Search results

Interesting.  I wonder how a "tiny tiny" rss reader gets to be that large.  Maybe there could be a sqlite based version.  Fossil (source control / wiki / bug tracker) uses sqlite.  It runs in about 2MB and a "tiny" RSS reader should need even less. Anyway I'm very happy with my Inceptionhosting...

It goes both ways.  If you don't care about them, why should they care about you?  In the world of private ownership, hosts (like restaurants) are entitled to refuse service to anyone they choose, for any reason they like.  Such as being an annoying customer, whether a moral or an immoral one. ...

It would surprise me if this really needs 256mb.  If it's just for a personal feed, I'd try a 128mb lowendspirit.com (uk) vps or even a 64mb (nl) one, at $3/year.  Note you can double the size of these to 256mb or 128mb if you have to, by paying for two.

You could take overselling to its logical conclusion and not even bother with dedicated servers.  Just get a KVM somewhere (CVPS has some cheap ones) and put all your VPS's under it.  The only bottleneck will be ipv4 addresses.  There has to be a way around that too.

1. Cpu, bw, ram, disk, ddos response, support tickets with dumb questions, etc. are all finite resources that the customer pays for.  Despite this there are usually not codified limits on most of these except for ram, bw, and disk (and bw is way overpromised for most users).  Instead, hosts rely...

1. A patch for curl is pending--see the bugs page for curl on sourceforge.  The patch is to replace the bogo-random string with a harder to guess one (generated by openssl cryptographic prng). 2. I wouldn't completely call this a curl bug, but curl's behavior was suboptimal and the patch will...

That was something else that stuck out at me.  I've never heard of an auditor issuing "certifications" and I'd consider it suspicious if they did.  They look for problems, identify what they spot, and make general recommendations about good practices to follow.  Software is too complex for...

Starting with an internal audit is fine since it may pick up some stuff before handing off to the external auditors.  However, there really has to be an external audit at this point.  The company has had persistent problems with security cluelessness and as such, the internal audit by itself...

I wouldn't take any "audit" seriously that comes out less than a month from now. The reviewers have to go thru the code base, quickly find and point out the most insane idiocy (of which there is surely plenty left to find), smack the developers into understanding what is wrong, then keep...

    Too late, they have already released another important fix: http://docs.solusvm.com/release_versions_beta#revision_5_19_june_2013

Not sure what you're getting at about MT.  In case it wasn't clear, Mersenne Twister is a fast RNG intended for stuff like statistical simulations, not security.  For stuff like passwords, it's better to use the urandom device. http://php.net/manual/en/function.openssl-random-pseudo-bytes.php ...

marcm, don't use mt_rand for security purposes.  Read random bytes from /dev/urandom instead. Aldyric, I've always been uncomfortable with the practice of emailing root passwords which can be passively intercepted.  I'd consider it better if you offered an option to let the person upload their...

I think the small Debian packages are small enough in terms of memory and can't be shrunk much further. Removing more stuff can save a little disk space, but the LES template is already in the 100MB range which is pretty small (even tiny VPS's come with 2GB of disk these days). So the disk...

I just use standard Debian distro and purge apache2, samba, sasl, and a couple other things. The remaining stuff takes maybe 5mb on a small vps. If you want to go -really- small, try Angstrom (angstrom-distribution.org) which was originally made for PDA's and is also used in stuff like routers...

Use big monitors. I use a 27" Dell U2713 (2560x1440) at work and it's fantastic. It's plugged into a Thinkpad T530 notebook using the mini-displayport connector. I can use the laptop screen simultaneously but rarely bother. I rarely feel like I need more screen space with the Dell on the desk.

Yeah, I got the email a month or so ago about the vulnerability, but since it's a single user KVM and a local exploit, I decided that installing the patch wasn't urgent.  I'll probably upgrade the VPS to Debian 7 now that it's out, but it sure seems like a shame to reboot after this much uptime.

I guess it's sufficient to just have a portable USB hard drive plugged into the server, that I could access from a VPS or dedi, and that the host is willing/able to unplug and ship to me if I pay for some remote hands time.  No need for sleds, and the drive could be USB powered so it wouldn't...

I get this stuff from vitelity.com. Payment is by credit card. I don't remember if they take paypal. I like them though. Prices are here: http://www.vitelity.com/vitelity-link/

Prometeus may have turned 16 last month, but my 128MB KVM with them has just turned 1 year! 21:53:42 up 365 days, 19:57, 1 user, load average: 0.00, 0.00, 0.00 Love that uptime.

I don't see much need to compile stuff on a small VPS if doing stuff "for real". That's kind of bad deployment-fu even if you have the ram for it. Normally you'd compile on a development or build machine, and push the compiled code to the server where it will run.