Friday, February 28, 2025

online panorama stitcher

 Via OpenCV directly in the browser (webassembly + webworker) - DEV Community

latsic/imgalign: Webapplication for image stitching and aligning

Needle - took some 30 seconds to a minute to load OpenCV on my machine, the actual stitching took less than two seconds with the sample 3 images.

Posted by on No comments:

using hand-held video clips on the planetarium dome

One of our colleagues wondered how nice it would be to see videos like this documentary on the "large screen" by projecting on the planetarium dome. We can use tools like OCVvid2fulldome to project the video to the front part of the tilted dome, say covering 180 degrees left to right. Trying out a variation of this technique, using OCVWarp on video padded to 4k equirectangular shape, reasonably distortion-free results for 
padding with equal amounts of black on all four sides, with
-136 degrees y angle in OCVWarp. 
Some parts of the video - the lower parts near the left and right edges - get cropped, but the visuals look good.

Unfortunately, the problem is that the mostly hand-held footage is extremely nausea-inducing when blown up to such a large size. Even the moderate shake of this professionally shot video segment is unacceptable on the dome without slowing down the footage or making the video window smaller.
Posted by on No comments:

Tuesday, February 25, 2025

appimage build on github actions - potential issue

linuxdeployqt will not allow building of appimages with ubuntu versions above 20.04 till 20.04 is out of support, which is end of May, 2025.

 But github actions has already started "brownout" of 20.04 - The Ubuntu-20.04 brownout takes place from 2025-02-01. For more details, see https://github.com/actions/runner-images/issues/11101

A workaround would be to use go-appimage instead, which does not have this hard limit on OS version. As was used for OpenSpace-AppImage.
Posted by on No comments:

fake astronomy posts on social media

I got a message about this,


Copy-pasting from my reply, 
As is usual with most email forwards, this is fake. The actual paths are described in the post below,


Then there was the "planets lining up" forward from January - for which my reply was https://earthsky.org/tonight/planetary-alignment-january-25-2025/



Posted by on No comments:

Thursday, February 20, 2025

adding two wordpress sites to an existing server

We had a server which had Apache and Mysql already installed (as well as a couple of Wordpress sites already). Steps followed, in brief, to add two more Wordpress sites:
  1. mysql> create database wordpresswebsitestaging;

    CREATE USER "stagingwpuser"@"localhost" IDENTIFIED BY "ThePasswordH3r3";
    GRANT ALL PRIVILEGES ON wordpresswebsitestaging.* TO "stagingwpuser"@"localhost";
    FLUSH PRIVILEGES; 

    https://developer.wordpress.org/advanced-administration/before-install/creating-database/

  2. Creating the web root directories and a user who can sftp in to upload files etc if needed
    sudo adduser thewpwebsiteadmin
    sudo su thewpwebsiteadmin
    cd /home/thewpwebsiteadmin
    mkdir directory1
    mkdir directory2

    We need to give read permissions to the entire path for the webserver to be able to read these directories, so
    sudo chmod -R +rx /home/thewpwebsiteadmin

  3. Created DNS entries in cloudflare. In this case, CNAME records.

  4. Copied existing files in /etc/apache2/sites-available as templates for the new sites. Since we were using cloudflare origin certificates, there was no need to create new certificates with certbot etc. After editing the conf files as needed, with the /home/thewpwebsiteadmin/directory1 and directory2 as home directories, enabled the sites with
    sudo a2ensite newsite1 newsite1ssl newsite2 newsite2ssl
    sudo systemctl reload apache2

  5. Path to latest wordpress from https://developer.wordpress.org/advanced-administration/before-install/howto-install/
    wget https://wordpress.org/latest.tar.gz
    tar -xzvf latest.tar.gz
    cp -R wordpress/* directory1     etc

  6.  Visit the new sites with a browser to supply the database configuration etc, the wp-config file gets generated, create a new file and paste the generated file to the wordpress root directories as
    nano wp-config.php

  7.  Create ssh key and add to authorized_keys - 
    ssh-keygen -t rsa -m PEM -f theadminuserkey.pem
    mkdir .ssh
    mv theadminuserkey.pem.pub .ssh/authorized_keys
    and set appropriate permissions for the .ssh directory and file - 
    chmod 700 .ssh
    cd .ssh
    chmod 600 authorized_keys
Posted by on No comments:

Monday, February 17, 2025

cloudflared or ssh tunnel for reverse-proxying on-premise servers

Exploring what we can do with cloudflare - 


2. But BSNL, Airtel etc would block ports. So, it would be far easier to use a tunnel with an outgoing ssh connection to a VM or something like that. That way, we don't have to depend on port-forwarding and availability of unblocked ports. We can use -R in the ssh tunnel for reverse-proxying.

3. But then, we may not even need a VM - currently Cloudflare Zero Trust Web access supports private apps, which would ask clients for authentication, and then allow them to connect to our private server via cloudflared tunnels.
https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/get-started/create-remote-tunnel/
and give it a public hostname with
Starting from the page below, we can go "next, next" to finish all the steps to achieve ZT web access.


Posted by on No comments:

Saturday, February 15, 2025

app api call slowdown, QUIC is suspected

It was reported that one of our Android apps was experiencing delays and timeouts in api calls, which hit a dot net backend running on Linux. Apparently the errors they saw were
 net::ERR_QUIC_PROTOCOL_ERROR

I suggested that they disable QUIC in their browser, https://thegeekpage.com/err_quic_protocol_error/

But apparently the app was having the errors and not in a browser. Since I'm not a dot net or Android developer, I'm not sure how one can disable QUIC in a generalized manner. But I could configure the server's firewall to explicitly Deny QUIC requests (UDP requests on port 443) which would then immediately make the client fall back to HTTP/2 (TCP packets).

There was an update pending on the server. Completing that and rebooting, still the issue continued. "For the past week, we've been experiencing buffering and delays in the app, especially on 3G networks". Maybe there was some change in either the network or Android or something like that? Cause could be any of those. Anyway: set up a firewall rule to Deny UDP to ports 80 and 443, and also disabled QUIC for the entire domain in cloudflare, https://developers.cloudflare.com/speed/optimization/protocol/http3/

That seems to have solved the issue. 

Posted by on No comments:

Monday, February 10, 2025

Miscellaneous Blender VSE settings used for the recent project

Some settings and shortcuts I revised when working on a recent project - 

I thought that I should prevent the creation of "proxies" in Blender VSE (Video Sequence Editor) since the working SSD was only 256 GB, with only around 100 GB free. 

First, I set the 
Proxy setup to Manual
Proxy render size to 25%
Then I thought of disabling proxies altogether, so set the 'Use Proxies' checkbox to False (pull out menu on right of rendered view)

Image showing all these, from the page above,


How to rotate an HDRI background - https://www.youtube.com/watch?v=fqd4mc42sZQ
Shading tab - Choose World instead of Object as the subject of the shading editor, rotate using Vector Mapping node ahead of the single image HDRI as in the screenshot below,


Cutting video clips into pieces which do not show the previously existing clip sections when stretched - is by "Hold Split" - https://vse-docs.readthedocs.io/video_editing/edit/montage/transform.html#split
Shift + K to 'hold-split' at the cursor.

Shift + A is the shortcut key to add speed control strip (and many other things) - https://vse-docs.readthedocs.io/video_editing/edit/effects/speed.html - Add > Effect > Speed Control

Similarly, for a cross-fade transition, select begin clip, Shift click to select end clip, then Shift+A - Add > Transition > Cross - https://vse-docs.readthedocs.io/video_editing/edit/effects/transition.html - we can change the order of the transition later, if needed, from the side bar, by changing the Input 1 and Input 2 strips as in the screenshot below.




Posted by on No comments:

Sunday, February 09, 2025

listing ffmpeg commandline options


You can see available presets including lossless
with
ffmpeg -h encoder=hevc_nvenc

List of the hwaccels available in the ffmpeg executable, 
ffmpeg -hwaccels

So, added
-preset lossless
to my commandline, and it worked. I think it was something like

ffmpeg -r 30 -start_number -003875 -f image2 -preset lossless -i "OpenSpace%06d.png" -c:v hevc_nvenc ../filename.mp4

Got the message
The selected preset is deprecated. Use p1 to p7
(but it is doing the encoding.)
There is also -tune lossless option. But I didn't try that.


Posted by on No comments:

Thursday, February 06, 2025

simple static multi-lingual titles instead of tracked titles

Instead of going the tracked title route, I settled on a simpler static title overlay using Blender VSE, because

  • It's far less time-consuming
  • Hindi text does not render well as a Blender text object

So,the workflow was:

  • Create the title text in a document editor like Google Docs
  • Take a screenshot of the black text on white background
  • Invert to white text in black background on Gimp
  • Overlay over "warped" video directly with opacity fading in from 0 to 0.5 over a second - OR -
  • If overlaying over a fulldome clip, first "warp" the flat text to match the fulldome clip's curvature using the method in this old post.

In particular, after trial and error, the particulars seem to be:

  • 36 point font size text to take screenshot
  • stretch the text to make it square (halve the width)
  • put the stretched screenshot at the bottom of a 4096x4096 transparent image
  • make the screenshot even smaller if required, or use a larger transparent image
  • merge down the layer if the filter doesn't act on the entire image
  • use Gimp's Filter > Distorts > Polar co-ordinates with "Map backwards" checked (otherwise the text would be inverted left to right) and save as png preserving transparency (alpha channel).


 


Posted by on No comments:

Payzapp mini review

I tried using HDFC Bank's Payzapp app for payments - it has features like loading up the Payzapp wallet with credit card, then transfer by UPI to bank accounts, etc. But, 

  • they doubled the fee for Payzapp wallet loading from credit card
  • many merchants, including the most important one which I needed to pay > 10k per month, blocked access to Payzapp payments due to fees they're charging merchants
  • a billdesk payment of APSPDCL went through, but did not reflect in the "paid" bills. Billdesk said merchant had rejected payment, I need to pay again. Payzapp says refund has been issued, but there is no way to check except by seeing the balance - which I have now emptied, because the back-and-forth between Payzapp and Billdesk had taken more than a month.
     

Overall, a very poor experience. So I will use Payzapp only for the convenience of paying HDFC Bank credit cards with it, will block all notifications from it, and not keep any wallet balance. Even when making HDFC bank credit card payment, the app failed to load this morning, and loaded again later in the day. Also, the Payzapp app shows "apply coupons" when making a Rs. 4000 payment, but the coupon says min. transaction Rs. 5000, and the "apply coupon" button is not shown when I was actually making the Rs. 10,000 transaction! Bad HDFC! We can contrast this with Amazon.in's method of showing exactly how much "cashback" or "savings" will accrue for each payment method.

Posted by on No comments:

Tuesday, February 04, 2025

monitoring expiring certificates with Red Sift

 LetsEncrypt sent out an email that they would no longer be sending certificate expiry warning emails, and recommended we sign up to Red Sift's free plan. 

We can recommend Red Sift Certificates Lite, which provides free expiration emails for up to 250 active certificates: https://redsift.com/pulse-platform/certificates-lite

After signing up, there was a certificate warning, but it turned out to be a false alarm - a certificate which had been re-issued onto a new machine. 

Posted by on No comments:

Monday, February 03, 2025

manual setup of awstats with static report pages

To improve responsiveness, tried to make awstats generate static pages instead of dynamic report generation with the cgi-bin perl script.

Most probably the unresponsive nature was due to the DNS settings in the /etc/awstats/*.conf files for the domains we were reporting on. As the conf file says,

# If you want/need to set DNSLookup to 1, don't forget that this will
# dramatically reduce AWStats's update process speed. Do not use on large web
# sites.

Then, there was also the dynamic DNS lookup option, which also needed to be set to 0 - 

# For very large sites, setting DNSLookup to 0 (or 2) might be the only
# reasonable choice. DynamicDNSLookup allows to resolve host names for
# items shown in html tables only, when data is output on reports instead
# of resolving once during log analysis step.
# Possible values:
# 0 - No dynamic DNS lookup

Then two more settings were changed, changed to 0

# Possible values:
#  0  - Report is not shown at all
#  1  - Report is shown in main page with an entry in menu and default columns
# XYZ - Report shows column informations defined by code X,Y,Z...
#       X,Y,Z... are code letters among the following:
#        U = Unique visitors
#        V = Visits
#        P = Number of pages
#        H = Number of hits (or mails)
#        B = Bandwidth (or total mail size for mail logs)
#        L = Last access date
#        E = Entry pages
#        X = Exit pages
#        C = Web compression (mod_gzip,mod_deflate)
#        M = Average mail size (mail logs)

# Show domains/country chart
# Context: Web, Streaming, Mail, Ftp
# Default: PHB, Possible column codes: UVPHB
ShowDomainsStats=0

# Show hosts chart
# Context: Web, Streaming, Mail, Ftp
# Default: PHBL, Possible column codes: PHBL
ShowHostsStats=0

Then, with much trial and error, the following lines were added to the root crontab for creating the static pages, and an index file was created to easily go to the relevant server/month page.

sudo su -
crontab -e

58 23 * * * /usr/share/awstats/tools/awstats_buildstaticpages.pl -update -dir=/var/www/pathtostatsfromawstats/ -config=server1.org -builddate=$(date '+\%Y\%m') > /dev/null  2>&1

 56 23 * * * /usr/share/awstats/tools/awstats_buildstaticpages.pl -update -dir=/var/www/pathtostatsfromawstats/ -config=server2.org -builddate=$(date '+\%Y\%m') > /dev/null  2>&1

and so on. 

There were lots of emails to root being generated every 10 minutes from cron, saying awstats.pl could not read the log files in /var/log/apache2/ourlogfile.log - it turned out that these were being generated by another cron which would probably have been created by the awstats installation via apt, which was located in /etc/cron.d directory, the file was /etc/cron.d/awstats which was being run as an unprivileged user, hence unable to read log files etc. So I just commented out those awstat update lines in that file. To note:

# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

Initial setup -

followed the post
to get Ubuntu install documentation,
and followed that for the setup, with separate access.log files for each domain set in their respective conf files.
 

And if we need to password protect it,

https://www.digitalocean.com/community/tutorials/how-to-set-up-password-authentication-with-apache-on-ubuntu-20-04

Running the perl script without any arguments gave the listing of possible arguments -  

perl /usr/share/awstats/tools/awstats_buildstaticpages.pl

Usage:
awstats_buildstaticpages.pl (awstats_options) [awstatsbuildstaticpages_options]

  where awstats_options are any option known by AWStats
   -config=configvalue is value for -config parameter (REQUIRED)
   -update             option used to update statistics before to generate pages
   -lang=LL            to output a HTML report in language LL (en,de,es,fr,...)
   -month=MM           to output a HTML report for an old month=MM
   -year=YYYY          to output a HTML report for an old year=YYYY

  and awstatsbuildstaticpages_options can be
   -awstatsprog=pathtoawstatspl AWStats software (awstats.pl) path
   -dir=outputdir               Output directory for generated pages
   -diricons=icondir            Relative path to use as icon dir in <img> links
   -builddate=%YY%MM%DD         Used to add build date in built pages filenames
   -staticlinksext=xxx          Build pages with .xxx extension (default .html)
   -buildpdf[=pathtohtmldoc]    Build a PDF file after building HTML pages.
                                 Output directory must contains icon directory
                                 when this option is used (need 'htmldoc')

At first, I thought I would need to manually create directories and chown them to www-data

# mkdir 202502
# chown www-data:www-data 202502
 

but then I could use the builddate parameter instead. Note that in the builddate parameter, when the $(date) is called in a cron script, the % characters have to be escaped.

Reports for older year/month combinations could be created like
perl /usr/share/awstats/tools/awstats_buildstaticpages.pl -dir=/var/www/pathtostatsfromawstats/ -config=ourserver.org -year=2024 -month=12 -builddate=202412

And finally, asked Github Copilot to generate a form with dummy servernames and paths, which I manually edited to get the correct paths, as below -

<script>
        function redirectToUrl() {
            var server = document.getElementById("server").value;
            var year = document.getElementById("year").value;
            var month = document.getElementById("month").value;
            var url = "https://ourstatsurlforstatsfromawstats/awstats." + server + year + month + ".html";
            window.location.href = url;
        }
    </script>
</HEAD>
<body>
    <form onsubmit="event.preventDefault(); redirectToUrl();">
        <label for="server">Select Server:</label>
        <select id="server" name="server">
            <option value="1.org.">CMS</option>
            <option value="2.org.">devel2</option>
            
        </select>
        <br /><br />
        <label for="year">Select Year:</label>
        <select id="year" name="year">
            <option value="2024">2024</option>
            <option value="2025">2025</option>
            <option value="2026">2026</option>
        </select>
        <br /><br />
        <label for="month">Select Month:</label>
        <select id="month" name="month">
            <option value="01">01</option>
            <option value="02">02</option>
            <option value="03">03</option>
            <option value="04">04</option>
            <option value="05">05</option>
            <option value="06">06</option>
            <option value="07">07</option>
            <option value="08">08</option>
            <option value="09">09</option>
            <option value="10">10</option>
            <option value="11">11</option>
            <option value="12">12</option>
        </select>
        <br /><br />
        <input type="submit" value="Submit" />
    </form>

               
</body>
Posted by on No comments:
Subscribe to: Posts (Atom)