&gt; There are only two hard things in Computer Science: cache invalidation
&gt; and naming things.
&gt; 
&gt; -- Phil Karlton

Depends on the company size.

Small businesses usually go for dashes and get the wildcard certificate.
So they would have `dev.example.com, test.example.com`

In larger enterprises they usually have a DNS infrastructure rolled out and the provisioning processes takes care of the assignment. It usually looks like

    aws-eu-central-1.appName.staging.[teamName].example.com

They would either use their own self-signed certs with the CA on all servers or have the money for the SANs.

For more inspiration:

https://blog.serverdensity.com/server-naming-conventions-and-best-practices/

https://mnx.io/blog/a-proper-server-naming-scheme/

https://namingschemes.com/





A quick note about the top level domain, many companies also use the &quot;.local&quot; suffix for internal name resolution.

we use below dns names in our environment

1. *.dev.internal.com ( development )
2. *.tst.internal.com ( test )
3. *.stg.internel.com ( staging )
4. *.internel.com ( prod ). you can also use like *.prd.internal.com

It also depends if you want dev/test/staging be available externally, if not you can set in such way:
	app_name.example.dev, app_name.example.test and etc



I want to send email with nodemailer using html template. In that template I need to inject some dynamically some variables and I really can&#39;t do that. My code:

    var nodemailer = require(&#39;nodemailer&#39;);
    var smtpTransport = require(&#39;nodemailer-smtp-transport&#39;);

    smtpTransport = nodemailer.createTransport(smtpTransport({
		host: mailConfig.host,
		secure: mailConfig.secure,
		port: mailConfig.port,
		auth: {
			user: mailConfig.auth.user,
			pass: mailConfig.auth.pass
		}
    }));
    var mailOptions = {
		from: &#39;my@email.com&#39;,
		to : &#39;some@email.com&#39;,
		subject : &#39;test subject&#39;,
		html : { path: &#39;app/public/pages/emailWithPDF.html&#39; }
	};
    smtpTransport.sendMail(mailOptions, function (error, response) {
		if (error) {
			console.log(error);
			callback(error);
		}
	});

Let&#39;s say I want in emailWithPDF.html something like this:

    Hello {{username}}!
I&#39;ve found some examples, where was smth like this:

    ...
    html: &#39;&lt;p&gt;Hello {{username}}&lt;/p&gt;&#39;
    ...
but I want it in separate html file. Is it possible?


 

Pass variable to html template in nodemailer

When I&#39;m giving input type number the letter `e` and special charecters are also displaying in input field. I want to display only digits. How to block them?

    

&lt;!-- begin snippet: js hide: false console: true babel: false --&gt;

&lt;!-- language: lang-html --&gt;

    &lt;input type=&quot;number&quot;&gt;

&lt;!-- end snippet --&gt;



How to block +,-,e in input type Number?

With the rise of containers, Kuberenetes, 12 Factor etc, it has become easier to replicate an identical environment across dev, staging and production. However, what there appears to be no common standard to domain name conventions.

As far as I can see it, there are two ways of doing it:

 * Use subdomains:
  * `*.dev.foobar.tld`
  * `*.staging.foobar.tld`
  * `*.foobar.tld`
 * Use separate domains:
  * `*.foobar-dev.tld`
  * `*.foobar-staging.tld`
  * `*.foobar.tld`

I can see up and downs with both approaches, but I&#39;m curious what the common practise is.

As a side-note, Cloudflare will not issue you certificates for sub-sub domains (e.g. `*.stage.foobar.tld`).

What are the best practice for domain names (dev, staging, production)?

With the rise of containers, Kuberenetes, 12 Factor etc, it has become easier to replicate an identical environment across dev, staging and production. However, what there appears to be no common standard to domain name conventions.
As far as I can see it, there are two ways of doing it:
<ul>
<li>Use subdomains:</li>
<li><code>*.dev.foobar.tld</code></li>
<li><code>*.staging.foobar.tld</code></li>
<li><code>*.foobar.tld</code></li>
<li>Use separate domains:</li>
<li><code>*.foobar-dev.tld</code></li>
<li><code>*.foobar-staging.tld</code></li>
<li><code>*.foobar.tld</code></li>
</ul>
I can see up and downs with both approaches, but I'm curious what the common practise is.
As a side-note, Cloudflare will not issue you certificates for sub-sub domains (e.g. <code>*.stage.foobar.tld</code>).

I just installed Python3 from python.org and am having trouble installing packages with `pip`.  By design, there is a man-in-the-middle packet inspection appliance on the network here that inspects all packets (ssl included) by resigning all ssl connections with its own certificate.  Part of the GPO pushes the custom root certificate into the Windows Keystore.

When using Java, if I need to access any external https sites, I need to manually update the cacerts in the JVM to trust the Self-Signed CA certificate.

How do I accomplish that for python?  Right now, when I try to install packages using `pip`, understandably, I get wonderful `[SSL: CERTIFICATE_VERIFY_FAILED]` errors.

I realize I can ignore them using the `--trusted-host` parameter, but I don&#39;t want to do that for every package I&#39;m trying to install.

Is there a way to update the CA Certificate store that python uses?

How to add a custom CA Root certificate to the CA Store used by pip in Windows?

How would I get the hash of a public certificate&#39;s info to be able to perform SSL Pinning in my application?  

I am using TrustKit in my iOS application and it is asking for me to set the hash that I am expecting. Where can I get this from?

How do I get public key hash for SSL pinning?

I need to use curtom root certificates on the company intranet and loading them in the Mac OS TrustStore (KeyChain) does solve the problem for all browsers and GUI apps.

It seems that it works even with the version of `curl` that ships with Mac OS X but it **doesn&#39;t work with python**, even the version that ships with Mac OS 10.12 Sierra (Python 2.7.10)

Still, it seems that I would be hit by:

    urllib2.URLError: &lt;urlopen error [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:590)&gt;

## How can I solve this?

Because I encounter this issue in lots and lots of Python tools I would really appreciate if I find a way to avoid it without having to patch them.

Providing the custom CA certificate myself is not an option because I cannot patch tens of Python tools that I use. 

Most of the tools are using the `requests` library but there are a few that are using the native ssl support in Python directly.

How to make Python use CA certificates from Mac OS TrustStore?

How do you enable SSL for a project in Visual Studio 2017?

In VS15, I could select Project -&gt; Properties -&gt; Debug -&gt; Enable SSL. This option is not available in VS2017. Where has it moved to?

**Edit:**

I&#39;ve even tried editing `.\vs\config\applicationhost.config` to no avail:

            &lt;listenerAdapters&gt;
                &lt;add name=&quot;http&quot; /&gt;
                &lt;add name=&quot;https&quot; /&gt;
            &lt;/listenerAdapters&gt;
    
            &lt;sites&gt;
                &lt;site name=&quot;WebSite1&quot; id=&quot;1&quot; serverAutoStart=&quot;true&quot;&gt;
                    &lt;application path=&quot;/&quot;&gt;
                        &lt;virtualDirectory path=&quot;/&quot; physicalPath=&quot;%IIS_SITES_HOME%\WebSite1&quot; /&gt;
                    &lt;/application&gt;
                    &lt;bindings&gt;
                        &lt;binding protocol=&quot;http&quot; bindingInformation=&quot;:8080:localhost&quot; /&gt;
                    &lt;/bindings&gt;
                &lt;/site&gt;
                &lt;site name=&quot;Filters&quot; id=&quot;2&quot;&gt;
                    &lt;application path=&quot;/&quot; applicationPool=&quot;Clr4IntegratedAppPool&quot;&gt;
                        &lt;virtualDirectory path=&quot;/&quot; physicalPath=&quot;c:\Users\Ashley\documents\visual studio 2017\Projects\Filters\src\Filters&quot; /&gt;
                    &lt;/application&gt;
                    &lt;bindings&gt;
                        &lt;binding protocol=&quot;http&quot; bindingInformation=&quot;*:51107:localhost&quot; /&gt;
                        &lt;binding protocol=&quot;https&quot; bindingInformation=&quot;*:43107:localhost&quot; /&gt;
                    &lt;/bindings&gt;
                &lt;/site&gt;
                &lt;siteDefaults&gt;
                    &lt;logFile logFormat=&quot;W3C&quot; directory=&quot;%IIS_USER_HOME%\Logs&quot; /&gt;
                    &lt;traceFailedRequestsLogging directory=&quot;%IIS_USER_HOME%\TraceLogFiles&quot; enabled=&quot;true&quot; maxLogFileSizeKB=&quot;1024&quot; /&gt;
                &lt;/siteDefaults&gt;
                &lt;applicationDefaults applicationPool=&quot;Clr4IntegratedAppPool&quot; /&gt;
                &lt;virtualDirectoryDefaults allowSubDirConfig=&quot;true&quot; /&gt;
            &lt;/sites&gt;
    
            &lt;webLimits /&gt;

**Edit:**

Another option I&#39;ve tried, which just feels clunky, and kind of defeats the point of an IDE, is to configure Kestrel to use HTTPS. This isn&#39;t ideal since I had to export a copy of a certificate for localhost from IIS, and IIS Express still tries to load the site on a different port.

    public class Program
    {
        public static void Main(string[] args)
        {
            var host = new WebHostBuilder()
                .UseKestrel(options =&gt;
                    options.UseHttps(new X509Certificate2(&quot;path/to/cert.pfx&quot;, &quot;password&quot;)))
                .UseContentRoot(Directory.GetCurrentDirectory())
                .UseUrls(&quot;http://localhost:5100&quot;, &quot;https://localhost:4300&quot;)
                .UseIISIntegration()
                .UseStartup&lt;Startup&gt;()
                .Build();

            host.Run();
        }
    }

Sadly, this doesn&#39;t work when run from VS17. The first time around I got a 502.2 (I think) error, now all I get is an unable to connect error in Chrome. I can run `dotnet run` from PowerShell and it works fine.

As a workaround, it does the trick. But it doesn&#39;t seem neat.

Visual Studio 2017 Enable SSL

I&#39;ve install Python 3.4 and Python 3.6 on my local machine successfully, but am unable to install packages with ``pip3``.

When I execute `pip3 install &lt;package&gt;`, I get the following **SSL related** error:  

    pip is configured with locations that require TLS/SSL, however the ssl module in Python is not available.
    Collecting &lt;package&gt;
      Could not fetch URL https://pypi.python.org/simple/&lt;package&gt;/: There was a problem confirming the ssl certificate: Can&#39;t connect to HTTPS URL because the SSL module is not available. - skipping
      Could not find a version that satisfies the requirement &lt;package&gt; (from versions: )
    No matching distribution found for &lt;package&gt;

How can I fix my Python3.x install so that I can install packages with ``pip install &lt;package&gt;``?


&quot;ssl module in Python is not available&quot; when installing package with pip3

    kubectl logs &lt;pod-id&gt;

gets latest logs from my deployment - I am working on a bug and interested to know the logs at runtime - How can I get continuous stream of logs ?

edit: corrected question at the end.

kubectl logs - continuously

I have been trying to wrap my head around how Rancher (or DC/OS) is different from Kubernetes. Both of them say they are Container management tools. Why we do we need both? How are they different?

How is rancher different from Kubernetes

    kubectl get pod run-sh-1816639685-xejyk 
    NAME                      READY     STATUS    RESTARTS   AGE
    run-sh-1816639685-xejyk   2/2       Running   0          26m

What&#39;s the meaning of &quot;READY=2/2&quot;? The same with &quot;1/1&quot;?

