Scout2
AWS security auditing tool, i.e. will find bad configurations of EC2 networking rules, IAM setups, S3 permissions, etc etc. Written in Python.
python  aws  security 
10 days ago
Passbolt | FAQ
GPG-based open source team-oriented password manager.
secretsmanagement  security  gpg 
18 days ago
JohnCoates/Aerial: Apple TV Aerial Screensaver for Mac
Ports some amazingly gorgeous aerial videos from the Apple TV's screensaver set, to MacOS.
mac 
27 days ago
Tyblog | Systemd for (Impatient) Sysadmins
Some interesting features of systemd. Mostly legitimately cool, some amusing (did this guy never hear of Anacron before?)
sysadmin  unix  linux  tools  systemd 
4 weeks ago
Improving Critical Infrastructure Rollouts | Labs
Brief blog post showing how Spotify rolls out config/version changes in a rolling, linear fashion over time to help detect problems before they affect the entire production environment.
docker  sysadmin  configmanagement 
5 weeks ago
thcipriani/sshecret: I can keep a SSHecret
Neat trick that uses different SSH agent processes for each domain being SSH'd to, to avoid exposing all secrets in normal agent. Uses Paramiko too!
ssh  python  sysadmin  tools  security 
5 weeks ago
The three laws of config dynamics – buildo blog
Decent, not too deep overview of common config file patterns and antipatterns.
programming  sysadmin  configmanagement 
5 weeks ago
Elvish: Friendly and Expressive Shell
Neat shell that is much more like real languages w/ return values from functions, real data structures instead of just strings or shitty arrays, and tying those together in pipelines.

Downside of course is that it's so different, presumably lots of usual bash/zsh related ideas just don't work? Haven't looked.
shells  unix  linux 
5 weeks ago
WireGuard: fast, modern, secure VPN tunnel
Really neat looking modern VPN that should be a lot more secure and have fewer bugs, smaller attack surface, etc vs OpenVPN and friends. So new it lacks good client side support tho.
linux  networking  security  tools 
5 weeks ago
Tutorial: Spack 101 — Spack documentation
Another OS-agnostic multi-tenant/version capable package manager. Seems reasonably mature at a glance but haven't really dug in yet. Needs a comparison to GoboLinux, Snap, and especially Nix probably.
os  packaging  linux  unix  sysadmin 
8 weeks ago
Scryfall Magic Card Search
LOOKS like a super-upgrade of magiccards.info, complete with an API and stuff. Take another look later to see how it's holding up.
mtg 
9 weeks ago
Secrets and LIE-abilities: The State of Modern Secret Management (2017)
Decent overview of secrets managemenr, with an especially good intro/best practices. Very skewed towards container usage though.
secretsmanagement  sysadmin  security  containers 
9 weeks ago
jonase/kibit: There's a function for that!
Style suggestion linter for Clojure, i.e. "you're using X but it's more idiomatic/cleaner to do Y instead".
clojure 
10 weeks ago
candid82/joker: Small Clojure interpreter and linter
Golang-implemented clojure linter. If it covers enough real clj syntax, it's probably much faster than any native-Clojure linter...? (Whether it's worth running a linter cold every time or having something in a REPL like the test runners, tho...is a good q)
clojure  golang 
10 weeks ago
Enough with the microservices | Adam Drake
Good essay about why not to use microservices; goes deep enough to be compelling without being too long to comfortably read in one sitting.
essays  microservices  programming 
10 weeks ago
Norse Mythology for Smart People - The Ultimate Online Resource for Norse Mythology and Religion
Decent site covering lots of Norse mythology information in a only-slightly-biased-sounding scholarly manner. What's nice is that while it's more in-depth than say Wikipedia, it's not overwhelmingly deep since it's effectively an ad for the guy's books.
history  religion 
10 weeks ago
leak 1.0.3 : Python Package Index
Similar to but maybe more fleshed out than 'vanity'?
python  packaging 
may 2017
mitsuhiko/pipsi: pip script installer
tl;dr for when you want >1 python "binary" in system level w/o all being in the one big system python env
python  pip  packaging 
may 2017
Five Factor Testing - Custom Web & Mobile Development Company | DevMynd
Excellent breakdown of SPECIFICALLY why testing is important, and why not all reasons for testing apply all the time, and how to think about writing tests using them as talking points.
programming  testing  essays 
may 2017
Bugsnag Blog - Tmux and Vim - even better together
Decent set of examples for tux and vim key bindings, plugins, etc.
vim  tmux 
april 2017
Groups.io
Decent looking mailing list esque service, with a free plan but with paid plans as well, so presumably not AS likely to 'exit'. GH integration, etc. Also has a ton of shit I will never use but eh.
maintainership  email 
april 2017
gravitational/teleport: Modern SSH server for clusters and teams.
Golang-based OpenSSH compat SSHd with audit logging, builtin 2FA, etc. Haven't actually scoped it out but sounds interesting at least.
ssh  sysadmin  security  logging  golang 
april 2017
Yamanote Eki-Melo
Blog with all of the Yamanote line train jingles!
trains  japan  urbanism 
april 2017
A Pythonist finds a new home at Clojure land – This is not a Monad tutorial
Decent interview with a Python developer who's also done a lot of JS and Clojure work, including links to some neat tools.
essays  clojure  python 
april 2017
Unix is not an acceptable Unix | Affording Play
Good (if shorter than I'd like) essay on the Unix philosophy, shells, interfaces, complexity etc.
shells  unix  essays 
april 2017
Subgraph OS
Debian-based super-secure desktop-oriented Linux distro. Pretty impressive-looking at a glance. Many components written in Golang?
linux  security  debian  golang 
april 2017
The world under heaven, after a long period of division, tends to unite | MetaFilter
Short MeFi thread on an apparently great podcast series retelling the Romance of the Three Kingdoms in a more colorful manner to offset how straight translations to English tend to be very dry and hard to follow.
history  china  podcasts 
april 2017
API Reference — more-itertools 3.0.0 documentation
Real nice looking set of common "stuff you do a lot with iterables not covered in stdlib.itertools". bucketing, 'make either a singleton or iterable into an iterable' (possibly much nicer than my usual 'is it a string' test), etc
python  programming 
april 2017
letsencrypt/boulder: An ACME-based CA, written in Go.
I.e. if you want to run your own Let's Encrypt esque service in-house?
golang  letsencrypt  ssl  security  encryption 
march 2017
lmacken/pyrasite: Inject code into running Python processes
Could see this being real useful for poking live worker daemons w/o having to bounce them, for example. Wonder how it compares to Graphite's old 'manhole' (or w/e it was called) approach.
debugging  python  programming  sysadmin 
march 2017
Learning From A Year of Security Breaches – Starting Up Security – Medium
Great article on what an org can do to deal with security, from someone who spent 300+ hours participating in incident response in a single year.
security 
march 2017
Linux - xhyve-manager
Tutorial from the xhyve-manager project which seems to automate much of the manual tomfoolery from an earlier xhyve bookmark.
virtualization  mac  linux  sysadmin  xhyve 
march 2017
Use xhyve for development on OSX · mfojtik blog
Excellent overview of how to use 'raw' xhyve on OS X to run a Linux vm.

Based on CentOS 7 but should be possible to apply to other OSes once one figures out the nitty gritty about kernel & its cmdline, initrd, etc.
virtualization  mac  sysadmin  linux  xhyve 
march 2017
chaorace/cqui: Civilization 6 - Chao's Quick UI. Reduce clicks and manage your empire faster!
Goon-recommended UI that adds a ton of info back to the info screens and tooltips
civ  games 
march 2017
Restart Button Mod 1.0.7 - Civ 6 Mods
Lets you reroll a game start w/o having to set everything back up every. single. time.
civ  games 
february 2017
[Distutils] Announcement: TLSv1.2 will become mandatory in the future
tl;dr Python interpreters need to bind against an OpenSSL that includes TLSv1.2, meaning no more OS X bundled Pythons/OpenSSL - need eg pyenv + brew openssl.
python  ssl  maintainership  packaging  security 
february 2017
wallix/awless: A Mighty CLI for AWS
Seen in a sysadmin newsletter. Might be good if it doesn't use golang stdlib's awful plan 9 style cli flags...
aws  cli  golang  tools  sysadmin 
february 2017
ericchiang/pup: Parsing HTML at the command line
tl;dr it's like jq but for HTML instead of JSON. Neat.
cli  tools  http 
february 2017
Coping with the TCP TIME-WAIT state on busy Linux servers | Vincent Bernat
Pretty great blog post explaining TIME_WAIT with detailed schematics etc.
networking  linux  sysadmin  unix 
february 2017
1990年 - YouTube
Playlist of supercuts of camcorder walkthroughs of the streets/stations/etc of Tokyo in the 1990s. RAD, if slightly disorienting at times
japan  urbanism  video 
january 2017
Kyle Isom: "OpenSSH Keys: A Walkthrough"
Decent look at the low level basics of RSA SSH keys. Bit outdated though since it references EC as being "the future of public-key encryption" and OS X 10.8 as being current, LOL
ssh  security  encryption  essays 
january 2017
etsy/411: An Alert Management Web Application
tl;dr an etsy-driven app that generates alerts from ELK-stack ES databases

Of course...it's PHP. Meh.
monitoring  search  sysadmin  alerts 
january 2017
NY Train Project
Neat line-by-line 'exploration' of the mosaic/tile signage for almost every station in the system.
nyc  subway  art 
january 2017
Pixie | Welcome
Neat early-stage LISP written in RPython. "Clojure w/o the startup time" YES PLZ
lisp  programming  python  clojure 
january 2017
dgsh — directed graph shell
Seriously cool new shell that has native async/multipipe capabilities, so you can do stuff like "md5sum and wc -c the same input, simultaneously, then print the output of both in a given format". Includes a number of coreutils rebuilt to take advantage of its features.

Sadly not in Homebrew yet?
shells  sysadmin  tools 
january 2017
Construct — Construct 2.8 documentation
Neat looking binary-oriented Python parsing lib. Could be fun if I need to do any lower level tomfoolery.
python  parsing  binary  sysadmin  tools  networking  security 
december 2016
Using Pipelines to Manage Environments with Infrastructure as Code – Medium
Decent article going over a method of managing infrastructure changes in a two-repo-with-CI (or, I assume, a single-repo-with-tags) setup, with tests, etc.
sysadmin  building 
december 2016
Cerberus: Secure property store for cloud applications
Nike OSS project; coderangers says it looks "a more complete/opinionated version of Vault for AWS"
security  sysadmin  secretsmanagement 
december 2016
Silicon Valley Rising
Name is unfortunately suggestive of typical head-up-ass Silicon Valley crap, _but_ it is not, it's about helping all the folks who keep the region running despite _not_ being middle class white techbros from Stanford.
donations 
december 2016
NRDC
Natural Resources Defense Council
donations 
december 2016
aker-gateway/Aker: SSH bastion/jump host
Python (Paramiko!) based bastion/jump host software for auditability, etc etc. Young but looks promising.
ssh  python  sysadmin  security 
december 2016
Joyent | TCP Puzzlers
Decent enough overview of basic TCP connections and how they can correctly and, more importantly, incorrectly terminate. Explains some of why stuff hangs out in CLOSE_WAIT etc.
networking  sysadmin 
december 2016
Summaries, Books I - V : TheExpanse
Well executed summaries of the earlier Expanse novels.
books  theexpanse 
december 2016
hyperhq/runv: Hypervisor-based Runtime for OCI
tl;dr run containers (actually OCI, not Docker, but w/e) inside real hypervisor instances for when you need those extra isolation guarantees or whatnot
docker  containers  virtualization  sysadmin 
december 2016
Canonical Log Lines — Brandur Leach
Semi interesting look at formatting log lines for easier filter/search by splunk/etc tools, in a 'halfway' format that is both semi human readable and semi computer friendly (logfmt).

Not sure the article couldn't have just been "tl;dr emit extra log lines formatted especially for use in log search tools" tho...
logging  sysadmin 
december 2016
« earlier      
43f advice alcohol alerts anime ansible apache apps architecture arm art ascii askme assembly astronomy async audio automation awk aws backgrounds backups bash bayarea benchmarking bg2 bigdata biking binary biology bookmarks books bots browser brutalism bsd buddhism building c c++ car cartography cassandra cat cellphones chef china chrome civ cli clojure cocoa color colorizing colorschemes communities compsci concurrency configmanagement containers coroutines courses css d'ni databases debian debugging deploy design diagrams distsys django dns docker documentation donations editors elasticsearch electronica ello emacs email encoding encryption erlang essays expanse extensions fabric fantasy film finance firefly firefox flask flickr focus fonts food forms games gba gems git github gmail golang good_design google gpg graffiti graphing graphite gui hacking hadoop handwriting haproxy hardware health history homebrew hosting http humor images interactivefiction iphone irc itunes japan java javascript jenkins json kafka knowledge kubernetes learning letsencrypt life linux lisp loadtesting logging lucasarts mac maintainership maps markdown martial_arts math mefi memes metrics microservices minecraft mod_wsgi moleskine mongo-in-postgres mongodb mongodb-problems monitoring moo moving mtg muds mush music mutt nagios names networking newsblur nginx nihongo nodejs nosql nyc objective-c oldware openbsd ops os packaging pagerduty parsing photography photos photoshop php pip pizza podcasts poetry postgresql ppc preseed presentations privacy productivity programming puppet python rabbit rails redis redmine reference regex religion repl roleplaying rpg ruby rust safety salt scala science scifi search secretsmanagement security sensu shells simulation sjw sleep slides space spotify sql ssh ssl starwars style subprocess subway sync sysadmin systemd tablature tcg techtalks terrabattle testing text textmate theexpanse threading time timemachine tmux to_file to_listen to_read to_visit to_watch tools trains troubleshooting tutorials twisted twitter typography ubuntu unicode unix urbanism utc vagrant vault video vim virtualenv virtualization visualization wallpapers webdev wiki wine wow writing xhyve zsh

Copy this bookmark:



description:


tags: