Let’s say you want to tunnel an RDP connection via SSH.
User: phaus
SSH-Server: ssh.example.com
RDP-Server: win2k8.example.com
#!/bin/bash
ssh -L13389:win2k8.example.com:3389 phaus@ssh.example.comYou need to run that script and keep your session open.
You can then access the remote System with a RDP Client over localhost 13389.
Original Post: https://coderwall.com/p/wzvxhg/ssh-tunnel-rdp-session-over-another-host
If you installing cocoapods on a vanilla MacOS System you might get some error like this:
# sudo gem install cocoapods
Building native extensions. This could take a while...
ERROR: Error installing cocoapods:
ERROR: Failed to build gem native extension.
/usr/local/bin/ruby extconf.rb
creating Makefile
make
gcc -I. -I/usr/local/include/ruby-1.9.1/x86_64-darwin10.6.0 -I/usr/local/include/ruby-1.9.1/ruby/backward -I/usr/local/include/ruby-1.9.1 -I. -DJSON_GENERATOR -D_XOPEN_SOURCE -D_DARWIN_C_SOURCE -fno-common -D_XOPEN_SOURCE=1 -fno-common -pipe -O3 -Wall -O0 -ggdb -o generator.o -c generator.c
gcc -dynamic -bundle -o generator.bundle generator.o -L. -L/usr/local/lib -L. -L/usr/local/lib -Wl,-undefined,dynamic_lookup -Wl,-multiply_defined,suppress -Wl,-flat_namespace -lruby.1.9.1 -lpthread -ldl -lobjc
make install
/opt/local/bin/gmkdir -p /usr/local/lib/ruby/gems/1.9.1/gems/json-1.8.0/ext/json/ext/generator/.gem.20130925-59217-5zt5ke/json/ext
make: /opt/local/bin/gmkdir: No such file or directory
make: *** [/usr/local/lib/ruby/gems/1.9.1/gems/json-1.8.0/ext/json/ext/generator/.gem.20130925-59217-5zt5ke/json/ext] Error 1The important error is make: /opt/local/bin/gmkdir: No such file or directory
You need to install coreutils for fixing this.
With MacPorts:
sudo port install coreutilsFor Homebrew:
sudo brew install coreutilsOriginal Post: https://coderwall.com/p/ehijxg/fixing-error-installing-cocoapods-on-macos
Deploy your JAR to your local (file) Repository. You shold also commit this to your CVM System. You can also add JARs as Javadoc or Source.
mvn deploy:deploy-file \
-DgroupId=<group-id> \
-DartifactId=<artifact-id> \
-Dversion=<version> \
-Dfile=<path-to-file> \
-Dpackaging=jar \
-Durl=file:///<project-dir>/repo
( -Dclassifier=javadoc | sources )You can now use these JARs in your pom File if they were in a normal Repository:
<project>
...
<repositories>
...
<repository>
<id>project.local</id>
<name>project</name>
<url>file:${project.basedir}/repo</url>
</repository>
...
</repositories>
...
</project>Original Post: https://coderwall.com/p/r28cew/use-3rd-party-dependencies-in-maven-project
Sometimes, you would like to have Mapping Char to Int ( A = 0, B = 1, etc.)
One easy way to do this is using indexOf
"ABCDEFGHIJKLMNOPQRSTUVWXYZ".indexOf('F')
// returns 5Original Post: https://coderwall.com/p/ql-wng/map-char-to-alpha-position-with-java
Just a Link: http://cri.ch/linux/docs/sk0009.html
Once in a while – and especially if you have a System with an uptime > 300d – HW tends to fail.
Good thing, if you have a Cluster, where you can do the maintance on one Node, while the import stuff is still running on the other ones. Also good to always have a Backup of the whole content, if a disk fails.
One word before I continue: Regarding Software-RAIDs: I had a big problem once with a HW RAID Controller going bonkers and spent a week to find another matching controller to get the data back. At least for redundant Servers it is okay for me to go with SW RAID (e.g. mdraid). And if you can, you should go with ZFS in any case :-).
Anyhow, if you see graphs like this one:
You know that something goes terribly wrong.