What&#39;s the meaning of &quot;READY=2/2&quot; output by command &quot;kubectl get pod $yourpod&quot;

I have problem login into one container of a multi-container pod.
I get the container id from the `kubectl describe pod &lt;pod-name&gt;`

    kubectl describe pod ipengine-net-benchmark-488656591-gjrpc -c &lt;container id&gt; 

When i try: 

    kubectl exec -ti ipengine-net-benchmark-488656591-gjrpc -c 70761432854f /bin/bash

It says: Error from server: container 70761432854f is not valid for pod ipengine-net-benchmark-488656591-gjrpc





kubectl exec into container of a multi container pod

I have the following image created by a Dockerfile:

```
REPOSITORY   TAG      IMAGE ID       CREATED       SIZE 
ruby/lab     latest   f1903b1508cb   2 hours ago   729.6 MB
```

And I have my following YAML file:

    apiVersion: extensions/v1beta1
    kind: Deployment
    metadata:
      name: ruby-deployment
    spec:
      replicas: 2
      template:
        metadata:
          labels:
            app: ruby
        spec:
          containers:
          - name: ruby-app
            image: ruby/lab
            imagePullPolicy: IfNotPresent
            ports:
            - containerPort: 4567

When I create the deployment I got the following info in the pods:

    ruby-deployment-3830038651-sa4ii   0/1       ImagePullBackOff   0          7m
    ruby-deployment-3830038651-u1tvc   0/1       ImagePullBackOff   0          7m

And the error `Failed to pull image &quot;ruby/lab:latest&quot;: Error: image ruby/lab not found` from below:

     8m            2m              6       {kubelet minikube}      spec.containers{ruby}   Normal          Pulling         pulling image &quot;ruby/lab:latest&quot;
     8m            2m              6       {kubelet minikube}      spec.containers{ruby}   Warning         Failed          Failed to pull image &quot;ruby/lab:latest&quot;: Error: image ruby/lab not found
     8m            2m              6       {kubelet minikube}                              Warning         FailedSync      Error syncing pod, skipping: failed to &quot;StartContainer&quot; for &quot;ruby&quot; with ErrImagePull: &quot;Error: image ruby/lab not found&quot;

Is really necessary to have registry in docker for this? I just want to make test locally and pass my code/repo to a friend for testing purposes

Thanks

Pull a local image to run a pod in Kubernetes

I am trying to set custom domain for my Firebase app.

Firebase hosted url : https://inventory-app-726af.firebaseapp.com/

Custom Domain: **inv.agsft.com**

I have followed all instructions as part of setting custom domain but after verification step when I click on finish button, status will always be &quot;**Needs Setup**&quot;.

I am managing DNS through cloudflare (https://www.cloudflare.com/) and I am following Quick setup option.

Any pointers to resolve it?


Firebase Hosting: Needs Setup For Cloudflare DNS

Every time I visit a website that is using Cloudflare&#39;s Under-Attack-Mode, it shows me the usual text telling me to wait a few seconds until Cloudflare verified I am not a bot. Every time I reload the page it changes my current Ray ID.

What is the purpose of a Ray ID? Is it some kind of session ID?


Content Type	Original Author	Original Content on Stackoverflow
Question	vpetersson	View Question on Stackoverflow
Solution 1 - Ssl	Marcus Maxwell	View Answer on Stackoverflow
Solution 2 - Ssl	Pixel	View Answer on Stackoverflow
Solution 3 - Ssl	P Ekambaram	View Answer on Stackoverflow
Solution 4 - Ssl	Rimas Mocevicius	View Answer on Stackoverflow

What are the best practice for domain names (dev, staging, production)?

Ssl Problem Overview

Ssl Solutions

Solution 1 - Ssl

Solution 2 - Ssl

Solution 3 - Ssl

Solution 4 - Ssl

How to block +,-,e in input type Number?

Pass variable to html template in nodemailer

Attributions