::

Testing php5.3.0 Alpha1

Id hate to write this again so I'm just going to post a link to my blog entry on phpfreaks.com.

Have fun.

Back home.

Just finished migrating the site back over to my home based servers. Were now running from within a custom Debian vps within my new dual core computer in the spare room at home. I've still got plenty of work to do but the site is up at least.

Got a bit of freelance work to get through over the next few days but I'm hoping to find time to setup another vps for mail on Friday.

I think I'm going to enjoy this setup much more than hosting everything remotely. Just hope my connection is up to speed.

The Debian System.

Just finished reading this book last week and Ive got to say, it was the most enjoyable book Ive read in a long while.

It really went into great detail about how Debian is developed, what makes it different from other Linux distros and how you can use it to do just about anything you would want from a *nix based OS.

I was particularly interested in how the package management system is implemented, how to package my own tools and how to build my own kernels the 'Debian way'.

Nicely written by a Debian user/developer Martin F. Krafft, it did actually have me laughing out loud in several places.

While maybe a little dated (around the time of the sage stable) it is still well and truly relevant. I would recommend this book to anyone who has more than a passing interest in Debian.

Still alive and well.

It would appear its been some three months since my last post, I knew this thing would be a big job to maintain.

Plenty of news since my last entry. I guess the main news is that we have moved house. Were now living in a much bigger (4 bedroom) place with a pool and a decent yard. Shame its coming into winter though. I guess we could always crank up the fireplace.

I've bought a new pc. My old main machine was struggling with too many virtual machines running Apache so I thought fuck it, it was time to upgrade anyway. My new machine is a core2 duo running at 3.Ghz/core topped off with 8G of memory. It really is a beast. I had allot of trouble getting her going though, mostly due to the fact that I'm running all SATA drives and a fairly recent Nvidia (8600GT) video card. So yeah, in the end I ended up installing Debian's unstable distro sid, this gave me access to the 2.6.24 version of the kernel and a much newer version or xorg. From there its all been pretty smooth sailing. A few minor issues which I'll likely (hopefully) post about within the next few days.

My old machine has been relegated back to running windows as I've finally set up a small recording studio in a spare room. Its been a long while since I've had a place to make music and I'm looking forward to getting back into it. I've set it up with fruity studio also hooked up my midi controller and Stace's Roland kit.

Anyway, just wanted to get some news out of the way. I'm dying to write an entry about how I got the openvz patches into my kernel so you should hear about that in the next few days.

More to come.

The holiday break.

It's been a few weeks since my last post, but yeah, its that time of year. I had all intention of knuckling down to get some of this framework developed but ended up a little side tracked, mostly by christmas.

News is though that I have actually started prototyping several parts of the framework including the router (used to route requests to actions) and the config system. I wanted to stick to native php arrays for configuration because of its speed, but in reality, they don't offer enough flexability so I'll be going with xml which will be latter turned into objects.

In other news, it would appear my laptop is fuba. I think its got overheating issues and its locking up all the time. My main dev server (an old iMac G3) has also given up the ghost in the last few weeks. HD failure. So yeah, I'm having a little bad luck with machines at the moment. The only real good thing to come out of this is that I'm starting to look into virtulization and am installing qemu as I type. I wanted to go with xen but I'm using the binary nvidia kernel module and can't get it to build against the xen kernel.

ps: I've now managed to switch my main desktop machine over to Debian Etch full time and I'm loving it! Gentoo was really becoming quite an issue to maintain over a dialup connection. I've also moved to using xfce4 from fluxbox. The main reason I started using fluxbox initially was because I didn't want the temptation of a file manager that gnome and kde provide by default. I figured the only way to get to know the shell was to use it, and fluxbox made it real easy to have a very minimal environment to work in. Now days though, I feel a little luxury goes a long way and xfce4 is still pretty slim when compared to gnome/kde.

I've a new geforce card in the mail so should also be getting beryl going in the next few days as well.

Local dev server up and running.

Just a quick entry this one. I finished installing and configuring my local dev machine (utilserv) this morning. Almost exactly the same setup as my vps except I also decided I would also install mysql and postgresql. I use them quite a bit for freelance / testing purposes.

I also installed tidy, which I forgot I wanted on my vps and memcache which I want to take a look at. I ended up going back and installing these both on my vps as well.

So now, my local dev server has...


@utilserv ~ # dpkg -l | grep php
ii  libapache2-mod-php5               5.2.0-8+etch7                       server-side, HTML-embedded scripting languag
ii  php-db                            1.7.6-2                             PHP PEAR Database Abstraction Layer
ii  php-doc                           20061001-1                          Documentation for PHP4 and PHP5
ii  php-pear                          5.2.0-8+etch7                       PEAR - PHP Extension and Application Reposit
ii  php-sqlite3                       0.4-4                               PHP SQLite3 PEAR module
ii  php5-cli                          5.2.0-8+etch7                       command-line interpreter for the php5 script
ii  php5-common                       5.2.0-8+etch7                       Common files for packages built from the php
ii  php5-dev                          5.2.0-8+etch7                       Files for PHP5 module development
ii  php5-gd                           5.2.0-8+etch7                       GD module for php5
ii  php5-memcache                     2.0.1-1.1                           memcache extension module for PHP5
ii  php5-mysql                        5.2.0-8+etch7                       MySQL module for php5
rc  php5-pgsql                        5.2.0-8+etch7                       PostgreSQL module for php5
rc  php5-sqlite                       5.2.0-8+etch7                       SQLite module for php5
ii  php5-sqlite3                      0.4-4                               SQLite3 module for php5
ii  php5-tidy                         5.2.0-8+etch7                       tidy module for php5
ii  phpmyadmin                        2.9.1.1-3                           Administrate MySQL over the WWW

and my vps....


@chloe ~ # dpkg -l | grep php
ii  libapache2-mod-php5    5.2.0-8+etch7                            server-side, HTML-embedded scripting languag
ii  php-db                 1.7.6-2                                  PHP PEAR Database Abstraction Layer
ii  php-pear               5.2.0-8+etch7                            PEAR - PHP Extension and Application Reposit
ii  php-sqlite3            0.4-4                                    PHP SQLite3 PEAR module
ii  php5-cli               5.2.0-8+etch7                            command-line interpreter for the php5 script
ii  php5-common            5.2.0-8+etch7                            Common files for packages built from the php
ii  php5-dev               5.2.0-8+etch7                            Files for PHP5 module development
ii  php5-gd                5.2.0-8+etch7                            GD module for php5
ii  php5-memcache          2.0.1-1.1                                memcache extension module for PHP5
ii  php5-sqlite3           0.4-4                                    SQLite3 module for php5
ii  php5-tidy              5.2.0-8+etch7                            tidy module for php5

So now, I guess I have no excuses, on to the job at hand. The plan looks good on paper (yes, I plan things on paper), lets see if I can get my shit together and actually get it done.

Building on theory.

Ive been thinking about this for the last few days while Ive been setting up the vps. Tomorrow I'm going to start work on a test version of my new framework, tentatively titled proem because it is intended as an introduction to the real thing. Who knows? I might actually learn something.

I figure I can start by making a simple framework to support the re-development of this site (blog) and build upon that. This way I can test some theories and see if my ideas pan out. If all goes well, I might even be able to use it as the base to build my official framework on.

I will more than likely release this framework and blog application to the public so I might be able to get feedback from some peers.

So yeah, tomorrow I'll set myself up a local dev server (I have a spare G3 I can install Debian on) with the same specs I just ran through in setting up the vps. This will ensure the same environment, from there, I guess I'll start plugging away at it.

You'll hear more as I progress.

mod_macro

This thing is fucking cool! Just discovered it this morning thanks to the Gentoo newsletter.

This thing is so simple, its probably easiest to simply post an example rather than try and explain it.

Ok, so what Ive done. Ive deleted Debian's /etc/apache2/sites-available and /etc/apache2/sites-enabled directories. I never used them anyway.

Next, install mod_macro.


@chloe apt-get install libapache2-mod-macro

I have then replaced my /etc/apache2/vhosts.skel file with a new /etc/apache2/macro.def.conf file.



    
        Options FollowSymLinks MultiViews
        AllowOverride All
        Order allow,deny
        Allow from all
        DirectoryIndex index.php
    



    ErrorLog /var/log/apache2/$domain-error.log
    LogLevel warn
    CustomLog /var/log/apache2/$domain-access.log combined



    
        ServerName $domain
        ServerAlias www.$domain
        DocumentRoot /var/www/$domain/htdocs
        Use DirectoryConf $domain
        Use TypicalLog $domain

You may also notice I have moved DocumentRoot a little deeper. This enables each domain to have a central location that can be used for storing files we don't want accessed via the web.

