP servers #

Google has made their NTP servers publicly available, allowing everyone to sync against them. They do really interesting things with time, like ‘smearing’ time for leap seconds: instead of jumping a second (which computers don’t like), 10h in advance they ‘smear’ the time by stretching every second for 0.0014%. Similar to what the ntimed NTP project promised to do .

Node.js goes ‘VM neutral’ #

The node.js project has always run on Google’s V8 JavaScript engine. Now, they’re making efforts to become VM neutral and allow other JavaScript engines, like Microsoft’s Chakra. As a dev or sysadmin, you’ll be able to choose which JavaScript engine you want to run.

Unix Horring Stories #

“The good thing about Unix, is when it screws up, it does so very quickly.”

DNS over HTTPs #

It isn’t easy to encrypt DNS (the protocol), so middleware DNS servers like CoreDNS are looking into using an HTTPS endpoint to query for DNS records, offering privacy to the user as your DNS queries become fully encrypted.

Tools & Projects#

Datadog: Cloud Monitoring as a Service #

With Datadog, you can see all your data in one place. See Amazon stats on your servers, as well as detailed numbers of your PostgreSQL, Elasticsearch, Node & other applications. Sign up for a free 14-day trial. (Sponsored)

Netlimiting #

This tool uses iptables, tc and bash to allow you to rate limit connections based on the TCP port.

Multibinder #

The team at GitHub introduces ‘multibinder’, a clever tool that allows you to pass a LISTEN socket from one pid to another, causing zero-downtime reloads or restarts of any service.

runv #

Runv is a hypervisor -based runtine for the open container initiative. It allows you to run containers inside a lightweight VM, using KVM, Xen or VirtualBox. This will offer greater isolation at the cost of (some) performance.

PHP 7.1 #

Many new features for developers, but some goodies for sysadmins too: async signal handling , OpenSSL AEAD support & HTTP/2 server side push . If you want more reading material: what’s new in PHP 7.1 .

wpcli 1.0 #

The first stable 1.0 release for the wpcli project: with wpcli, you can manage your WordPress installations via the CLI: update the core, install plugins, manage content, …

Browsix #

“Unix in your browser tab”, Browsix is a research project that bridges the gap between the OS and the browser. It does this by mapping low-level Unix primitives, like processes and system calls, onto existing browser APIs, like Web Workers and postMessage.

Grafana 4 #

The new major release from Grafana offers alerting, making the transition from a visualization tool, to a full monitoring tool. For an overview of all the features, check out the Grafana 4 beta release announce post .

conn-check #

This is a network connection verification utility that supports multiple protocols.

mtail #

mtail is a tool for extracting metrics from application logs to be exported into a timeseries database or timeseries calculator for alerting and dashboarding.

Awesome-Selfhosted #

A good list for us sysadmins that want to keep control over things: a list of Free Software network services and web applications which can be hosted locally.