Sign in or Join FriendFeed
FriendFeed is the easiest way to share online. Learn more »
sysadmin

sysadmin

A room to share about system administration
Kevin Johnson
Today I'm hosting a Chef Summit at work (yes, the config-mgmt kind, not the food kind). Expecting 250 attendees, with catered food and door prizes. I managed to line up the Chef CTO as the keynote. Going to be crazy awesome!!! You should be jealous.
*jealous* - imabonehead
I was amazed that I was able to get the Chef CTO lined up. He's basically giving the keynote he did at ChefConf 2013. Worth a watch if you haven't seen it. - Kevin Johnson
So the videos will eventually be posted publicly? - imabonehead
Unlikely for this event (but I'll be asking), but the ConfConf 2013 keynote is on youtube. - Kevin Johnson
What no outside invitations? Whats the deal? Throw some knife love.. ;) - Me
The summit was awesome. Adam Jacob knocked it out of the park. - Kevin Johnson from Android
*jealous^2* - imabonehead
imabonehead
"Network device configuration backups and change alerts for the 21st century - inspired by RANCID!" - imabonehead from Bookmarklet
imabonehead
FreeBSD and Raspberry Pi GPS/NTP (Part 1) » Cryptomonkeys - https://www.cryptomonkeys.com/2014...
"I’ve been *needing* to have a reliable time server and yet I don’t need something that is large, or consumes a lot of power. Enter the Raspberry Pi. I picked up a Cana Kit, Model B, a 700MHz ARM SoC (System on Chip), 512MB RAM, USB, Ethernet, SD slot. It came with all the bits needed to get started. A bit of google work turned up some hints on putting FreeBSD on it. FreeBSD offers the ability to provide PPS (pulse per second) to facilitate better time tracking (used as input to NTP). If you wish to do this, you need to create a new kernel config file, define the PPS option, and include the generic config." - imabonehead from Bookmarklet
no part 2....*sad panda* - imabonehead
imabonehead
notch - A Network Operator's Toolkit for Command-line Hacking - Google Project Hosting - https://code.google.com/p...
"Notch is web service and (Python) client library which makes it easy to do stuff on your switches, routers and other network equipment. You can use it to build powerful, automated network management applications. It can support anything with a command-line interface and provides a consistent API for multi-vendor access." - imabonehead from Bookmarklet
imabonehead
Evolution of a Sysadmin (JPEG Image, 3451 × 2635 pixels) - https://mediacru.sh/JRmlbWj...
Evolution of a Sysadmin (JPEG Image, 3451 × 2635 pixels)
imabonehead
New “TCP Stealth” tool aims to help sysadmins block spies from exploiting their systems — Tech News and Analysis - http://gigaom.com/2014...
New “TCP Stealth” tool aims to help sysadmins block spies from exploiting their systems — Tech News and Analysis
"Systems administrators who aren’t down with spies commandeering their servers might want to pay attention to this one: A Friday article in German security publication Heise provided technical detail on a GCHQ program called HACIENDA, which the British spy agency apparently uses to port-scan entire countries, and the authors have come up with an Internet Engineering Task Force draft for a new technique to counter this program." - imabonehead from Bookmarklet
imabonehead
https://github.com/arachny... - Self-hosted, easily-deployable monitoring and alerts service - like a lightweight PagerDuty
imabonehead
How to Back Up Terabytes of Databases | Brent Ozar Unlimited® by Brent Ozar Unlimited® - http://www.brentozar.com/archive...
How to Back Up Terabytes of Databases | Brent Ozar Unlimited® by Brent Ozar Unlimited®
"When you weren’t looking, your databases went and grew up. Now your backup window has grown so large that you’re about ready to open it and jump. Time to make a choice. The Native Way: Tuning SQL Server Backups You can theoretically pull this off by using a combination of tactics..." - imabonehead from Bookmarklet
imabonehead
Hands-on with Canonical’s Orange Box and a peek into cloud nirvana | Ars Technica - http://arstechnica.com/informa...
Hands-on with Canonical’s Orange Box and a peek into cloud nirvana | Ars Technica
Show all
"Take ten high-end Intel NUCs, a gigabit Ethernet switch, a couple of terabytes of storage, and cram it all into a fancy custom enclosure. What does that spell? Orange Box." - imabonehead from Bookmarklet
imabonehead
▶ Can You Imagine Life Without SysAdmins? - YouTube - http://www.youtube.com/watch...
