You have a set of web resources (a kibana dashboard, a grafana dashboard, a few other misc ones). You are setting them all up with ‘basic’ auth because its simple, and secretly hoping no-one guesses “MyS3cret”. You, my friend, are doing it wrong. Let me explain. It turns out there is a protocol called ‘oauth2’.…

The other day I wrote about adding a ‘block heater’ to the e-bike charging system. I’m please to report its working great! If we look at it with a thermal imaging camera, we can see that the ‘hot spot’ is about 6C, outside the insulation. So it shouldn’t be *colder* than that inside I guess. This…

I purchased a pair of Teckin SP10 smartplugs. They were on sale for $8 each, they fluctuate up and down, are available in round, square, 1-pack,2-pack,4-pack, lots of options. I did this on the thesis that: They would be a disaster for security They would probably have an esp8266 in them for simple hacking I’m pleased…

So i’ve been working with fluent-bit for cloud log processing. Got it working with Druid.io for some ludicrous scale etc. Now the way fluent-bit works, it mounts the host ‘/var/log’ inside itself, and does a ‘tail -f’ on all the files (it runs as a DaemonSet). To handle the case where you restart fluent-bit (perhaps for…

A few years ago an NTP issue came to light that caused a lot of damage. Cloudflare did a good writeup on this if you want to see the details. But in a nutshell, if there is a request which can be sent which causes a larger response, you have amplification. In the NTP case,…