Compile ImageMagick 6.8 on RHEL 6 / CentOS 6

Posted on May 10, 2013 by Ameir Abdeldayem — No Comments ↓

There wasn’t a lot of thorough documentation on installing/compiling the latest ImageMagick on CentOS 6. Below are the packages and install steps; remember to also install the PHP PECL extensions if needed (the ones from yum should work fine).

If ImageMagick-6.8.5-4.tar.gz is not the latest package (it is at the time of writing), be sure to update that before running.

In case you’re concerned bout the last line, we add that so that /usr/local/lib is searched first in case an older ImageMagick is present elsewhere. If you don’t have ImageMagick at all and /usr/local/lib shows up in ldconfig -v , you can skip this step.

yum -y install libpng libpng-devel libjpeg libjpeg-devel libtiff libtiff-devel
source='ImageMagick-6.8.5-4.tar.gz'
wget http://www.imagemagick.org/download/${source}
tar xvfz $source
cd `find . -maxdepth 1 -name 'Image*' -type d | head -1`
./configure && make && make install
(test -f /etc/ld.so.conf.d/00-custom.conf || echo "/usr/local/lib" > /etc/ld.so.conf.d/00-custom.conf) && ldconfig

yum -y install libpng libpng-devel libjpeg libjpeg-devel libtiff libtiff-devel

source='ImageMagick-6.8.5-4.tar.gz'

wget http://www.imagemagick.org/download/${source}

tar xvfz $source

cd `find . -maxdepth 1 -name 'Image*' -type d | head -1`

./configure && make && make install

(test -f /etc/ld.so.conf.d/00-custom.conf || echo "/usr/local/lib" > /etc/ld.so.conf.d/00-custom.conf) && ldconfig

Posted in Linux Luvin'

Installing Gearman 1.1.6 on RHEL / CentOS 6

Posted on April 29, 2013 by Ameir Abdeldayem — No Comments ↓

I haven’t been able to find a clear set of instructions to get Gearman compiled on CentOS 6. After some trial and error, this is what I came up with to get things going.

yum install uuid-devel libuuid libuuid-devel uuid boost-devel libevent libevent-devel boost boost-devel gcc-c++ mysql-libs mysql libmemcached-devel libmemcached make curl libcurl-devel mysql-devel

CFLAGS=-std=c99 ./configure
make
make install

yum install uuid-devel libuuid libuuid-devel uuid boost-devel libevent libevent-devel boost boost-devel gcc-c++ mysql-libs mysql libmemcached-devel libmemcached make curl libcurl-devel mysql-devel

CFLAGS=-std=c99 ./configure

make

make install

Posted in Linux Luvin'

Bot Blocking Your Site with Apache

Posted on December 23, 2012 by Ameir Abdeldayem — No Comments ↓

If you want to block bots/crawlers/search engines/your mom from reaching your site (based on user agent), there are many ways to go about it, the best (IMO) being directly with Apache.

The below Apache rules set an environment variable if a user agent matches, and the rewrite rule acts based on that. I am redirecting to robots.txt here to remind these bots it exists (thanks for not respecting the rules!). You can redirect to anywhere you want.

Note that BrowserMatchNoCase does simple string matching, and matches substrings. You can have just one rule to match ‘bot’ that will capture anything with ‘bot’ in the name. I am being more explicit here just to play it safe.

You can test with the curl command below to test:

curl -I -H “User-Agent: botname” localhost

Apache rules:

BrowserMatchNoCase bingbot block=yes
BrowserMatchNoCase Diabot block=yes
BrowserMatchNoCase Exabot block=yes
BrowserMatchNoCase MJ12bot block=yes
BrowserMatchNoCase msnbot block=yes
BrowserMatchNoCase yacybot block=yes
BrowserMatchNoCase YandexBot block=yes
BrowserMatchNoCase ZumBot block=yes

RewriteEngine On
RewriteCond %{ENV:block} yes
RewriteRule ^ /robots.txt [L]

BrowserMatchNoCase bingbot block=yes

BrowserMatchNoCase Diabot block=yes

BrowserMatchNoCase Exabot block=yes

BrowserMatchNoCase MJ12bot block=yes

BrowserMatchNoCase msnbot block=yes

BrowserMatchNoCase yacybot block=yes

BrowserMatchNoCase YandexBot block=yes

BrowserMatchNoCase ZumBot block=yes

RewriteEngine On

RewriteCond %{ENV:block} yes

RewriteRule ^ /robots.txt [L]

Posted in Linux Luvin'

Apache Digest Password Protection

Posted on November 15, 2012 by Ameir Abdeldayem — No Comments ↓

I was working with a barebones Apache setup recently and needed to enable Digest authentication, but it turned out the necessary modules weren’t loaded. After some research, I came up with the below. I’m largely posting this for my own reference, but figured others could benefit as well.

Make sure the module and password file paths are correct!

# BEGIN user auth	
# load needed modules for Digest if they’re not loaded	
	
LoadModule auth_digest_module apache/modules/mod_auth_digest.so	
LoadModule authn_file_module apache/modules/mod_authn_file.so	
LoadModule authz_user_module apache/modules/mod_authz_user.so	
	
AuthType Digest	
AuthName “Unauthorized Realm”	
AuthDigestDomain /	
AuthUserFile /full/path/to/.htpasswd-digest # absolute path to password file	
Require user  # replace with user who is logging in	
	
# you can list multiple exceptions that bypass authentication (remove or comment out if not needed)	
SetEnvIf Request_URI “/path/to/exception.php$” allow	
Order allow,deny	
Allow from env=allow	
Satisfy any	
	
# END user auth

# BEGIN user auth

# load needed modules for Digest if they’re not loaded

LoadModule auth_digest_module apache/modules/mod_auth_digest.so

LoadModule authn_file_module apache/modules/mod_authn_file.so

LoadModule authz_user_module apache/modules/mod_authz_user.so

AuthType Digest

AuthName “Unauthorized Realm”

AuthDigestDomain /

AuthUserFile /full/path/to/.htpasswd-digest # absolute path to password file

Require user # replace with user who is logging in

# you can list multiple exceptions that bypass authentication (remove or comment out if not needed)

SetEnvIf Request_URI “/path/to/exception.php$” allow

Order allow,deny

Allow from env=allow

Satisfy any

# END user auth

Posted in Linux Luvin'

Using Nginx with W3 Total Cache and Memcached

Posted on November 12, 2012 by Ameir Abdeldayem — 1 Comment ↓

When working on a WordPress project recently where speed was a huge concern, I relied on everyone’s favorite reverse proxy, Nginx, to offload the work required by Apache to serve pages. This worked great, but an issue I encountered was invalidating cached items that were just updated (e.g. comments, post edits, etc.) in Nginx. For users to see the updated content, the cache TTL had to pass, which was unacceptable for our purposes.

I was already using W3 Total Cache in WordPress with Memcached storage, and although W3 Total Cache knew to invalidate certain cached items in Memcached, Nginx was not aware of this since it used its own local cache.

Nginx, thankfully, has built-in support for Memcached, and is therefore able to get key/value pairs that were previously set by the application (i.e. by default (without patching), it doesn’t store cached items to Memcached, but can read from Memcached). My hope was to let W3 Total Cache perform all the caching/invalidation, and let Nginx rely on that cache for content.

The problem, though, is that W3 Total Cache stores items in Memcached using a nonstandard keys, and stores the value as a PHP array. It also compresses values (via the Memcache PHP library) that are over a particular size. These incompatibilities made working with Nginx not possible–at least not without modification.

I took the time to modify W3 Total Cache so that it stores data in a format that Nginx can clearly understand. Once done, it was awesome. Comments appeared immediately, and pages were snappy.

I’ve upped the modified W3 Total Cache plugin here:

https://github.com/ameir/W3-Total-Cache

You will need to set a key to use (e.g. ‘ameir.net:’). Memcached keys will then look like ‘ameir.net:/path/to/article/’. In Nginx, you would set the key accordingly (set $memcached_key ameir.net:$request_uri;).

Enjoy!

Posted in Tech Corner

Running Proxmox behind a single IP address

Posted on September 12, 2012 by Ameir Abdeldayem — 2 Comments ↓

I had the privilege of testing a dedicated server from OVH while they’re going through their new datacenter beta, and although it started up with Debian 6.0, I saw that I had the option of installing Proxmox 2.1. I love Proxmox, and have been using it since version 0.5.

Anyway, as excited as I was to have it up, I ran into the battle of running all of my VMs and the host node under a single public IP address. Luckily, the host is just pure Debian, and ships with iptables.

What needs to be done is essentially to run all the VMs on a private internal network. Outbound internet access is done via NAT. Inbound access is via port forwarding.

Here’s how it’s done:

Create a virtual interface that serves as the gateway for your VMs:

My public interface (the one with the public IP assigned) is vmbr0. I will then create an alias interface called vmbr0:0 and give it a private IP address in /etc/network/interfaces. Note that this is needed for KVM and OpenVZ bridged interfaces; venet interfaces automagically work.

auto vmbr0:0
iface vmbr0:0 inet static
address 192.168.4.1
netmask 255.255.255.0
network 192.168.4.0
broadcast 192.168.4.255

auto vmbr0:0

iface vmbr0:0 inet static

address 192.168.4.1

netmask 255.255.255.0

network 192.168.4.0

broadcast 192.168.4.255

Create an iptables rule to allow outbound traffic:

There are a few ways to specify this, but the most straightforward is:

iptables -A POSTROUTING -s 192.168.4.0/24 -o vmbr0 -j MASQUERADE

1	iptables -A POSTROUTING -s 192.168.4.0/24 -o vmbr0 -j MASQUERADE

In one of your VMs, set the interface IP to something in 192.168.4.2-254, and set the default gateway to 192.168.4.1, with the subnet mask of 255.255.255.0. Feel free to adjust this as you see fit. Test pinging your public IP address, and perhaps even an external address (like 4.2.2.2). If this works, you’re on the right track.

At this point, you have internet access from your VMs, but how do you get to them? For your OpenVZ containers, sure, you could SSH into the host node and ‘vzctl enter’ into a CTID, but that’s probably not what you want. We will need to set iptables rules to dictate which ports point to which servers.

Assuming you want VM 100 to have SSH on port 10022, and let RDP of VM 101 ‘live’ on port 10189, we can do the following:

iptables -A PREROUTING -i vmbr0 -p tcp -m tcp --dport 10022 -j DNAT --to-destination 192.168.4.100:22
iptables -A PREROUTING -i vmbr0 -p tcp -m tcp --dport 10189 -j DNAT --to-destination 192.168.4.101:3389

1 2	iptables -A PREROUTING -i vmbr0 -p tcp -m tcp --dport 10022 -j DNAT --to-destination 192.168.4.100:22 iptables -A PREROUTING -i vmbr0 -p tcp -m tcp --dport 10189 -j DNAT --to-destination 192.168.4.101:3389

You can add as many of these as you’d like.

Once you have your configuration set up as you please, we will need to make it persistent. If you reboot at this point, all of your iptables rules will be cleared. To prevent this, we simply do:

iptables-save &gt; /etc/iptables.rules

1	iptables-save > /etc/iptables.rules

This step saves the rules to an iptables-readable file. In order to apply them upon boot, you have several options. One of the easier ones is to modify /etc/network/interfaces as such (notice the third line):

auto vmbr0
iface vmbr0 inet static
pre-up iptables-restore &lt; /etc/iptables.rules
address pu.bl.ic.ip
netmask 255.255.255.0
...

auto vmbr0

iface vmbr0 inet static

pre-up iptables-restore < /etc/iptables.rules

address pu.bl.ic.ip

netmask 255.255.255.0

...

At this point, you now have a functioning inbound/outbound setup on your own private LAN.

Posted in Linux Luvin'

Using rsync with CIFS or SMB (Windows) Destination

Posted on November 27, 2011 by Ameir Abdeldayem — No Comments ↓

This took me a good bit of reading and trial/error, but here are rsync options that I found to work well with a Windows target (tested with a CIFS mount) from a Linux ext3 filesystem without errors.

rsync -rvztO --progress --stats --copy-links --dry-run /source/path /destination/path

1	rsync -rvztO --progress --stats --copy-links --dry-run /source/path /destination/path

Posted in Linux Luvin'

Bing Site Search in PHP with Pagination

Posted on June 12, 2011 by Ameir Abdeldayem — No Comments ↓

This is a simple yet powerful way to get Bing’s Site Search API working on your site in PHP. Simply update the $config variables below and you’ll be good to go.

<?php
define('TITLE', 'Search Results');
include('header.php');

$config['appid'] = "01234567890"; // change this
$config['search_domains'] = array("domain1.com", "domain2.com");
$config['results_per_page'] = 20;

$url = "http://$_SERVER[HTTP_HOST]$_SERVER[PHP_SELF]";
?>

<?php echo (isset($_REQUEST['q']) ? "<h1>Search Results</h1>" : "<h1>Search</h1>"); ?>
<form method="get">
    <div style="text-align:right">
        <input type="text" id="q" name="q" value="<?php echo (isset($_REQUEST['q']) ? $_REQUEST['q'] : 'Search...'); ?>"/>
        <input type="submit" value="Search" name="submit" id="searchButton" />
    </div>
</form>

<?php
if (isset($_REQUEST ['q'])) {
    $query = htmlentities($_REQUEST ['q']);
    if (strlen($query) < 1)
        echo "You didn't type anything!";
    else {
        if (isset($_REQUEST ['page'])) {
            $page = htmlentities($_REQUEST ['page']);
            $offset = (($page - 1) * $config['results_per_page']);
        } else
            $offset = 0;

