slink, 6 days ago to random

as i was asked about it: the quick update on some #varnishcache news at #GPN22 was part of the first lightning talks https://media.ccc.de/v/gpn22-440-lightning-talks-i#t=81 - first section

slink, 9 days ago (edited 9 days ago) to random

#gpn22 TODAY #varnishcache session / meetup: you define the agenda

EDIT:

17:30 - 18:30 Hackcenter 1st floor right of the stairs sitting on the floor

https://entropia.de/GPN22:SelfOrganizedSessions#17:30-18:30_Varnish-Cache_session_/_meetup

all creatures welcome

slink, 10 days ago to random

if you would be interested in a self organized session on #varnishcache at #gpn22 on fri or sat dm me with your preferred times.

jeff, 1 month ago to infosec

Yo #InfoSec, #Hackers, and anyone else:

Have you heard of the Fediverse Effect DDoS?

https://news.itsfoss.com/mastodon-link-problem/

kev, 1 month ago to random

Every time I post a link to my site on Mastodon, it locks up for like 30 seconds or so.

My theory is that because I have a quite a lot of followers (👋 hii!) the post hits a lot of instances and they all poll my site at the same time, effectively DDoS'ing it for a lil bit.

One day I'll run a packet capture and prove this theory…

kushal, 2 months ago to random

Did you ever write any #HTTP application over Unix domain #sockets? If yes, then can you please tell me about the usecase?

Please boost for more reach.

tdp_org, 2 months ago to webdev

I enabled Brotli compression on the CDN which serves the main BBC websites (www.bbc.co.uk. www.bbc.com etc.) outside the UK this morning.
Over ~4 hours, we're seeing a mean of ~20% better compression (smaller responses) via Brotli & ~95% of responses being Brotli now.
I've not had time to look in detail at performance but there doesn't look to be a significant change (LMK if you see diferent!).
(the spikes are breaking news events linking to a large "live" pages)
#Brotli #WebDev #BBC

slink, 2 months ago to random

a new #varnishcache release is out (extra post for hashtag)
https://fosstodon.org/@bsdphk/112118560922112126

slink, 3 months ago to MemeryAlpha

new synonym for bounds checking in #C: to whitehouse

"this input buffer is whitehoused"
"yes, we do whitehouse this array access"

let's also rename some #varnishcache functions from v to w: "whitehouse storage buffer"

#shitpost

samuel, 3 months ago to random Swedish

Linux/devops/web question. Are there open alternatives to cloudflare's "tunnel thingy"?

Say that I want to host my website https://samuels.bitar.se on a raspberry pi at home but I don't want to expose my home ip, how would I solve this? I know I can do it with Cloudflare but I don't want to use Cloudflare. Can I setup like an nginx proxy on a VPS and do like an ssh tunnel or something? Or are there other solutions?

I learned abour zrok but I don't know if that will work.

Ideas?

monospace, 3 months ago to SEO

You don't need a CDN! With Varnish, the open source cache proxy, you can shield your website from traffic spikes and speed up its content delivery by orders of magnitude. In my Varnish Master Course, you'll learn everything you need to set it up and configure it for optimal performance. https://www.monospacementor.com/courses/varnish-master-course/
#VarnishCache #SEO #WebPerformance #Course #Drupal #WordPress #WebDevelopment

slink, 4 months ago to random

After one year, it was time to run an updated performance test of SLASH/fellow, our persistent storage engine for #VarnishCache

https://gitlab.com/uplex/varnish/slash/-/blob/master/doc/perf/dev-03.rst?ref_type=heads

#Varnish

slink, 4 months ago to opensource

HAPPY 18TH BIRTHDAY #VarnishCache ! To celebrate this memorable occasion, we have just tagged Version 1.0.0-rc1 of https://gitlab.com/uplex/varnish/slash, which contains fellow, our advanced, #io_uring based, high performance, eventually persistent, always consistent #opensource storage engine.
Read the full announcement: https://varnish-cache.org/lists/pipermail/varnish-announce/2024-February/000762.html
And the changelog: https://gitlab.com/uplex/varnish/slash/-/blob/master/CHANGES.rst?ref_type=heads

slink, 4 months ago to random

Darling, I shrunk the fellows!

Added documentation on resize operations of our persistent stevedore for #varnishcache

https://gitlab.com/uplex/varnish/slash/-/commit/c1db626b9caec67840e2027897b1a259d2fbb387

https://gitlab.com/uplex/varnish/slash/-/blob/c1db626b9caec67840e2027897b1a259d2fbb387/src/vmod_slash.man.rst

slink, 4 months ago to random

vmod-dynamic, our #varnishcache module for dynamic backends from #dns (A/CNAME and SRV records) has received some bug fixes and, in particular, workarounds specific to Varnish-Cache 7.4, for which a new https://github.com/nigoroll/libvmod-dynamic/tree/7.4 branch has been created.

slink, 8 months ago to random

a new #varnishcache release is out https://fosstodon.org/@bsdphk/111070138153237218

most relevant changes:

• control vcl tracing from vcl
• transfer-enconding and content-length are now protected headers to avoid oopses

https://varnish-cache.org/docs/7.4/whats-new/changes-7.4.html
#varnish

justin, 8 months ago to random

I rebuilt my #varnish server tonight using an Ansible playbook I'm writing on an updated Debian 12 Triton image. While working on it, I noticed the log was going crazy. I checked the connections (netstat -nat | wc -l) and found there were >4300 open at that moment. This was just someone with a modest follower count boosting one of my posts.

Before Varnish, this would have taken my system down for 20 minutes or so. I'm curious how far the new service can go. /1

slink, 8 months ago (edited 8 months ago) to foss

A new #FOSS module for #VarnishCache has become usable: #VMOD zipflow lets you generate ZIP files on the fly.

https://git.sr.ht/~slink/libvmod-zipflow

Thank you to @madler for his zipflow code!

#varnish #opensource #zipflow #zlib

tdp_org, 9 months ago to random

Who's using Apache Traffic Server as an HTTP reverse proxy in a large-ish scale way?
Interested to hear any opinions and/or loves/frustrations with it...Eyeing it up as a potential successor (one day, would be a chunk of work) to our NGINX-based in-house CDN. So that'd mean it'd go into 3+ datacentres, each configured as clustered machines, serving 10s of thousands to millions of RPS across 10s of domains as a reverse proxy.
https://trafficserver.apache.org/

slink, 9 months ago to random

Another week, another new #vmod for #varnishcache

Today: #iconv character encoding conversions for #vcl

https://gitlab.com/uplex/varnish/libvmod-iconv

slink, 9 months ago (edited 9 months ago) to random

JSON formatting in pure VCL is a PITA.

Just released: A #JSON formatter for #VCL which sucks less.

https://gitlab.com/uplex/varnish/libvmod-j #varnishcache #vmod #FOSS #opensource

Example from the README:

bagder, 9 months ago to random

Next week on Aug 31 I will do my super long #curl class: "Mastering the curl command line" live on Twitch, also recorded for later watching.

Expect 2.5 hours or so of non-stop #curl command line talk. By me.

https://daniel.haxx.se/blog/2023/08/08/mastering-the-curl-command-line/

slink, 9 months ago to random

VSV00012 Base64 decoding vulnerability in vmod-digest

A base64 decoding vulnerability has been discovered in vmod-digest, which is often used with #varnishcache .

My personal recommendation is to migrate to vmod-blob, as shown in the advisory.

https://varnish-cache.org/security/VSV00012.html

selea, 10 months ago to random

Well, I've seen alot of criticism against #cloudflare and the sites behind it.

Instead of blaming and shaming sites because they are using cloudflare - the discussion should instead be:

• what alternatives do we have?

Some people say, and I quote "setup load balancers, and DDoS-mitigations".

I find that kind of "tips" extremely unconstructive. They really dont mean anything, apart from "look how smart I am on talking".

What REAL alternatives do we have?