Dylan Barlett

Google Analytics on Steroids

Dylan — Thu, 17 May 2012 03:25:17 +0000

Google Analytics on Steroids (GAS) is a wrapper around the Google Analytics API that adds several useful events categories. One of the most interesting is YouTube. By default, _gasTrackYoutube fires events for play, pause, finish, and error. You can also specify playback percentages. This GitHub Gist is a simple page that shows how to set events for 25, 50, and 75% playback (line 14). Thanks to Eduardo Cereto for helping me get it to work.

Export AD User Details

Dylan — Wed, 14 Mar 2012 14:35:28 +0000

To list the name, department, and manager of all users in an Active Directory OU:

dsquery user -limit 200 OU=UserOU,OU=Sales,DC=contoso,DC=com | dsget user -ln -fn -dept -mgr >
users.txt

Full documentation of Dsquery user and Dsget user.

Selective Realtime SQL Monitoring

Dylan — Fri, 03 Feb 2012 19:10:34 +0000

While investigating unusual WordPress behavior, I needed a way to log all queries to a file for detailed analysis, but stream a subset to the console.

This wp-config parameter

define('SAVEQUERIES', true);

and snippet in functions.php (from Bob Sherron)

// outputs SQL queries to a log
add_action('shutdown', 'sql_logger');
function sql_logger() {
    global $wpdb;
    $log_file = fopen(ABSPATH.'/sql_log.txt', 'a');
    fwrite($log_file, "//////////////////////////////////////////\n\n" . date("F j, Y, g:i:s a")."\n");
    foreach($wpdb->queries as $q) {
        fwrite($log_file, $q[0] . " - ($q[1] s)" . "\n\n");
    }
    fclose($log_file);
}

logs all queries to sql_log.txt. On the server, I can then run

tail -f sql_log.txt | grep "WHERE \`option_name\` = 'sidebars_widgets'" | tee sidebars_widgets.txt

Note the backticks around option_name and single quotes around sidebars_widgets.

Breakdown of the individual commands:

tail -f sql_log.txt

Stream the end of sql_log.txt to stdout, as it’s updated

grep "WHERE \`option_name\` = 'sidebars_widgets'"

Filter only queries that update the row I’m interested in

tee sidebars_widgets.txt

Display the filtered lines on the console and write to sidebars_widgets.txt for later review

Capital Bikeshare Trip History Data

Dylan — Wed, 11 Jan 2012 02:55:27 +0000

Capital Bikeshare just posted quarterly Trip History Data. I’ve imported the files into Google Fusion Tables:

2011-4th-quarter
2011-3rd-quarter
2011-2nd-quarter
2011-1st-quarter
2010-4th-quarter

Android WebDriver without the SDK

Dylan — Sun, 08 Jan 2012 18:33:53 +0000

The Android WebDriver docs imply that you need the Android SDK and a USB connection to run Selenium tests on an Android device. This is not the case. You can run the WebDriver APK and connect via Wi-Fi.

On your device:

Enable non-Market apps (Settings > Applications)
Download the latest android-server APK from http://code.google.com/p/selenium/downloads/list
Install the APK
Launch WebDriver
Determine your IP (Settings > Wireless & networks > Wi-Fi settings > SSID)

On your workstation:

Confirm that WebDriver is running and available by browsing to http://device_ip:8080/wd/hub/.

Run your Selenium script as usual (I use the Python bindings):

from selenium import webdriver
android = webdriver.Remote(command_executor='http://device_ip:8080/wd/hub',  desired_capabilities=webdriver.DesiredCapabilities.ANDROID)
android.get("http://www.google.com")
# File will be saved on your workstation, not the device
android.get_screenshot_as_file("android_google.png")
android.quit()

Selenium browser speed comparison

Dylan — Sun, 08 Jan 2012 03:57:02 +0000

I use Selenium (via the Python bindings) for automated browser testing. My current project needs to run as fast as possible, so I compared the executions speed of a small test script in various browsers, both directly via WebDriver and through local Selenium Server. Elements are selected by name, CSS path, and XPath. The is also some direct JavaScript execution to get around quirks in the application under test.

Test execution time (average of five runs):

Browser	Interface	Time (sec)
Firefox	WebDriver	9.22
Firefox	Server	5.58
Chrome	WebDriver	5.35
Chrome	Server	6.55
HTMLUnit¹	Server	3.07

[1] JavaScript enabled (emulates Firefox 3.6)

Test environment

Intel Core2Quad Q8400
Ubuntu 11.04 amd64, Linux 2.6.38
Sun JRE 1.6.0_26-b03
Selenium Server 2.16.1
Selenium Python bindings 2.15

Installing iTop in a VM

Dylan — Sun, 23 Oct 2011 23:50:56 +0000

iTop (IT Operational Portal) is an ITIL-oriented service management application that includes a customizable CMDB. The documentation is a bit spotty, so here’s how to experiment in a virtual machine.

