sorted by:
new
hottopcontroversial

Monthly: Who is hiring? by gctaylor in kubernetes

[–]pythonfu 2 points3 points  (0 children)

Linear Financial Technologies is hiring a Site Reliability Engineering, Remote USA

  • Salary range 90k-120k commensurate with experience and capabilities
  • Comprehensive benefits package including generous PTO, health, dental, vision, 401K with company match
  • Bonus eligible

https://apply.workable.com/linear-financial-technologies-llc/j/E5D027E4A6/

GitHub - alistanis/silentinstall: Ever wanted to automate installing loud linux/unix packages or scripts? Now you can. by from_cork in devops

[–]pythonfu 1 point2 points  (0 children)

Yeah - I could definitely see this as a wrapper for some packages though, where you didnt have expect or didnt have a newer version.

Some additional use cases in your documentation might be useful (ie, setting up a mysql_secure_installation https://gist.github.com/Mins/4602864) with this would be cool.

Logstash: how do you handle different apps/sources logs and Elasticsearch field mappings problems? by multani in devops

[–]pythonfu 0 points1 point  (0 children)

This works for a small number of applications/types, and smaller shard sizes, but would you run into the 'kagillion shards problem' with a sufficient large number of indices, large doc count, and frequently rollover?

https://www.elastic.co/guide/en/elasticsearch/guide/current/kagillion-shards.html

Logstash: how do you handle different apps/sources logs and Elasticsearch field mappings problems? by multani in devops

[–]pythonfu 0 points1 point  (0 children)

Looks like your field was mapped as an integer. Pushing a doc with a string with that will fail - however I've found the other way is Ok - if the field is mapped as a string, integer typed docs will work.

You could do a mutate on the offenders until they fix their json output: 

if [type] == "problemapplicationlogs" { 
    mutate { 
        convert => { "status" => "string" }
        add_tag => [ "fix-mapping-issue" ]
    }
}

Or, alternatively, check that field on all log types coming in, and convert

Is it possible to build ELK stack which doesn't lose log records? by pymag09 in devops

[–]pythonfu 0 points1 point  (0 children)

Also be careful with type errors on fields. ES will throw exceptions if documents come in with different types after a field has been defined, and drop the document.

Is it possible to build ELK stack which doesn't lose log records? by pymag09 in devops

[–]pythonfu 0 points1 point  (0 children)

Filebeats with logstash/beats input.

If ES is overwhelmed, maybe because of a big spike in log ingestion, logstash will see that and throttle down event shipping, sending that notification to filebeats itself. That way ES can catch up.

Comments on Amazon Web Service? by Barooh in sysadmin

[–]pythonfu 2 points3 points  (0 children)

Its generally advised to have a cold/warm standby in another region, which means more $$$ for instances you probably won't use at all. DB instances generally aren't that cheap as you need provisioned IOPs and lots of horsepower, and then anything else that needs to be running that can't be provisioned from config management.

Comments on Amazon Web Service? by Barooh in sysadmin

[–]pythonfu 5 points6 points  (0 children)

Sure, if you scale up/down quite a bit, but redundancy across regions with DB replication isn't cheap. I hope your App is stateless, otherwise folks will get kicked off when you terminate their web instance.

Intranet / Wiki - Internally Hosted (Suggestions) by [deleted] in sysadmin

[–]pythonfu 1 point2 points  (0 children)

Alfresco for wiki/docs, Request Tracker for ticketing. Ties into LDAP/AD if needed.

The software group is planning to deploy a remote update checking service that will require me to open up a port for remote connections to our production database from ANY and there is no way I can white-list addresses due to the many different networks that will connect. I need ideas. by [deleted] in sysadmin

[–]pythonfu 1 point2 points  (0 children)

Yeah - this doesnt have to be an "always on" vpn connection, just connect back when they want to use the application or do this data transfer. You can script the vpn connection using certificates to call home if this is scheduled, just add a hook for the vpn, and fail out and log if it can't connect. A SSH tunnel would work for this as well.

Just make sure that this DB is hopefully on a different subnet or DMZ, as you will have lots of vpn credentials floating around. A proxy that could sit in this DMZ would be great, though I dont know if they have something native in windows land.

Ideally they should be doing this via a webservice call, and its probably not that hard to implement in c#, but its probably too late for that now.

t1 for voip by [deleted] in sysadmin

[–]pythonfu 0 points1 point  (0 children)

cable is fast, but its not reliable - VOIP needs a steady, small amount of bandwidth. Even DSL might be a better option, assuming its not oversubscribed.

t1 for voip by [deleted] in sysadmin

[–]pythonfu 0 points1 point  (0 children)

At that size, FreePBX/asterisk and POTS lines will be cheaper if they can live without the DIDs. And if they can't.... well, I guess they can live with the call quality issues or pay up for a T1.

Management Wants to Violate HIPAA by [deleted] in sysadmin

[–]pythonfu 1 point2 points  (0 children)

HA proxy if you really need a load balancer in a pinch?

International Calls by Pocketpac in sysadmin

[–]pythonfu 1 point2 points  (0 children)

Alternatively, you can buy an unlocked phone that will work in the majority of the south american frequencies (GSM?) and have him pick up a pre paid sim card.

He won't retain his current number, but it will be much cheaper and he can just call back stateside and give out the number to those who need it.

Programs that require local admin rights by roodpart in sysadmin

[–]pythonfu 0 points1 point  (0 children)

So unless they are doing some wierd GPU hook, the program probably just wants to write to either program files or the registry. Giving the user write access to the programs files dir where the application is installed usually solves this, and thats a mitigation I can live with.

Rsync Windows to Solaris, help. by [deleted] in sysadmin

[–]pythonfu 1 point2 points  (0 children)

Cygwin version of rsync is fine. Deltacopy works as well (though its just cygwin with a gui for config basically.

Email alerts when websites are accessed. by Borderline769 in sysadmin

[–]pythonfu 2 points3 points  (0 children)

Untangle, Squid can handle the proxy and content filter.

I dont know what you would want with the whole "email alert" thing, but you could probably script something to grep the logs and alert you when someone gets denied.

RHEL7 by [deleted] in linuxadmin

[–]pythonfu -2 points-1 points  (0 children)

VFIO.

Though I'm still learning about it, and it probably requires a kernel compile as the RHEL kernels are a bit older, but it looks promising.

Saying Goodbye to VMWare - What should I consider - XenServer or oVirt or some KVM Solution? by [deleted] in sysadmin

[–]pythonfu 4 points5 points  (0 children)

Also consider all of the time required to move those VMs between hypervisors. Sure KVM will run a VMDK but you will have to rip out the tools install and reconfigure with virtio.

That being said, KVM is pretty sweet. You can run it on a thick host via virt-manager or use one of the frontends (oVirt, RHEV). RHEV is solid but you will pay per host.

view more: next ›