(from http://www.metabrew.com/article/a-million-user-comet-application-with-mochiweb-part-1)
Save yourself some time and tune the kernel tcp settings before testing with lots of connections, or your test will fail and you’ll see lots of Out of socket memory messages (and if you are masquerading, nf_conntrack: table full, dropping packet.)
Here are the sysctl settings I ended up with - YMMV, but these will probably do:
$ cat /etc/sysctl.conf
# General gigabit tuning:
net.core.rmem_max = 16777216
| # Put this file in /etc/pf.anchors/ | |
| # Options | |
| set block-policy drop | |
| set fingerprints "/etc/pf.os" | |
| set ruleset-optimization basic | |
| set skip on lo0 | |
| # Interfaces | |
| inet_define = "en0" |
Setup full disk encryption using LVM on LUKS (single drive) with remote SSH for an already setup/running Raspbian stretch system. Using this guide there is no need to connect a screen or keyboard to the rpi at any stage since we will setup remote SSH at the same time (at present no other guides available tell you that this is possible).
To be safe, backup SD card (using another computer is easiest in my case):
sudo dd bs=4M if=/dev/<rpi_sdcard> | gzip > rpibackup.img.gz
or use my fish shell function.
| -- This script can be used in conjunction with Better Touch Tool to display the currently playing track on the MacBook Pro TouchBar | |
| -- More info here: https://lucatnt.com/2017/02/display-the-currently-playing-track-in-itunesspotify-on-the-touch-bar | |
| if application "iTunes" is running then | |
| tell application "iTunes" | |
| if player state is playing then | |
| return (get artist of current track) & " - " & (get name of current track) | |
| else | |
| return "" | |
| end if |
| import os | |
| import sys | |
| import bencodepy | |
| import humanize | |
| import argparse | |
| def total_size_files_torrent(file_name): | |
| try: | |
| parsed = bencodepy.decode_from_file(file_name) |
| head -1 example.torrent | grep -aoE '6:lengthi[0-9]+' | cut -di -f2 | awk '{s+=$1} END {print s}' |
Here's my setup:
Complete up to the "Generate the cert" section in this gist
| #!/bin/bash | |
| # This script will make a local SNMP server accessible on a remote system by | |
| # forwarding its UDP traffic over an SSH connection. | |
| # To do this, the following port forwardings are applied (in this order): | |
| # - local TCP port 42061 (arbitrary) to local UDP port 161 (SNMP) | |
| # - remote TCP port 42061 to local TCP port 42061 (via SSH connection) | |
| # - remote UDP port 42061 to remote TCP port 42061 |
| #!/usr/bin/env python3 | |
| import json | |
| import subprocess | |
| import sys | |
| from concurrent.futures import ThreadPoolExecutor | |
| import html | |
| import dictdiffer | |
| import iso8601 |