• Share
  • Email
  • Embed
  • Like
  • Save
  • Private Content
My pres

My pres






Total Views
Views on SlideShare
Embed Views



0 Embeds 0

No embeds



Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

CC Attribution-NonCommercial-NoDerivs LicenseCC Attribution-NonCommercial-NoDerivs LicenseCC Attribution-NonCommercial-NoDerivs License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
Post Comment
Edit your comment

    My pres My pres Presentation Transcript

    • Powerpoint Templates Page 1 Powerpoint Templates Insights to Web Hosting Industry & Roadmap for the Systems Engineer by Edwin Lee
    • Powerpoint Templates Page 2 General : The web hosting industry is constantly evolving and changing. A Global industry which offer multitudes of opportunities and challenges. Keys of Success : Relies on leveraging technologies, marketing strategies and staying up to date on latest industry trends. Builds custom solutions and branding with products and services. Maintains reputation, reliability and providing good customer services. Building Blocks : The hosting company is only as stable and reliable as their infrastructure. The workforce consisting management, operations, technical and support. Objective : Through this presentation, the primary focus will be on the working areas of web hosting infrastructure with open source solutions.
    • Powerpoint Templates Page 3 1. Configuration Management : Challenges :  On an infrastructure with numerous server nodes and services to maintian. Administration and configurations of systems can be prone to errors and time consuming.  Effeciency relies on the skills and knowledge of the systems engineer. Benefits :  Centralise configurations change and policies to standardise the environment.  To ease the process of repetive tasks and lighten workload.  Faster turn around time in provisioning, deployments, system breakage and human error.  ITIL implementation of Change management and Change request. Solutions : CFEngine / Puppet / Chef / Salt
    • Powerpoint Templates Page 4 Monitoring, Alerting, Responses & Analysis : Challenges : An effort for sustaining infrastructure backend and compliance to industry best practise. Enterprise products come with premium pricing which does not combine all-in-one solution. Benefits : Provides the visibility layer to key asset’s state and conditions. Notifications for network, servers and services outrage. Deters attacks to known and weak services. Solutions : Nagios / OpsView / Zabbix / Munin / Monit / SmokePing / Splunk / Ossec HIDS / Iptables rate limiting / Shell scripts
    • Powerpoint Templates Page 5 Monitoring (Centralised mailbox demo) : Consolidation of email notifications and alerts to a centralise mailbox account. Access to shared folders, managing of alerts from a common user account.
    • Powerpoint Templates Page 6 Monitoring (Nagios demo) : Montoring of Hosts avaliability and Services status. Notify when conditions meets Critical, Warning, Unreachable by methods » Email, SMS, Twitter, iPhone Push and integrates with Full cycle escalation process.
    • Powerpoint Templates Page 7 Monitoring (Nagios notifications demo) : SMS iPhone Push Twitter
    • Powerpoint Templates Page 8 Monitoring (Munin demo) : Performance graphs and metrics. (CPU, Memory, Disks, Bandwidth) Aiding optimization of consumption bottlenecks and spikes.
    • Powerpoint Templates Page 9 Monitoring (Ossec HIDS demo) : Real-time monitoring of log files and system files. Periodic System Integrity checks and Rootkit scans. Alerting via email and Daily report for user logins, file changes. Block brute force attempts with Active responses. (SSH, IMAP, POP, HTTP) Centralize Master node and agents model, Customizable rules, alerts and responses.
    • Powerpoint Templates Page 10 Monitoring (Ossec HIDS email notifications demo) :
    • Powerpoint Templates Page 11 Monitoring (Splunk demo) : Dashboard providing analytics and overview of Splunk apps module. Indexing of log files and data rentention for reporting and searching.
    • Powerpoint Templates Page 12 Helpdesk and Ticketing : Challenges : An effective support system is vital to the business and operations. Point of contact to cater queries, issues and requests. Managment in staffing, resource usage and allocation. Benefits : ITIL is a framework of best practices to manage IT operations and services. Provides the schematics for Service, Incident, Problem and Change scenarios. Maintains SLAs, quailty of service and customer relationship. Support channels - Hotline, Email, Website, Chat Solutions : OTRS / Request Tracker / OsTicket
    • Powerpoint Templates Page 13 Helpdesk (OTRS demo) : Avaliable as Turnkey Virtual Appliance
    • Powerpoint Templates Page 14 Helpdesk (OsTicket demo) : Routes inquiries created via email, web-forms and phone calls into a simple, easy-to-use, multi-user, web-based customer support platform.
    • Powerpoint Templates Page 15 Optimization : Purposes : Pooling various sources from discovery, assessment, reporting, monitoring, data classification and automation. Infrastructure Optimization introduces competitive advantage, growth, ROI and customer loyalty. Solutions : Failover / High Avaliability Heartbeat, keepalived, DRBD Load Balancing / Reverse Proxy / Caching HAProxy, Nginx, Varnish, Memcache Filesystem performance gains Convert Ext3 to Ext4, XFS
    • Powerpoint Templates Page 16 Optimization (NginX Load Balancing demo) : Custom compile Nginx from source code with added customizations for scaling of resources intensive and demanding web applications. Performance gains from distributing load with Nginx web clusters to PHP preprocessors and replicated MySQL databases.
    • Powerpoint Templates Page 17 Sercurity : Purposes : Apply security measures to OS and Applications (OSI Layer 7), creating proactive defences against threats and minimize risks. Customize builts of applications from Source code with added security mechanisms. Subscribe to Security Advisories and Alerts List. Operating system Sercurity updates and patches Kernel hardening, tunable sysctl PAM modules Netfilter Iptables rules, Xinetd, Tcp wrappers Partitioning, Filesystem Quotas, Mount Limits, Chroot, Jail, Cron SELinux Application lockdowns DNS threats – Open recursive, Hijacking DNS security – chroot, rate limiting, DNSSEC Mail threats – Open relay, Brute force Mail security – chroot, Anti-virus, Anti-spam Web threats – SQL/XSS/SSL vulnerabilities, Brute force Web security – chroot, ModSecurity SSH threats – Brute force SSH security – ssh_keys, iptables rate limiting
    • Powerpoint Templates Page 18 Sercurity (ModSecurity: Web application firewall) :
    • Powerpoint Templates Page 19 Sercurity (Attack vectors) :
    • Powerpoint Templates Page 20 Sercurity (Samples):
    • Powerpoint Templates Page 21 Vulnerabilities Scanning and Pen Testing : Purposes : Identification and Assessment of vulnerabilities and remediate the findings. Implement automated auditing and patching management. Vulnerabilities Scan Nessus / OpenVAS / Vega / Nikto / Wapiti / Lynis / Rkhunter / Nmap Penetration Test Kali Linux / Metaspoilt / Hydra / Medusa Benchmarking ApacheBench / Siege
    • Powerpoint Templates Page 22 Vulnerability Scans (Nessus demo) :
    • Powerpoint Templates Page 23 Vulnerability Scans (Samples) :
    • Powerpoint Templates Page 24 Cloud Provisioning : Purposes : Public and Hybrid cloud service models (IAAS, PAAS, SAAS) requires virtualization, management and orchestration stacks to offer on demand and user self-service. Tradditional shared hosting requires control panels with admin, client and billing users interface. Virtualization Stacks Xen / OpenVZ / Hyper-V Management and Orchestration Stacks OnApp / CloudStack / Parallels / SolusVM / CloudMin Web Hosting Control Panels CPanel / Parallels Plesk Client Management Panels WHMC / Hostbill / Parallels
    • Powerpoint Templates Page 25 Cloud Provisioning (Service models) :
    • Powerpoint Templates Page 26 Web Frameworks and Stacks : Purposes : Designed for supporting the development of dynamic websites, web applications, web services and web resources. Web Application Frameworks PHP – CakePHP / CodeIgniter / Symphony Python – Django / web2py / Zope Ruby – Ruby on Rails Web Solution Stacks LAMP (Linux, Apache, MySQL, PHP) / WISA (Windows, IIS, SQL, ASP.NET) Email Collaboration Stacks Zimbra / Horde / EGroupware / Microsoft 365
    • Powerpoint Templates Page 27 Web Frameworks (Virtual Appliances) : Avaliable as Turnkey Virtual Appliances - Frameworks
    • Powerpoint Templates Page 28 Backups and DR : Purposes : An essential process for business continuity planning and disaster recovery plan. Combinations of backup, data retrival / recovery and disaster recovery options for mission critical applications and data. Control measures to include on premise, offsite and cloud based soltuions. Backup and Retrival Duplicity / Rsnapshot / BackupPC Data Protection and Disaster Recovery Zmanda / Bacula /Bacula4hosts
    • Powerpoint Templates Page 29 Backups and DR (Zmanda Solutions) :
    • Powerpoint Templates Page 30 Backups and DR (Duplicity + GnuPG + Amazon S3 bucket demo) :
    • Powerpoint Templates Page 31 Revenues : Purposes : Ongoing progress to achieve growth and increase revenues on the competitive market. Deriving of Case studies from hosting businesses footprint and niches. Keynote of Revenues : Value added services, Excellent support services, CRM, Customer refferals and feedbacks. Sales, Marketing, A&P and Loyalty Campaigns, Reselling and Partnerships Packages. Integration with new Technology and Products. (Virtual Appliances, Mobile Apps)
    • Powerpoint Templates Page 32 Outlook (Cloud computing) : Full report here.
    • Powerpoint Templates Page 33 Outlook (Linux jobs) : Full report here.
    • Powerpoint Templates Page 34 Summary : We have reached the End of the presentation. The Systems Engineer, the magnifying glass for the business life cycles and advisory for business directions. Systems Engineer = Designer + Implementer + Administrator Thank You!