ericfreese/rat: Compose shell commands to build interactive terminal applications
Semi-interesting go-based util for annotating and/or composing shell commands, e.g. colorize output from a command, and act on patterns within that output to trigger subcommands.

Not sure I'd want to use it over my own Python shit but still.
golang  cli  shells 
7 days ago
python sweetness — Mitogen, an infrastructure code baseline that...
Possible alternative to Ansible, etc (but also a Fabric competitor (ノಠ益ಠ)ノ彡┻━┻)
python  configmanagement  ssh  sysadmin  tools 
4 weeks ago
Omar Ismail's answer to I am white. That's all you know about me. Am I privileged based on that alone and assuming I am, should I feel guilt and what should I do about it? - Quora
Really succinct explanation/analogy for white privilege. Maybe good for people who claim it doesn't exist. Many other answers in the same thread (see link at bottom) also great.
sjw  essays 
5 weeks ago
Qubes OS: A reasonably secure operating system
If it's not some sort of joke (???) then this is a Linux distro that uses Xen to run basically every single app and hardware access and etc, as its own separate locked-down VM for maximum compartmentalization.
linux  os  privacy  security 
7 weeks ago
An OSI layer model for the 21st century - Technical Journal
Examining what a 'new' OSI layer model might look like if one recast it in a modern, security/crypto matters, approach.
networking  security  cryptography 
8 weeks ago
AWS security auditing tool, i.e. will find bad configurations of EC2 networking rules, IAM setups, S3 permissions, etc etc. Written in Python.
python  aws  security 
10 weeks ago
Passbolt | FAQ
GPG-based open source team-oriented password manager.
secretsmanagement  security  gpg 
12 weeks ago
JohnCoates/Aerial: Apple TV Aerial Screensaver for Mac
Ports some amazingly gorgeous aerial videos from the Apple TV's screensaver set, to MacOS.
july 2017
Tyblog | Systemd for (Impatient) Sysadmins
Some interesting features of systemd. Mostly legitimately cool, some amusing (did this guy never hear of Anacron before?)
sysadmin  unix  linux  tools  systemd 
july 2017
Improving Critical Infrastructure Rollouts | Labs
Brief blog post showing how Spotify rolls out config/version changes in a rolling, linear fashion over time to help detect problems before they affect the entire production environment.
docker  sysadmin  configmanagement 
july 2017
thcipriani/sshecret: I can keep a SSHecret
Neat trick that uses different SSH agent processes for each domain being SSH'd to, to avoid exposing all secrets in normal agent. Uses Paramiko too!
ssh  python  sysadmin  tools  security 
july 2017
The three laws of config dynamics – buildo blog
Decent, not too deep overview of common config file patterns and antipatterns.
programming  sysadmin  configmanagement 
july 2017
Elvish: Friendly and Expressive Shell
Neat shell that is much more like real languages w/ return values from functions, real data structures instead of just strings or shitty arrays, and tying those together in pipelines.

