Chris Dean
Technical Digital Media Consultant
Amazon ELB SSL Termination IS Secure (According to Amazon)
0
Today I contacted Amazon about a question that's been bothering me ever since they announced that SSL termination was possible on their Elastic load Balancers.
Basically, in network terms, as the instances sit behind the firewall and the firewall behind the load balancers, if you terminate the SSL at the load balancer, what exposure is your data at risk of between the load balancer and the firewall?
Amazon's response (though lacking in actual detail) is that data is secure between the load balancer and the firewall, though post termination it is transmitted in clear text (as you'd generally expect). You can see the original question and response here: https://forums.aws.amazon.com/message.jspa?messageID=209121
So all in all Amazon are saying that their load balancer-to-firewall connection is secure.
As they don't give any detail, to a point it depends on how much you trust Amazon on this issue but in my opinion if you're going to implement an SSL termination process on this scale and exposed to this level globally you're gonna do it properly, and if it does has security flaws it's going to be a marketing disaster for your service.
So, all in all, though I don't like not knowing the specific process they use, in future I'm going to trust it for most cases (though all the while keeping an eye out for related reported issues or concerns).
MySQL Seconds Behind Master Weirdness
0So, I'm running show slave status and I'm seeing that my slave is around 14 days behind my master, which is weird since I the server's set to expire logs after 3 days.
After a bit of digging I found this: http://bugs.mysql.com/bug.php?id=2826
So I checked the system time on the slave and it was way out of whack with the current date.
So, I restarted ntpd (which causes it to re-sync), stopped and restarted the slave and there we go problem fixed.
How to set a server’s Timezone
0To set to UK time (i.e. respect BST) run the following on the command line:
ln -sf /usr/share/zoneinfo/Europe/London /etc/localtime
More here: To set to UK time (i.e. respect BST)
Free Alternative Software To Commercial Programs
02 years ago
by Chris
in Free Software
Over the last few years I have been increasing my use of free, open source alternatives to commercial software products for a number of reasons, mainly because of superior features or ease of use in the free products which assist my work, or in some cases because I want to avoid the budget signoff bureaucracy involved with purchasing new software programs (aka. Saving the company money – lol).
Anyway, this category of posts basically contains my recommendations for free alternatives to commercial software products. I’ll add new programs to it as I come across them, hopefully it will be of some use to you 
Woo Wishlists are now Universal
0Thanks to recent improvements over at Amazon, you can now add items to your wishlist from ANY website! How cool is that? All you need to do is drag this bookmarklet to your browser and you'll be free to add any item to the list of stuff you want!