Doing a quick check, states the obvious:
# cat /proc/mdstat
Personalities : [raid1]
md3 : active raid1 sda4[0](F) sdb4[1]
1822442815 blocks super 1.2 [2/1] [_U]
md2 : active raid1 sda3[0](F) sdb3[1]
1073740664 blocks super 1.2 [2/1] [_U]
md1 : active raid1 sda2[0](F) sdb2[1]
524276 blocks super 1.2 [2/1] [_U]
md0 : active raid1 sda1[0](F) sdb1[1]
33553336 blocks super 1.2 [2/1] [_U]
unused devices: <none>
So /dev/sda seems to be gone from the RAID. Let’s do the checks.
hdparm:
# hdparm -I /dev/sda
/dev/sda:
HDIO_DRIVE_CMD(identify) failed: Input/output error
smartctl:
# smartctl -a /dev/sda
smartctl 5.41 2011-06-09 r3365 [x86_64-linux-2.6.32-34-pve] (local build)
Copyright (C) 2002-11 by Bruce Allen, http://smartmontools.sourceforge.net
Vendor: /0:0:0:0
Product:
User Capacity: 600,332,565,813,390,450 bytes [600 PB]
Logical block size: 774843950 bytes
scsiModePageOffset: response length too short, resp_len=47 offset=50 bd_len=46
>> Terminate command early due to bad response to IEC mode page
A mandatory SMART command failed: exiting. To continue, add one or more '-T permissive' options.
/dev/sdais dead, Jim
Next thing is to schedule a Disk Replacement and moving all services to another host/prepare the host to shutdown for maintenance.
Stop all running Containers:
# for VE in $(vzlist -Ha -o veid); do vzctl stop $VE; done
I also disabled the “start at boot” option to have a quick startup of the Proxmox Node.
Next: Remove the faulty disk from the md-RAID:
# mdadm /dev/md0 -r /dev/sda1
# mdadm /dev/md1 -r /dev/sda2
# mdadm /dev/md2 -r /dev/sda3
# mdadm /dev/md3 -r /dev/sda4
Shutting down the System.
… some guy in the DC moved to the server at the expected time and replaces the faulty disk …
After that, the system is online again.
/dev/sdb to /dev/sda
# sgdisk -R /dev/sda /dev/sdb
/dev/sda
# sgdisk -G /dev/sda
Then add /dev/sda to the RAID again.
# mdadm /dev/md0 -a /dev/sda1
# mdadm /dev/md1 -a /dev/sda2
# mdadm /dev/md2 -a /dev/sda3
# mdadm /dev/md3 -a /dev/sda4
# cat /proc/mdstat
Personalities : [raid1]
md3 : active raid1 sda4[2] sdb4[1]
1822442815 blocks super 1.2 [2/1] [_U]
[===>.................] recovery = 16.5% (301676352/1822442815) finish=329.3min speed=76955K/sec
md2 : active raid1 sda3[2] sdb3[1]
1073740664 blocks super 1.2 [2/2] [UU]
md1 : active raid1 sda2[2] sdb2[1]
524276 blocks super 1.2 [2/1] [_U]
resync=DELAYED
md0 : active raid1 sda1[2] sdb1[1]
33553336 blocks super 1.2 [2/2] [UU]
unused devices: <none>
After nearly 12h, the resync was completed:
# vzctl start 300
# vzctl enter 300
enter into CT 300 failed
Unable to open pty: No such file or directory
There are plenty of comments if you search for Unable to open pty: No such file or directory
But
# svzctl exec 300 /sbin/MAKEDEV tty
# vzctl exec 300 /sbin/MAKEDEV pty
# vzctl exec 300 mknod --mode=666 /dev/ptmx c 5 2
did not help:
# vzctl enter 300
enter into CT 300 failed
Unable to open pty: No such file or directory
And
# strace -ff vzctl enter 300
produces a lot of garbage – meaning stacktraces that did not help to solve the problem.
Then we were finally able to enter the container:
# vzctl exec 300 mount -t devpts none /dev/pts
But having a look into the process list was quite devastating:
# vzctl exec 300 ps -A
PID TTY TIME CMD
1 ? 00:00:00 init
2 ? 00:00:00 kthreadd/300
3 ? 00:00:00 khelper/300
632 ? 00:00:00 ps
That is not really what you expect when you have a look into the process list of a Mail-/Web-Server, isn’t it?
After looking araound into the system and searching through some configuration files, it became obvious, that there was a system update in the past, but someone forgot to install upstart. So that was easy, right?
# vzctl exec 300 apt-get install upstart
Reading package lists...
Building dependency tree...
Reading state information...
The following packages will be REMOVED:
sysvinit
The following NEW packages will be installed:
upstart
WARNING: The following essential packages will be removed.
This should NOT be done unless you know exactly what you are doing!
sysvinit
0 upgraded, 1 newly installed, 1 to remove and 0 not upgraded.
Need to get 486 kB of archives.
After this operation, 851 kB of additional disk space will be used.
You are about to do something potentially harmful.
To continue type in the phrase 'Yes, do as I say!'
?] Yes, do as I say!
BUT:
Err http://ftp.debian.org/debian/ wheezy/main upstart amd64 1.6.1-1
Could not resolve 'ftp.debian.org'
Failed to fetch http://ftp.debian.org/debian/pool/main/u/upstart/upstart_1.6.1-1_amd64.deb Could not resolve 'ftp.debian.org'
E: Unable to fetch some archives, maybe run apt-get update or try with --fix-missing?
No Network – doooh.
So… that was that. Another plan to: chroot. Let’s start:
First we need to shutdown the container – or at least what is running of it:
# vzctl stop 300
Stopping container ...
Container is unmounted
Second, we have to mount a bunch of devices to the FS:
# mount -o bind /dev /var/lib/vz/private/300/dev
# mount -o bind /dev/shm /var/lib/vz/private/300/dev/shm
# mount -o bind /proc /var/lib/vz/private/300/proc
# mount -o bind /sys /var/lib/vz/private/300/sys
Then perform the chroot and the installtion itself:
# chroot /var/lib/vz/private/300 /bin/bash -i
# apt-get install upstart
# exit
At last, umount all the things:
# umount -l /var/lib/vz/private/300/sys
# umount -l /var/lib/vz/private/300/proc
# umount -l /var/lib/vz/private/300/dev/shm
# umount -l /var/lib/vz/private/300/dev
If you have trouble, because some of the devices are busy, kill the processes you find out with:
# lsof /var/lib/vz/private/300/dev
Or just clean the whole thing
# lsof 2> /dev/null | egrep '/var/lib/vz/private/300'
Try to umount again :-).
Now restarting the container again.
# Starting container ...
# Container is mounted
# Adding IP address(es): 10.10.10.130
# Setting CPU units: 1000
# Setting CPUs: 2
# Container start in progress...
And finally:
# vzctl enter 300
root@300 #
root@300 # ps -A | wc -l
142
And this looks a lot better \o/.
Hello Blog, it’s been a while. I still have to deliver the last part of the Munin Plugin Development Series (Part 1, 2, 3).
Today I would like to write something about the Setup of a CoreOS Environment on Proxmox. Proxmox is a Debian based Distribution that bundles a Web UI for OpenVZ+KVM and some great Tools for Clustering and Multi-Tenancy Installations. I am using Proxmox as a Hosting Platform for some years now and I am still amazed about the stability and the way things work out so far. I plan to create another Series about things around Proxmox (e.g. Cluster Setup using Tinc/Live Migration of VMs and the overall Network Setup).
But now, let’s dive into the Topic…
My Proxmox Hosts uses private Networks, both for OpenVZ Containers as well as for KVM VMs.
Both private Networks have Internet Access via the Standard Linux IP Forwarding Functions.
Configuration is done via iptables, e.g. for our private KVM Network 10.10.0.0:
iptables -t nat -A POSTROUTING -s 10.10.0.0/24 -o eth0 -j SNAT --to ${EXT_IP}
Now, create a (KVM) VM in Proxmox. I picked 2 Cores and 2Gigs of RAM. Choose VirtIO for the Disk as well as the Network. This will provide much better Performance and works out of the Box, since CoreOS has build-in support for VirtIO.
The basic steps for the Setup are:
Now start you VM and open the Console:
Downlaod the CoreOS ISO
[user@proxmox]# pwd
/var/lib/vz/template/iso
[user@proxmox]# wget http://stable.release.core-os.net/amd64-usr/current/coreos_production_iso_image.iso
Note your public SSH Key
[user@proxmox]# cat ~/.ssh/id_rsa.pub
becoming root
coreos ~ # sudo su - root
update the root password
coreos ~ # passwd
Setup the basic Network.
coreos ~ # ifconfig eth0 10.10.0.111 netmask 255.255.255.0 up
SSH into your system
[root@cleopatra iso]# ssh root@10.10.0.111
The authenticity of host '10.10.0.111 (10.10.0.111)' can't be established.
RSA key fingerprint is XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX.
Are you sure you want to continue connecting (yes/no)? yes
root@10.10.0.111's password:
CoreOS stable (766.3.0)
Update Strategy: No Reboots
Finish Network Configuration
coreos ~ # route add default gw 10.10.0.1
coreos ~ # echo "nameserver 8.8.8.8" > /etc/resolv.conf
see https://coreos.com/os/docs/latest/installing-to-disk.html
Download Config Template
coreos ~ # wget https://gist.githubusercontent.com/phaus/e52241b66576d4484f6f/raw/9032faaa69bc05ebc8b08efb518f2a90bfef4dca/coreos1-config-coreos.yml
Adjust the Configuration as required
coreos ~ # cat coreos1-config-coreos.yml
#cloud-config
hostname: "coreos1"
# include one or more SSH public keys
ssh_authorized_keys:
- ssh-rsa XXX
coreos:
units:
- name: systemd-networkd
command: stop
- name: 00-static.network
runtime: true
content: |
[Match]
Name=eth*
[Network]
Gateway=10.10.0.1
Address=10.10.0.111/24
DNS=8.8.8.8
- name: systemd-networkd
command: start
- name: etcd2.service
command: start
- name: fleet.service
command: start
Replace XXX with your public SSH Key.
Install CoreOS to /dev/vda (it is vda since VirtIO Device are mapped to vdX)
coreos ~ # coreos-install -d /dev/vda -C stable -c ~/coreos1-config-coreos.yml
Checking availability of "local-file"
Fetching user-data from datasource of type "local-file"
Downloading the signature for http://stable.release.core-os.net/amd64-usr/766.3.0/coreos_production_image.bin.bz2...
2015-09-28 20:59:39 URL:http://stable.release.core-os.net/amd64-usr/766.3.0/coreos_production_image.bin.bz2.sig [543/543] -> "/tmp/coreos-install.2oAX9KwZlj/coreos_production_image.bin.bz2.sig" [1]
Downloading, writing and verifying coreos_production_image.bin.bz2...
2015-09-28 21:00:09 URL:http://stable.release.core-os.net/amd64-usr/766.3.0/coreos_production_image.bin.bz2 [195132425/195132425] -> "-" [1]
gpg: Signature made Wed Sep 2 04:32:09 2015 UTC using RSA key ID E5676EFC
gpg: key 93D2DCB4 marked as ultimately trusted
gpg: checking the trustdb
gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: Good signature from "CoreOS Buildbot (Offical Builds) <buildbot@coreos.com>" [ultimate]
gpg: Note: This key has expired!
Primary key fingerprint: 0412 7D0B FABE C887 1FFB 2CCE 50E0 8855 93D2 DCB4
Subkey fingerprint: EEFA 7555 E481 D026 CC40 D8E6 A5A9 6635 E567 6EFC
Installing cloud-config...
Success! CoreOS stable 766.3.0 is installed on /dev/vda
Check your Installation
coreos ~ # mount /dev/vda9 /mnt
coreos ~ # cd /mnt/
Please keep in mind, that most of the Configuration will take place during the first boot of your new Instance.
Time for a Shutdown
coreos ~ # shutdown -h now
PolicyKit daemon disconnected from the bus.
We are no longer a registered authentication agent.
Connection to 10.10.0.111 closed by remote host.
Connection to 10.10.0.111 closed.
Start the VM again (this time it should boot from the internal disk – you can also remove the ISO File, just to be sure). Also the Node should apply the correct Network Configuration.
You should see something like this:
SSH into your new node
[root@cleopatra iso]# ssh core@10.10.0.105
You might get this Warning:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending RSA key in /root/.ssh/known_hosts:13
RSA host key for 10.10.0.111 has changed and you have requested strict checking.
Host key verification failed
That is fine, since the CoreOS Host just changed it’s SSH Host Key. Just remove the problematic line (in this case line 13) from you /root/.ssh/known_hosts.
