Logging client IP of reverse proxied web traffic

Thursday, 18. 05. 2006  –  Category: all, sw

‘Cos I always forget: LogFormat       "%{X-Forwarded-For}i %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" proxy This just makes Apache log the IP in the X-F-F HTTP header instead of %h in reverse-proxy scenarios.

Onboard RAID

Wednesday, 17. 05. 2006  –  Category: all, vague

Poor old zest.lemonia.org dropped off air, apparently with a dead CPU or motherboard. Its standby box, juice.lemonia.org was brought up with 15 hour old data (the backup sync cron’d at 0300, the failure happened at ~1800), but not before attempting to stick one half of zest’s mirror into juice. The root fs at /dev/ad1s1a was […]

Lazy checking website’s SSL certs

Thursday, 11. 05. 2006  –  Category: all, stash

I wanted to avoid RSI checking the browser’s padlock on every site I’d just updated a SSL cert for: [lemon@core ~ ] 0 $ for z in 4 5 6 7 8 9 10 11 12 ; do echo 'GET /' | openssl s_client -connect devgateway${z}.foo.co.uk:443 2>&1 | openssl x509 -text | grep -i 'Not […]