Sendmail/STARTTLS verify=FAIL

19 Oct 2014

Oct 19 14:04:34 Billing sm-mta[17583]: STARTTLS=client, relay=aspmx.l.google.com., version=TLSv1/SSLv3, verify=FAIL, cipher=ECDHE-RSA-RC4-SHA, bits=128/128

If you see those errors in your mail.log and your emails are failing to send, you need to add your ssl cert from apache to the sendmail config in /etc/mail/sendmail.cf:

# CA directory

O CACertPath=/etc/apache2/ssl

# CA file

O CACertFile=/etc/apache2/ssl/example.ca-bundle

# Server Cert

O ServerCertFile=/etc/apache2/ssl/example.cert

# Server private key

O ServerKeyFile=/etc/apache2/ssl/example.key

Securing External LDAP Connections

19 Oct 2014 https://help.ubuntu.com/community/SecuringOpenLDAPConnections

I was getting the following error when I tried testing with openssl:
error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:177

The solution? It turns out that /etc/default/slapd needs to be configured to use /etc/ldap/ldap.conf using the following:

SLAPD_OPTIONS="-f /etc/ldap/slapd.conf"

Adding Virtualhost In Apache For Port

17 Oct 2014 Say we wanted to route the <your-domain>.com:8072/misc to /var/www/misc...

Add the following to /etc/apache2/ports.conf:
NameVirtualHost *:8072
Listen 8072

Add a file that describes your site to /etc/apache2/sites-available with this:

<VirtualHost *:8072>

ServerName <your-domain>.com

DocumentRoot /var/www/misc/

</VirtualHost>

Run this command: sudo a2ensite misc

And restart apache: sudo service apache2 restart

Deploying Nginx + Gunicorn + Flask

16 Oct 2014 Why use both Nginx and Gunicorn?: http://serverfault.com/a/220047

Simple explanation: http://prakhar.me/articles/flask-on-nginx-and-gunicorn/

Nginx SSL configuration: https://www.digitalocean.com/community/tutorials/how-to-configure-nginx-with-ssl-as-a-reverse-proxy-for-jenkins

The thing I spent the longest on was getting supervisor to work. Gunicorn kept giving me "gunicorn.errors.HaltServer: <HaltServer 'Worker failed to boot.' 3>", because I was missing the "directory" parameter. I needed to tell supervisor which directory to start from.

[program:my_app]
command=/<path>/venv/prod/bin/gunicorn -w 8 main:app -b 127.0.0.1:8080
user=me
autostart=true
directory=/home/me/my_dir/
stdout_logfile=/home/me/my_dir/gunicorn_supervisor.log
stdout_logfile_maxbytes=20MB
redirect_stderr=true

You will need to create an upstart script to get supervisor to run when the system starts: http://serverfault.com/a/96500

Python Excel Library Benchmark Comparison

15 Oct 2014 https://github.com/swistakm/python-excel-benchmarks

benchmark_csv 0.026495
benchmark_excellent 1.784107
benchmark_openpyxl 2.897072
benchmark_openpyxl_rows 7.025895
benchmark_pyexcelerate 0.550225
benchmark_xlsxcessive 1.430242
benchmark_xlsxwriter 1.611668
benchmark_xlwt 1.275144

http://xlsxwriter.readthedocs.org/en/latest/working_with_memory.html

pyexcelerate : 10.11
xlwt : 15.67
xlsxwriter (optimised): 19.70
xlsxwriter : 23.50
openpyxl (optimised): 95.82
openpyxl : 95.90

Large Dictionaries Not Released From Memory - Python + Ubuntu

13 Oct 2014 I have a flask application running on Ubuntu which reads from a file and creates several large dictionaries. After the dictionaries are created and flask returns the request, the memory used for the dictionaries is not released back to the OS. This example shows the problem: https://gist.github.com/pawl/c3ed7663b94abec01d75

It's not really a Flask issue, but the Flask guys were super helpful when I asked why my large dictionary wasn't released from memory: https://github.com/mitsuhiko/flask/issues/1202

I dug even deeper and learned this is a Linux thing:
"Python returns memory to the OS on the heap (that allocates other objects than small objects) only on Windows, if you run on Linux, you can only see the total memory used by your program increase."
http://deeplearning.net/software/theano/tutorial/python-memory-management.html

My solution:
Turning it into a function and running it as a separate process: https://gist.github.com/pawl/95769724848269cff890

If you want to go even deeper down the rabbit hole, read these:

"most malloc implementations will not release memory to the operating system, and the few that do, do not do it very easily" -http://stackoverflow.com/questions/2215259/will-malloc-implementations-return-free-ed-memory-back-to-the-system
"We compiled a version of Python with TCMalloc that only uses mmap. When testing the new Python in one of our largest projects, we found that not only did Python give back memory to the OS correctly, it also had a reduced memory usage and no apparent CPU penalty for using mmap instead of brk." - http://pushingtheweb.com/2010/06/python-and-tcmalloc/

Renaming Screen - Ubuntu

08 Oct 2014 http://superuser.com/a/521112

screen -S 8890.foo -X sessionname bar

Initializing Dictionary Elements Inside A Loop - Python

04 Oct 2014 There's a really interesting tip in the "Initializing Dictionary Elements" section of this page: https://wiki.python.org/moin/PythonSpeed/PerformanceTips

"it is cheaper to use a try statement" when checking to see if a key exists in a dictionary (inside of a loop).

maximum recursion depth exceeded - PyIntervalTree

02 Oct 2014 I was getting the "maximum recursion depth exceeded" when I tried to run large datasets through PyIntervalTree.

I never fixed the issue or found anyone else with the issue. I ended up switching to bx-python instead: https://www.biostars.org/p/99/#100

Group By Apply Occurring Twice On First Item - Pandas

02 Oct 2014 https://github.com/pydata/pandas/issues/7739#issuecomment-48823964

If Pandas's Group By is applying the function in Apply twice to the first item, it's actually expected behavior according to the warning in the documentation: http://pandas.pydata.org/pandas-docs/stable/groupby.html#flexible-apply

Older Newer