Welcome to Bo's log!

• Learn SEO from scratch - Part 1

  2021-01-10

  Bo Chen

  SEO

  seo
  • What is SEO
    • Search engine optimization (SEO)
    • Search engine marketing (SEM)
    • Why we need SEO
  • Terminology
  • Domain name
  • TDK
    • Title
    • Description
    • Keyword
  • Delve the keywords
    • Search engine hint
    • Searches related in the bottom of the google page
    • Keyword planner
    • 3rd party
    • Competitor website

  What is SEO

  Search engine optimization (SEO)

  Search engine optimization (SEO) is the process of improving the quality and quantity of website traffic to a website or a web page from search engines. SEO targets unpaid traffic (known as “natural” or “organic” results) rather than direct traffic or paid traffic. Unpaid traffic may originate from different kinds of searches, including image search, video search, academic search, news search, and industry-specific vertical search engines.

  Search engine marketing (SEM)

  Search engine marketing (SEM) is a form of Internet marketing that involves the promotion of websites by increasing their visibility in search engine results pages (SERPs) primarily through paid advertising. SEM may incorporate search engine optimization (SEO), which adjusts or rewrites website content and site architecture to achieve a higher ranking in search engine results pages to enhance pay per click (PPC) listings.

  Why we need SEO

  • Advantage
    • Low cost than pay ad or other commercial invest
    • High customer quality. Since the users from search engine are whom exactly intrested in the business.
    • Works for all the search engine platform. The commercial only worked for specific platform.
    • Long term effect. Will not terminate after stop the investment.
  • Disadvantage
    • Optmize cycle is long. At least require 1 or 2 month for a keyword optmize
    • The pay AD position is good than SEO.

  Terminology

  • White hat: Original content, external links, user expericenses.
    • Advantage: Stable, good user expericenses.
    • Disadvantage: Optmize cycle: very long. 1-6 months.
  • Black hat: Cheat search engine.
    • Advantage: Cycle short: 3-5 days.
    • Disadvantage: Will be punished once get caught.
  • Grey hat: Between white hat and black hat.
  • Spider: Find info and save to database for index.
  • TDK: Title, Description and Keyword
  • Link
    • Internal link: Internal links are hyperlinks that direct the reader to a target page on your website
    • External link: External links point from one domain to an entirely separate domain.
    • Link exchange
  • Impression: An impression is counted when a list item is visible in the short list view, and also when the list view is expanded, whether or not the item is actually scrolled into view. Therefore, if an item is visible in the short view and the user then clicks to expand the list, two impressions are counted.
  • CPC: Cost Per Click. CPC refers to the cost an advertiser pays each time an online user clicks on his or her digital ad. This value is determined by dividing the cost of the marketing campaign by the total number of clicks. In PPC campaigns, advertisers can lower their CPC by using smart bidding strategies, and by improving the quality of their ads and landing pages.
  • CPM: Cost Per Thousand. This term refers to the cost for every 1,000 impressions (or views) of an ad. The CPM advertising model is typically used for marketing campaigns that are focused on building brand awareness, such as banner ad campaigns.
  • Organic Search: When people search for things and get back the results, the top few are likely to be paid or “sponsored” listings. But everything else – that’s organic search.
  • Paid Search: Paid ad placements within search engines are referred to, quite appropriately, as paid search.
  • SERPs: search engine results pages. This is the page of a search engine like Google or Bing that features the results of a search query. For example, if an online user searches “what is Internet marketing,” the SERP shows the results that the search engine has found to be the most user-friendly and helpful in answering this question. The SERP features both paid and organic (unpaid) results. SEO can be used to improve a website’s organic rankings on SERPs.
  • PPC: This stands for pay per click, which is a model of search engine advertising in which you only pay when customers actually click, as opposed to paying for impressions.
  • References
    • https://zhuanlan.zhihu.com/p/94857804 for more details.
    • https://www.thehalogroup.com/seo-vs-sem/
    • https://www.scorpion.co/articles/expert-tips/marketing-tip/what-do-seo-cpc-cpm-and-kpi-mean-15-marketing-ac/

  Domain name

  • .edu, .gov take advantage from search engine. It’s help if can get external link.
  • First choose .com .net
  • Old domain name is better than new domain name
  • No punish history from search engine
    • already registried in domain search center
    • command - site: xxx.com, link: xxx.com

  TDK

  Title

  • The max length of title is approx. 60-70 characters.
  • The title should include the core keywords. But not too much.
  • Use “|”, “,”, “-“ or “_” to separate the keyword
  • https://ahrefs.com/blog/title-tag-seo/

  Description

  • Max length 200, suggest 160.
  • Clearly decribe and easy understand. No hard terminology.
  • Don’t put too much keywords or even keywords only. or SE may treat it as cheat

  Keyword

  • Core keyword: query word for target customer and consider other factors.
  • only 3 - 5 keywords
  • Determine keyword
    • Core keyword for target user. Others can be extended keyword
    • Analysis the user group and Exclude the keywords not buying.
    • Add location info like city, country.
    • check keyword compete and situation
    • Website layout need to map to the keyword
  • Check competitor website

  Delve the keywords

  Search engine hint

  • PC
  • Mobile simulation

  Searches related in the bottom of the google page

  Keyword planner

  3rd party

  • 5118.com

  Competitor website

  Read All

  ---

• How to setup firewalld in centos

  2021-01-09

  Internet

  Operation

  Linux  firewalld
  • Basic concepts
    • Zone
    • Rule Permanence
  • Install and Enable Your Firewall to Start at Boot
  • Get the Current Firewall Rules
    • Check the Defaults
    • Check Alternative Zones
  • Selecting Zones for your Interfaces
    • Changing the Zone of an Interface
    • Adjusting the Default Zone
  • Setting Rules for your Applications
    • Adding a Service to your Zones
    • What If No Appropriate Service Is Available?
    • Defining a Service
  • Creating Your Own Zones
  • References

  In order to make our website is accessable, we need to open the service or port from the firewall. In this article, we will whow how to set up a firewall for your server and show you the basics of the firewall-cmd tool.

  Basic concepts

  Zone

  In order from least trusted to most trusted, the predefined zones within firewalld are:

  • drop: The lowest level of trust. All incoming connections are dropped without reply and only outgoing connections are possible.
  • block: Similar to the above, but instead of simply dropping connections, incoming requests are rejected with an icmp-host-prohibited or icmp6-adm-prohibited message.
  • public: Represents public, untrusted networks. You don’t trust other computers but may allow selected incoming connections on a case-by-case basis.
  • external: External networks in the event that you are using the firewall as your gateway. It is configured for NAT masquerading so that your internal network remains private but reachable.
  • internal: The other side of the external zone, used for the internal portion of a gateway. The computers are fairly trustworthy and some additional services are available.
  • dmz: Used for computers located in a DMZ (isolated computers that will not have access to the rest of your network). Only certain incoming connections are allowed.
  • work: Used for work machines. Trust most of the computers in the network. A few more services might be allowed.
  • home: A home environment. It generally implies that you trust most of the other computers and that a few more services will be accepted.
  • trusted: Trust all of the machines in the network. The most open of the available options and should be used sparingly.

  Rule Permanence

  • --permanent flag to indicate that the non-ephemeral firewall should be targeted.

  Install and Enable Your Firewall to Start at Boot

  • sudo yum install firewalld
  • sudo systemctl enable firewalld
  • sudo reboot
  • Verify the status sudo firewall-cmd --state

  Get the Current Firewall Rules

  Check the Defaults

  • Get the Default zone firewall-cmd --get-default-zone
  • Get the “active” zone (the zone that is controlling the traffic for our interfaces). firewall-cmd --get-active-zones
  • Get the rules associated with the public zone sudo firewall-cmd --list-all

  Check Alternative Zones

  • Get a list of the available zones firewall-cmd --get-zones
  • Check the specific configuration associated with a zone sudo firewall-cmd --zone=home --list-all
  • Check all zones sudo firewall-cmd --list-all-zones | less

  Selecting Zones for your Interfaces

  Changing the Zone of an Interface

  • Transition our eth0 interface to the “home” zone sudo firewall-cmd --zone=home --change-interface=eth0
  • Verify the transition firewall-cmd --get-active-zones

  Adjusting the Default Zone

  • Change the default zone sudo firewall-cmd --set-default-zone=home

  Setting Rules for your Applications

  Adding a Service to your Zones

  • Get a list of the available services firewall-cmd --get-services
    • You can get more details about each of these services by looking at their associated .xml file within the /usr/lib/firewalld/services directory.
  • Allow the traffice for HTTP service sudo firewall-cmd --zone=public --add-service=http
  • Modify the permanent firewall rules so that your service will still be available after a reboot sudo firewall-cmd --zone=public --permanent --add-service=http
  • Verify successful adding the –permanent flag sudo firewall-cmd --zone=public --permanent --list-services
  • Add the https service
    • sudo firewall-cmd --zone=public --add-service=https
    • sudo firewall-cmd --zone=public --permanent --add-service=https

  What If No Appropriate Service Is Available?

  • Opening a Port for your Zones Protocols can be either tcp or udp sudo firewall-cmd --zone=public --add-port=5000/tcp
  • Verify that this was successful sudo firewall-cmd --zone=public --list-ports
  • Specify a sequential range of ports sudo firewall-cmd --zone=public --add-port=4990-4999/udp
  • Add these to the permanent firewall.
    • sudo firewall-cmd --zone=public --permanent --add-port=5000/tcp
    • sudo firewall-cmd --zone=public --permanent --add-port=4990-4999/udp
    • sudo firewall-cmd --zone=public --permanent --list-ports

  Defining a Service

  • For instance, we could copy the SSH service definition to use for our “example” service sudo cp /usr/lib/firewalld/services/ssh.xml /etc/firewalld/services/example.xml
  • Adjust the definition sudo vi /etc/firewalld/services/example.xml
  • Reload your firewall to get access to your new services sudo firewall-cmd --reload
  • List available services firewall-cmd --get-services

  Creating Your Own Zones

  • Create the two zones:
    • sudo firewall-cmd --permanent --new-zone=publicweb
    • sudo firewall-cmd --permanent --new-zone=privateDNS
  • Verify your permanent configuration sudo firewall-cmd --permanent --get-zones
  • Reload the firewall
    • sudo firewall-cmd --reload
    • firewall-cmd --get-zones
  • Assigning the appropriate services and ports to your zones.
    • sudo firewall-cmd --zone=publicweb --add-service=ssh
    • sudo firewall-cmd --zone=publicweb --add-service=http
    • sudo firewall-cmd --zone=publicweb --add-service=https
    • sudo firewall-cmd --zone=publicweb --list-all
  • Add the DNS service to our “privateDNS” zone:
    • sudo firewall-cmd --zone=privateDNS --add-service=dns
    • sudo firewall-cmd --zone=privateDNS --list-all
  • Change our interfaces over to these new zones to test them out
    • sudo firewall-cmd --zone=publicweb --change-interface=eth0
    • sudo firewall-cmd --zone=privateDNS --change-interface=eth1
  • Add the same rules to the permanent configuration.
    • sudo firewall-cmd --zone=publicweb --permanent --add-service=ssh
    • sudo firewall-cmd --zone=publicweb --permanent --add-service=http
    • sudo firewall-cmd --zone=publicweb --permanent --add-service=https
    • sudo firewall-cmd --zone=privateDNS --permanent --add-service=dns
  • Restart your network and reload your firewall service
    • sudo systemctl restart network
    • sudo systemctl reload firewalld
  • Validate that the correct zones were assigned firewall-cmd --get-active-zones
  • Validate that the appropriate services are available for both of the zones
    • sudo firewall-cmd --zone=publicweb --list-services
    • sudo firewall-cmd --zone=privateDNS --list-services
  • make one of these zones the default for other interfaces sudo firewall-cmd --set-default-zone=publicweb

  References

  • https://www.digitalocean.com/community/tutorials/how-to-set-up-a-firewall-using-firewalld-on-centos-7
  Read All

  ---

• How to setup socks proxy with ssh tunnel

  2020-12-30

  Bo Chen

  Network

  Firewall
  • Setup ssh tunnel with cli on your local machine
  • Setup tunnel with putty on windows

  A SOCKS proxy is an SSH encrypted tunnel in which configured applications forward their traffic down, and then, on the server-end, the proxy forwards the traffic to the general Internet. Unlike a VPN, a SOCKS proxy has to be configured on an app-by-app basis on the client machine, but you can set up apps without any specialty client software as long as the app is capable of using a SOCKS proxy. On the server-side, all you need to configure is SSH.

  Setup ssh tunnel with cli on your local machine

  ssh -i ~/.ssh/id_rsa -D 1337 -f -C -q -N user@your_domain

  • Explanation of arguments
    • -i: The path to the SSH key to be used to connect to the host
    • -D: Tells SSH that we want a SOCKS tunnel on the specified port number (you can choose a number between 1025 and 65536)
    • -f: Forks the process to the background
    • -C: Compresses the data before sending it
    • -q: Uses quiet mode
    • -N: Tells SSH that no command will be sent once the tunnel is up

  Setup tunnel with putty on windows

  • Open putty and make it working for ssh to the remote
  • In “Connection”→“SSH”→“Tunnels”, setup the following
    • source port, need larger than 1024
    • select Dynamic
    • push the button add
  • Connect to remote and enjoy!
  • For more details, please refer http://junch.github.io/%E6%8A%80%E5%B7%A7/2015/06/05/original-proxy.html
  Read All

  ---

• How to manage proxy in chrome

  2020-12-30

  Bo Chen

  Network

  Firewall
  • Install SwitchyOmega plugin
  • Config the plugin

  Install SwitchyOmega plugin

  SwitchOmega is a tool to manage and switch between multiple proxies quickly & easily.

  • You can try it on Chrome Web Storehttps://chrome.google.com/webstore/detail/padekgcemlokbadohgkifijomclgjgif, or grab a packaged extension file (CRX) for offline installation on the Releases page of the git repo.
  • Git repo: https://github.com/FelisCatus/SwitchyOmega

  Config the plugin

  • Create proxy profiles mapping to different proxy
  • Create switch profiles to map to proxy profile
  • Setup rules in the switch profile
  • Setup the rulelist config
    • Choose AutoProxy
    • Rulelist url: https://raw.githubusercontent.com/gfwlist/gfwlist/master/gfwlist.txt

  For more details, please refer http://junch.github.io/%E6%8A%80%E5%B7%A7/2015/06/05/original-proxy.html

  Read All

  ---

• Set proxy for git

  2020-12-29

  Bo Chen

  Network

  Firewall  Git
  • Why we need to setup proxy for git
  • Two ways to setup the proxy
    • Setup the proxy for http protocol
    • Setup the proxy for git protocol

  Why we need to setup proxy for git

  For those machine behind the firewall

  Two ways to setup the proxy

  Setup the proxy for http protocol

  • Add a single proxy for all git config --global http.proxy http://proxyUsername:proxyPassword@proxy.server.com:port

  • Add proxy for different hosts

  git config --global http.https://domain.com.proxy http://proxyUsername:proxyPassword@proxy.server.com:port
  git config --global http.https://domain.com.sslVerify false
  

  • Check https://gist.github.com/evantoli/f8c23a37eb3558ab8765 for more details.
  • Only works for git clone https://xxxxx

  Setup the proxy for git protocol

  • Windows only
    • vim ~/.ssh/config
    • Update the content as following, -S means sock proxy. Http proxy not work at the moment

      # Global setting
      # ProxyCommand connect -S 127.0.0.1:6600 %h %p
      # For specific host
        Host github.com
          ProxyCommand connect -S 127.0.0.1:6600 %h %p
    

    • Refer https://blog.csdn.net/w8y56f/article/details/102565809 for more details.
    • Use ssh tunnel to setup the sock proxy
  • For mac, refer https://serverfault.com/questions/315605/ssh-through-a-socks-proxy-client-openssh-os-x
    • update ~/.ssh/config
    • “5” is the SOCKS version, “1080” is the proxy port, “%h” SSH replaces with the host you typed on the command line, and “%p” SSH replaces with the port from the command line (or the default 22).

    Host 10.*
      ProxyCommand nc -X 5 -x PROXY_HOST:1080 %h %p
  

  Read All

  ---