Tag: security
Attack of the rack: the killer was in the house!
You know the joke about the crappy horror movie, they trace the IP, its 127.0.0.1, the killer was in the house (localhost)? True story, this just happened to me. So settle down and listen to a tale of NAT, Proxy, Kubernetes, and Fail2Ban (AKA Rack Attack in ruby land). You see, we run a modest…
The agony of NFS: the knife twists a bit more
Recently Google announced Filestore. I was all set to rejoice, after my heartbreaks of recent days. After all, it seemed like NFS might have been the answer for me, but I would have to have it run outside of Kubernetes. So it was with great joy I signed up for the beta program, and even…
Static Application Security Testing (SAST) and Nodejs (with Gitlab CI)
SAST. Its a thing. Take the test to see if you need it 🙂 OK, not that SAST, the one that relates to security silly. So I’ve been using clair from coreos. Its pretty awesome, but, to my chagrin, it does not cover python / node / go / ruby / …, the majority of the…
Kubernetes and private registries and names: your registry credentials everywhere
Its 2018 so you have at least a few private container registries lurking about. And you are using Kubernetes to orchestrate your Highly Available Home Assistant (which you never make an acronym of since people would laugh at you) as well as other experiments. You’ve read the book on namespaces and are all in on…
Completely Complex Cloud Cluster Capacity Crisis: Cool as a Cucumber in Kubernetes
So…. capacity. There’s never enough. This is why people like cloud computing. You can expand for some extra cash. There’s different ways to expand: scale out (add more of the same) and scale up (make the same things bigger). Normally in cloud you are focused on scale-out, but, well, you need big enough pieces to…
