We’ve been using the load average to see the health of the servers.
There are several drawbacks associated with using the load average:
Networking is the first thing that comes to many people’s minds when we are talking about containers.
Most container technologies use the Network Namespaces feature of the Linux Kernel. The network namespaces provide an isolated network stack in the operating system.
You can create a virtualized network stack with its…
As I said in the previous post, there are a couple of different security modules in the Linux Kernel: SELinux, AppArmor, Seccomp, Tomoyo, Smack, Capabilities, etc.
I’d like to talk about the Seccomp module in this post.
Seccomp stands for secure computing mode.
Hundreds of system calls are available in…
I’ve realized that setuid is still a common approach to allow normal users to run a process with the root privileges. However, setuid comes with a lot of security issues.
There are a couple of different security modules in the Linux Kernel: SELinux, AppArmor, Seccomp, Tomoyo, Smack, Capabilities, etc.
As you probably know, you call getaddrinfo when you make a DNS request in a Linux/Unix based operating system.
Some domains have multiple A records. Let’s say you make a DNS request for example.com, and you get 220.127.116.11, 18.104.22.168 and 22.214.171.124
There may be lots of different scenarios to choose…
Since the netstat (actually net-tools) is deprecated, people are moving from netstat to the ss command.
I see that a lot of people get confused with the output of ss -s command.
The closed column is especially mind-blowing.
TCP: 129 (estab 87, closed 28, orphaned 4, timewait 28)…
Working as serverless is the fashion these days. However some problems are still there. Deployment!
Amazon Web Services has introduced canary release for Lambda functions. So, we will be able to rolling out new software versions in production by slowly.
The first version of the Lambda function (index.js):
IPTraf is one of the network debug tools. You can monitor the network activity via IPTraf.
You can setup some filters on IPTraf.
Open the filters: