Resource allocation in Kubernetes

https://kubernetes.io/docs/concepts/configuration/manage-compute-resources-container/#meaning-of-cpu https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale-walkthrough/#appendix-quantities


Increasing My Phone's Longevity with LineageOS

In early 2016, I bought a Nexus 6p. It has by far and wide been my favorite device with a comfortable size, great screen, and a headphone port. While I’ve strongly considered picking up a fresh shiny Pixel, with both the proliferation of “fix it” stores and the sustained development of custom operating environments, I think its time for a Nexus Redux! First off, the battery. While Nexus phones are notorious for having an unrecoverable reboot looping problem, they also have batteries that can dye unexpectedly fast (i.

Continue reading ↦

Effective Content Filtering

While my friends have been raving about Pi-hole for a long time, I’ve never actually started using it. This is for a variety of reasons mainly relating to how setup for my (semi-classic) router seems relatively sub-par. While I may not adopt it for my entire network, there’s a new player on the scene which covers all your devices, including mobile (without root), and it looks quite impressive: Adguard. From their main site, you can get a lifetime license for your device, which helps guarantee I’m not wasting my precious data (Project Fi ftw!

Continue reading ↦

Thoughts and Recordings from DevOpsDays Detroit 2018

Today we officially announced availability of the recordings for DevOpsDays Detroit 2018 are live. Among them are some of the best talks I’ve heard in a while covering everything from DevSecOps to Chaos Engineering to an audience of almost 300! I’m still high from the new friends I made and DevOps learnings I soaked up. When’s the next one??? I want to take a moment to thank everyone who co-organized the conference with me, especially Joe Arnet, Dave Barnett, and Archie Cowan, all of whom I worked immensely close with.

Continue reading ↦

Fantastic eCommerce SaaS Supplements

As I’ve recently been so much more exposed to the eCommerce world through my current and previous companies, it’s been fascinating to observe the most important factors of an effective feedback loop. With any sort of Commerce business, its essential you do whatever necessary to understand your customers, and luckily, the Internet has helped us understand those interactions (much better than that slip of paper in your hotel room)! The following image is from Slack (yes I know, but I love the way it expands links) and provides three tools I haven’t actually been able to use (yet).

Continue reading ↦

Container access to the host process namespace

When you’re on CoreOS, short of using toolbox, you can actually solve most of your debugging needs by running containers. However, to really debug the host itself, the app should be in proper host namespace. Here’s a quick example of how to do this with something like htop which needs access to the host process namespace. Docker makes this super easy. docker run -it --rm --pid=host crosbymichael/htop You can also apply this for network based applications:

Continue reading ↦

File Integrity with Rhash

I’ve recently revamped my entire backup system. A datahoarder archivist like me has tons of data, with different tiers of importance, and multiple varying locations to store it. Though I’ve never lost anything important due to corruption, I absolutely understand the importance in verifying your data is what it says it is. Therefore, I set out to find a minimally invasive utility with a little more intelligence than a basic md5sum but not overbearing.

Continue reading ↦

Storage Utilities

Anyone who knows me even a little bit understands my archivist tendencies. I love storage, specifically hard disk storage, and the challenge of manipulating data efficiently. A while back, I created a list of the most intriguing data utilities with a variety of features for backup, sync, archival, encryption, and others. Note these aren’t cloud services specifically, but may have the functionality to interact with cloud providers like google drive or s3.

Continue reading ↦

Bastion Prime: A Containerized Jump Host for the modern era

Today I’m releasing a new project I’ve been working on to help bolster our adoption of more secure connectivity of cloud resources from remote locations. Bastion Prime is a containerized jump host meant to run anywhere (i.e. Kubernetes) as a more secure and ephemeral point of accessibility for bouncing through to internal systems. While a lot of people have successfully utilized things like OpenVPN or Pritunl (which just orchestrates OpenVPN), it can be much easier to deploy a simple container with an already populated authorized_keys file.

Continue reading ↦

New Container: Engage

Working in Kubernetes most of the time, I find myself doing tons of reconnaissance around the environment I’m in. This can involve understanding the networking structure, environment variables, or other aspects of a deployed container in a distributed architecture. Additionally, testing edge functionality and communication (i.e. http headers) is especially important to ensuring everything works as expected. With this in mind, I finally started down the path of creating my own “playground” container.

Continue reading ↦