ウェブサービスのCentOS5撤退 / Centos5 Retiring For Web Servicies

A658ec7f1badf73819dfa501165016c1?s=47 Yuuki Tsubouchi (yuuk1)
June 28, 2016
Technology
2
420

ウェブサービスのCentOS5撤退 / Centos5 Retiring For Web Servicies

Hosting Casual Talks #3

A658ec7f1badf73819dfa501165016c1?s=128

Yuuki Tsubouchi (yuuk1)

June 28, 2016
Tweet

Want more?

A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
120
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
5
700
A658ec7f1badf73819dfa501165016c1?s=48 yuukit
0
41
7cbd3f5f922d798cc312eaf596de7ae6?s=48 iamctodd
7
930
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
15
960
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
7
510
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
0
330
61857dafbd287b3027c4dcea9008ad3c?s=48 carmenhchung
10
690
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
9
350
C0390e8b11079f8761c0cd3274ed61cb?s=48 productmarketing
3
380
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
5
950
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
1
250

Transcript

  1. 1.

    ΢ΣϒαʔϏεͷ $FOU04ఫୀ Z@VVLJ )PTUJOH$BTVBM

  2. 2.

    @y_uuk1 id:y_uuki ΢ΣϒΦϖϨʔγϣϯΤϯδχΞ @͸ͯͳ

  3. 3.

    CentOS 5 EOL 

  4. 4.

    ͋ͱ9ϲ݄

  5. 5.

    EOL੾ΕϦεΫ • ੬ऑੑରԠ͕೉͘͠ͳΔ • OpenSSLͳͲͷηΩϡϦςΟύονͷ͋ͨͬͨ ύοέʔδͷߋ৽͕ͳ͘ͳΔ • ֎෦αΠτͷTLSࣄ৘ʹ௥͍͚ͭͳ͘ͳΓɺ઀ଓ Ͱ͖ͳ͘ͳΔ •

    CentOS 5ͷOpenSSL͸0.9.8ܥͰݹ͍ • TLS 1.2ʹඇରԠ + SNI͕࢖͑ͳ͍ͳͲ
  6. 6.

    1000+ CentOS5 100+ roles

  7. 7.

    ରࡦ͢Δαʔόͷબ୒ • ϦόʔεϓϩΩγ • ֎෦͔Β઀ଓΛड͚෇͚ΔɻTLS઀ଓ͢Δ΋ͷ༏ઌ • ΞϓϦέʔγϣϯαʔόɺόοναʔόɺϫʔΧ • ͳΜΒ͔ͷϏδωεॲཧΛ࣮ߦ͢Δαʔό •

    Ϋϩʔϥ΍֎෦APIΛୟ͘ͱ͜ΖΛ༏ઌ • ϦεΫͷ௿͍σʔλϕʔε͸ޙճ͠ • ͦͷଞ֎෦ͱͷ઀఺ͷͳ͍؅ཧܥαʔό΋ޙճ͠
  8. 8.

    ରࡦํ਑ • ☓ ࣗ෼ͰηΩϡϦςΟύονΛ͋ͯΔ • ࠷ऴखஈͱ͍ͨ͠ • ☓ CentOS 7ʹΞοϓάϨʔυ

    • ◦ ଞͷσΟετϦ΁Ҡߦ • 5೥લ͔Β৽αʔϏε͸Debian
  9. 9.

    DebianԽʢϓϩΩγʣ • ݱࡏͷ؀ڥ͸ Apache2 or Nginx • httpd.conf͕؆୯ͳ΋ͷ͸Nginx΁ • ؆୯Ͱͳ͍΋ͷ͸Apache

    2ͷ࠷৽൛΁ • 300ߦͷRewriteRule • ςετίʔυΛॻ͍ͯಈ࡞֬ೝ͢Δ
  10. 10.

    https://github.com/yuuki/ yuuki/blob/master/misc/ proxy-config-test.md

  11. 11.

