Upgrade

And voila! iMil.net has now migrated to a brand new (well, actually recycled) server, which is incidentally hosted by myself, in my company’s server room.

What are the news? on the architecture side, nothing revolutionary, my good old setup composed of a Debian (squeeze, yeah I don’t like to play) GNU/Linux dom0, which hosts various NetBSD 6.0/amd64 domUs (now SMP!).

Main news is the activation of naxsi, the Web Application Firewall on the nginx reverse proxy. I don’t like to waste IPv4 public addresses, so the websites I host are all served by an nginx reverse proxy that connects to domUs private IPs. Naxsi’s rules are detailed in this post. Apart from that, nginx configuration is rather classic, here’s a vhost example:

Mes machines NetBSD passent doucement mais sûrement toutes en 6.0_BETA2. La migration est peu douloureuse, mais je vous propose tout de même une petite piqure de rappel:

• Récupération des sets binaires, par exemple ici ftp://ftp.fr.netbsd.org/pub/NetBSD/NetBSD-6.0_BETA2/i386/binary/sets/
• Sauvegarde de l’ancien kernel

Le set modules étant installé, vous pouvez éventuellement réinstaller un noyau -GENERIC modulaire, puisque nous avons réalisé cette mise à jour via un noyau -MONOLITHIC