Download the TurnKey LAMP stack image (available as VMDK, OVF, and ISO) and open in your favorite virtualization software.
Boot and configure the OS and MySQL root accounts
Install OS updates
Note the IP address
If you need external authentication, install PHP LDAP support and verify:
```
apt-get install php5-ldap php5-cli
php -m | grep ldap
```
Restart Apache
```
service apache2 restart
```
Configure MySQL
1. Login to phpMyAdmin at https://ip_address:12322
2. Create a user called itop
3. Select Create database with same name and grant all privileges

Download & install iTop files

wget http://sourceforge.net/projects/itop/files/itop/1.2/iTop-1.2.0-299.zip
unzip iTop-1.2.0-299.zip
mkdir /var/www/itop
cp -r web/* /var/www/itop
chown -R www-data /var/www/itop/

Edit configuration file
```
nano /var/www/itop/config-itop.php
```
1. Change line 26 to your timezone
```
'timezone' => 'America/New_York'
```
2. Optional: if you use LDAP authentication, change lines 65-70. This will allow any user account in the example.com domain to login (create the accounts without @example.com)
```
'host' => 'LDAP_server_hostname',
'port' => 389,
'default_user' => 'bind_user',
'default_pwd' => 'bind_password',
'base_dn' => 'dc=example,dc=com',
'user_query' => '(&(samaccountname=%1$s)(objectCategory=User)
```
3. Optional: comment out all languages other than en to improve performance
Browse to http://ip_address/itop and complete the wizard
Optional: configure background processing (cron)

Optional: install the Data Model Toolkit

Download & install

cd /var/www/iTop
wget http://www.combodo.com/documentation/iTopDataModelToolkit-1.2.zip
unzip iTopDataModelToolkit-1.2.zip
chown -R www-data toolkit

Browse to http://ip_address:/itop/toolkit

APC UPS Monitoring on ClearOS

Dylan — Sun, 19 Jun 2011 23:59:12 +0000

Configuring an APC Back-UPS ES 550 with ClearOS 5.2:

Connect included RJ-45 to USB cable.
Install net-snmp:
```
yum install net-snmp
```
Download the latest APCUPSD rpms from SourceForge. apcupsd is the base package, apcupsd-multimon is the web interface. For ClearOS 5.2, use the .el5.i386.rpm packages.

Install:

rpm -ivh apcupsd-3.14.8-1.el5.i386.rpm
rpm -ivh apcupsd-multimon-3.14.8-1.el5.i386.rpm

Start monitoring service:
```
service apcupsd start
```
Display UPS status:
```
apcaccess status
```
Browse to http://hostname/cgi-bin/multimon.cgi

Protected: WordPress Memo

Dylan — Thu, 21 Apr 2011 16:27:33 +0000

ClearOS and StartSSL

Dylan — Tue, 22 Mar 2011 05:25:49 +0000

Update 3/21/12: I’ve revised the instructions so that Webconfig serves the entire StartCom chain. This prevents some browsers, particularly Android, from distrusting an an otherwise-valid certificate.

As previously described, I use ClearOS as an all-purpose small business server. There are two public-facing components: Webconfig (remote admin) and SOGo (groupware, proxied thru Apache). By default, ClearOS secures both with self-signed SSL certificates. While this works, it’s unprofessional and inconvenient to make users add a security exception to every browser they connect from.

Inspired by this post, I decided to try a Class 1 cert from StartCom. They provide free certs valid for one year (more info at SSL Shopper). Once you’ve signed up with StartCom and validated your domain ownership:

Change the default message digest parameter in /etc/ssl/openssl.cnf from MD5 to SHA1:
default_md = sha1 (both lines)
Delete the System Certificate
Create a CSR for the System Certificate
Provide the CSR to StartCom and retrieve the cert.
Upload the cert into Webconfig. This will create /etc/ssl/sys-0-cert.pem and /etc/ssl/private/sys-0-key.pem

You can now configure Apache (web pages and SOGo):

Download the certificate chain (ca.pem and sub.class1.server.ca.pem) to /etc/ssl
Modify /etc/httpd/conf.d/ssl.conf:SSLCertificateFile /etc/ssl/sys-0-cert.pem SSLCertificateKeyFile /etc/ssl/private/sys-0-key.pem SSLCertificateChainFile /etc/ssl/sub.class1.server.ca.pem SSLCACertificateFile /etc/ssl/ca.pem
Restart Apache:
```
service httpd restart
```

Webconfig uses a different Apache instance with configuration files in /usr/webconfig/conf.

Overwrite the self-signed cert and key and set proper ownership:

cp /etc/ssl/sys-0-cert.pem /usr/webconfig/conf/server.crt
cp /etc/ssl/private/sys-0-key.pem /usr/webconfig/conf/server.key
chown root /usr/webconfig/conf/server.*

Copy the StartCom chain and set proper ownership:

cp /etc/ssl/ca.pem /usr/webconfig/conf/
cp /etc/ssl/sub.class1.server.ca.pem /usr/webconfig/conf/
chown root /usr/webconfig/conf/*.pem

Modify /usr/webconfig/conf/extra/httpd-ssl.conf:SSLCertificateFile /usr/webconfig/conf/sys-0-cert.pem SSLCertificateKeyFile /usr/webconfig/conf/private/sys-0-key.pem SSLCertificateChainFile /usr/webconfig/conf/sub.class1.server.ca.pem SSLCACertificateFile /usr/webconfig/conf/ca.pem
Restart Webconfig:
```
service webconfig restart
```

Use the SSL Checker to verify that Apache is serving the entire chain for both sites.

If you connect to the IMAP server (Cyrus) directly:

Copy the files and set proper ownership:

cp /etc/ssl/sys-0-cert.pem /etc/imapd.d/cert.pem
cp /etc/ssl/private/sys-0-key.pem /etc/imapd.d/key.pem
chown cyrus:root /etc/imapd.d/*.pem

Restart Cyrus
```
service cyrus-imapd restart
```