all bob all the time!
Published by rjw1 on 2010-11-20T16:56:49
Published by rjw1 on 2010-11-19T23:20:31
Published on 2010-11-19T14:35:39
Published on 2010-11-19T14:35:12
Published on 2010-11-19T14:34:37
Published on 2010-11-19T14:34:05
Published on 2010-11-19T14:32:10
rjw1 posted a photo:
£13.50
Published by rjw1 on 2010-11-19T13:09:01
rjw1 posted a photo:
Published by rjw1 on 2010-11-19T12:56:23
Published by rjw1 on 2010-11-19T10:31:59
Published by rjw1 on 2010-11-19T10:31:48
Published by rjw1 on 2010-11-18T11:53:13
rjw1 posted a photo:
Published by rjw1 on 2010-11-07T14:48:26
rjw1 posted a photo:
Published by rjw1 on 2010-11-04T12:56:58
rjw1 posted a photo:
Published by rjw1 on 2010-11-04T12:44:17
Published on 2010-10-25T14:26:36
Published on 2010-10-22T09:55:53
Published on 2010-10-16T21:05:36
Published on 2010-10-06T23:00:12
Published on 2010-09-24T12:11:22
First pie?
Yes, this is pie. It is entirely encased in pastry.
Published on 2010-07-19T23:00:00
On the 1st of July I got confirmation that my application for tickets for the rugby world cup in New Zealand was successful. I have tickets for all the England games, all pool games in Christchurch, the Christchurch quarter finals and the bronze final. Tickets for the semis and the final are by ballot nearer the time.
Now that I have the match tickets its time to start planning the rest of the trip. My dad has probably already found us accommodation near Christchurch for the duration of the tournament. All I need to start looking for is round the world plane tickets. I intend to make a tour of it. If nothing else I have plans to be at the Reno Worldcon.
Published on 2010-07-03T23:37:00
Capistrano is useful for deploying ruby applications. It can also be used to help with configuration and setup of things related to the applications
Such as creating the ssl keys and certificates for the demo and staging sites. I've always used an openssl one liner to do this but I still needed to fill in the details for the certificate. Which is less that ideal if you want to automate the creation of the keys and certificates. So I dug around and found the right incantation to pass the certificate details to openssl. I then made this into a capistrano recipe.
namespace :sslcert do
desc "create a self signed ssl cert"
task :create, :roles => :web do
sudo "openssl req -x509 -newkey rsa:2048 -keyout /etc/ssl/private/#{application}.key -out /etc/ssl/certs/#{application}.crt -days 9999 -nodes -subj \"/C=GB/ST=England/L=London/O=#{application}/OU=IT/CN=#{servername}\""
end
end
As you can see the magic happens with the -subj option.
This recipe puts the ssl certificate and key in the default location for them on debian. You could of course change this and then not need to use sudo. In my actual work version I also make sure this recipe doesn't run on production deployments since they should be using real ssl certificates.
Published on 2009-08-30T16:18:17
On Thursday the Randomness Guide to London was probably the target of a ddos attack. The machine it was hosted on went to load of about 60. Which is fine since its solaris. The main problem was when the machine exhausted its memory and started to swap the machine would become unresponive.. To mitigate this I dropped the number of concurrent connections apache allowed. The machine suffered less but the website was still unusable because you were fighting to get one of the limited number of available connections.
Since I was in the pub the other administrator of the Randomness Guide to London was renaming the CGIs so that load would drop and she could get on to it. When I got back I whipped up some mod_rewrite rules such that we could see the site but everyone else got a holding page. 10 minutes after this the ddos stopped. So it was a bit late. However a holding page is still a useful thing to have.
The next morning I refined it a bit to be more intelligent and return a 503 which is the correct status code.
RewriteEngine On
RewriteCond %{REMOTE_ADDR} !AAA.BBB.CCC.DDD
RewriteCond %{DOCUMENT_ROOT}/holding.html -f
RewriteCond %{DOCUMENT_ROOT}/holding.enable -f
RewriteCond %{SCRIPT_FILENAME} !holding.html
RewriteRule ^.*$ /holding.html [R=503,L]
ErrorDocument 503 /holding.html
First turn on the rewrite engine. Then the conditions for which the RewriteRule applies
That's all you really need although at work I add an extra line to help stupid web caches not keep on showing the error page after the site is back.
Header Set Cache-Control "max-age=0, no-store"
Published on 2009-08-16T16:18:17
The first perl 5.10.1 release candidate was released the other day. As mst says if you don't test it now and it breaks for you when its released its your fault. As a good cpan tester I've added it to my testing setup.
Since I care about OpenGuides for the Randomness Guide to London I made sure to submit a test report for it.
While I was doing this I also added perl 5.8.9 to my setup. I also changed my setup slightly by pre-installing Moose and Catalyst since thats what all the cool perl programmers are using these days. Since installing and testing their dependency chains was burning a lot of cpu, time and bandwidth every time a new module based on them was updated or added to CPAN
Published on 2009-08-10T16:18:17
So you've set up a apt repository following dean's excellant instructions and youve tried to install a package and got the following warning
WARNING: The following packages cannot be authenticated!
At this point you have several choices:-
echo "APT::Get::AllowUnauthenticated 1;" >> /etc/apt/apt.conf.d/99unauthLets go with setting up a secure repository.
gpg --gen-keygpg --armor --export $keyid >public.key. You will need this laterAPT::FTPArchive::Release::Suite "etch";(Im behind and should have written this post a year ago) in your repository base.apt-ftparchive -c apt-release.conf release dists/etch/ > dists/etch/Releasegpg --sign -ba -o dists/etch/Release.gpg dists/etch/ReleaseW: GPG error: http://debianrepo etch Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY $KEYIDTo do this manually you can take the public.key you generated earlier and copy it to your machines and then run
apt-key add public.key
Of course in this day and age doing things like that for all your machines would be tedious so I use puppet with a class something like the following.
class aptkey {
file { "/etc/apt/public.key":
mode => 440,
owner => root,
group => root,
source => [
"puppet://puppet/host/public.key",
"puppet://puppet/files/public.key"
],
}
exec { "install-key":
command => "/usr/bin/apt-key add /etc/apt/public.key",
require => File["/etc/apt/public.key"],
unless => "/usr/bin/apt-key list | /bin/grep -q 'firstname.lastname'";
}
exec { "key-update":
command => "/usr/bin/apt-get update",
require => Exec["install-key"],
}
}
Published on 2009-08-07T16:18:17
Dean wrote his Cron Commandments a while back but they got some link loving from Simon Willison relatively recently. The one he misses though is Thou shall not rewrite cron. Im looking at you backgroundrb and rufus-scheduler.
Published on 2008-08-04T16:18:17
Bugger! well at least we lost our title in the final. South Africa have looked like champs all the way through. I dont think it was a try either.
Published on 2007-10-20T21:53:42
Close, very close. South Africa were unlucky to not score a try at the end there. England certainly look a lot better than they did in the pool game. We still might do it.
Published on 2007-10-20T20:48:58
So somehow England have made it to the final. South Africa have looked good all tournament. This wont be the beating we got in the pool matches but I still think were going to lose. It will be close though. I think South Africa by 5.
Although ideally our forwards step up again and we win by 3 points or so. :)
Published on 2007-10-20T19:49:41