Easy install NGINX, HHVM and MySQL on Debian 8.1 server

Do you want to install NGINX, HHVM and MySQL on a Debian server? Well, I have a script which do this and is easy to run. Simply copy the code below into a file (install.sh) and run it from your terminal.


sudo apt-key adv --recv-keys --keyserver hkp://keyserver.ubuntu.com:80 0x5a16e7281be7a449
echo deb http://dl.hhvm.com/debian jessie main | sudo tee /etc/apt/sources.list.d/hhvm.list
sudo apt-get update

sudo apt-get update && sudo apt-get install nginx mysql-server mysql-client hhvm
sudo update-rc.d hhvm defaults
sudo /usr/share/hhvm/install_fastcgi.sh

sudo cat > /etc/nginx/sites-available/default << EOL
server {
 listen 80;
 root /usr/share/nginx/html;
 index index.html index.htm index.php;

 server_name localhost;
 include hhvm.conf;

 location / {
 try_files $uri $uri/ /index.php?$args;
sudo /etc/init.d/nginx restart

Easy install NGINX, HHVM and MySQL on Ubuntu 14.04 server

Do you want to install NGINX, HHVM and MySQL on a Ubuntu server? Well, I have a script which do this and is easy to run. Simply copy the code below into a file (install.sh) and run it from your terminal.


wget -O - http://dl.hhvm.com/conf/hhvm.gpg.key | sudo apt-key add -
echo deb http://dl.hhvm.com/ubuntu trusty main | sudo tee /etc/apt/sources.list.d/hhvm.list
sudo apt-get update && sudo apt-get install nginx mysql-server mysql-client hhvm
sudo update-rc.d hhvm defaults
sudo /usr/share/hhvm/install_fastcgi.sh

sudo cat > /etc/nginx/sites-available/default << EOL
server {
 listen 80;
 root /usr/share/nginx/html;
 index index.html index.htm index.php;

 server_name localhost;
 include hhvm.conf;

 location / {
 try_files $uri $uri/ /index.php?$args;
sudo /etc/init.d/nginx restart

Illumio Raises $100M More For Enterprise Security That Goes Beyond The Firewall

As the number of IT breaches continues to rise, startups that are coming up with creative ways of tackling the issue are growing, too. In the latest development, Illumio — a startup that aims to secure enterprise computing environments beyond their firewall perimeters by covering processes and applications in data centers and public and private clouds — is today announcing that it has raised another $100 million.

At the same time, it’s also picking up some key partnerships as a route to growing its business. Its systems now work with NGINX and F5 load balancers for dynamic policy enforcement.

Led by BlackRock and Accel, the Series C round also had participation from Illumio’s previous high-profile backers. They include Formation 8, Andreessen Horowitz, General Catalyst, Microsoft Chairman John W. Thompson, Salesforce CEO Marc Benioff and Yahoo! co-founder Jerry Yang. Illumio and its investors are not commenting on valuation.

Like other security startups, Illumio did a lot of growing in the ground before making itself visible to all: founded in January 2013, it was in stealth mode for almost two years, until October 2014 — time that it used not only to sign up its first paying customers (today it , but to also to continue improving its no-hardware, software-only solution, releasing some 14 versions of the product in that period and raising over $40 million, according to chief commercial officer Alan Cohen.

Illumio’s product stands out in the market for its approach in how it secures enterprise systems. To date, many solutions have taken the blacklisting approach and focused on a company’s firewall as a way of protecting what goes on behind it.

But as Illumio points out, only 20% of a business’s traffic is ever at that perimeter. “The other 80% stays in the data center, and that’s also where 90% of the breaches occur,” Cohen said in an interview. All those cases of illicit password phishing and malware worms are notable examples how a company can be breached inside the firewall.

To tackle this, Illumio doesn’t eschew firewall philosophy, but rather embraces it: it effectively wraps a firewall around each and every piece of a businesses IT systems, from applications through to computing processes, covering wherever those pieces of software may reside.

Furthermore, it’s built on a “whitelist” approach, which sits in contrast to blacklists and is growing in its use, adopted also by the likes of Bit9, for example. Whitelisting essentially blocks everything except what is specifically allowed to pass — or, in Cohen’s words, it’s security architecture that is “built by the paranoid, for the paranoid.”

Then, on top of this security system, Illumio offers its business customers a real-time snapshot of what is going on in the whole system, and its software alerts the customer when anything is amiss. Cohen likens these analytics to a kind of MRI, “illuminating where the problem areas may be.” (This isn’t, however, how the startup got its name. Cohen says it’s simply a reference to the ability to see everything in a system, and also the availability of the URL.)

Just as there is a growing number of security startups that are architecting solutions based on whitelists, there are a growing number of startups that are looking at better ways of securing beyond the perimeter, including the likes of VMWare and Cloud Passage.

All the same, Illumio has seen a lot of traction already. The Sunnyvale-based company has hundreds of current customers today that include the likes of Plantronics, NTT, Creative Artists Agency and Morgan Stanley.

While Illlumio’s traction in the finance sector has brought it out to London faster than it planned to go — Cohen spoke to me in London while he and CEO and co-founder Andrew Rubin were here to visit customers — some of the Series C funding will be used to roll out more formally internationally. That includes opening an office in Asia by the end of the year, and doubling staff to about 200.

The early traction with enterprises was one of the reasons why investors are chipping in more now to help the company grow, even while it is already generating significant revenue.

“The wide range of investors supporting Illumio reflects the company’s strong traction with Fortune 500 customers, the innovation of its policy and enforcement approach, and the magnitude of the problem it solves,” said Thompson a statement. “The technology gap enterprises face in securing the interiors of their data centers and public cloud computing platforms is creating the proving ground to seize a once-in-a-generation opportunity to create a major new platform in the security space.”

Featured Image: StrolicFurlan/Flickr UNDER A CC BY-ND 2.0 LICENSE

Article source: http://techcrunch.com/2015/04/14/illumio-raises-100m-more-for-enterprise-security-that-goes-beyond-the-firewall/?ncid=rss

ServiceRocket and GoodData® Partner to Deliver Analytics and Insights for TrainingRocket Customers


ServiceRocket, a leading provider of training, utilization and support technology and services that maximize Customer Success, and GoodData®, an industry leading cloud analytics platform and Insights as a Service provider, announced today a partnership that integrates GoodData’s Insights as a Service (IaaS) platform with TrainingRocket. ServiceRocket’s TrainingRocket solution was designed by a training company for training departments to grow and service their customers by enabling end-users to get up and running on software applications quickly, and start using them proficiently. By embedding GoodData IaaS technology within TrainingRocket, software companies now have access to prevailing insights and analytics about their user base, with the ability to modify curricula or even product features, to ensure the successful utilization and, ultimately, customer retention.

“By offering powerful analytics and business intelligence, ServiceRocket can now increase software utilization and enhance the training experience of their customers,” said Rob Castaneda, Founder and CEO of ServiceRocket. “Partnering with GoodData gives our customers useful insights that take training to the next level.”

Tweet: “Excited to see @ServiceRocket and @gooddata Partner to Deliver Analytics and Insights for @TrainingRocket Customers”

Analytic Insight

ServiceRocket’s TrainingRocket platform is in use by many of today’s fast growing software companies such as Cloudera, NGINX, and Mulesoft to power online customer universities and training businesses. With the addition of GoodData IaaS technology, TrainingRocket courseware managers can now capture and view data to uncover demonstrable results around their training programs.

For example, using GoodData Analytics, a sales training program can combine training data with application data from other platforms such as Salesforce.com or Marketo to evaluate participants’ scores, see progression achieved through course material and measure the impact training has on sales productivity, revenue generation and customer engagement. Administrators can define specific parameters and integrate data from multiple sources, without needing IT support.

“We firmly believe every application must integrate and analyze data in order to stand out,” said Roman Stanek, GoodData Founder and CEO. “ServiceRocket is a shining example of how ISVs create differentiated offerings through analytics. The insights available in TrainingRocket powered by GoodData close the gap between education and revenue impact for all ServiceRocket customers.”

Insights as a Service

The GoodData IaaS platform includes end-to-end data management feeding its Insights Engine, Analytical Designer and Data Explorer to deliver guided business user data discovery. While other vendors build disconnected Business Intelligence (BI) solutions and appliances, GoodData begins with insights for customers that accelerate paths to breakthrough results and move beyond BI. This transformative platform is why GoodData is a market leading, “Insights as a Service” provider. Garnering the collective learning amassed within the Insights Network, GoodData culls the institutional knowledge accumulated over years of operations, service expertise, and analytic activity within more than 50,000 projects in GoodData’s cloud-based analytics platform.

ServiceRocket is the training, utilization and support solution for any training program needs, enabling the highest level of customer retention and success. The company’s training solutions include TrainingRocket, its popular on-demand learning platform for fast growing software companies and enterprise organizations. With TrainingRocket, software companies get users up and running on software applications quickly, so they can use them proficiently, leading to increased adoption, engagement, and success with customers and employees. Companies can use ServiceRocket’s Enterprise Software Training Maturity Model enabling them to quickly determine the current state of their training function and identify their specific training needs.

The analytics capability offered through this partnership is available in the second quarter of 2015 as an application called TrainingRocket “Powered by GoodData”.

About GoodData

GoodData®, an industry leading, cloud-exclusive business intelligence platform and Insights as a Service provider, enables more than 40,000 companies push beyond traditional BI. GoodData’s Insights Network leverages the accumulation of the company’s experience, best practices, and millions of its user interactions to propel organizations to analytic maturity and business successes. GoodData is headquartered in San Francisco and is backed by Andreessen Horowitz, Intel Capital, TOTVS, General Catalyst Partners and others. For more information, read our blog, visit our website and follow @gooddata on Twitter.

About ServiceRocket

ServiceRocket is a unique Customer Success company focused on ensuring enterprises and users successfully incorporate software into their businesses and lives – so they use it, love it and buy more. Through training, support and utilization, ServiceRocket creates long-lasting, loyal relationships between software companies, enterprises and their software by delivering these elements to enable customer success. Based in Palo Alto, ServiceRocket has global teams in Australia, Chile, Malaysia and the United States. Visit www.servicerocket.com for more information.

Article source: http://finance.yahoo.com/news/servicerocket-gooddata-partner-deliver-analytics-140000561.html

Illumio Extends Adaptive Security Capabilities to NGINX and F5 Load Balancers to Enable Dynamic Policy Enforcement …

SUNNYVALE, CA–(Marketwired – Apr 14, 2015) – Illumio (www.illumio.com) today announced that its Adaptive Security Platform (ASP)™ now provides customers with the ability to extend its policy model to the F5 BIG-IP Local Traffic Manager (LTM) and NGINX product lines, the most popular enterprise and open source load balancers in use today. With this added capability, F5, NGINX and Illumio customers can turn their load balancers into additional security policy enforcement points behind the perimeter.

Illumio also announced continuous delivery of security policies and enforcement down to the process level within workloads — an industry first. Illumio ASP introduces this form of nano-segmentation for application isolation and control down to individual processes on a single host. If any part of an application changes (such as auto scaling the web tier with new web servers), Illumio ASP automatically adapts security policies on all impacted workloads or processes. 

The software-based Illumio ASP provides the first continuous delivery system for security. It programs the ideal security policy and manages enforcement across applications, workloads and processes as they are provisioned, operated and moved in any data center or private and public cloud infrastructure. 

Supporting Quotes:
“Enterprises continue to be plagued by data breaches and compliance issues despite the billions of dollars they spend on perimeter security and compliance solutions every year,” said Andrew Rubin, co-founder and CEO, Illumio. “With the new ability to add load balancers and process-level segmentation into the enforcement plane, Illumio enables customers to protect against advanced threats and attacks by giving them greater control over their existing network investments within the data center environment, where 80 percent of their vulnerable traffic and data resides.”

“Attackers are more sophisticated today,” said Pete Lindstrom, research director, Security Products, IDC. “Enterprises need to change focus from perimeter security and find modern ways to protect their workloads with granular application segmentation and improve their security posture with more enforcement points to keep attacks from spreading.”

“The security playing field has changed dramatically. Criminals know how to find ways into organizations that were never before possible, creating a situation that is opening organizations to damaging attacks,” said Richard Stiennon, principal analyst, IT Harvest. “The only way to remain highly secure in the modern era of advanced threats and attacks is to strengthen every part of the IT environment, including the soft and vulnerable center.”

The subject of separate announcements today, Illumio also announced a $100 million funding round (http://bit.ly/1DBl04Q) and a partnership with F5 (http://bit.ly/1DBl18P).

To learn more about Illumio ASP, the company and its new approach to security, visit the company during RSA Conference 2015 in the Moscone Center, April 20-23.

About Illumio
Illumio reduces the surface area of attack by securing the 80 percent of data center and cloud traffic missed by the perimeter. The Illumio Adaptive Security Platform (ASP) visualizes application traffic and delivers continuous, scalable and dynamic policy and enforcement to every bare-metal server, VM and container in data center and public cloud infrastructure. Organizations such as Morgan Stanley, Plantronics, NTT and Creative Artists Agency are using Illumio to enable cloud migration, achieve DevOps speed and nano-segment applications for compliance or environmental separation. For more information, visit www.illumio.com or follow us @Illumio.

Article source: http://finance.yahoo.com/news/illumio-extends-adaptive-security-capabilities-113000624.html

NGINX, Inc. Launches NGINX Plus Release 6

SAN FRANCISCO, April 14, 2015 /PRNewswire/ — NGINX, Inc., the engine powering applications and content for the modern web experience, today announced the availability of the next generation of its commercially-supported web acceleration technology, NGINX Plus Release 6 (R6). The new solution introduces a number of enhancements that bring enterprises total application delivery, whether for modern web applications or for legacy enterprise applications like relational databases and mail servers. The technology also offers significant performance improvements from R5 that help ensure businesses deliver the best possible online experience for web users around the globe.

View photo


“We have had overwhelming demand from customers to use NGINX Plus to replace legacy hardware and to further support the adoption of public and private clouds,” said Gus Robertson, CEO of NGINX. “NGINX Plus R6 is a direct reflection of that need and offers the ideal solution for total application delivery and load balancing. It exceeds the capability of traditional hardware load balancers and ADCs, while providing unlimited throughput at a lower cost than our competitors.”

NGINX now powers nearly half of the top 10,000 sites and applications in the world and is widely recognized for its ability to offer fast, secure, and scalable application delivery for web and mobile. New capabilities and benefits available today in NGINX Plus R6 include:

“NGINX Plus R6 represents a significant technical leap in features and functionality that extend developers’ capabilities and improve overall application performance,” said Owen Garrett, head of products at NGINX. “We’ve worked closely with customers and the community to pinpoint and address some of the most common challenges that businesses face with web application delivery, and we see the innovation behind R6 as a critical response to those challenges and emerging market needs.”

NGINX Introduces Its Innovators Program
NGINX is a company that was shaped by developers, for developers in the interest of driving innovation and helping to build the next generation of digital businesses. In recognition of this, the company has unveiled its newly developed NGINX Innovators Program. The program offers:

  • Unlimited Developer Licenses for NGINX Plus Customers: As NGINX customers increasingly adopt containers and microservices-based application development, they need unlimited access to the software they plan to use in production without having to worry about licensing constraints. To support this, NGINX customers who have more than 10 production instances of NGINX Plus now have unlimited access to the software for use in development, testing, and pre-production.
  • Free NGINX Plus for Entrepreneurs: NGINX proudly counts some of the world’s most innovative developers among its customers. To continue supporting innovators, NGINX is making NGINX Plus available free of charge to verified startups with less than $2 million in annual revenue and less than $10 million in fund raising.
  • Aggressive Discounts for Large Volumes of NGINX Plus for SaaS Applications: NGINX Open Source is incredibly popular among the busiest SaaS applications and PaaS platforms. Now these businesses can benefit from the extended capabilities of NGINX Plus thanks to special pricing designed for the large volumes of servers and elastic scaling typical in these businesses.

“The availability of NGINX Plus R6 coincides with the launch of NGINX Innovators Program, to further support the millions of developers using NGINX to build the next generation of high performance web applications,” said Igor Sysoev, creator of NGINX. “This represents a significant milestone for the technology and the company. When I launched NGINX Open Source back in 2004, I was working to overcome issues of scalability as a developer at a popular web portal. Now the technology we’ve developed has evolved into the backbone of the modern web experience with millions of supporters and contributors. We’re excited to introduce this new program to the market and continue to support innovation and the advancement of digital businesses everywhere.”

For more information on the NGINX Plus R6 or the NGINX Innovators Program, please visit www.nginx.com

About NGINX, Inc.
NGINX powers applications and content for the modern Internet experience. The company offers award-winning and industry-leading high performance web application technology that delivers the scalability, speed, and security to more than 130 million sites on the Internet, ensuring a seamless web user experience. Companies rely on NGINX technologies for load balancing, content caching, media streaming, web serving and more. More than 40 percent of the Internet’s largest websites rely on NGINX to drive the performance of their web applications including several giants such as Netflix, Pinterest, Airbnb, Box, Instagram, SoundCloud, Zappos, and more. The company is headquartered in San Francisco.

Logo – http://photos.prnewswire.com/prnh/20140723/130004


To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/nginx-inc-launches-nginx-plus-release-6-300065286.html

Article source: http://finance.yahoo.com/news/nginx-inc-launches-nginx-plus-130000073.html

Nginx's new version goes beyond Web serving

With the release of Nginx Plus Release 6, the latest version of its Web server, Nginx looks to replace everything from hardware load balancing to legacy servers.

It makes sense for Nginx to broaden its game and its functionality. The company’s explosive growth among the most heavily trafficked sites is leveling out; to stay competitive, it must become more than a faster, more efficient alternative to Apache.

Release 6 features load-balancing capabilities (including an extended version of the TCP load-balancing feature introduced in version 5), a high-availability system that uses the Virtual Router Redundancy Protocol, support for SSL authentication when routing mail traffic, and new status dashboard.

Nginx CEO Gus Robertson stated in an email that with enterprise customers looking at containerization, public and private cloud architectures, and devops deployment models, “we are seeing ourselves increasingly adopted as either a replacement for [legacy hardware appliances use for load balancing], or at least as the application-level load balancer deployed alongside the legacy solutions.”

Mozilla pushes out fix for Firefox opportunistic encryption flaw


Mozilla’s Firefox has received a new update to patch a web encryption flaw which could allow malicious websites to bypass certificate verification checks.

Last week, Mozilla introduced Firefox 37.0, which included support for HTTP/2, an Internet standard which allows for web connections to be encrypted even when HTTPS is not supported. One feature is HTTP Alternative Services — otherwise known as Alt-Svc — which forces end-to-end encryption between pages through redirection protocols.

Alt-Svc communicates with your PC or mobile device, offering an alternative way to access a web page. Instructions then can be sent in order to perform “opportunistic encryption,” which forces through basic encryption protocols when visiting a website. It is not as secure as HTTPS, but is certainly an improvement on today’s HTTP, which is the most commonly used communication channel on the Internet.

Unfortunately, while the latest Firefox update was designed to improve basic security, it also introduced a new, critical bug which allowed a researcher to find a way to bypass certificate verification if a web server redirected visitors through the HTTP/2 system.

In a basic security advisory provided by the Mozilla Foundation, the security flaw was deemed “critical.” The bug, exploited through the HTTP/2 Alt-Svc header — within Mozilla’s Alternative Services implementation — allowed for SSL certification verification to be bypassed.

As a result, invalid SSL certificate warnings would not be displayed and a hacker could potentially use a man-in-the-middle (MITM) attack to impersonate legitimate websites with the overall aim of luring victims to malicious pages, which could then be used to steal data or deliver malware payloads.

Read this

Top tips on hack-proofing your life

From drug cartels to passwords, security expert Brian Krebs weighs in on how to keep your personal data and bank account safe.

Cyberattackers could, for example, hijack the connection which looks legitimate thanks to Alt-Svc and send a victim to a phishing site masquerading as their bank, and users may not find anything amiss — as invalid certificate warnings would not be displayed.

As reported by the Sophos Naked Security team, the bug was rapidly discovered and fixed. The team also noted that HTTP/2 isn’t yet finalized and is not widely used. However, it is on its way to adoption through support by web servers including Apache, Nginx and Microsoft’s IIS (Internet Information Servers) in Windows 10 Preview.

Mozilla updates the Firefox browser every six weeks, and for now, opportunistic encryption has been disabled. Firefox should update itself to 37.0.1 to automatically to fix the bug, however, you can also update your browser manually.

Read on: In the world of security

Read on: Fixes and Flaws

Article source: http://zdnet.com.feedsportal.com/c/35462/f/675729/s/453553bf/sc/15/l/0L0Szdnet0N0Carticle0Cmozilla0Epushes0Eout0Efix0Efor0Efirefox0Eopportunistic0Eencryption0Eflaw0C0Tftag0FRSSbaffb68/story01.htm

Firefox disables “opportunistic encryption” to fix HTTPS-crippling bug

The “opportunistic encryption” feature added to Firefox last week has been disabled to fix a critical security bug that allowed malicious websites to bypass HTTPS protections, Mozilla officials said.

The bug was introduced in Firefox 37, which was released last week and introduced a new feature that could encrypt Web connections even when servers didn’t support HTTPS protocols. While opportunistic encryption lacks some of the crucial protections of the transport layer security protocol, it was still hailed by many as a watershed moment that moved the world closer to an Internet where all data receives end-to-end encryption. That in theory could make it harder for criminal and state-sponsored adversaries to monitor or manipulate the communications of end users.

Now, Mozilla developers have disabled opportunistic crypto in the just-released Firefox 37.0.1 after they discovered that the implementation released last week introduced a critical bug. The vulnerability, which resides in functionality related to opportunistic crypto, in some cases gave attackers an easy way to present fake TLS certificates that wouldn’t be detected by the browser. The flaw in the HTTP alternative services implemented in version 37 could be triggered by a malicious website by embedding an “Alt-Svc” header in the responses sent to vulnerable visitors. As a result, warnings of invalid TLS certificates weren’t displayed, a shortcoming that allowed attackers with a man-in-the-middle position to impersonate HTTPS-protected sites by replacing the original certificate with their own forged credential.

“There was a Firefox implementation problem with Alt-Svc,” Chad Weiner, Mozilla’s director of product management, wrote in a statement sent to Ars. “Opportunistic Encryption is a related, but separate, feature that depends on Alt-Svc. Opportunistic Encryption was disabled because of its use of Alt-Svc. We plan to re-enable this feature once we’ve had time to fully investigate the issue.”

Mozilla provided a bare-bones description of the vulnerability here. In a post published Tuesday, the Sophos Naked Security blog offered a more thorough description of the bug and the risk it posed:

A security researcher worked out a way to bypass HTTPS certificate validation if a web server redirected you via the Alt-Svc header.

That’s very bad, and here’s why.

If you had a phishing site that pretended to be yourbank.example, and handled HTTP connections directly, you’d have difficulty presenting a legitimate-looking connection.

You’d either have to use HTTP and hope your victims wouldn’t notice the lack of a secure connection, or use HTTPS and hope they wouldn’t notice the certificate warnings telling them that you probably weren’t the lawful owner and operator of the yourbank.example domain.

Some users would probably end up getting tricked anyway, but well-informed users ought to spot the ruse at once, and remove themselves from harm’s way.

But this Alt-Svc bug could be used by crooks to redirect victims to a secure connection (thus making the connection “look right”) without producing a certificate warning to say that the site looked like an imposter.

In other words, even a well-informed user might accept a phishing site as the real thing.

The good news is that the bug was quickly found, and just as quickly fixed, with Firefox 37.0.1 coming out over the Easter weekend.

Even though HTTP/2 isn’t yet finalised, and very few legitimate servers actually use it in real life, it is already supported by popular web servers such as Apache and Nginx, and by Microsoft’s IIS (Internet Information Servers) in Windows 10 Preview.

So crooks who want to use HTTP/2, perhaps in the hope of exploiting bugs in the comparatively new code that supports it in the major browsers, are free to do so.

In short, if you’re a Firefox user, make sure you’ve got 37.0.1.

Firefox should update on its own, or readers can manually download and install the update.

Article source: http://arstechnica.com/security/2015/04/firefox-disables-opportunistic-encryption-to-fix-https-crippling-bug/

VPSSIM: A Script To Deploy LEMP Stack Automatically In CentOS

Apr 06, 2015, 13:00 (0 Talkback[s])

VPSSIM, an acronym of VPS is SIMple, is an auto-installer script for LEMP stack setup. Using this script, anyone, even the novice users, can easily deploy LEMP stack, i.e Nginx, MariaDB, and PHP in minutes. VPSSIM will currently work on both CentOS 6 and CentOS 7

Complete Story

Related Stories:

Article source: http://www.linuxtoday.com/infrastructure/vpssim-a-script-to-deploy-lemp-stack-automatically-in-centos.html

10 of the best PaaS providers

Numerous options are available for the app developer when it comes to PaaS providers, but who is the best? CBR has compiled a list to help you out.

Finding the right PaaS provider can prove to be a difficult choice, many appear to offer the same or very similar services. So CBR has compiled a list to help you find which PaaS provider is best for you.

1. Amazon Web Services – Elastic Beanstalk

Elastic Beanstalk is for deploying and scaling web applications which are developed on Java, .NET, PHP, PHP, Node.js, Python, Ruby, Go, and Docker. These will run on Apache servers as well as Nginx, Passenger and IIS.

One of the big benefits is that AWS is constantly adding new tools, so you are always likely to have the latest tools to hand.

A handy feature for IaaS users is that they can also use PaaS to build apps, this is part of an ongoing trend to blur the line between the two.


2. Salesforce

The PaaS options from Salesforce allows developers to build multi-tenant applications. With Force.com the development is performed using nonstandard, purpose-built tools and a development language called Apex.

Heroku has been around for a while, originally supporting Ruby programming language, it has gone on to develop support for Java, Node.js, Scala, Clojure, Python and PHP.

One of the downsides is that the number of add-ons vary and so do the load requirements, this can lead to cost fluctuations which can make it difficult to plan ahead.


3. Software AG – LongJump

Another of the early PaaS members, it has slowly added a number of tools and features for a developer-centric approach.

LongJump, which was bought by Software AG in 2013, in an aim to push for small and medium sized enterprises to develop applications without the need for more IT.

LongJump is based upon open-source components like the MySQL database and Tomcat, it also offers customers a hosted version through Rackspace servers.


4. Microsoft – Azure

As with Amazon, one of the key benefits is that Microsoft Azure supports any operating system, language, tool and framework. This clearly makes life a lot easier for developers.

Some of the languages and options that are available are, .NET, Node.js, PHP, Python, Java, and Ruby.

Another of the benefits of using Azure is that developers can use a Visual Studio for creating and deploying applications.

The Visual Studio support local debugging of application code and also a trace facility and storage account diagnostics, as well as other troubleshooting features.


5. IBM – Bluemix

IBM has an open source PaaS which is based on Cloud Foundry. The idea behind it is that the user will have greater security and control.

Users’ can choose from third-party and community services to extend the functionality of apps. A useful benefit is that any existing infrastructure that you have can be migrated to Bluemix.

The languages that are available include PHP, Python, Ruby Sinatra, Ruby on Rails and it can also be extended to support other languages through buildpacks.


6. RedHat – OpenShift

RedHat offers a few different options for developers which consist of either hosted, private or open source PaaS projects.

The benefit of this is that at whatever level you are, RedHat has an option for you.

For OpenShift Origin, the languages that are supported are Java EE6, Ruby, PHP, Python, Perl, MongoDB, MySQL, and PostgreSQL. OpenShift Online and OpenShift Enterprise also offer the same languages.

One of the key benefits is the automated workflows which helps developers to scale automatically in order to handle peak workloads.


7. VMware – Pivotal CF

This service benefits from the use of Cloud Foundry technology and will run on Hybrid solutions as well as private and public cloud solutions.

Languages that are supported include Java, Ruby and Node.js, additionally it not support Go, Python and PHP.

The service is powered by VMware vCloud Air and vSphere and it is attractive to developers who want an open platform which is more flexible on the language that they want to use.


8. Google – App Engine

Google, as ever, is a powerful contender for one of the top spots as a PaaS provider. The company claims to already support hundreds of thousands of developers and has an impressive record on uptime.

The App Engine supports many different languages and allows for integration to other technologies such as Hadoop, MongoDB and others.

Google is another company which is blurring the lines between PaaS and IaaS so you get the best of both worlds.

Google will take care of the administration of your database and will also give you the option for what type of storage you prefer. MySQL, NoSQL or object storage using Cloud Storage is available.


9. AppFog

AppFog is a PaaS which claims to be a simpler option that offers support for Java, Python, Node, PHP, Ruby, MySQL, MongoDB and PostgreSQL.

AppFog, like others, runs in numerous different regions so that data centres and infrastructures are dotted around. The user can access and pay for only what is needed and used.

Again, like its competitors it offers multiple cloud solutions, it also supports different code management systems such as Git, SVN and Mercurial.

One of the benefits is that AppFog allows for the delegation of management privileges, so you can pass on the work to someone else.


10. Engine Yard

Engine Yard has a long client list and that typically means that it is a trusted name with a proven PaaS record.

One of the reasons why Engine Yard is being successful is because the company tailors its solution to the user. This makes the solution far more tailored than some of the other options.

The company states that: “We curate, optimize and maintain pre-integrated, pre-tested technology stacks for PHP, Ruby and Node.js applications, web and application servers, hosted and local databases, built-in monitoring and process management, an Engine Yard optimized Linux distribution, in-memory caches and more.”

Engine Yard particularly support AWS and Azure for distribution, which covers a large portion of the market.

One of the benefits is that Engine Yard runs self contained environments, so your resources will not be impacted by another application.

Article source: http://www.cbronline.com/news/cloud/aas/10-of-the-best-paas-providers-4545381

OpenDaylight and friends spin up 'CloudRouter Project'

Another day, another waft at the software-defined networking (SDN) and/or network function virtualisation (NFV) market, this time in the form of the new “CloudRouter Project” backed by CloudBees, Cloudius Systems, IIX, NGINX and OpenDaylight.

The latter you probably know – it’s the Linux Foundation’s effort to create a standard SDN and/or NFV stack. Cloudius is an Israeli effort to create a very lightweight OS for bare metal deployment, CloudBees is a continuous integration player, NGINX offers a web server and load balancer while IIX is a global peering company.

The latter is driving the CloudRouter Project, because its senior director of DevOps, and , CloudRouter Project lead, Jay Turner reckons “As the industry moves to cloud computing, there needs to be a bridge from legacy architectures to SDN, hybrid clouds and data-center-­to-­data-center connections.”

The group’s first effort is yours for the downloading here. The tool is based on Fedora and is said to offer the following features:

  • capability to run on public and private cloud infrastructures at scale with a fully­-automated configuration system
  • container-­ready, including support for Docker, Cloudius, OSv and KVM images
  • secure connectivity using standard-s­based IPSec VPN, SSL or L2TP
  • monitoring and reporting with integrated network protocol analysis for network detail at a fine-­grained level
  • high availability and system redundancy with failover and synchronization
  • minimal resource consumption

The group reckons this approach “… provides DevOps for networks (NetOps) with the ability to easily deploy an integrated and hardened stack.”

OpenDaylight has a mighty membership roster – just about any vendor that’s ever considered SDN or NFV, or can spell either, has signed as a member – so its participation in this project means it deserves to be taken seriously. the project is also motivated by the desire to provide an open alternative to commercial SDN and NFV, which means it has every chance of becoming increasingly relevant. ®

Article source: http://go.theregister.com/feed/www.theregister.co.uk/2015/04/01/opendaylight_and_friends_spin_up_cloudrouter_project/

Leading Open Source Network and Cloud Architecture Innovators Support CloudRouter Project

SANTA CLARA, CA–(Marketwired – March 31, 2015) – The CloudRouter® Project, created to advance the development of secure Linux-based open source routing and software-defined networking (SDN) technologies for large-scale cloud companies, data centers, enterprises, and network operators, launched today. The open source community project has support from important network and cloud architecture innovators in application delivery, direct interconnection, and network and cloud management. They include CloudBees, Cloudius Systems, IIX, NGINX,
and OpenDaylight.

“With our peers in the industry, we hope to build a true open source community around the CloudRouter Project to really respond to industry demand for a secure, high-quality SDN and router distribution, something that’s essentially non-existent today,” said Jay Turner, CloudRouter Project Lead and Senior Director of DevOps at IIX. “As the industry moves to cloud computing, there needs to be a bridge from legacy architectures to SDN, hybrid clouds, and data center-to-data center connections. To accelerate the development of this bridge, the CloudRouter Project will initially focus on performance and security.”

The CloudRouter Project incorporates the latest release of OpenDaylight to provide secure network programmability to enable SDN and create a solid foundation for network function virtualization (NFV) for networks at any size and scale. The CloudRouter Project will maintain a stable and up-to-date Linux distribution based on Fedora, including best-of-breed open source technologies. This provides DevOps for networks (NetOps) with the ability to easily deploy an integrated and hardened stack. 

Key CloudRouter features include:

  • capability to run on public and private cloud infrastructures at scale with a fully-automated configuration system
  • container-ready, including support for Docker, Cloudius, OSv, and KVM images
  • secure connectivity using standards-based IPSec VPN, SSL or L2TP
  • monitoring and reporting with integrated network protocol analysis for network detail at a fine-grained level
  • high availability and system redundancy with failover and synchronization
  • minimal resource consumption.

A beta version of CloudRouter is immediately available for developers to download at cloudrouter.org. Industry and independent developers at all levels are invited to participate in the community.

Supporting quotes

“From our work with the Jenkins community, the number one open source continuous integration and delivery platform, we understand the need for workflow technology to automate IT processes to maximize efficiency,” said Sacha Labourey, CEO and Founder of CloudBees, the Enterprise Jenkins Company. “We support the efforts of the CloudRouter Project to develop open source technology to make the network management workflow more efficient, something that network managers will find very helpful.”

“Companies that rely on cloud architectures should pay attention to the efforts of the CloudRouter Project to build a high-performance router for cloud interconnections across public, private, and enterprise networks,” said Dor Laor, CEO of Cloudius Systems, developers of the OSv cloud operating system. “I’m eager to see if my own OSv project can optimize CloudRouter and OpenDaylight, and plan to track the open source development progress of CloudRouter on GitHub. You should too.” 

Linux Foundation
“We applaud industry efforts to accelerate the development of open source networking projects and make them easier to use,” said Jim Zemlin, Linux Foundation Executive Director. “There’s huge interest and momentum for open source SDN and advanced Linux networking technology. It’s great to see a project like CloudRouter meeting this demand.”

“NGINX works with some of the world’s busiest cloud applications and they consistently demand more performance and reliability between their network and the networks of their customers,” said Gus Robertson, CEO of NGINX. “We welcome efforts by the open source project CloudRouter to build technology to improve routing between networks and ultimately help businesses enjoy the benefits of improved performance to enterprise cloud applications.” 

“The true test of an open source project is whether people leverage the code to address a wide range of use cases,” said Neela Jacques, executive director, OpenDaylight. “It’s great to see projects like CloudRouter using the OpenDaylight platform in brand new ways. The more collaboration among projects, the better result for the industry as we work toward delivering an open, network-enabled cloud.”

About the CloudRouter Project
The CloudRouter Project is a collaborative open source project to develop a freely available software-based router designed to securely run on physical, virtual, and cloud environments that support SDN infrastructures. CloudRouter aims to facilitate migration to the cloud without giving up control over network routing and governance. It includes the features of traditional hardware routers, as well as support for emerging technologies such as containers and software-defined interconnection. To help bridge legacy infrastructure with the cloud, the project is focused on bringing simplicity to network interconnection, a traditionally complex process.

To learn more and to get involved, visit https://cloudrouter.org.

Blog: http://cloudrouter.org/cloudrouter/releases/2015/03/31/welcome-to-the-cloudrouter-project.html

Twitter: https://twitter.com/cloudrouter

Linkedin: https://www.linkedin.com/company/cloudrouter/

Google+: https://plus.google.com/116921548201786287241/about

CloudRouter is a registered trademark of IIX Inc. All other trademarks are the property of their respective owners.

Image Available: http://www.marketwire.com/library/MwGo/2015/3/30/11G037064/Images/cloudrouter-final_design-1147342943845.jpeg

Article source: http://www.marketwired.com/mw/release.do?id=2005158&sourceType=3

Google Cloud Launcher deploys VM-based apps in a snap

Google’s latest enhancement to Cloud Platform is not a new feature but a repackaging of an existing innovation. But it’s a downright useful offering all the same.

Cloud Launcher is a gallery of applications that can be deployed to Google Cloud Platform with one click. Many of the offered apps are courtesy of a partnership with an existing app-packaging solution, Bitnami. The service’s catalog includes many commonly deployed applications, such as WordPress or SugarCRM, plus development stacks (LAMP) and stack components (Nginx, Node.js).

The blog post detailing Cloud Launcher indicates that the service is aimed mainly at admins who want to deploy VM-based applications — as opposed to containerized ones — but don’t want to deal with the hassle of setting up a VM and then deploying an app into it. Enter Bitnami, which has been providing VM-packaged application solutions for some time.

Each package comes with an estimated monthly cost for running on Google Cloud Platform. The costs vary widely among solutions: A simple LAMP stack runs a mere $6.46 a month, but a Puppet VM is estimated at almost 10 times that much.

Given that almost all talk of virtualizing applications now revolves around containers, it seems almost regressive for Google to offer a VM-based application solution. On the other hand, containers are more of a moving target, and VMs still offer some advantages — mainly the ability to supply an entire OS environment independent from the host.

How to create a Swarm cluster with Docker

Buy Docker Cookbook.

Buy Docker Cookbook.

Editor’s note: this is an Early Release excerpt from Chapter 7 of Docker Cookbook by Sébastien Goasguen. The recipes in this book will help developers go from zero knowledge to distributed applications packaged and deployed within a couple of chapters. One of the key value propositions of Docker is app portability. The following will show you how to use Docker Machine to create a Swarm cluster across cloud providers.


You understand how to create a Swarm cluster manually (see Recipe 7.3), but you would like to create one with nodes in multiple public Cloud Providers and keep the UX experience of the local Docker CLI.


Use Docker Machine to start Docker hosts in several Cloud providers and bootstrap them automatically to create a swarm cluster.


This is an experimental feature in Docker Machine and is subject to change.

The first thing to do is to obtain a swarm discovery token. This will be used during the bootstrapping process when starting the nodes of the cluster. As explained in Recipe 7.3, swarm features multiple discovery process. In this recipe, we used the service hosted by Docker, Inc. A discovery token is obtained by running a container based on the swarm image and running the create command. Assuming we do not have access to a Docker host already, we use docker-machine to create one solely for this purpose.

With the token in hand, we can use docker-machine and multiple public Cloud drivers to start worker nodes. We can start a swarm head node on VirtualBox, a worker on DigitalOcean and another one on Azure.


Do not start a swarm head in a public cloud and a worker on your localhost with VirtualBox. Chances are the head will not be able to route network traffic to your local worker node. It is possible to do, but you would have to open ports on your local router.

Your swarm cluster is now ready. Your swarm head node is running locally in a Virtualbox VM, one worker node is running in DigitalOcean and another one in Azure. You can set the local docker-machine binary to use the head node running in VirtualBox and start using the swarm subcommands:


If you start a container, swarm will schedule it in round-robin fashion on the cluster. For example, starting three nginx container in a for loop with:

Will lead to three nginx container on the three nodes in your cluster. Remember that you will need to open port 80 on the instances running in the Cloud to access the container.


Do not forget to remove the machine you started in the Cloud.

See Also

  • Using Docker machine with Docker swarm.

Editor’s note: if you’re interested in learning more about networking at scale, you’ll want to check out Jay Edwards’ Distributed Systems training session at Velocity in Santa Clara May 27-29, 2015.

Article source: http://radar.oreilly.com/2015/03/how-to-create-a-swarm-cluster-with-docker.html

Frost & Sullivan Applauds AppNeta's Customer-Centric Strategies for Driving its Three-Digit Growth Rate in the APM …

MOUNTAIN VIEW, Calif., March 24, 2015 /PRNewswire/ — Based on its recent analysis of the application performance management (APM) market, Frost Sullivan recognizes AppNeta with the 2015 North American Frost Sullivan Award for Growth Excellence Leadership. AppNeta’s continued success in the highly competitive APM market, despite its relative nascence, is a clear indication of its commitment to addressing future market needs. The company’s rapid market ascension is largely a result of its best-in-class APM solution, integrated with network and end-user monitoring.

Logo – http://photos.prnewswire.com/prnh/20150323/183951LOGO

“AppNeta has entrenched itself in the APM market with its end-to-end solution that offers in-depth and granular visibility across business-critical applications, networks, and end-user experience,” said Frost Sullivan Industry Analyst Mariano Kimbara. “Its tools for in-house applications recognize trends, keep track of every single user, visualize every data point at any layer, and identify root causes, regardless of location.”

AppNeta’s monitoring solutions also monitor any software-as-a-service (SaaS) application by providing application performance for end users, identifying critical applications affecting performance, and monitoring infrastructure outside of the company’s control. In addition, the solution generates actionable insights at the code and network levels. Across all products and technologies, the company collects 50 billion daily metrics from its 3,000 clients.

Significantly, AppNeta’s monitoring tools—TraceView, AppView, FlowView, and PathView— retain data six times longer than the industry average. While TraceView and FlowView have data retention periods of 90 days, AppView and Path View retain data for a year.

Since entering the APM market only four years ago, AppNeta has maintained above-market-average topline growth, achieving an impressive growth rate of 307 percent in the past three years, with TraceView APM tools growing at 318 percent. Overall, the company grew at a compound annual growth rate of 148 percent.

“AppNeta owes much of its popularity to its solution’s ability to isolate errors and track performance with less than 1 percent overhead, while the measurement overhead of many of its peers is approximately 20 percent,” observed Kimbara. “Its products are not only superior in quality, but are also more affordable than competing products. Further, it offers the best price value by basing prices on the complexity of the client organization and its needs.”

Another factor that sets AppNeta apart is its support of all languages, including Java, .NET, PHP, Ruby, Python, and node.js, as well as standalone webservers Nginx and Apache; few companies can boast multiple language and monitoring applications in distributed environments. Additionally, the company maintains close relations with its clients, helping to keep an eye on broad transaction tracing and data retention dates across many servers.

AppNeta is not focused on a classic monitoring solution. Instead, it aims to understand the network infrastructure, code perspective, and real end-user experience. This emphasis on an end-user perspective has enabled it to emerge as the fastest growing and most promising company in the APM market.

“The most exciting companies in any market are those that display an inspirational zeal for growth,” said Frost Sullivan Global President Managing Partner Krishna Srinivasan. “AppNeta has demonstrated such a focus in the application performance management industry by delivering a topnotch solution, fostering customer loyalty, and carving out a unique market position.”

Each year, Frost Sullivan presents this award to the company that has demonstrated excellence in growth and customer value. It recognizes the superiority of the product/service as well as the overall customer, purchase, ownership and service experience offered, which has resulted in the recipient company seeing above-market growth and increased share of wallet. The award lauds the growth, diversification and sustainability strategies of the company.

Frost Sullivan’s Best Practices Awards recognize companies in a variety of regional and global markets for outstanding achievement in areas such as leadership, technological innovation, customer service, and product development. Industry analysts compare market participants and measure performance through in-depth interviews, analysis, and extensive secondary research.

About AppNeta

AppNeta is the Full Stack Application Performance Management (APM) technology leader, providing integrated performance visibility that spans the application code, through the network, to the end user. AppNeta’s SaaS solutions give Development, Application and IT Operations teams broad, detailed performance data to see across their Web, mobile and cloud-delivered application environments and pinpoint tough performance bottlenecks. With AppNeta, customers have all of the performance data they need to assure ongoing and exceptional delivery of business-critical applications and end-user experience. For more information, visit www.appneta.com. 

About Frost Sullivan

Frost Sullivan, the Growth Partnership Company, works in collaboration with clients to leverage visionary innovation that addresses the global challenges and related growth opportunities that will make or break today’s market participants.

Our “Growth Partnership” supports clients by addressing these opportunities and incorporating two key elements driving visionary innovation: The Integrated Value Proposition and The Partnership Infrastructure.

  • The Integrated Value Proposition provides support to our clients throughout all phases of their journey to visionary innovation including: research, analysis, strategy, vision, innovation and implementation.
  • The Partnership Infrastructure is entirely unique as it constructs the foundation upon which visionary innovation becomes possible. This includes our 360 degree research, comprehensive industry coverage, career best practices as well as our global footprint of more than 40 offices.

For more than 50 years, we have been developing growth strategies for the global 1000, emerging businesses, the public sector and the investment community. Is your organization prepared for the next profound wave of industry convergence, disruptive technologies, increasing competitive intensity, Mega Trends, breakthrough best practices, changing customer dynamics and emerging economies?

Contact Us:     Start the discussion

Join Us:           Join our community

Subscribe:       Newsletter on “the next big thing”

Register:        Gain access to visionary innovation


Mireya Espinoza
P: 210. 247.3870
F: 210.348.1003
E: mireya.espinoza@frost.com 


To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/frost–sullivan-applauds-appnetas-customer-centric-strategies-for-driving-its-three-digit-growth-rate-in-the-apm-market-300054929.html

Article source: http://finance.yahoo.com/news/frost-sullivan-applauds-appnetas-customer-130000613.html

Modern PHP: New Features and Good Practices

Programmers familiar with the language and its community may recognize the author’s name, because he is the creator of PHP The Right Way, a website which he describes as “an easy-to-read, quick reference for PHP popular coding standards, links to authoritative tutorials around the Web and what the contributors consider to be best practices at the present time,” in 21 different languages.

Yet rest assured that the book under review is not merely a dead-tree version of the website. Instead, the book covers the more recent advancements within the language, while the website covers best practices and standards. This should be borne in mind, otherwise the reader may be baffled by the absence from the book of certain topics on the website essential to the language, such as SPL, PEAR, and PHPDoc. Moreover, of the topics shared between the book and the website, the information is generally organized quite differently, with more example code in the book.

This title was published on 1 March 2015, under the ISBN 978-1491905012, by O’Reilly Media, who kindly provided me with a review copy. Its material is presented in 268 pages, organized into 13 chapters (The New PHP; Features; Standards; Components; Good Practices; Posting; Provisioning; Tuning; Deployment; Testing; Profiling; HHVM and Hack; Community), which are grouped into three parts (Language Features; Good Practices; Deployment, Testing, and Tuning) — as well as two appendices (Installing PHP; Local Development Environments) and an index. The publisher’s page does not offer much of interest. However, all of the example code is available from the book’s GitHub repository. There are differences between the GitHub code and what is printed in the book, e.g., a baffling require ‘vendor/autoload.php’; in the first example code file. The author claims that the reader does not need to know PHP, but at least “a basic understanding of [] fundamental programming concepts” (page xiv). However, anyone without at least intermediate skills and experience with PHP could conceivably struggle with these more advanced subjects.

The first chapter is only a brief overview of the history of PHP, its current state, and some possible future changes to the language’s engine. The real content starts in the second chapter, in which the author gives the reader a fast-paced introduction to his seven favorite major new features in PHP: namespaces, class interfaces, traits, generators, closures, Zend OPcache, and the built-in HTTP server. In some regards, the coverage is a bit too fast-paced, as some topics and questions likely in the reader’s mind are not addressed — for instance, namespace case-sensitivity and techniques for ensuring that a chosen namespace is globally unique (page 9). For each topic, its purpose and advantages are explained, and sometimes illustrated with code examples, although none are extensive.

The second part of the book opens with a chapter on some of the new standards in the PHP ecosystem that are intended to move the common development process from a reliance upon one isolated framework, with an idiosyncratic coding style, to distributed components that can interoperate through the use of interfaces, industry-wide coding standards, and the use of autoloaders for finding and loading classes, interfaces, and traits at runtime. Components are covered in more detail in the subsequent chapter, as is Composer, for installing components and managing dependencies. The fifth chapter is a lengthy but information-packed exposition of numerous best practices regarding input data sanitization, password handling, dates and times, and safe database queries, among other topics. Some of the advice can be found in other PHP books and online, but all of this is neatly explained, updated with the newer PHP versions, and worthwhile as a refresher.

Deployment, testing, and tuning are the broad subject areas of the third and final part of the book. The author discusses the options for hosting your PHP applications, as well as provisioning any self-managed web server and tuning a server for optimal performance. All of the instructions assume you are using Linux and nginx, and thus would be of less value to those using Windows or Apache, for instance. The material on application deployment is relatively brief, and focuses on use of the Capistrano tool. Testing is often neglected in real-world projects, but certainly not in this book, as the author explains unit and functional testing, illustrated through the use of PHPUnit. This is followed by information on how to use a development or production profiler to analyze the performance of your application, with detailed coverage of Xdebug and XHProf, among other tools. The next two chapters dive into topics related to the (possible) future of PHP — specifically, Facebook’s HHVM PHP interpreter and their Hack derivative language. The final chapter briefly discusses the PHP community. The two appendices explain how to install PHP on Linux or OS X for commandline use, and how to set up a local development environment. The author mentions a free edition of Zend Server, but the vendor page mentions no such pricing.

Despite its technical subject matter, this book is not a difficult read. The author’s writing style is usually light and friendly, especially in the preface. In a few places, the phrasing is a bit too terse, which might prove momentarily confusing to some readers, e.g., “Function and constant aliases work the same as [those of] classes” (page 11). The text has some errata (aside from the two, as of this writing, already reported): “curl” (pages 15, 220, and 222; should read “cURL”), “a an argument” (page 33), “Prepared statement [to] fetch” (pages 99 and 100), “with [the] php://filter strategy” (page 110), “2 Gb” (page 129; should read “2 GB”), “the the” (page 154), “path to a the code” (page 176), and “WordPress” (page 190; should read “WordPress”).

One weakness with the book is that for several of the topics — including some critical ones — there is not enough detailed information provided that would allow one to begin immediately applying that technique or resource to one’s own coding, but instead just enough information to whet one’s appetite to learn more (presumably from another book or a website). Secondly, some of the narrative — particularly near the end of the book, when discussing various tools — would be of less value to anyone not developing analytics environment. Beware that some of the tools require numerous dependencies. For instance, do you have Composer, Git, MongoDB, and its PHP extension installed? If not, then you won’t be using XHGUI. Also, some of the installation and configuration steps are quite lengthy, with no details provided for troubleshooting issues that might arise. Lastly, despite the promise that any reader with only basic programming knowledge will be able to fully understand the book, such a reader would likely find much of its contents mystifying without further preparation from other sources.

Nonetheless, the book has much to offer, despite its slender size. Numerous resources are recommended — most if not all apparently vetted by the author, who clearly has considerable experience in this arena. Some valuable techniques are presented, such as those instances in the text where the author shows how to use iteration on large data sets to minimize memory usage. In addition, the example code demonstrates that the author has made the effort to produce quality code that can serve as a model to others. Modern PHP does a fine job overall of explaining and advocating the newer capabilities of PHP that would attract developers to choose the language for building state-of-the-art websites and web applications.

Michael Ross is a freelance web developer and writer.

You can purchase Modern PHP: New Features and Good Practices from amazon.com. Slashdot welcomes readers’ book reviews (sci-fi included) — to see your own review here, read the book review guidelines, then visit the submission page. If you’d like to see what books we have available from our review library please let us know.

Article source: http://books.slashdot.org/story/15/03/22/1447230/modern-php-new-features-and-good-practices?utm_source=rss1.0mainlinkanon&utm_medium=feed

Logentries Launches Free Tool for Instant Web Log Analysis

BOSTON, March 19, 2015 /PRNewswire/ — Logentries, the leading log management and analytics service built for the cloud, today released LogCruncher, a free tool for instant analysis and data visualization of web server log files. LogCruncher does not require any set-up or installation and provides immediate visibility into Apache and Nginx web server logs. With instant access to log data visualization, Operations teams and Web Server Admins can gain immediate understanding of website analytics and user experience based on key metrics including their traffic volumes, web server health and geographical distribution of requests.

Users simply upload their web server log file to LogCruncher, and in less than 60 seconds, receive a complete metrics dashboard containing log data analysis such as:

  • Number of Logs Crunched
  • Activity By Time of Day
  • Most Accessed Resources
  • Resource Types
  • Request Types
  • HTTP Status
  • Top Search Terms
  • Response Size Distribution
  • Top Remote Hosts
  • Number of Unique Hosts
  • Browser Share
  • User OS
  • Top User Countries

“As a news media website, our web performance and user experience is critically important to our business,” said Andrew Mullaney, CTO and Co-Founder of Newswhip Media. “With LogCruncher, we can look at just one log file and get an instant snapshot of our website traffic and activity through visualizations of our most important web server log data by uploading a single web log.”

When Operations teams and Web Server Admins need to quickly identify system trends or anomalies, LogCruncher provides visibility into log data without requiring set-up or configuration. The tool was designed for users with minimal technical expertise, offering easy access to valuable insight for Operations, Support, Product and Marketing teams. The free tool quickly ingests Apache and Nginx log files and processes them instantly to provide a view into system usage and activity.

LogCruncher can also detect notable patterns such as high frequency of unusual HTTP status errors. LogCruncher streams end-to-end, providing data results at the same rate as the upload process. As the logs events are processed, LogCruncher parses and normalizes the incoming data into objects following a common format from which key metrics are extracted and visualized. 

“Developed by the Logentries Labs research team, LogCruncher provides quick and easy visibility into web server behavior,” said Trevor Parsons, Chief Scientist and Co-Founder at Logentries. “Using log data is one of the most granular ways to understand how users are accessing web applications, especially business-critical applications. LogCruncher reveals immediate insight into the end-user experience, including web page response times and any errors they may be experiencing.”

The Logentries LogCruncher is available today for free and offers instant web server log analysis in less than 60 seconds.

The cloud-based Logentries service collects and pre-processes log events in real-time for on-demand analysis, alerting and visualization. With custom tagging and filtering, users can correlate data across their infrastructure to better understand application usage and performance, security and performance issues, and user behavior. To learn more about LogCruncher or to get started with a free 30-day Logentries trial, visit https://logentries.com.

About Logentries
Logentries is the leading log management and analytics service built for the cloud, making business insights from machine-generated log data easily accessible to development, IT and business operations teams of all sizes. With the broadest platform support and an open API, Logentries brings the value of log-level data to any system, to any team member, and to a community of more than 35,000 worldwide users. While traditional log management and analytics solutions require advanced technical skills to use, and are costly to set-up, Logentries provides an alternative designed for managing huge amounts of data, visualizing insights that matter, and sharing that information across its global user community. To sign up for the free Logentries service, visit http://logentries.com 


To view the original version on PR Newswire, visit:http://www.prnewswire.com/news-releases/logentries-launches-free-tool-for-instant-web-log-analysis-300052614.html

Article source: http://finance.yahoo.com/news/logentries-launches-free-tool-instant-130000591.html

Laravel 5.0 Integration On Cloudways Ensures Smoother App Deployment

MOSTA, MALTA–(Marketwired – Mar 18, 2015) – Cloudways – the world’s most convenient Cloud Hosting Platform – has integrated Laravel 5.0 into its PHP stack. This integration will help developers create sophisticated and innovative web projects with newfound convenience. The convenience stems from the fact that developers can start using this very popular framework with super fast stack without going into hassles of installation, configuration, security, and management.

Laravel is becoming one of the most popular PHP frameworks for web application development. According to BuiltWith Trends Data, there are currently more than 40,000 live websites that use Laravel framework.

“Inspired from RoR, Laravel is taking PHP community by storm. We have come up with this addition keeping the needs of developers in view. Now, developers can seamlessly start building their apps after launching Laravel on PHP stack on the Cloudways Cloud Platform. They do not have to worry about hosting and other associated technicalities,” said Aaqib Gadit, Co-founder of Cloudways.

On Cloudways, all Laravel apps are deployed on a unique PHP stack that utilizes the effective powers of Nginx and Apache web servers. This ensures efficient delivery of static and dynamic content types. Consequently, web apps load faster on Cloudways compared to the ones deployed on traditional PHP hosting stacks.

Furthermore, developers can make informed decisions about the future of their production web apps by analyzing performance data provided by New Relic add-on.

With 13 data-centers located globally, Cloudways allows developers to host their Laravel PHP apps on a location nearest to their target audience. All servers come with the unique one-click administration panel known as Cloud Console. Plus, developers need not to worry about the security of their servers since Cloudways actively updates firmware and OS with security patches to ensure that each and every one of its servers is protected against every known security threats.

About Cloudways

Cloudways is a European Cloud hosting service provider with a primary focus on customer convenience. By using Agile DevOps techniques, Cloudways Cloud Platform is positioned to become one of the world’s most developer-friendly Cloud hosting mediums.

For more details, visit www.cloudways.com.

Article source: http://finance.yahoo.com/news/laravel-5-0-integration-cloudways-070000354.html

Docker scoops up Kitematic for smoother Mac compatibility

The containerization trend has been growing fast and furious over the past year or so in the world of software development, and on Thursday leading player Docker announced a step toward further expansion.

Docker has acquired Canadian startup Kitematic, maker of an open-source tool by the same name that makes it easier for developers to install and run Docker on Mac computers. Now a Docker product, the Kitematic tool remains open source and free, said Docker founder and CTO Solomon Hykes.

Terms of the deal were not disclosed. Kitematic’s staff of three will join Docker’s team in San Francisco.

Container technology such as that offered by Docker enables companies to build applications much more quickly than they can otherwise. It allows developers to assemble apps from components and then package them as self-sufficient, portable units that can be run in many different kinds of hardware environments. By far the top contender in the arena, Docker has been downloaded more than 200 million times and is used by companies including eBay, Yelp and Spotify.

Although Mac support for containers and container-based development is also available via offerings such as Parallels Virtuozzo, “it was important to Docker to have containers fully supported on Macs given their popularity among developers,” said Jay Lyman, a senior analyst with 451 Research. “Kitematic brings that to Docker.”

The deal also highlights Docker’s effort to maintain momentum and growth, which “thus far have been impressive,” Lyman added. “Widening its developer and technical appeal is one way of doing that.”

GUI-driven Kitematic can automatically install Docker on a Mac in less than five minutes, allowing the user to build, ship and run Docker containers from there.

More specifically, the tool leverages Docker Machine—one of the three orchestration tools Docker released earlier this year—to configure a developer’s Mac as a Docker host and then install and run the Docker Engine. Once that’s done, it presents developers with a catalog of curated content including images for Nginx, Minecraft and Redis that they can build, ship and run as Docker containers on their laptop.

Kitematic has proven popular among developers experimenting with Docker for the first time, the company noted, and received more than 2,600 stars on GitHub in less than six months.

Docker has made several acquisitions in recent months, beginning with its purchase of Orchard last summer. That one, which led to the creation of the Docker Compose orchestration tool, was followed by the acquisition of SocketPlane last week.

Article source: http://www.pcworld.com/article/2896375/docker-scoops-up-kitematic-for-smoother-mac-compatibility.html