Azure Container Service (ACS) provided by Azure helps to simplify the management of Docker clusters for running containerized applications. ACS supports 3 Orchestrators: DC/OS with Marathon, Docker Swarm, and Kubernetes. We are using Docker Swarm in this article for the demonstration and assuming that readers of this blog are familiar...
What is caching and why it is required? Caching means storing information locally or in the memory for faster communication between our web browser and web server. It improves the response time of web page and improves the availability as a backup if an origin server failed. Benefits of caching includes: Improved site...
Django is a high-level Python Web framework that can help you get your Python application or website off the ground. It includes simple development server for testing the code locally, but in the production environment, a more secure and powerful web server is required. uWSGI is an application server container that aims to provide...
The demo aims at running rails application behind Nginx using Passenger. Nginx is a high performance webserver. Passenger is a free web server/application server with support for Rails, Python, Node.js. Passenger is highly stable and fast already service over 350,000 websites. 1. Installing the deployment tools Installing...
This blog post is about using docker-compose, a tool provided by docker to define and run multi container application using a single command. It uses a docker-compose.yml file as default input file. I got a use case which was to run a Nodejs application behind a Nginx acting as a reverse proxy in two different Docker containers. This...
Application Security, Technology
A high-severity vulnerability was announced by OpenSSL. This vulnerability is marked as CVE-2015-1793. Common Vulnerabilities and Exposures is a system that provides a reference-method for publicly known security vulnerabilities and exposures. This blog explains OpenSSL Vulnerability (CVE-2015-1793) and Remediation. OpenSSL Team released...
The Nginx web server comes with a bundled module "HttpStubStatusModule". By enabling this module we will get some insight of our nginx connections. This module provides the following information. Active Connections Connection Status (Accepted / Handled) Connection Request / Second Enable Module To get connection stats, we need to...
Fail2ban is a service that scans log files and ban IPs that shows malicious signs of multiple password failures, seeking for exploits, etc. It updates firewall rules to reject the IP addresses for a specified amount of time, although any arbitrary action (e.g. sending an email) can also be configured. Fail2Ban also comes with some out of...
I got a requirement from one of my clients to setup a staging server that has a HTTP authentication, behind an ELB. but because of authentication it fails in the ELB health check. I did the following steps to configure it with HTTP authentication. Create a single PHP or HTML file and disable HTTP authentication for this file. In the...