Today I contacted Amazon about a question that's been bothering me ever since they announced that SSL termination was possible on their Elastic load Balancers.
Basically, in network terms, as the instances sit behind the firewall and the firewall behind the load balancers, if you terminate the SSL at the load balancer, what exposure is your data at risk of between the load balancer and the firewall?
Amazon's response (though lacking in actual detail) is that data is secure between the load balancer and the firewall, though post termination it is transmitted in clear text (as you'd generally expect). You can see the original question and response here: https://forums.aws.amazon.com/message.jspa?messageID=209121
So all in all Amazon are saying that their load balancer-to-firewall connection is secure.
As they don't give any detail, to a point it depends on how much you trust Amazon on this issue but in my opinion if you're going to implement an SSL termination process on this scale and exposed to this level globally you're gonna do it properly, and if it does has security flaws it's going to be a marketing disaster for your service.
So, all in all, though I don't like not knowing the specific process they use, in future I'm going to trust it for most cases (though all the while keeping an eye out for related reported issues or concerns).
So, I'm running show slave status and I'm seeing that my slave is around 14 days behind my master, which is weird since I the server's set to expire logs after 3 days.
After a bit of digging I found this: http://bugs.mysql.com/bug.php?id=2826
So I checked the system time on the slave and it was way out of whack with the current date.
So, I restarted ntpd (which causes it to re-sync), stopped and restarted the slave and there we go problem fixed.
To set to UK time (i.e. respect BST) run the following on the command line:
ln -sf /usr/share/zoneinfo/Europe/London /etc/localtime
More here: To set to UK time (i.e. respect BST)
Over the last few years I have been increasing my use of free, open source alternatives to commercial software products for a number of reasons, mainly because of superior features or ease of use in the free products which assist my work, or in some cases because I want to avoid the budget signoff bureaucracy involved with purchasing new software programs (aka. Saving the company money â€“ lol).
Anyway, this category of posts basically contains my recommendations for free alternatives to commercial software products. Iâ€™ll add new programs to it as I come across them, hopefully it will be of some use to you
Thanks to recent improvements over at Amazon, you can now add items to your wishlist from ANY website! How cool is that? All you need to do is drag this bookmarklet to your browser and you'll be free to add any item to the list of stuff you want!