I then created /etc/apache2/vhosts.conf


Use DefVhost thorpesystems.com

I then removed the...


Include /etc/apache2/vhosts/*conf

line from my /etc/apache2/apache.conf file and replaced it with...


# Include macro definitions
Include /etc/apache2/macro.defs.conf

# Include vhosts.
Include /etc/apache2/vhosts.conf

Pretty simple huh? The whole thing should be pretty self explanatory. This makes creating vhosts (amongst other things) simple one liners.

Installing Apache with mod_php

Ok, so in my last entry on Thursday I said I would be back tomorrow to do this. Well, I prefer to do very little work on Fridays, and none at all on the weekends, so here I am, Monday morning about to install whats left of the lamp stack.

This really shouldn't take too long at all. The first thing I need to do is log into my vps, update the package db and upgrade all my current packages.


@oblivion chloe
@chloe apt-get update && apt-get upgrade

Once this is done, I can install all the required packages to get Apache working with PHP. I usually like to keep my extensions down to a bare minimum, only installing what I know will be required in the near future. Extensions are really easy to add later, so there's no point installing what I may not need.


@chloe apt-get install \
    make \
    gcc \
    g++ \
    apache2-prefork-dev \
    libapache2-mod-php5 \
    php5-dev \
    php-pear \
    php5-sqlite3 \
    php5-gd \
    php5-cli

Notice Ive installed make, gcc and g++ along with the dev version of apache? This installs all the required headers and tools a will need to later build some extensions via pecl. Ive also installed php-pear> Even though I don't normally use any of pear's libraries, the pear package itself contains the interface to pecl which I do need.

The next things I'm going to install are few non-standard extensions via pecl. apc, is an opcode cache for php designed to make code execution quicker. I'm also installing sqlite-pdo via pecl because It was not built into the debian provided php5 package. Seems, odd, but I'll look into it later.


@chloe sudo pecl install apc
@chloe sudo pecl install PDO_SQLITE
@chloe echo "extension=apc.so" | sudo tee /etc/php5/apache2/conf.d/apc.ini
@chloe echo "extension=pdo_sqlite.so" | sudo tee /etc/php5/apache2/conf.d/pdo_sqlite.ini

Before continuing with any configurations, I'll make a test file and restart apache.


@chloe echo "" | sudo tee /var/www/index.php
@chloe sudo /etc/init.d/apache2 restart

Now take a look at http://thorpesystems.com/index.php via my browser to see that things are working as expected. And they are.

At this point in time I need to add my user account to the www-data group, fix some directory permissions so anyone in that group can write to /var/www and delete the apache2-default site completely.


@chloe sudo gpasswd -a  www-data
@chloe sudo chown root:www-data /var/www
@chloe sudo chmod g+w /var/www
@chloe sudo rm -fr /var/www/apache2-default
@chloe sudo rm /etc/apache2/sites-enabled/000-default
@chloe sudo rm /etc/apache2/sites-available/default
@chloe sudo /etc/init.d/apache2 restart

I now need to logout and back in for the group to be added to my account.

Next, there are a few changes I need to make to the global /etc/apache2/apache2.conf file. Firstly I want to set ServerTokens to production, turn ServerSigniture off, and I also need to remove the last line which includes the virtual host configurations.


@chloe sudo sed -i 's/ServerTokens Full/ServerTokens Prod/' /etc/apache2/apache2.conf
@chloe sudo sed -i 's/ServerSignature On/ServerSignature Off/' /etc/apache2/apache2.conf
@chloe head -n -1 /etc/apache2/apache2.conf | sudo tee /etc/apache2/apache2.conf

The reason I removed that last line is because I stray from the default debian setup for apache, and rather keep my vhost configurations within the /etc/apache2/vhosts directory which I will create now.


@chloe sudo mkdir /etc/apache2/vhosts

I then need to add the following lines to the end of the /etc/apache2/apache2.conf file.


