# Key considerations for algorithm "RSA" ≥ 2048-bit
openssl genrsa -out server.key 2048
# Key considerations for algorithm "ECDSA" ≥ secp384r1
# List ECDSA the supported curves (openssl ecparam -list_curves)
openssl ecparam -genkey -name secp384r1 -out server.key
nporsche nporsche
nporsche
/ golang-tls.md
Created
February 23, 2017 09:09
— forked from denji/golang-tls.md
Simple Golang HTTPS/TLS Examples
nporsche
/ gist:4b58417f3483c908bdb664c5d716819f
Created
February 26, 2020 04:24
— forked from perusio/gist:2154235
High performance tuning of Nginx
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## From a post on the ML, apropos this: | |
| ## http://lowlatencyweb.wordpress.com/2012/03/20/500000-requestssec-modern-http-servers-are-fast. | |
| ## For sysctl.conf | |
| net.ipv4.tcp_slow_start_after_idle = 0 | |
| echo "2048 64512" > /proc/sys/net/ipv4/ip_local_port_range | |
| echo "1" > /proc/sys/net/ipv4/tcp_tw_recycle | |
| echo "1" > /proc/sys/net/ipv4/tcp_tw_reuse |
nporsche
/ nginx-tuning.md
Created
February 26, 2020 07:36
— forked from denji/nginx-tuning.md
NGINX tuning for best performance
Moved to git repository: https://github.com/denji/nginx-tuning
For this configuration you can use web server you like, i decided, because i work mostly with it to use nginx.
Generally, properly configured nginx can handle up to 400K to 500K requests per second (clustered), most what i saw is 50K to 80K (non-clustered) requests per second and 30% CPU load, course, this was 2 x Intel Xeon with HyperThreading enabled, but it can work without problem on slower machines.
You must understand that this config is used in testing environment and not in production so you will need to find a way to implement most of those features best possible for your servers.