Tech geek. Life geek.

Category: Web & Network (Page 2 of 37)

Google will Discontinue Inbox by Gmail

It is a new about Google emaill APPs.

Google has two email APPs, Inbox and Gmail.

Just an hour ago, Google announced that Inbox by Gmail will be discontinue at the end of March 2019. vi

In the post “Inbox is signing off. Find your favorite features in the new Gmail”, Google said so. I am using Inbox by Gmail for three years. Until yesterday, I found that my new phone has built-in Gmail APP, I can not uninstall it to use Inbox by Gmail App. Everytime I receive an email, two notifications comeout on my smartphone. All this just happened on my LG Q6, after upgrading to Android 8.1.0.

So I uninstalled Inbox by Gmail App.  Start to use Gmail App now.

Continue reading

Do not use Google Authenticator

After I change my old smartphone to LG Q6, I would like to transfer all apps to it. I used Google Authenticator for a bunch of websites as the Two-factor Authentication. I just found Google Authenticator cannot move all these accounts to my new phone. To do the transferring, I have to manually re-add it to Google Authenticator of the new phone.

So, I did a little bit of research. I found Authy is a good replacement. There is a blog post to compare these two facilities on Authy’s website.

For me, I personally like the following features:

  • Multi-device support
  • Support Windows and Mac as well
  • Support backups

Looks cool.

Continue reading

Access Webmin with IPv6 address

I tried a IPv6 only VPS. It has no IP v4 address.

It is always error  connection when I tried to use an IP v6 to connect it.

Here is some new knowledge for me.

Use a pair [] around the IPv6 address when using it in the Browser address .

The correct format is: https://[2001:19f0:8001:ae7:5400:1ff:fe93:a764]:10000

 

To enabled IPv6 support.

1) /etc/webmin/miniserv.conf

add a line

IPv6 =1

2) Install Socket6 perl module

apt install libsocket6-perl

Then restart webmin service.

Now I can enter the webmin which is IPv6 only webmin.

Some changes on VPS

My site is moved to another VPS, but still with Linode.

This time, it is at Fremont, CA. As I mentioned in my last post, the CPU is E5-2697 v4.

There is a few changes on the default VPS.

  • Turn on BBR.
  • php opcache cache size from 128MB to 256MB
  • MariaDB default collection from utf8mb4_general_ci to utf8_general_ci

 

Continue reading

Change directives of Nginx

My new server uses Nginx as a web server. When I check the error log of it, I saw a lot of warnings.

2016/08/27 07:30:03 [warn] 11951#11951: *590544 an upstream response is buffered to a temporary file /var/cache/nginx/fastcgi_temp/3/28/0000008283 while reading upstream, client: 107.174.247.88, server: www.phpbbchinese.com, request: “GET /download/file.php?id=109 HTTP/1.1”, upstream: “fastcgi://unix:/run/php/php7.0-fpm.sock:”, host: “www.phpbbchinese.com”

I did the search and found some posts about this kind of warnings. OK, let record it and see what happened later.

Increase buffers.

Edit /etc/nginx/nginx.conf

fastcgi_buffers 32 8k;

Continue reading

Move to Linode Server

When you saw this post, it means the blog is moved to a new server at Linode.

New server is a little bit better than the old one at DigitalOcean.

Here is how old server looks like:

  • Operating system     Ubuntu Linux 14.04.4
  • Kernel and CPU     Linux 3.13.0-88-generic on x86_64
  • Processor information     Intel(R) Xeon(R) CPU E5-2630L v2 @ 2.40GHz, 1 cores
  • 1 GB RAM
  • 20 GB Storage SSD

digitalocean-spotlight

New server at Linode has following specs:

  • Operating system     Ubuntu Linux 16.04
  • Kernel and CPU     Linux 4.6.3-x86_64-linode70 on x86_64
  • Processor information     Intel(R) Xeon(R) CPU E5-2680 v3 @ 2.50GHz, 1 cores
  • 2 GB RAM
  • 24GB Storage SSD

linode-brentwood Continue reading

Amazon CloudFront adds Canadian edge servers

It is good to know that Amazon AWS service adds new edge locations in Montreal and Toronto for Cloudfront. I hope it will be soon to have a new edge in Canada West, such as Vancouver.

cf_toronto_2

Amazon CloudFront adds new edge locations in Montreal and Toronto, our first in Canada

We are pleased to announce the launch of our newest edge locations in Toronto and Montreal, our first edge locations in Canada. Adding locations in Canada has been frequently requested by our customers so we are excited to add these two locations to our global network. If you’re already using Amazon CloudFront, you don’t need to do anything to your applications as requests are automatically routed to these locations when appropriate.

These new edge locations help improve performance and availability to end users of your applications and support all Amazon CloudFront features at no additional cost. Pricing for the new edge locations in Canada is the same as that in the US.

We have also added a second edge location in Sao Paolo, Brazil, our third edge location in Brazil. With the addition of the new locations in Canada and the second edge location in Sao Paolo, Amazon CloudFront now has a total of 59 edge locations worldwide. To see a list of all Amazon CloudFront global edge locations, please see our edge location list. To learn more about the service, attend a monthly office hour session that includes Q&A with Amazon CloudFront Engineers and Product Managers. Visit Amazon CloudFront for more information and register for the next office hour.

Continue reading

5 Free SSL Tools You Must Try in 2016

It is 2016, your website must be SSL encrypted. Now, you have questions, how about my server and how about my SSL installation? This is the answer to this question. You must try these five free tools to test, check, analyse your https website.

No.1 SSLShopper

It is an SSL checker. Enter server hostname and click check SSL button. It will give you the brief results, including server type, certificate CA, expiration day, etc.

sslshopper

LINK:  https://www.sslshopper.com/ssl-checker.html

No.2 Symantec CryptoReport

It is a powerful tool with good design. The result is more and it is the only one can tell you how many certificates installed. Look at below, the report said, I have RSA and ECC certificates installed.  The report

The report has following information:

  • Certificate is installed correctly.
  • Certificate chain installation part.
  • Server configuration:(Server type, IP, Port, Protocols, Cipher suites, etc.)

symantecLINK: https://cryptoreport.websecurity.symantec.com/checker/

Continue reading

Add my Blog to HSTS preload list

Now my Blog, David Yin Blog is https encrypted . And it is also HSTS enabled. And latest, it is HSTS preload enabled.

It has three layers meaning.

  1. https support.
  2. HSTS enabled.
  3. HSTS preload enabled.

Let me explain them one by one.

First, add https support. I did this step on Feb. 2016, when I announced that SSL added. I recorded how I get the SSL certificate and install it on Nginx web server.

After that, all content send back and force from my Blog to an audience is encrypted. Even ISP can not read the content from the data traffic.

comodo-positive ssl-certificate

Second, I add the HSTS into the Nginx configuration, to make it more secure.

What is HSTS?

HTTP Strict Transport Security (HSTS) is a web security policy mechanism which helps to protect websites against protocol downgrade attacks and cookie hijacking. It allows web servers to declare that web browsers (or other complying user agents) should only interact with it using secure HTTPS connections,[1] and never via the insecure HTTP protocol. HSTS is an IETF standards track protocol and is specified in RFC 6797

Continue reading

« Older posts Newer posts »

© 2020 David Yin's Blog

Theme by Anders NorenUp ↑