    DebianԽʢΞϓϦέʔγϣϯʣ • mod_perl1, mod_perl2ΛDebianͰϏϧυ • rpmԽ͞ΕͨCPANϞδϡʔϧ؅ཧΛ cpanfileԽ • XSͳͲCͷϥΠϒϥϦʹґଘ͢Δ΋ͷ΋͋ ΔͨΊɺDebianͰϏϧυͰ͖Δ͔Ͳ͏͔

  12. 12.

    mod_perl1, mod_perl2ΛϏϧυ • ϏϧυͰ͖ͳ͍ͷͳΒϞμϯͳ؀ڥʢPlackʣ ʹҠߦ͢Δඞཁ͕͋Δʢ΋ͷ͘͢͝େมʣ • DockerfileͰϏϧυ͠ϑΝΠϧαʔόʹઃஔ • ChefͰ /opt/httpdʹઃஔ͢Δ͚ͩ

    • Perlґଘ͕͋ΔͨΊdebύοέʔδԽ͕໘౗
  13. 13.

    IUUQTHJUIVCDPNZVVLJEPDLFSpMFT USFFNBTUFSNPE@QFSM

  14. 14.

    cpanfileԽ • rpm -qa perl ͔Βੜ੒ • ҰൃͰ carton install

    ͕௨ΔΑ͏ʹͳ Δ·Ͱͱʹ͔͕͘Μ͹Δ • ಈ࡞֬ೝͯ͠ಈ͔ͳ͔ͬͨΒɺCPAN Ϟδϡʔϧͷόʔδϣϯͷࠩ෼Λٙ͏
  15. 15.

    initεΫϦϓτ vs daemontools • Systemd … • daemontoolsͰࠔ͍ͬͯͳ͍ͷͰ daemontoolsԽ •

    daemontools͸มԽ͕ͳ҆͘ఆͯ͠ ͍ͯࠓޙ΋҆৺
  16. 16.

    ม͑ͳ͍΋ͷ • Perlͷόʔδϣϯ • mod_perlϝδϟʔόʔδϣϯ • Apacheϝδϟʔόʔδϣϯ • CPANϞδϡʔϧͷόʔδϣϯ •

    ݹ͍΋ͷ͕खʹೖΒͳ͍Մೳੑ͸͋Δ
  17. 17.

    Ұ൪େมͳͷ͸ ಈ࡞֬ೝ

  18. 18.

    ಈ࡞֬ೝ • ݹ͍ΞϓϦέʔγϣϯ͸ςετ͕ͳ͍ • खಈͰ͕Μ͹Δ • ϓϩΩγઃఆͷςετͲ͏͢Δͷ͔ • PerlͰૉ๿ʹHTTPΛୟ͘ςετΛॻ ͍ͯΔ

  19. 19.

    ೖΕସ͑࡞ۀ • ϩʔυόϥϯα഑Լʹ1୆͚ͩ౤ೖ༷͠ ࢠݟ • ΤϥʔϩάͳͲΛSlackʹྲྀ͢ • ໰୊͕ى͖ͨΒ௚͢ • શ୆ೖΕସ͑

  20. 20.

    Debian8ͷEOL 2020-06ʢLTSʣ

  21. 21.

    ͋ͱ4೥

  22. 22.

    ΞοϓσʔταΠΫϧ Λճ͠ଓ͚ΔͨΊʹ͸

  23. 23.

    ࡞ۀ಺༰͓͞Β͍ • ৽OS্Ͱmod_perlϏϧυ • cpanfile࡞੒ • αʔόͷ࡞Γ௚͠ͱஔ͖׵͑ • ΞϓϦέʔγϣϯͷಈ࡞֬ೝ •

    ϓϩΩγͷಈ࡞֬ೝ
  24. 24.

    ϛυϧ΢ΣΞґଘ͠ͳ͍ςετ • Apache => nginxͷΑ͏ʹಉ͡໾ׂͷϛ υϧ΢ΣΞΛϦϓϨΠε͢Δ͜ͱ͕͋Δ • ઃఆϑΝΠϧΛςετ͢ΔͷͰ͸ͳ͘ɺ ֎͔ΒΈͨৼΔ෣͍Λςετ͢Δ •

    ϓϩΩγͷ৔߹͸ɺ࣮ࡍʹϦΫΤετ͢ ΔςετΛॻ͘
  25. 25.

    ΞϓϦέʔγϣϯ؀ڥͷ෼཭ • ͍·ͩͱαʔό͝ͱ৽͘͠༻ҙͯ͠ೖΕସ ͕͑ඞཁ • ݹͯ͘ࠔΔͷ͸ΞϓϦέʔγϣϯ • ΞϓϦέʔγϣϯ࣮ߦ؀ڥΛಠཱͯ͠Ξο ϓσʔτ͍ͨ͠ •

    ίϯςφԽ (chrootɺDocker)
  26. 26.

    ͓ΘΓ