3710
How did we end up with containers?
No, no, no: "If you’re building a container artifact, testing it, and then deploying it, it matters less if your build process is held together with spit and chewing gum. As long as someone can work the magic and get a container spit out, and it works, then it works."
containers 
7 days ago
Don't Want a Robot to Replace You? Study Tolstoy.
A nice distillation of my nebulous reason to attend Wash U over a pure engineering school.
economics  literature  academia  college  university  diversity  inclusion 
5 weeks ago
MILITARY SPECIFICATION / COOKIES, OATMEAL; AND BROWNIES; COCOLATE COVERED
This is the brownie recipe referenced in that speech I did way back in high school.
brownies  usgov  military 
6 weeks ago
DevOps and CI automation simplified | Shippable
I haven't tried it but the reputation is that it's grown up, monorepo-focused, and maybe an alternative to the Chef Delivery-style pipelines.
ci  cd  deployment  shippable 
7 weeks ago
OpenCensus
Metric and trace collection all rolled into one client library.
opencensus  census  monitoring  metrics  observability  tracing  visibility  prometheus  zipkin 
8 weeks ago
The need for a Digital Geneva Convention - Microsoft on the Issues
This is really great leadership from Microsoft. I want this for the world. Perhaps my only criticism is its focus on nation-state attackers. For most service providers, it looks far more likely that identity thieves and Bitcoin miners are the primary threats.
microsoft  politics  law  internationallaw  security  genevaconvention 
9 weeks ago
trishankatdatadog/yubikey: How to use Yubikey for gpg, git, ssh, Docker Content Trust, VMware Fusion, and more
Excellent and comprehensive cheat sheet on leveling up your personal key management to something HSM-esque using a Yubikey and GPG.
yubikey  gpg  pgp  ssh  pki  security  hsm  crypto 
10 weeks ago
dm3876_usbtypec_diagram2b.png (867×465)
This is why we can't have nice things.
usb  usbc 
january 2018
AppArmor vs SELinux – RIT Computing Security Blog
Less important for the comparison than for the detailed walkthrough of bootstrapping an AppArmor profile.
apparmor  selinux  linux  security 
january 2018
FakeRoot - Debian Wiki
"This is done by setting LD_PRELOAD to libfakeroot.so, which provides wrappers around getuid, chown, chmod, mknod, stat, and so on, thereby creating a fake root environment." I always wondered how this worked.
fakeroot 
january 2018
You and Your Research
Dr. Hamming on how to be a great scientist based on his observations from his time at Bell Labs.
research  science  greatness  productivity  career 
january 2018
Concourse: CI that scales with your project
This certainly seems like something to get behind. Jenkins is an antipattern.
concourse  ci 
january 2018
Peter Bourgon · A theory of modern Go
I haven't followed this theory thus far but I can see myself getting behind it. I might miss global variables with the flag package, though.
golang 
january 2018
What to do if you have a nuisance or false alarm | Kidde
Confirmed, you must race around the house to find the fire alarm that started the ruckus to silence all of them in case of false alarm.
firex  firealarm  fire  smokealarm  smokedetector  smoke  alarm  safety  home 
january 2018
Canonical Livepatch Service | Server | Ubuntu
Ksplice for everyone! Super expensive, though. Better to just stay really good at provisioning from scratch.
ubuntu  livepatch  linux  kernel 
january 2018
My $169 development Chromebook
Some really fantastic advice in here. I don't personally feel the need to be capable of doing work without an Internet connection and I think for a daily driver the most expensive Chromebook on the market (base models around $1,000) are a better idea than going super cheap but all of this advice is still very sound.
chromeos  chromebook  security  laptop 
january 2018
Linux Kernel Driver Database: main index
Best web reference I've found for the Linux kernel's bajillion CONFIG_* parameters.
linux  kernel 
january 2018
SELinux - ArchWiki
Lots of needy potholes along the road to SELinux.
selinux  linux  security 
january 2018
Learning to operate Kubernetes reliably
Actually really smart to defer the internal networking debacle until later.
cron  kubernetes  stripe 
january 2018
Security-enhanced Linux for mere mortals - 2015 Red Hat Summit - YouTube
It's difficult to tell how much of the gentle slope portrayed here is because of all the effort Red Hat has put into the defaults and how much is because SELinux is generally misunderstood.
linux  selinux  redhat 
january 2018
Dirt Roading in the Bay Area, CA: Part 1 | While Out Riding
Coastal Trail, etc. in the Headlands, Shell Ridge on Mount Diablo, and Bolinas Ridge.
cycling  gravel 
january 2018
Long fire/gravel roads around Bay Area? : BAbike
Some Marin, some peninsula, and some all the way in Big Sur.
cycling  gravel 
january 2018
Time for Tech Firms to Take Responsibility for the Havoc They Wrought in 2017
"The problem is that Maslow’s framework pertains to individual, not societal, well-being."
tech  economics 
december 2017
Internet protocols are changing | APNIC Blog
Good survey of the currently-in-flight changes to core network protocols and their motivations. It'll be a little weird when almost everything is working around port and protocol differentiation.
dns  http  quic  tcp  udp  tls  networking  performance 
december 2017
Typhoon
A Kubernetes distribution. Analogous to CDH or Hortonworks.
typhoon  kubernetes  terraform 
december 2017
SPIRE
Work-in-progress implementation of SPIFFE.
spiffe  spire  identity  security  ops  dist 
december 2017
SPIFFE
Identity framework that directly addresses the disconnect between server identity and process identity in modern systems.
spiffe  identity  security  ops  dist 
december 2017
Crypto-Gram: February 15, 2017 - Schneier on Security
Some really compelling thoughts on IoT security, externalities, and policy.
iot  security  policy 
december 2017
Debugging an evil Go runtime bug - marcan.st
Good story but most worth it for the talk of gen_initramfs_list.sh.
golang  linux  kernel  initrd  initramfs 
december 2017
« earlier      
air amazon apache apartment api apollo apple apt architecture art audit automation aws backup bash beer bicycle bike blog book browser build business c c++ ca caching cassandra chef christmas chrome ci cli cloud cm compliance concurrency containers cooking crypto css culture cycling data db debian debugging deploy deps design devops dist dns docker docs ec2 economics education ego email engineering facebook ffmpeg filesystem firefox flash flex flickr food fs funny fuse gcc geo git github gnu golang google gpg graphicsmagick graphite hack hadoop hardware hash heroku hiring history hosting howto html http humor ie innodb intel internet io java jpeg js json jvm kernel kubernetes kv lambda legal linux logging lxc mac make management maps math me memcache memcached memory messaging metrics mfc microsoft monitoring mozilla music mysql nagios networking nginx nodejs nsa oauth opensource openssl ops os osx packaging people performance photography php pki politics preseed privacy profiling programming proxy puppet python queue rails recipe redis regex replication research ruby s3 security selinux sf sh shell slack socket software solaris sql ssh ssl standards startup startups svn sxsw sysadmin tcp tech testing threading time tls twitter typography ubuntu unicode unix uploadr uploadr3 vc vcs video vim virtualbox visualization washu web web2.0 windows xpcom xul xulrunner yahoo

Copy this bookmark:



description:


tags: