Kushal tries to demystify Node.js, a server side javascripting tool through this set of slides.
The tutorial includes an introduction, Node prompt/Hello World program, first HTTP server, benchmarking, node package manager . Begining with an introduction section. The section includes an introduction to Node.JS as a framework and also includes steps to install Node.JS. Followed by is a Node prompt/Hello world program section which includes a brief about Node prompt and also includes a brief on “hello world” program.
The next section is about first HTTP server which includes HTTP module being used to create first basic server. It also includes analyzing the HTTP server by a method called listen. Furthermore, it also includes server handling the requests and two parameters are passed into it: request and response, there are frameworks which does that for us. A section about Benchmarking is after the HTTP server. It includes benchmarking Node.JS where apache HTTP server benchmarking tool is used for benchmarking. It also involves in the unblocking asynchronous model of Javascript and javascript adoptability.
The last section of the tutorial is about Node package manager which includes steps to install the Node package manager, the frameworks like express, geddy, connect, railwaysJS where express is one of the popular ones.
Kushal tries to demystify Node.js, a server side javascripting tool through this set of slides.
The tutorial includes an introduction, Node prompt/Hello World program, first HTTP server, benchmarking, node package manager . Begining with an introduction section. The section includes an introduction to Node.JS as a framework and also includes steps to install Node.JS. Followed by is a Node prompt/Hello world program section which includes a brief about Node prompt and also includes a brief on “hello world” program.
The next section is about first HTTP server which includes HTTP module being used to create first basic server. It also includes analyzing the HTTP server by a method called listen. Furthermore, it also includes server handling the requests and two parameters are passed into it: request and response, there are frameworks which does that for us. A section about Benchmarking is after the HTTP server. It includes benchmarking Node.JS where apache HTTP server benchmarking tool is used for benchmarking. It also involves in the unblocking asynchronous model of Javascript and javascript adoptability.
The last section of the tutorial is about Node package manager which includes steps to install the Node package manager, the frameworks like express, geddy, connect, railwaysJS where express is one of the popular ones.
How to investigate and recover from a security breach in WordPressOtto Kekäläinen
Talk given at the first ever WordCamp Nordic on March 8th, 2019.
How to investigate and recover from a security breach – real-life experiences with WordPress
Sometimes the bad guys get in, despite all the protections and precautions. If that happens, there are many techniques that can be used to stop further damage, track down what the intruder did and how they got in. Finally the site needs to be cleaned up and re-opened for visitors. In this talk the most important techniques are presented along with real-life examples when they were used.
Altitude SF 2017: Advanced VCL: Shielding and ClusteringFastly
Shielding and clustering are two techniques that help in various ways, including increasing cache hit ratio and allowing for more effective storage. If used incorrectly, however, both can make your life more difficult. In this session, Fastly Engineer Rogier “Doc” Mulhuijzen will discuss how to deal with these prickly yet critical techniques, ultimately changing the way you think about writing VCL.
Scale your PHP web app to get ready for the peak season.
Useful information you might want to consider before scaling your application.
Slides as presented in my talk at PHP conference Australia in April 2016
Altitude SF 2017: Fastly GSLB: Scaling your microservice and multi-cloud envi...Fastly
In this workshop, we’ll dive into how Fastly’s global server load balancer (GSLB) can help you scale your application. Whether you are bringing together multiple microservices as a single platform, using geo location to direct customers to your closest origin, or creating a multi-origin cloud failover for high availability, this workshop will show you examples you can use with Fastly to achieve a scalable, global load balancing strategy.
EWD 3 Training Course Part 19: The cache.node APIsRob Tweed
This presentation is Part 19 of the EWD 3 Training Course. It examines how to access a Global Storage database from JavaScript, by making use of the cache.node APIs
Make Drupal Run Fast - increase page load speedAndy Kucharski
What does it mean when someone says “My Site is slow now”? What is page speed? How do you measure it? How can you make it faster? We’ll try to answer these questions, provide you with a set of tools to use and explain how this relates to your server load.
We will cover:
- What is page load speed? – Tools used to measure performance of your pages and site – Six Key Improvements to make Drupal “run fast”
++ Performance Module settings and how they work
++ Caching – biggest gainer and how to implement Boost
++ Other quick hits: off loading search, tweaking settings & why running crons is important
++ Ask your host about APC and how to make sure its set up correctly
++ Dare we look at the database? Easy changes that will help a lot!
- Monitoring Best practices – what to set up to make sure you know what is going on with your server – What if you get slashdoted? Recommendation on how to quickly take cover from a rhino.
WordPress + NGINX Best Practices with EasyEngineNGINX, Inc.
Whether for speed, security or scalability, a WordPress site can be improved using NGINX.
View full webinar on-demand at: http://nginx.com/resources/webinars/taste-nginx-conf-wordpress-nginx-best-practices-easyengine/
How to investigate and recover from a security breach in WordPressOtto Kekäläinen
Talk given at the first ever WordCamp Nordic on March 8th, 2019.
How to investigate and recover from a security breach – real-life experiences with WordPress
Sometimes the bad guys get in, despite all the protections and precautions. If that happens, there are many techniques that can be used to stop further damage, track down what the intruder did and how they got in. Finally the site needs to be cleaned up and re-opened for visitors. In this talk the most important techniques are presented along with real-life examples when they were used.
Altitude SF 2017: Advanced VCL: Shielding and ClusteringFastly
Shielding and clustering are two techniques that help in various ways, including increasing cache hit ratio and allowing for more effective storage. If used incorrectly, however, both can make your life more difficult. In this session, Fastly Engineer Rogier “Doc” Mulhuijzen will discuss how to deal with these prickly yet critical techniques, ultimately changing the way you think about writing VCL.
Scale your PHP web app to get ready for the peak season.
Useful information you might want to consider before scaling your application.
Slides as presented in my talk at PHP conference Australia in April 2016
Altitude SF 2017: Fastly GSLB: Scaling your microservice and multi-cloud envi...Fastly
In this workshop, we’ll dive into how Fastly’s global server load balancer (GSLB) can help you scale your application. Whether you are bringing together multiple microservices as a single platform, using geo location to direct customers to your closest origin, or creating a multi-origin cloud failover for high availability, this workshop will show you examples you can use with Fastly to achieve a scalable, global load balancing strategy.
EWD 3 Training Course Part 19: The cache.node APIsRob Tweed
This presentation is Part 19 of the EWD 3 Training Course. It examines how to access a Global Storage database from JavaScript, by making use of the cache.node APIs
Make Drupal Run Fast - increase page load speedAndy Kucharski
What does it mean when someone says “My Site is slow now”? What is page speed? How do you measure it? How can you make it faster? We’ll try to answer these questions, provide you with a set of tools to use and explain how this relates to your server load.
We will cover:
- What is page load speed? – Tools used to measure performance of your pages and site – Six Key Improvements to make Drupal “run fast”
++ Performance Module settings and how they work
++ Caching – biggest gainer and how to implement Boost
++ Other quick hits: off loading search, tweaking settings & why running crons is important
++ Ask your host about APC and how to make sure its set up correctly
++ Dare we look at the database? Easy changes that will help a lot!
- Monitoring Best practices – what to set up to make sure you know what is going on with your server – What if you get slashdoted? Recommendation on how to quickly take cover from a rhino.
WordPress + NGINX Best Practices with EasyEngineNGINX, Inc.
Whether for speed, security or scalability, a WordPress site can be improved using NGINX.
View full webinar on-demand at: http://nginx.com/resources/webinars/taste-nginx-conf-wordpress-nginx-best-practices-easyengine/
A complete guide of optimizing Magento performance systematically, including LAMP(Linux, Apache, MySQL, PHP) optimization, tuning inside Magento and useful tools.
Guide 6 - Tapping Into Your Website Configuration File.pdfpersuebusiness
Tapping Into Your Website Configuration File
Getting involved with your website configuration files sound scary if you’ve never done it before in your life. However, if you own a self-hosted website, then you need to get your hands ‘dirty’, so to speak.
If you love the technicalities involved in building websites, then you’d love this guide. If not, well, don’t worry. We’ve made this guide simple and easy to understand, you’ll feel like a pro in no time at all!
With that said, most of the techniques covered here involves editing your site’s .htaccess file, so I’ll define what it is first.
What is .htaccess?
Think of .htaccess as a file that basically tells your web server what it can and can’t serve to people and programs who want to access your files. It’s technically your site’s gatekeeper, however, in order for you to make it work then you need to tell it what to do.
Note that in some cases, you may not even have a .htaccess file, so you need to create one from scratch. Also, some web hosts don’t support
.htaccess especially if they don’t use Apache Web Server software.
It’s important to mention here that .htaccess is the full filename. It’s not “file.htaccess” or “site.htaccess.” You can use a text editor to type in your
.htaccess file instructions and then save it simply as “.htaccess.”
My slides from WordCamp Dhaka 2019 on WordPress Scaling. In this session I explained performance optimisation using HTTP/2, Caching and compressing resources.
I also explained how to Dockerize WordPress to make it easier to scale.
WordPress Hosting Best Practices - Do's and Don't s | WordPress TrivandrumWordPress Trivandrum
The keynote shares some tips and best practices to choose a hosting package for your WordPress sites.
Originally presented by HostDime India at WordPress Trivandrum Meetup on 20 January 2018.
Hotwire and Turbo - Knowledge Ketchup - Prajit Bhandari.pdfGurzuInc
Rails 7 introduces Hotwire and Turbo as the default front-end framework for Ruby on Rails applications. The powerful combination of Stimulus.js and Turbo aims to accelerate application performance and streamline the development of Single Page Applications. With Hotwire and Turbo, developers can achieve lightning-fast page loads, minimal client-side JavaScript, and a smoother, more intuitive user experience.
The need to scale is in high demand in an age where everything is moving to the cloud. Though the standard Apache configuration could handle a website with moderate traffic, the minute it gets slash dotted or twitted multiple times could spell an embarrassing crash landing! If you are the administrator of such a website then good luck finding another job! On the other hand you value high availability in the midst of popularity then read on. On this one day workshop, we will show you how to scale your website and webapps to scale to handle thousands of simultaneous sessions the right way. The topics covered will include:
- Setting up Apache and NGiNXM
- Setting up a sample LAMP web app
- Benchmarking Apache performance
- Fine tuning Apache to improve performance
- Fine tuning NGiNX to improve performance
- Discussion about code level improvements when developing custom webapps using PHP
Migration Best Practices - SEOkomm 2018Bastian Grimm
My talk from SEOkomm 2018 in Salzburg covering best practices on how to successfully naviate through the various types of migrations (protocal migrations, frontend migrations, etc.) from an SEO perspective - mainly focussing on all things tech.
implement lighthouse-ci with your web development workflowWordPress
This presentation is about implementing the performance as first approach in web development and a bit of real case study. Then implement the Lighthouse-CI in the development workflow to keep the site performance high.
The 5 most common reasons for a slow WordPress site and how to fix them – ext...Otto Kekäläinen
Presentation given in WP Meetup in October 2019.
Includes fresh new tips from summer/fall 2019!
A Must read for all WordPress site owners and developers.
Similar to 2018 Google Mobile First Index - Speed up Apache & Web for SEO (20)
Presentación en Foro Economía Digital (2014) acerca de los principios básicos de la analítica web, Google Analytics y la integración con otros sistemas.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
How to Get CNIC Information System with Paksim Ga.pptxdanishmna97
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
Sudheer Mechineni, Head of Application Frameworks, Standard Chartered Bank
Discover how Standard Chartered Bank harnessed the power of Neo4j to transform complex data access challenges into a dynamic, scalable graph database solution. This keynote will cover their journey from initial adoption to deploying a fully automated, enterprise-grade causal cluster, highlighting key strategies for modelling organisational changes and ensuring robust disaster recovery. Learn how these innovations have not only enhanced Standard Chartered Bank’s data infrastructure but also positioned them as pioneers in the banking sector’s adoption of graph technology.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
Dr. Sean Tan, Head of Data Science, Changi Airport Group
Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
3. Check Apache active modules
We need access through SSH in order to execute linux commands
Check Apache active modules with:
● apache2ctl -M
If not activated, we need to turn on expires and headers:
● a2enmod expires
● a2enmod headers
After that, we need to restart the server
● service apache2 restart
4. Apache .htaccess file
Now we need to edit .htaccess file which is located at the root of our site
(base www dir).
If it doesn’t exist, we can create it through FTP. After that we just need
to add some lines in order to speed up our site. We are going to active:
● Cache-control
● GZIP Compression
● Keep alive
● Etag
6. .htaccess set Etag
Etag helps to use cache memory in a more efficient way. It works like a digital print, it only changes when
a file has changed.
FileETag MTime Size
10. .htaccess set keep-alive
Allow to transfer multiple files between server and browser
<ifModule mod_headers.c>
Header set Connection keep-alive
</ifModule>
12. .htaccess redirect errors to homepage
This code will help us to redirect all errors to the homepage. Use it carefully. It doesn’t affect the speed
but can help us to handle multiple errors.
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ /? [L,R=301]
13. .htaccess prevent hotlinking
As the previous point, it doesn’t affect the load time, but can help us to control our resources preventing
others sites to consume them.
RewriteEngine On
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http(s)?://(www.)?emirodgar.com [NC]
RewriteRule .(jpg|jpeg|png|gif|svg)$ https://domain.com/image.jpg [NC,R,L]
14. Optimize resources
In order to speed up we need to work with
optimized files:
● Compress HTML
● Compress CSS
● Compress JS
● Compress images
17. Select CSS used
Make sure you only include in your page the CSS styles you are actually
using in the site.
CSS Used is a Chrome plugin that will select the CSS you need (export &
create a new final file). Firefox has similar plugins with the same
functionality.
19. Compress images
We can use one of the several tools we have online:
● https://kraken.io/web-interface
● http://optimizilla.com
● https://compressor.io
● https://tinypng.com
20. Use a cookieless subdomain as CDN
Let’s create our own CDN (Content Delivery Network). You can also use some service as Cloudflare (free
and paid plans available).
● Create a subdomain of your own domain or use another domain
● Load static files as CSS, JS and images from this new access
Learn more about cookie free domains.
21. Use a cookieless subdomain as CDN - Analytics
If your are using Google Analytics, make sure you are not generating cookies on the CDN subdomain. For
that, set cookie_domain to none.
22. Install modpagespeed
You can also install mod_pagespeed in your server. Once installed, learn how to configure it.
cd /tmp
wget https://dl-ssl.google.com/dl/linux/direct/mod-pagespeed-stable_current_amd64.deb
dpkg -i mod-pagespeed-stable_current_amd64.deb