▶ Can You Imagine Life Without SysAdmins? - YouTube
Play
"To celebrate SysAdmin Day 2014, SysAid presents an alternative reality that is completely bizarre in this hilarious video. Enjoy!" - imabonehead from Bookmarklet
imabonehead
"When users make your life hard, Sophos makes your life easy. We salute you, IT Pros and System Admin professionals, with 12 Days of Sysmas: http://soph.so/z3VtB" - imabonehead from Bookmarklet
imabonehead
"What do Niagara Falls, wild horses, and a slow-motion explosion have in common? They're all freaking mind-bogglingly awesome. Just like you, IT PRO, magnificent specimen that you are. So, we took our epic SysAdmin Day song and karaokified it with insanely bad ass visuals that will leave you forever a changed Server Samurai. Clear your throat, mic up, and get ready to bellow out some IT pro lyrical poetry. You're welcome. Lyrics by Spiceworks Studios and the Spiceworks Community. Music by Travis Hagan." - imabonehead from Bookmarklet
imabonehead
Out in the Open: Inside the Operating System Edward Snowden Used to Evade the NSA | Enterprise | WIRED - http://www.wired.com/2014...
Out in the Open: Inside the Operating System Edward Snowden Used to Evade the NSA | Enterprise | WIRED
"When NSA whistle-blower Edward Snowden first emailed Glenn Greenwald, he insisted on using email encryption software called PGP for all communications. But this month, we learned that Snowden used another technology to keep his communications out of the NSA’s prying eyes. It’s called Tails. And naturally, nobody knows exactly who created it." - imabonehead from Bookmarklet
Che sia *per caso* questo?https://tails.boum.org - Luca Perencin (No_CQRT) from Android
imabonehead
"We were able to find five models from iXsystems with the FreeNAS Mini product name. Systems come with 16TB, 12TB, 8TB, 4TB, or without storage drives. The new FreeNAS Mini uses an Intel Avoton 8-core SoC processor and pairs the system with 16GB of ECC DRAM. Hardware wise, this is a massive increase in processing power from the off-the-shelf NAS products we normally test, including even some of the larger rackmount systems. To put this into perspective, over the last twelve months, an average NAS on our test bench used an Intel Atom dual-core processor with HyperThreading and shipped with 2-4GB of system DRAM." - imabonehead from Bookmarklet
imabonehead
▶ Google I/O 2014 - HTTPS Everywhere - YouTube - http://www.youtube.com/watch...
▶ Google I/O 2014 - HTTPS Everywhere - YouTube
Play
"Data delivered over an unencrypted channel is insecure, untrustworthy, and trivially intercepted. We must protect the security, privacy, and integrity of our users data. In this session we will take a hands-on tour of how to make your websites secure by default: the required technology, configuration and performance best practices, how to migrate your sites to HTTPS and make them user and search friendly, and more. Your users will thank you." - imabonehead from Bookmarklet
imabonehead
Using LVM’s new cache feature | Richard WM Jones - http://rwmj.wordpress.com/2014...
Using LVM’s new cache feature | Richard WM Jones
"If you have a machine with slow hard disks and fast SSDs, and you want to use the SSDs to act as fast persistent caches to speed up access to the hard disk, then until recently you had three choices: bcache and dm-cache are both upstream, or Flashcache/EnhanceIO. Flashcache is not upstream. dm-cache required you to first sit down with a calculator to compute block offsets. bcache was the sanest of the three choices. But recently LVM has added caching support (built on top of dm-cache), so in theory you can take your existing logical volumes and convert them to be cached devices." - imabonehead from Bookmarklet
Can't wait for the benchmarks against ZFS's Hybrid Storage Pools… - Jean-Marc Liotier
imabonehead
"SigmaVPN is simple, light-weight and modular VPN software for UNIX systems, deploying the NaCl encryption library. It's easy to configure, has low overheads and is reliable. No longer is it necessary to waste precious time configuring overcomplicated tunnels." - imabonehead from Bookmarklet
imabonehead
"You may remember MEGACORE, the monster of a server we built for the FreeBSD Foundation. Recently one of our clients had specific networking requirements for a 2U/4 node solution, so we came up with a custom build that fit all of their needs. Meet "MEGAPORT". To get an idea of how impressive this system is, we have to look at it piece by piece. First, we outfitted a 2U with four compute nodes." - imabonehead from Bookmarklet
"Each of the four compute nodes is providing Dual 10-core Intel CPU's, resulting in a total of 80 physical cores packed in 2U of rack space." - imabonehead
"There’s 256GB of RAM in each of the 4 nodes, providing a total of 1TB of memory. With 6 x 10Gbe (4 x Intel SFP+ 10GbE ports and 2 x Intel X540 RJ45 10GbE ports) in each of the 4 nodes, that’s 24 x 10GbE ports in 2U of rack space." - imabonehead
imabonehead
Supermicro Releases 112 Node 6U Server | STH – Server and Workstation Reviews - http://www.servethehome.com/supermi...