Downside of course is that it's so different, presumably lots of usual bash/zsh related ideas just don't work? Haven't looked.
shells  unix  linux 
july 2017
WireGuard: fast, modern, secure VPN tunnel
Really neat looking modern VPN that should be a lot more secure and have fewer bugs, smaller attack surface, etc vs OpenVPN and friends. So new it lacks good client side support tho.
linux  networking  security  tools 
july 2017
Tutorial: Spack 101 — Spack documentation
Another OS-agnostic multi-tenant/version capable package manager. Seems reasonably mature at a glance but haven't really dug in yet. Needs a comparison to GoboLinux, Snap, and especially Nix probably.
os  packaging  linux  unix  sysadmin 
june 2017
Scryfall Magic Card Search
LOOKS like a super-upgrade of, complete with an API and stuff. Take another look later to see how it's holding up.
june 2017
Secrets and LIE-abilities: The State of Modern Secret Management (2017)
Decent overview of secrets managemenr, with an especially good intro/best practices. Very skewed towards container usage though.
secretsmanagement  sysadmin  security  containers 
june 2017
jonase/kibit: There's a function for that!
Style suggestion linter for Clojure, i.e. "you're using X but it's more idiomatic/cleaner to do Y instead".
june 2017
candid82/joker: Small Clojure interpreter and linter
Golang-implemented clojure linter. If it covers enough real clj syntax, it's probably much faster than any native-Clojure linter...? (Whether it's worth running a linter cold every time or having something in a REPL like the test runners, a good q)
clojure  golang 
june 2017
Enough with the microservices | Adam Drake
Good essay about why not to use microservices; goes deep enough to be compelling without being too long to comfortably read in one sitting.
essays  microservices  programming 
june 2017
Norse Mythology for Smart People - The Ultimate Online Resource for Norse Mythology and Religion
Decent site covering lots of Norse mythology information in a only-slightly-biased-sounding scholarly manner. What's nice is that while it's more in-depth than say Wikipedia, it's not overwhelmingly deep since it's effectively an ad for the guy's books.
history  religion 
june 2017
leak 1.0.3 : Python Package Index
Similar to but maybe more fleshed out than 'vanity'?
python  packaging 
may 2017
mitsuhiko/pipsi: pip script installer
tl;dr for when you want >1 python "binary" in system level w/o all being in the one big system python env
python  pip  packaging 
may 2017
Five Factor Testing - Custom Web & Mobile Development Company | DevMynd
Excellent breakdown of SPECIFICALLY why testing is important, and why not all reasons for testing apply all the time, and how to think about writing tests using them as talking points.
programming  testing  essays 
may 2017
Bugsnag Blog - Tmux and Vim - even better together
Decent set of examples for tux and vim key bindings, plugins, etc.
vim  tmux 
april 2017
Decent looking mailing list esque service, with a free plan but with paid plans as well, so presumably not AS likely to 'exit'. GH integration, etc. Also has a ton of shit I will never use but eh.
maintainership  email 
april 2017
gravitational/teleport: Modern SSH server for clusters and teams.
Golang-based OpenSSH compat SSHd with audit logging, builtin 2FA, etc. Haven't actually scoped it out but sounds interesting at least.
ssh  sysadmin  security  logging  golang 
april 2017
Yamanote Eki-Melo
Blog with all of the Yamanote line train jingles!
trains  japan  urbanism 
april 2017
A Pythonist finds a new home at Clojure land – This is not a Monad tutorial
Decent interview with a Python developer who's also done a lot of JS and Clojure work, including links to some neat tools.
essays  clojure  python 
april 2017
Unix is not an acceptable Unix | Affording Play
Good (if shorter than I'd like) essay on the Unix philosophy, shells, interfaces, complexity etc.
shells  unix  essays 
april 2017
Subgraph OS
Debian-based super-secure desktop-oriented Linux distro. Pretty impressive-looking at a glance. Many components written in Golang?
linux  security  debian  golang 
april 2017
The world under heaven, after a long period of division, tends to unite | MetaFilter
Short MeFi thread on an apparently great podcast series retelling the Romance of the Three Kingdoms in a more colorful manner to offset how straight translations to English tend to be very dry and hard to follow.
history  china  podcasts 
april 2017
API Reference — more-itertools 3.0.0 documentation
Real nice looking set of common "stuff you do a lot with iterables not covered in stdlib.itertools". bucketing, 'make either a singleton or iterable into an iterable' (possibly much nicer than my usual 'is it a string' test), etc
python  programming 
april 2017
letsencrypt/boulder: An ACME-based CA, written in Go.
I.e. if you want to run your own Let's Encrypt esque service in-house?
golang  letsencrypt  ssl  security  encryption 
march 2017
lmacken/pyrasite: Inject code into running Python processes
Could see this being real useful for poking live worker daemons w/o having to bounce them, for example. Wonder how it compares to Graphite's old 'manhole' (or w/e it was called) approach.
debugging  python  programming  sysadmin 
march 2017
Learning From A Year of Security Breaches – Starting Up Security – Medium
Great article on what an org can do to deal with security, from someone who spent 300+ hours participating in incident response in a single year.
march 2017
Linux - xhyve-manager
Tutorial from the xhyve-manager project which seems to automate much of the manual tomfoolery from an earlier xhyve bookmark.
virtualization  mac  linux  sysadmin  xhyve 
march 2017
Use xhyve for development on OSX · mfojtik blog
Excellent overview of how to use 'raw' xhyve on OS X to run a Linux vm.

