18 April 2014

The Ruby Reflector

Topic

John Leach

  Source Favicon
By John Leach of Brightbox Ruby Blog 10 days ago.
Email

A new security vulnerability was announced yesterday ( CVE-2014-0160 ) in OpenSSL that allows an attacker to read up to 64kB of memory. Any service that supports TLS and is using v1.0.1 or greater of the openssl library is vulnerable (including web servers, mail servers, vpns etc.)

Ubuntu 10.04 ( Lucid) has an older version of OpenSSL and is not affected by this vulnerability. Updates are now available for Ubuntu 12.04 (Precise) and above.

blog.brightbox.co.uk Read
  Source Favicon
By John Leach of Brightbox Ruby Blog 6 months ago.
Email

We're looking for an experienced and motivated Linux Systems Administrator to join our join our small but highly productive team here at Brightbox.

Main responsibilities

Support and run:

Brightbox Cloud, our "infrastructure as a service"

our networking infrastructure

our customers' managed clusters

our backup systems

our network management and monitoring systems

Also:

Proactively find ways of improving our services and systems

Provide excellent customer service and support

brightbox.co.uk Read
  Source Favicon
By John Leach of Brightbox Ruby Blog over 1 year ago.
Email

Two serious vulnerabilities in Rails have been discovered. They concern the parsing of JSON and XML request bodies and can result in an attacker bypassing code, such as authentication systems, and may also be used to run arbitrary Ruby code and even executing system commands.

The rubyonrails.org blog post has more details of these vulnerabilities - CVE-2013-0155 and CVE-2013-0156. Rails 3.x apps need upgrading (or patching) to fix the JSON vulnerabilites. The XML …

brightbox.co.uk Read
  Source Favicon
On Article RSS Feed over 1 year ago.
Email

The October 2012 meeting of LRUG will be on Monday the 8th of October, from 6:30pm to 8:00pm. Our hosts Skills Matter will be providing the space, at their offices on Goswell Road; The Skills Matter eXchange . Registration details are given below .

Agenda

Beautiful command-line interface design

John Leach is going to talk to us about CLI apps:

A lot of importance is placed on good GUI design but it's easy to overlook good command line interfaces.

lrug.org Read
  Source Favicon
By Hongli Lai of Phusion Corporate Blog over 1 year ago.
Email

John Leach from Brightbox has kindly provided Ubuntu packages for Phusion Passenger. You can find installation instructions on the Brightbox website. (Note that John is currently packaging 3.0.14, so it might take a while before this release shows up in the apt repository.)

Via RedHat/CentOS packages

YUM repositories with RPMs are maintained by Erik Ogan and Stealthy Monkeys Consulting . Please note that Erik is currently packaging …

blog.phusion.nl Read
  Source Favicon
By Hongli Lai of Phusion Corporate Blog 2 years ago.
Email

John Leach from Brightbox has kindly provided Ubuntu packages for Phusion Passenger. The package is available from the Brightbox repository which you can find at: http://apt.brightbox.net

Add the following line to the Third Party Software Sources: deb http://apt.brightbox.net hardy main

(The simplest way to do that is to create a file in /etc/apt/sources.list.d/ containing the deb instruction, and then run ‘apt-get update').

Once you've done this then you …

blog.phusion.nl Read
  Source Favicon
By John Leach of Brightbox Ruby Blog 2 years ago.
Email

We've been busy at work on new packages to provide the very latest versions of Ruby and Rubygems for Ubuntu.

We've been providing optimized Ruby 1.8 and Rubygems 1.3.7 packages for Ubuntu for years now but some technical issues prevented us from providing 1.9.3 packages alongside them. So we started out afresh from the very latest Debian 1.8.7 and 1.9.3 packages, and added:

Ruby Enterprise Edition patches for 1.8.7-358 (2012.02)

Built en …

blog.brightbox.co.uk Read
  Source Favicon
Email

…saviours , Brightbox , as gold sponsors. Brightbox's John Leach will also be speaking on UNIX : Rediscovering the wheel .

And now that word from our sponsor.

Brightbox is Europe's leading provider of Ruby on Rails hosting . Each Brightbox server comes with our proven Ruby on Rails stack, access to a managed MySQL cluster and our 99.95% SLA . The Brightbox deployment gem will help you get up and running in a matter of minutes!

Brightbox…

scotlandonrails.com Read
  Source Favicon
By John Leach of Brightbox Ruby Blog over 1 year ago.
Email

We've just published Phusion Passenger 3.0.17 packages for Ubuntu on our repositories ( Hardy, Lucid, Natty, Oneiric and Precise).

We've also updated our NGINX packages to 1.2.3, and they now include Weibin Yao's http upstream check module .

They're now available on our standard and our ruby-ng repositories, so you can use it all with Ruby 1.9.3 too (on Lucid, Natty, Oneiric and Precise).

brightbox.co.uk Read
  Source Favicon
By John Leach of Brightbox Ruby Blog over 1 year ago.
Email

We've just published Phusion Passenger 3.0.14 packages for Ubuntu on our repositories ( Hardy, Lucid, Natty, Oneiric and Precise). We've also updated our NGINX packages to 1.2.2.

They're now available on our standard and our ruby-ng repositories, so you can use it all with Ruby 1.9.3 too (on Lucid, Natty, Oneiric and Precise).

Remember, the ruby-ng repository is "all in one", so it provides Ruby, Passenger and NGINX all in one …

brightbox.co.uk Read