Tag: cloud

  • Downward scaling the cloud

    Downward scaling the cloud

    One of the things you will find as you go on your journey through the cloud is that the downward-scalability is very poor. Cloud is designed for a high upfront cost (people time and equipment $$$). But after that, it scales very linearly for a long way. This is great if you are a cog…

  • Attack of the rack: the killer was in the house!

    Attack of the rack: the killer was in the house!

    You know the joke about the crappy horror movie, they trace the IP, its 127.0.0.1, the killer was in the house (localhost)? True story, this just happened to me. So settle down and listen to a tale of NAT, Proxy, Kubernetes, and Fail2Ban (AKA Rack Attack in ruby land). You see, we run a modest…

  • The agony of NFS: the knife twists a bit more

    The agony of NFS: the knife twists a bit more

    Recently Google announced Filestore. I was all set to rejoice, after my heartbreaks of recent days. After all, it seemed like NFS might have been the answer for me, but I would have to have it run outside of Kubernetes. So it was with great joy I signed up for the beta program, and even…

  • Static Application Security Testing (SAST) and Nodejs (with Gitlab CI)

    Static Application Security Testing (SAST) and Nodejs (with Gitlab CI)

    SAST. Its a thing. Take the test to see if you need it 🙂 OK, not that SAST, the one that relates to security silly. So I’ve been using clair from coreos. Its pretty awesome, but, to my chagrin, it does not cover python / node / go / ruby / …, the majority of the…

  • Kubernetes and private registries and names: your registry credentials everywhere

    Kubernetes and private registries and names: your registry credentials everywhere

    Its 2018 so you have at least a few private container registries lurking about. And you are using Kubernetes to orchestrate your Highly Available Home Assistant (which you never make an acronym of since people would laugh at you) as well as other experiments. You’ve read the book on namespaces and are all in on…