Supermicro Releases 112 Node 6U Server | STH – Server and Workstation Reviews
"At CeBIT this week, Supermicro released a 112 node, 6U server that certainly ups density a considerable amount. The 112 node blade server is based on the Intel Atom C2000 family with up to 8 cores per node. This is a fairly significant achievement since that means about 18.6 nodes per U. (112/ 6) including networking." - imabonehead from Bookmarklet
"One can see that the front of the chassis has what appears to be two rows of 14 sleds. That would mean each sled has 4 nodes. The rear of the chassis appears to have 8x 1600w redundant power supplies, two chassis management modules and four switching modules." - imabonehead
That needs a significant amount of power still. I would not be able to fill a rack with those due to power. - Eric from iPhone
imabonehead
Microsoft reveals its server designs and releases open source code | Ars Technica - http://arstechnica.com/informa...
Microsoft reveals its server designs and releases open source code | Ars Technica
Microsoft reveals its server designs and releases open source code | Ars Technica
"Redmond joins Facebook's Open Compute, intends to make servers more efficient." - imabonehead from Bookmarklet
imabonehead
""kGraft is intended to be merged into the upstream Linux kernel and to become a living open-source project," Pavlik said. "It builds on and improves existing Linux infrastructure to fit seamlessly into the Linux kernel." Pavlik noted that a key difference between Ksplice and kGraft is the upstream kernel approach. Pavlik noted that Ksplice tried – and failed – to get upstream acceptance in 2008, primarily because of the complexity of the changes required." - imabonehead from Bookmarklet
imabonehead
Introducing kpatch: Dynamic Kernel Patching | Red Hat Enterprise Linux Blog - http://rhelblog.redhat.com/2014...
"In upstream development news, the kernel team here at Red Hat has been working on a dynamic kernel patching project called kpatch for several months. At long last, the project has reached a point where we feel it’s ready for a wider audience and are very excited to announce that we’ve released the kpatch code under GPLv2. kpatch allows you to patch a Linux kernel without rebooting or restarting any processes. This enables sysadmins to apply critical security patches to the kernel immediately, without having to wait for long-running tasks to complete, users to log off, or scheduled reboot windows. It gives more control over uptime without sacrificing security or stability." - imabonehead from Bookmarklet
ↂGiorgiँ Zarrelliↂ
Si vede che sono un sistemista e non un programmatore: la parte più bella dello script che ho creato è quella che si occupa di generare i log dell'applicazione: sono chiari, precisi, formattati per benino e pure con un time stamp leggibile, tié. Ah, si poi il programma funziona, ma è un di più :-D
imabonehead
Video demo of live Linux Kernel Patching using kGraft - YouTube - http://www.youtube.com/watch...
Video demo of live Linux Kernel Patching using kGraft - YouTube
Play
Better than ksplice? - Julian
imabonehead
Supermicro A1SAM-2750F Review finally a mATX dual PCIe slot platformSTH – Server and Workstation Reviews - http://www.servethehome.com/Server-...
Supermicro A1SAM-2750F Review finally a mATX dual PCIe slot platformSTH – Server and Workstation Reviews
Show all
"The Supermciro A1SAM-2750F is a larger micro ATX form factor measuring 9.6 in x 9.6 in. The Marvell Ethernet transceiver sits just behind the quad Gigabit Ethernet ports. This is a standard feature on Supermicro’s Intel Atom C2000 line at this point and has worked well in the five or so months we have been testing these motherboards. The third large IC on the motherboard is the ASpeed AST2400 BMC which provides features such as out of band management and video out." - imabonehead from Bookmarklet
imabonehead
▶ AT&T Archives: The UNIX Operating System - YouTube - http://www.youtube.com/watch...