# Must be placed prior to calling any VirtualHost configs.
NameVirtualHost *

# Include vhosts.
Include /etc/apache2/vhosts/*conf

By including the NameVirtualHost * line in my apache2.conf file my vhosts can be loaded in any order, and will no longer be required to have numbers prepended to there file names. Note I also choose the *conf extension for my vhosts files. This enables syntax highlighting in vim. I also create a vhost skel file that I use as a base for all my vhosts. This file /etc/apache2/vhost.skel looks like...



    ServerName VHOSTNAME
    ServerAlias www.VHOSTNAME
    DocumentRoot /var/www/VHOSTNAME
    
        Options FollowSymLinks
        AllowOverride None
    
    
        Options FollowSymLinks MultiViews
        AllowOverride All
        Order allow,deny
        Allow from all
        DirectoryIndex index.php
    
    ErrorLog /var/log/apache2/VHOSTNAME-error.log
    LogLevel warn
    CustomLog /var/log/apache2/VHOSTNAME-access.log combined

I use this file to create a new vhost to host my blog.


@chloe sudo cp /etc/apache2/vhost.skel /etc/apache2/vhosts/thorpesystems.com.conf
@chloe sudo sed -i 's/VHOSTNAME/thorpesystems.com/' /etc/apache2/vhosts/thorpesystems.com.conf

Now I'm going to go ahead and upload this blog back to my vps and set it up within /var/www/thorpesystems.com. Once that is done, I restart apache and we should be live. Of course, if your reading this blog, it worked.

Ok, next I'm going to go through the /etc/php5/apache/php.ini file and make my configuration changes. I won't go into too many details, but there are a few things I like to change.


$f=/etc/php5/apache/php.ini
@chloe sudo sed -i 's/short_open_tag = On/short_open_tag = Off/' $f
@chloe sudo sed -i 's/allow_call_time_pass_reference = On/allow_call_time_pass_reference = Off/' $f
@chloe sudo sed -i 's/display_errors = On/display_errors = Off/' $f
@chloe sudo sed -i 's/register_long_arrays = On/register_long_arrays = Off/' $f
@chloe sudo sed -i 's/magic_quotes_gpc = On/magic_quotes_gpc = Off/' $f
@chloe sudo sed -i 's/allow_url_include = Off/allow_url_include = On/' $f
@chloe sudo /etc/init.d/apache2 restart

Like I said, I won't go into details. The php.ini file is very well commented so if your looking for details, its in there. Notice however that I did turn off display_errors? This is after all a production server. I can still enable display_errors on a per vhost basses, and even per file if needed.

Well, thats it. The base LAMP system is now installed, configured and running smoothly.

Rebuilding my VPS.

I spent most of yesterday trying to setup a mail-server using Postfix+Dovecot and MySql to handle virtual domains/users. I ran into a few problems along the way including the fact that anytime I went to install any of the bigger packages, my vps would run out of memory and would need to be rebooted.

I thought about it overnight (I work nightshift), and this morning decided I would upgrade the vps from a 256mg to 512mg of memory. This moves me up into what I guess is considered a more robust setup and allocates me three dedicated ip addresses as well. I also decided that I'm going to dump MySql as the look-up table provider for postfix. I figure I can handle my email addresses via a flat-file configuration for the time being.

Having decided to dump MySql as the look-up table provider for email, I can take it a step further and remove it from any plans for my mvc framework replacing it with sqlite. I had planned on using pdo as a database abstraction layer anyway, so switching back to mysql later won't be an issue. Managing a vps is all about managing memory and the less daemons operating the better.

There were also a few other configuration decisions I had made along the way with my vps that I wasn't entirely happy with, in the end I decided I was going to reinstall and start from scratch.

So... In this (and probably the next few) blog post(s) I will be describing my process of installing and configuring the lamp stack on a vps. I will be using Debian as the OS and I also hope to be including the setup and configuration of a mail-server.

What Ive done so far:

Ive moved this blog to a local server on my network at home. This allows me to keep posting, even though its not publicly available and wont be for a few days. This step was much simplified by the fact that I'm using simplephpblog which uses flat files for data storage. I really ought give this blog a big plug here. This particular piece of software happens to be the easiest blog to setup/configure that I have used. It really is a great little system and perfect for my requirements.

Firstly to clarify a few things. My local machine is called oblivion. My vps is called chloe. My oblivion machine has an entry in the /etc/hosts file...


209.40.196.51    chloe.thorpesystems.com    chloe

which resolves the host chloe, to chloe.thorpesystems.com.

Before I reinstall the base system there are a few configurations that I would like to keep. I'll grab them now.


@oblivion mkdir chloe
@oblivion scp -r chloe:.ssh chloe/
@oblivion chloe:.bash* chloe/

Next, I actually reinstall my Debian server on the vps.

Done. I normally have my ssh clients/servers run on a non-default port. However, because chloe is now newly installed and as yet not configured to do so I need to specify the port to login with. Also, because my usual user account is not yet created, I need to login as root (I will disable the ability to do this soon).


@oblivion su -
@oblivion ssh -p 22 chloe

I'm now in my new install on my remote vps. The very first thing I need to do is set my timezone then upload/install my firewall.
I already have a nice default firewall configuration that I use as a base on all my machines, for more details on setting up a firewall, google iptables.


@chloe tzconfig
@chloe exit
@oblivion scp -P 22 /src/firewall.tar.gz chloe:/firewall.tar.gz
@oblivion ssh -p 22 chloe
@chloe cd / && tar xvpf firewall.tar.gzs
@chloe update-rc.d firewall defaults
@chloe /etc/init.d/firewall start

I update the package db and while I'm at it, the currently installed software.


@chloe apt-get update && apt-get upgrade

I change the default port for both the ssh client and server. I'm not going to let you know what my port actually is, so I will refer to it as .


@chloe sed -i 's/Port 22/Port /' /etc/ssh/sshd_config
@chloe sed -i 's/#Port 22/Port /' /etc/ssh_config
@chloe /etc/init.d/ssh restart

Now, I need to create my general user account. I use the same name (which once again won't be disclosed) as my local oblivion machine. Remember I am using Debian so its much simpler to use its adduser command rather than the lower level useradd.


@chloe adduser

Next, I should be able to copy my previously saved user configurations back to my new accounts ~/ directory. Firstly however, I need to remove some lines from my local ~/.ssh/known_hosts file which are now broken.


@chloe exit
@oblivion exit
@oblivion sed -i '/chloe/d' .ssh/known_hosts
@oblivion scp -r chloe/ chloe:

From here on in I can simply move between my local machine and my remote machine without the need for passwords. This is done via the magic of ssh keys which I had previously setup and were already contained within my ~/.ssh directory I had saved. On top of that, I have an alias in my ~/.bashrc file on oblivion that looks like....


alias chloe='ssh chloe.thorpesystems.com'

So now I can simply type chloe to ssh to my vps.

My next step is to disable root access via ssh. This entails a few different steps. Before I do so however, I need to grant my general user access to the sudo command. While my vps is already setup to allow me to su to root, sudo is a much more useful tool.


@chloe apt-get install sudo
@chloe sudoedit /etc/sudoers

This enables my account to execute any command I wish as root by using the...


sudo

syntax. From here, all I need do is disable root access via ssh and restart the sshd daemon.


@chloe sed -i 's/PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config
@chloe /etc/init.d/ssh restart

Now, there are a few other useful tools that need installing/configuring. I'll do that now.


@chloe sudo apt-get install screen file ntp tee
@chloe sudo sed -i 's/#startup/startup/' /etc/screenrc

The very next thing I'm going to do is get rid of this god awful greeting that appears each time I log in. I know what OS it is, and really, it just annoys the fuck out of me.


@chloe cat /dev/null | sudo tee /etc/{motd*,issue*}
@chloe sudo sed -i 's/PrintLastLog yes/PrintLastLog no/' /etc/ssh/sshd_config

Next, I install vim (my favoured editor) and set it as my systems default.


@chloe apt-get install vim ctags vim-scripts
@chloe update-alternatives --config editor

I then make a few simple changes to /etc/vim/vimrc. You do what you like, its well commented. I also copy my ~/.vimrc file from oblivion over to chloe.


@chloe exit
@oblivion scp .vimrc chloe:

The last thing I want to do today is setup my ~/ directory structure. I base my home directory structure loosely around that of the fhs, because it works well.


mkdir bin etc lib src tmp var

At this point in time the operating system is setup and pretty well ready to go. I'll be back tomorrow to setup whats left of the LAMP stack. Keeping in mind that I'm using sqlite instead of MySql and the fact that I have already installed Linux, we've really only apache and php to go.