Category: all
Trust thy neighbour: the windows equivalent of curl | sudo bash
iwr https://chocolatey.org/install.ps1 -UseBasicParsing | iex I find this in the Vagrant file to bring up some Windows docker. Chocolatey? Its a package manager for Windows. The script in question (https://chocolatey.org/install.ps1) is fetched (iwr) and the run (iex). Hmm. Well, if someone gets our DNS, or MITM, we should get an HTTPS alert due to CA…
Blocking sketchy sites by default
So yesterday I wrote of my adventures in installing Windows 2016 Server (with Windows Server Containers) into Vagrant. Of course the first think I want to do is try out this ‘docker on windows’ experience. So I open the default browser (edge), and type in ‘docker windows’. And lo, what sketchy site is blocked by…
The bleeding cloud: new exploit based on hyperthread leaking
The ‘snoop thy neighbour’ train continues. Spectre, in the news for most of last year, is a method by which you can snoop on other process memory on the same box. And this in an age of ‘sharing is caring’ where you are running your high-value SSL eCommerce site on the same physical machine that,…
Screen scraping vnc? docker meets windows meets vagrant meets packer
You know you are itching to have a Windows 2016 server run under Vagrant w/ libvirt so you can play with Windows Containers. You just know you are. Its what’s been missing in your life. And since I feel for you and your empty life, I will share with you my secret recipe. Its got…
Google adds filestore. But what about the Kubernetes unmount issue?
OK, like all good google products its ‘beta’. But, filestore. This replaces the hackery that people like me have been doing. Except it doesn’t really, its actually kind of the same thing. Its still NFS. The issue is still open, no umount leaves dangling nfs mounts on the host. But, progress. Assuming I can work…