        $result = "http://api.search.live.net/json.aspx?Appid={$config['appid']}&sources=web";
        $result .= "&query=" . urlencode("site:" . implode(" OR site:", $config['search_domains']) . " " . $query);
        $result .= "&Web.Count={$config['results_per_page']}&Web.Offset=$offset";
        //echo $result;
        $result = file_get_contents($result);
        $result = json_decode($result);
        echo('<ul ID="resultList">');
        foreach ($result->SearchResponse->Web->Results as $value) {
            echo('<li class="resultlistitem"><a href="' . $value->Url . '">');
            echo('<h3>' . $value->Title . '</h3></a>');
            echo('<p>' . $value->Description . '</p>');
        }
        echo("</ul>");




//        echo("<pre>");
//        print_r($result);
//        echo("</pre>");
        $results = $result->SearchResponse->Web->Total > 1000 ? 1000 : $result->SearchResponse->Web->Total;
        if ($results > 0)
            echo $results . " results <br />\n";
        else
            echo "Sorry, no results to display. <br />\n";

        $pages = (int) ($results / $config['results_per_page']);
        // echo "$pages pages <br />\n";
        // pagination
//        echo "Page #s:<br />";
        for ($i = 1; $i <= $pages; $i++) {
            echo "<a href=$url?q=$query&page=$i>$i</a>  ";
        }
    }
}
?>

<?php include('footer.php'); ?>

<?php

define('TITLE', 'Search Results');

include('header.php');

$config['appid'] = "01234567890"; // change this

$config['search_domains'] = array("domain1.com", "domain2.com");

$config['results_per_page'] = 20;

$url = "http://$_SERVER[HTTP_HOST]$_SERVER[PHP_SELF]";

<?php echo (isset($_REQUEST['q']) ? "<h1>Search Results</h1>" : "<h1>Search</h1>"); ?>

</div>

</form>

<?php

if (isset($_REQUEST ['q'])) {

$query = htmlentities($_REQUEST ['q']);

if (strlen($query) < 1)

echo "You didn't type anything!";

else {

if (isset($_REQUEST ['page'])) {

$page = htmlentities($_REQUEST ['page']);

$offset = (($page - 1) * $config['results_per_page']);

} else

$offset = 0;

$result = "http://api.search.live.net/json.aspx?Appid={$config['appid']}&sources=web";

$result .= "&query=" . urlencode("site:" . implode(" OR site:", $config['search_domains']) . " " . $query);

$result .= "&Web.Count={$config['results_per_page']}&Web.Offset=$offset";

//echo $result;

$result = file_get_contents($result);

$result = json_decode($result);

echo('<ul ID="resultList">');

foreach ($result->SearchResponse->Web->Results as $value) {

echo('<li class="resultlistitem"><a href="' . $value->Url . '">');

echo('<h3>' . $value->Title . '</h3></a>');

echo('<p>' . $value->Description . '</p>');

}

echo("</ul>");

// echo("<pre>");

// print_r($result);

// echo("</pre>");

$results = $result->SearchResponse->Web->Total > 1000 ? 1000 : $result->SearchResponse->Web->Total;

if ($results > 0)

echo $results . " results <br />\n";

else

echo "Sorry, no results to display. <br />\n";

$pages = (int) ($results / $config['results_per_page']);

// echo "$pages pages <br />\n";

// pagination

// echo "Page #s:<br />";

for ($i = 1; $i <= $pages; $i++) {

echo "<a href=$url?q=$query&page=$i>$i</a> ";

}

<?php include('footer.php'); ?>

Posted in Tech Corner

MySQL Backup to FTP and Email Shell Script for Cron v2.2

Posted on March 14, 2011 by Ameir Abdeldayem — 37 Comments ↓

It’s been a while since I’ve publicly made updates to this script, but I did make some tweaks over the years that I’d like to share.

Here are some changes over the last version:

Delete old backups via FTP
Backup to multiple FTP servers
More efficient backups
Add time in filename (allows for multiple backups/day)
More verbose/better error detection

I have moved the development of this to the GitHub repository below:
https://github.com/ameir/mysqlbackup

You can view the previous version here.
If there’s a feature that’s missing that you’d like to see, leave a comment below.

Posted in Linux Luvin'

PHP Function to Return Lowest MX Record

Posted on October 1, 2010 by Ameir Abdeldayem — No Comments ↓

This is a quick and simple one, but I admittedly started off with a for loop before coming across array_multisort. This turned out to be very useful for an application I’m working on.

// example
echo "Google's lowest MX is: " . lowestmx("google.com");

function lowestmx($server) {
getmxrr($server, &amp;$mxhosts, &amp;$weight);
array_multisort($weight, $mxhosts);
return $mxhosts[0];
}

// example

echo "Google's lowest MX is: " . lowestmx("google.com");

function lowestmx($server) {

getmxrr($server, &$mxhosts, &$weight);

array_multisort($weight, $mxhosts);

return $mxhosts[0];

}

Posted in Tech Corner