Based on CentOS 7 but should be possible to apply to other OSes once one figures out the nitty gritty about kernel & its cmdline, initrd, etc.
virtualization  mac  sysadmin  linux  xhyve 
march 2017
chaorace/cqui: Civilization 6 - Chao's Quick UI. Reduce clicks and manage your empire faster!
Goon-recommended UI that adds a ton of info back to the info screens and tooltips
civ  games 
march 2017
Restart Button Mod 1.0.7 - Civ 6 Mods
Lets you reroll a game start w/o having to set everything back up every. single. time.
civ  games 
february 2017
[Distutils] Announcement: TLSv1.2 will become mandatory in the future
tl;dr Python interpreters need to bind against an OpenSSL that includes TLSv1.2, meaning no more OS X bundled Pythons/OpenSSL - need eg pyenv + brew openssl.
python  ssl  maintainership  packaging  security 
february 2017
wallix/awless: A Mighty CLI for AWS
Seen in a sysadmin newsletter. Might be good if it doesn't use golang stdlib's awful plan 9 style cli flags...
aws  cli  golang  tools  sysadmin 
february 2017
ericchiang/pup: Parsing HTML at the command line
tl;dr it's like jq but for HTML instead of JSON. Neat.
cli  tools  http 
february 2017
Coping with the TCP TIME-WAIT state on busy Linux servers | Vincent Bernat
Pretty great blog post explaining TIME_WAIT with detailed schematics etc.
networking  linux  sysadmin  unix 
february 2017
1990年 - YouTube
Playlist of supercuts of camcorder walkthroughs of the streets/stations/etc of Tokyo in the 1990s. RAD, if slightly disorienting at times
japan  urbanism  video 
january 2017
Kyle Isom: "OpenSSH Keys: A Walkthrough"
Decent look at the low level basics of RSA SSH keys. Bit outdated though since it references EC as being "the future of public-key encryption" and OS X 10.8 as being current, LOL
ssh  security  encryption  essays 
january 2017
etsy/411: An Alert Management Web Application
tl;dr an etsy-driven app that generates alerts from ELK-stack ES databases

Of's PHP. Meh.
monitoring  search  sysadmin  alerts 
january 2017
NY Train Project
Neat line-by-line 'exploration' of the mosaic/tile signage for almost every station in the system.
nyc  subway  art 
january 2017
Pixie | Welcome
Neat early-stage LISP written in RPython. "Clojure w/o the startup time" YES PLZ
lisp  programming  python  clojure 
january 2017
dgsh — directed graph shell
Seriously cool new shell that has native async/multipipe capabilities, so you can do stuff like "md5sum and wc -c the same input, simultaneously, then print the output of both in a given format". Includes a number of coreutils rebuilt to take advantage of its features.

Sadly not in Homebrew yet?
shells  sysadmin  tools 
january 2017
Construct — Construct 2.8 documentation
Neat looking binary-oriented Python parsing lib. Could be fun if I need to do any lower level tomfoolery.
python  parsing  binary  sysadmin  tools  networking  security 
december 2016
Using Pipelines to Manage Environments with Infrastructure as Code – Medium
Decent article going over a method of managing infrastructure changes in a two-repo-with-CI (or, I assume, a single-repo-with-tags) setup, with tests, etc.
sysadmin  building 
december 2016
« earlier      
43f advice alcohol alerts anime ansible apache apps architecture arm art ascii askme assembly astronomy async audio automation awk aws backgrounds backups bash bayarea benchmarking bg2 bigdata biking binary biology bookmarks books bots browser brutalism bsd buddhism building c c++ car cartography cassandra cat cellphones chef china chrome civ cli clojure cocoa color colorizing colorschemes communities compsci concurrency configmanagement containers coroutines courses cryptography css d'ni databases debian debugging deploy design diagrams distsys django dns docker documentation donations editors elasticsearch electronica ello emacs email encoding encryption erlang essays expanse extensions fabric fantasy film finance firefly firefox flask flickr focus fonts food forms games gba gems git github gmail golang good_design google gpg graffiti graphing graphite gui hacking hadoop handwriting haproxy hardware health history homebrew hosting http humor images interactivefiction iphone irc itunes japan java javascript jenkins json kafka knowledge kubernetes learning letsencrypt life linux lisp loadtesting logging lucasarts mac maintainership maps markdown martial_arts math mefi memes metrics microservices minecraft mod_wsgi moleskine mongo-in-postgres mongodb mongodb-problems monitoring moo moving mtg muds mush music mutt nagios names networking newsblur nginx nihongo nodejs nosql nyc objective-c oldware openbsd ops os packaging pagerduty parsing photography photos photoshop php pip pizza podcasts poetry postgresql ppc preseed presentations privacy productivity programming puppet python rabbit rails redis redmine reference regex religion repl roleplaying rpg ruby rust safety salt scala science scifi search secretsmanagement security sensu shells simulation sjw sleep slides space spotify sql ssh ssl starwars style subprocess subway sync sysadmin systemd tablature tcg techtalks terrabattle testing text textmate theexpanse threading time timemachine tmux to_file to_listen to_read to_visit to_watch tools trains troubleshooting tutorials twisted twitter typography ubuntu unicode unix urbanism utc vagrant vault video vim virtualenv virtualization visualization wallpapers webdev wiki wine wow writing xhyve zsh

Copy this bookmark: