Bytes

Sometimes you have to get out of your own way and send it. If you can figure out how.

A brief introduction to Kubernetes RBAC and its associated logical application identity objects. This model provides a different perspective than "standard" human identity User and Group definitions.

Some interesting technologies I learned about at the 2019 Kubecon NA conference in San Diego.

Linux capabilities are a mechanism to assign specific sets of privileges to processes. Container runtimes leverage Linux privilege capabilities to selectively grant elevated system permissions to as needed. Kubernetes builds on this approach to grant permissions to pods. It's turtles all the way down!

Systemd apparently has a hierarchy of override locations and files for services. Let's walk through them together.

An example of collecting and exposing Opennebula IAAS VM host information. We use this to schedule VMs to specific hardware stacks, but the options are endless!

Dive into and map out the state of the art of Chef supportig tooling together to understand how they all fit together.

Configuring sane defaults in Chef with default generator templates can help kickstart projects and deliver results more quickly.

Shipping anything with an established technology has risks of endless yak-shaving. Starting a new project with Chef in 2018 can be a challenge.