After that you should be fine:
[user@proxmox]# ssh core@10.10.0.111
Last login: Tue Sep 29 08:50:48 2015 from 10.10.0.1
CoreOS stable (766.3.0)
Failed Units: 1
user-cloudinit@var-lib-coreos\x2dinstall-user_data.service
core@coreos1 ~ $ sudo -s
coreos1 core #
Now we need to fix the Configuration. Before that, we should create two more CoreOS Hosts to have a Cluster ready.
In a project where we had the need for VMs being capable of doing CI for Java and also doing CI for iOS Application (using XCode Build Bots), we decided to go with a Mac OS Server as the Host Platform and using VMWare Fusion as the base Virtualisation System. We had several VMs there (Windows, Solaris, Linux and Mac OS). Doing a proper Monitoring for theses VMs was not that easy. We already had a working Munin Infrastructure, but no Plugin for displaying VMWare Fusion Stats existed.
The first approach was to use the included VMTools for gathering the information, since we already used them to start/stop/restart VMs via CLI/SSH:
#!/bin/bash
echo "starting VMS..."
VM_PATH=/Users/Shared/VMs
TOOL_PATH=/Applications/VMTools
$TOOL_PATH/vmrun -T fusion start $VM_PATH/Mac_OS_X_10.9.vmwarevm/Mac_OS_X_10.9.vmx nogui
or
#!/bin/bash
echo "starting VMS..."
VM_PATH=/Users/Shared/VMs
TOOL_PATH=/Applications/VMTools
$TOOL_PATH/vmrun -T fusion stop $VM_PATH/Mac_OS_X_10.9.vmwarevm/Mac_OS_X_10.9.vmx
But it was very hard to receive the interesting Data from the Log Files (statistica data is only really supported in VMWare ESXi). So we choose the direct way, to receive the live data, using ps. So this approach is also applicable for other Applications as well.
Our goal was to get at lease three Graphs (% of used CPU, % of used Memory and physically used Memory) sorted by VM Name.
ps -A | grep vmware-vmx
provides us with a list of all running vmware processes. Since we only need specific Data, we add some more filters:
ps -A -c -o pcpu,pmem,rss=,args,comm -r | grep vmware-vmx
29,4 14,0 2341436 J2EE.vmx vmware-vmx
1,7 12,9 2164200 macos109.vmx vmware-vmx
1,4 17,0 2844044 windows.vmx vmware-vmx
0,7 6,0 1002784 Jenkins.vmx vmware-vmx
0,0 0,0 624 grep vmware-vmx
where this is the description (man ps) of the used columns:
You might see several things: First we have our data and the Name of each VM. Second, we have to get rid of the last line, since that is our grep process. Third, we might need to do some String Operations/Number Calculation to get some valid Data at the end.
Since Perl is a good choice if you need to do some String Operations, the Plugins is written in Perl :-).
Let’s have a look.
The Config Element is quite compact (e.g. for the physical mem):
my $cmd = "ps -A -c -o pcpu,pmem,rss=,args,comm -r | grep vmware-vmx";
my $output = `$cmd`;
my @lines=split(/\n/,$output);
...
if( $type eq "mem" ) {
print $base_config;
print "graph_args --base 1024 -r --lower-limit 0\n";
print "graph_title absolute Memory usage per VM\n";
print "graph_vlabel Memory usage\n";
print "graph_info The Graph shows the absolute Memory usage per VM\n";
foreach my $line(@lines) {
if( $line =~ /(?<!grep)$/ ) {
my @vm = ();
my $count = 0;
my @array=split(/ /,$line);
foreach my $entry(@array) {
if( length($entry) > 2 ){
$vm[$count]=$entry;
$count++;
}
}
$vm[3] = clean_vmname($vm[3]);
if( $vm[3] =~ /(?<!comm)$/) {
if( $lcount > 0 ){
print "$vm[3]_mem.draw STACK\n";
} else {
print "$vm[3]_mem.draw AREA\n";
}
print "$vm[3]_mem.label $vm[3]\n";
print "$vm[3]_mem.type GAUGE\n";
$lcount++;
}
}
}
}
After the basic Setup (Category, Graph Type, Labels, etc. ) we go through each line of the output from the ps command, filtering the line containing grep.
We use the stacked Graph Method, so the first entry has to be the base Graph, the following ones will just be layer on top of the first. To get clean VM Names, we have a quite simple function clean_vmname:
sub clean_vmname {
my $vm_name = $_[0];
$vm_name =~ s/\.vmx//;
$vm_name =~ s/\./\_/g;
return $vm_name;
}
The Code, that delivers the Data looks similar. We just piping the values from the ps command to the output:
foreach my $line(@lines) {
if( $line =~ /(?<!grep)$/ ) {
my @vm = ();
my $count = 0;
my @array=split(/ /,$line);
foreach my $entry(@array) {
if( length($entry) > 2 ){
$vm[$count]=$entry;
$count++;
}
}
$vm[3] = clean_vmname($vm[3]);
if( $vm[3] =~ /(?<!comm)$/) {
if( $type eq "pcpu" ) {
print "$vm[3]_pcpu.value $vm[0]\n";
}
if( $type eq "pmem" ) {
print "$vm[3]_pmem.value $vm[1]\n";
}
if( $type eq "mem" ) {
my $value = ($vm[2]*1024);
print "$vm[3]_mem.value $value\n";
}
}
}
}
You can find the whole plugin here on GitHub.
Here are some example Graphs you will get as a result:
If you want to create nifty Graphics and Animation in the web, you cannot avoid d3.js. D3.js uses SVG as the basic Displaying Technologie. And sometimes you know, why SVG had such a hard time persuading developers.
It is a simple task:
Creating a Circle with an image as a background. The everyday Web-Developer would just create a Circle Element and would try to add the Background Image via CSS.
But that did not work at all.
After asking friend Google for a while, i found the answer to this question over at stackoverflow.
So you need SVG patterns (never heard about them before). And reference the image-pattern via the ID.
So here is a brief example:
<?xml version="1.0" encoding="UTF-8" standalone="yes"?> <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd"> <svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:ev="http://www.w3.org/2001/xml-events" width="400" height="400"> <defs> <pattern id="image" x="-32" y="-32" patternUnits="userSpaceOnUse" height="64" width="64"> <image x="0" y="0" height="64" width="64" xlink:href="http://0.gravatar.com/avatar/902a4faaa4de6f6aebd6fd7a9fbab46a?s=64"/> </pattern> </defs> <line class="link" style="stroke: #9ecae1; stroke-width: 1;" x1="200" y1="0" x2="200" y2="400"/> <text dy=".35em" transform="translate(0 , 190)">0,200</text> <line class="link" style="stroke: #9ecae1; stroke-width: 1;" y1="200" x1="0" y2="200" x2="400"/> <text dy=".35em" transform="translate(200 , 10)">200,0</text> <circle id="top" transform="translate(200,200)" r="32" fill="url(#image)"/> </svg>
We used that in our small project GitHubble (you may find the sources here).
Since some time, GitHub caches Images, that are linked in Wiki-Pages or Readme files.
That’s not optimal, when you want to display current states (e.g. the Build Status of your CI Job).
To disable the Caching for a specific Image, you need to configure a proper Caching Header.
So before the Changes, you have:
$ curl -L -I https://consolving.de/jenkins/buildStatus/icon?job=de.consolving.chatlogconverter
HTTP/1.1 200 OK
Date: Sun, 03 Aug 2014 10:08:44 GMT
Server: Jetty(8.y.z-SNAPSHOT)
ETag: /static/e5920a00/success.png
Expires: Sun, 01 Jan 1984 00:00:00 GMT
Content-Type: image/png
Content-Length: 2339
Via: 1.1 consolving.de
That means GitHub will cache the Image (for some time), although the Expires Header is set to the past.
In our case, the Jenkins CI is behind an Apache2 Server. So you need to update your Configuration.
...
# Disable Cache for /jenkins/buildStatus
<LocationMatch "/jenkins/buildStatus/icon*">
Header set Cache-Control "no-cache"
Header set Pragma "no-cache"
</LocationMatch>
...
After that, you have now some more Caching Headers set and GitHub won’t Cache your image anymore.
$ curl -L -I https://consolving.de/jenkins/buildStatus/icon?job=de.consolving.chatlogconverter HTTP/1.1 200 OK Date: Sun, 03 Aug 2014 10:13:16 GMT Server: Jetty(8.y.z-SNAPSHOT) ETag: /static/e5920a00/success.png Expires: Sun, 01 Jan 1984 00:00:00 GMT Content-Type: image/png Content-Length: 2339 Via: 1.1 consolving.de Cache-Control: no-cache Pragma: no-cache