Posted on

Email move was simple

Following up from my last post, I went ahead and moved all my personal email domains over to Fastmail. I also pre-paid for a pretty lengthy subscription, since it was so cheap for a long term, even cheaper than Zoho was if I paid for three years. That’s three less years to worry about emails. 

I very much debated setting up a cloud based mail server, that I would be able to keep encrypted, and totally private, but, for now, I think I’m okay with Fastmail, they’re not mining my emails for ads, and that was my primary concern. Total privacy would be nice, but that does come at a cost. I wasn’t really looking forward to managing another mail server, since part of my job is watching over a few of them already, I know it can be a pain, especially managing spam policies, and keeping up with intrusion attempts, updates, etc. 

The move was really simple. I have DNS all over the place, I use Godaddy, dns.he.net, and Amazon Route 53, which I really need to clean up and keep everything in one place. I like he.net for DNS, its easy, free, and simple, I should move everything to that. Outside of just moving MX records, adding aliases, and domains was all it took, and mail moved over without a hitch.

I’m contemplating migrating my 16,500 or so Gmail messages into the new service, since I have the space, I think it might be easier to clean up old mail while using the new interface. Google is getting more and more annoying with my email, and I feel like my privacy is violated more every year that goes by with them (I’ve had a gmail account since beta!). Only problem, a few hundred people and companies have my gmail address. I guess it’s time to start making a move towards privacy!

Posted on

Email, Privacy, and You

I’ve been thinking a lot about email privacy lately. It seems the free accounts are now mining your email for ways to show you advertisements. This is not something I want, it raises all sorts of privacy concerns. Last week, I had a friend say in an email he was thinking of going to Ireland. A few hours later, I checked my gmail, only to see an email with the subject: “flash deals on trips to Ireland!”. This is not okay. If Google is reading all my email (with a machine), then it has everything about me, where I eat, where I shop, what my hobbies are, my doctors appointments, what my friends are doing, where I’m going on my calendar, this is not good.

I have plenty of private servers floating around that I could use as a private email server, this is probably the ideal scenario, I can build a system with encrypted communication, and an encrypted file system, it’s private to me, so nobody can use it. I’ve built plenty of email servers before, and still manage a few for clients. The main issue for me with private servers is spam filtering. Managing spam is a big hassle, keeping lists updated, updating rules, packages, etc. If I have a service do the filtering, I’m still lacking privacy, using someone who is mining my emails looking for spam, may also be logging them for advertisement purposes. On client systems, we usually use Google for spam filtering, it works great, or we just give them G suite all together, or 365, both are pretty effortless to manage.

Maybe the next best thing is a service I can trust. My questions though, can I use my domains? Will it be around? Can my mail be encrypted on their disk so that only my login decrypts? I use zoho right now for my personal domains, its cheap, and a good service, but I don’t know anything about their privacy policy, I should check into it. I have a protonmail account, its great in theory, but I don’t much use it, since you have to pay a lot for the services I need (I have about 12 domains I need email access on). A friend of mine just made the switch from Gmail over to fastmail and is giving it a good recommendation, they happen to have a month free trial.

I think I’ll move a test domain to fastmail and see how it goes for now. It’s going to cost me double per year over zoho.. We’ll see.

Posted on

iSCSI Target Server Choices

I manage a small a set of Citrix Xenserver hosts for various infrastructure functions, for storage, I’ve been running openfiler for about 3 years now, since the last reboot, my uptime is 1614 days! It’s pretty solid, but the interface seems buggy, there’s a lot of things in there I don’t use. When I do need to go change something, it’s so long in between uses, that I have to re-read documentation to figure out what the heck it’s doing. I’ve got a new Xenserver cluster coming online soon, and have been researching, thinking, dreaming, of what I’m going to use for VM storage this time.

Openfiler, really has been mostly great. My server load runs about 1.13 always, which somewhat bugs me, mostly due to conary (its package manager) running. Openfiler is almost never updated which isn’t a bad thing, since the machine is inside our firewall, without internet access unless I set a specific nat rule for it. I’m running it on an old Dell 310 server with two 2TB drives running RAID1, it’s got 4GB ram and boots to the same drives as openfiler runs its magic on (this server was originally implemented as a quick fix, to get us off local Xen storage, so we could do rolling restarts). It’s not a problem, but now, 3 years later, I notice, the latest version, IS THE SAME version I have installed and have been running for the last 1614 days… So maybe it’s time to find something new.

So I build out a nice Dell 530 server, dual 16gb flash cards, dual 120gig write intensive SSDs, a bunch of 2TB SATA drives, dual six core procs, and 32gig ram, dual power supplies, nice RAID card. The system arrived, and I had a lot of good feedback for NAS4Free, both online (googling, lots of reddit threads), and even in person recommendations. I was pretty excited about it honestly, I’m a little unfamiliar with FreeBSD, but have used it on and off in my now 20 year Linux career. I went ahead and installed the thing to the 16gb flash, as recommended. I disabled RAID on the server, and setup all the drives as SATA. Booted to the system and got rolling. It was really simple, seems easy to use, does WAY more than I could even actually want, in a storage device. I setup a big lun, with ZFS and iSCSI, added the write intensive SSDs as cache, installed all the recent updates, and was ready.. Then I read documentation a bit.

  • iSCSI can’t make use of SSD write cache.. Well, I guess I get an all SSD lun.
    • “A dedicated log device will have no effect on CIFS, AFP, or iSCSI as these protocols rarely use synchronous writes.”
  • Don’t use more than 50% of your storage space with ZFS and iSCSI.. WHAT?
    • “At 90% capacity, ZFS switches from performance- to space-based optimization, which has massive performance implications. For maximum write performance and to prevent problems with drive replacement, add more capacity before a pool reaches 80%. If you are using iSCSI, it is recommended to not let the pool go over 50% capacity to prevent fragmentation issues.”

So, this was some sad news, no write caching, cant use more than 50% of my disk space, but, I decided to press on. I went home for the night. The next morning I got a friendly email from my new server that it had some critical updates, cool, I though, so I installed the updates, now it wants to reboot. So, I let NAS4free reboot, two days later, more critical updates and a reboot required.. This is a bad thing for me. I run servers that really need to be up 24/7/365, yes, we run everything clustered, and redundant, and can reboot a server without anyone noticing, but not the entire storage device, that kills the point of having my VMs all stay up. This is still okay, because we have a second VM cluster, which has “the sister machines” to all our cluster nodes going into it. I just dont want to have to fully shutdown a VM cluster so the storage host can reboot once or twice a week. Kudos to the NAS4Free guys though, it’s a really good thing they are so active, it’s just not going to be the device for me.

So, I ripped it apart. Created 2xRAID1 SSD, a RAID10 set out of the 2TB drives, and installed my best friend Debian. Debian is rock solid, I only need to reboot for kernel updates, and that’s very few. Installed iscsitarget, setup my block devices using lvm, and bam! Within 30 minutes I had an iSCSI target setup and connected to Xen.

Reliability? I see a lot of ZFS fanboys touting that hardware RAID sucks, ZFS is awesome, good luck recovering your data, etc. I really haven’t had problems with RAID in the 15+ years I’ve been using it. We buy vendor supported hardware, if something dies, Dell sends me a new one. I backup onsite and offsite. I haven’t had to restore from a backup (other than testing restores), in years. I think this will all be okay.

Next article, I’ll write about setting up my iSCSI target, since there wasn’t many decent articles out there, I’ll write about it. It’s really pretty simple. Even have multipath IO working.

Posted on

No country for old men

Retiring a bunch of old servers over the next few months. I actually feel bad letting these guys go, they’ve done such a good job. This guy was about 10 years old, last reboot was in 2011, and he’s still running like a champ, we replaced him about a year ago and left him running just in case, but it’s time to retire the old bugger. Thanks for lasting 2299 days without a reboot Centos 5!Server uptime

 

Posted on

It’s been a year, MS150 Again.

Tim took a selfie with me
Tim Took a selfie with me.

Wow, it seems like every year around this time, I’m blogging, my beard is completely out of control, and I’m saying that I haven’t blogged in a year, and I should start doing it again. I can’t believe how old this blog is… I started it TWELVE YEARS ago.. In March 2003!! Now that’s a blog with some history.

Maybe I will blog more. Or not. We’ll see.

In the mean time, I’m riding my bike from Houston, TX to Austin, TX (about 160 miles), to help find a cure for Multiple Sclerosis, I’m asking for donations.

Here’s a link to donate! http://biketxh.nationalmssociety.org/goto/michaelp713

 

Posted on

2014 Houston BPMS150 Ride

Again it’s that time of the year, only four more weeks and I’ll be riding my bicycle from Houston to Austin, TX. The ride is to raise funding for multiple sclerosis. I’d love for everyone to donate to my cause! You can donate as little as $10 or as much as you’d like.

My MS150 Page with donate link: http://main.nationalmssociety.org/goto/michaeljpalmer

Multiple sclerosis is a progressive neurological disease that affects people in many different ways. It could be paralysis one day, loss of vision the next or impaired memory the day after that. Living with MS means living with uncertainty.

MS150 Finish Line Michael
MS150 Finish Line

 

DONATE DONATE DONATE!!!

Posted on

Drivers Hating Cyclist on Twitter Gratitude

Drivers Hating Cyclist on Twitter Gratitude.

“Drivers: You sit behind the wheel of the most advanced personal transport device in the history of the world. All you need to do is apply slight pressure to a pedal with your foot and you are instantly propelled forward at an incredible rate of speed. Some slight side-to-side motions with your hands, or even one hand if you like, steers you almost anywhere your heart desires. At your disposal are turn-by-turn directions to any location on earth. You sit eating snacks in a protected, climate-controlled chamber on top of a seat more comfortable than most kings’ thrones. If something should slow you down temporarily you can almost instantly make that speed up by applying a little extra pressure to that pedal. Simply amazing how far we’ve come.

 

So how do you show your thanks for such good fortune, such freedom?” … More: Drivers Hating Cyclist on Twitter Gratitude.

Posted on

If money wasn’t an issue in life…

I was thinking today, if I could do anything with my life and money wasn’t an issue, these are the things i’d do:

  1. Own land
    1. Ride Dirt Bikes
    2. Own a jeep again
    3. Build my own house from complete scratch
    4. Fish
    5. I think i’d need at least 200 acres!
  2. Photography
    1. Mostly travel or nature, or maybe public events
    2. figure out how to get into doing major sporting events on the field like baseball and football games..
    3. build my own studio warehouse, where i could photograph large things, like cars and motorcycles in house with full lighting setups.
    4. work on a movie set as a photographer
    5. have enough good photos to hold an exhibit somewhere
  3. Bicycles
    1. I’d like to ride a lot, maybe from my house to my photography studio every day :)
    2. Build – i want to learn how to build bicycles and completely build my own stable of different bikes from the frame up.
    3. i’d love to setup some type of charity where we build bikes for underprivileged kids.
  4. Fun Stuff
    1. I’d buy a good quality saxophone and play it again. I dreamed I was playing in a jazz club the other night, made me miss it.
    2. Learn to be a chef
    3. Take vacations with the kids.
    4. Stay in shape!
    5. Get back to volunteering regularly. It’s been so long.
    6. (With my Jeep) – Go on a Jeep Jamboree someday.
    7. Mountain Bike in amazing places like Colorado, Utah and some of the US’s famous parks.
    8. Get dual citizenship with the UK, so i can spend a few months in England with all my family whenever I want.