▶ AT&T Archives: The UNIX Operating System - YouTube
Play
"This film "The UNIX System: Making Computers More Productive", is one of two that Bell Labs made in 1982 about UNIX's significance, impact and usability. Even 10 years after its first installation, it's still an introduction to the system. The other film, "The UNIX System: Making Computers Easier to Use", is roughly the same, only a little shorter. The former film was geared towards software developers and computer science students, the latter towards programmers specifically. The film contains interviews with primary developers Ritchie, Thompson, Brian Kernighan, and many others." - imabonehead from Bookmarklet
imabonehead
Change Mellanox ConnectX-3 VPI Cards between Infiniband and EthernetServeTheHome – Server and Workstation Reviews - http://www.servethehome.com/change-...
Change Mellanox ConnectX-3 VPI Cards between Infiniband and EthernetServeTheHome – Server and Workstation Reviews
Show all
"One popular model we are using is the Mellanox MCX354A-FCBT which is a dual port ConnectX-3 VPI model. Each of the two QSFP+ ports can easily be configured either to run in Inifiniband or Ethernet mode. In Infiniband mode the cards run well at 56gbps (FDR) or 40gbps (QDR) speeds. In Ethernet mode the cards can run in either 40 gigabit or 10 gigabit speeds. The net result is that these cards are excellent RDMA capable cards which is an important feature for fast networking." - imabonehead from Bookmarklet
imabonehead
Creating a low power Hyper-V based ZFS napp-it pfsense / vyatta AIOServeTheHome – Server and Workstation Reviews - http://www.servethehome.com/low-pow...
Creating a low power Hyper-V based ZFS napp-it pfsense / vyatta AIOServeTheHome – Server and Workstation Reviews
Creating a low power Hyper-V based ZFS napp-it pfsense / vyatta AIOServeTheHome – Server and Workstation Reviews
"Recently I decided to embark upon a project of creating a Hyper-V based ZFS backup target with napp-it web GUI plus either a pfsense or vyatta virtual machine running router and firewall services. The other aspect to this is that I wanted to use a minimal amount of power since this would be an always on appliance. On the Hyper-V side the decision was driven by a few factors bit it did complicate the setup significantly over the standard VMware ESXi 5.5, OpenSolaris derivative and pfsense or vyatta all-in-one formula that I had tried and is well documented. Likely not a fully production ready setup as of now, but instructive as to what one may accomplish at least for lab environments." - imabonehead from Bookmarklet
imabonehead
HonSSH - A high interaction honeypot solution for Linux based systems - BruteForce Lab's Blog - http://bruteforce.gr/honssh-...
HonSSH - A high interaction honeypot solution for Linux based systems - BruteForce Lab's Blog
"Honeypots have been hard to deploy. Many techniques required you to install software on the honeypots themselves that send information about what is happening on the system back to a collector/sensor. This strategy has worked most of the times, but the reporting software have in some cases rendered the honeypots unusable and the attackers have sometimes been able to detect it." - imabonehead from Bookmarklet
"Late summer of 2013, I came across a Python project that – while far from being a “silver bullet” – had great potential and worked amazingly well. It was easy to deploy and configure and solved a lot of issues with the de facto way we deploy honeypots. The project is called HonSSH. As described on its project page (https://code.google.com/p...)..." - imabonehead
imabonehead
NYC Tech Talk Series: How Google Backs Up the Internet - YouTube - http://www.youtube.com/watch...
NYC Tech Talk Series: How Google Backs Up the Internet - YouTube
Play
"Systems like GMail and Picasa keep massive amounts of data in the cloud, all of which has to be constantly backed up to prepare for the inevitable. Typical backup and recovery techniques don't scale, so Google has devised new methods for securing unprecedented volumes of data against every type of failure. There are many unique challenges, both obvious and subtle, in delivering storage systems at this scale; we'll discuss these and their solutions as well as some alternatives that didn't make the grade." - imabonehead from Bookmarklet
Other ways to read this feed:Feed readerFacebook