If you are not aware of pass and gopass, you should be. Both are excellent CLI tools for managing secrets, especially if you’re Yubikey users. Say what you may about GPG and its many woes and many blows, I still believe it’s an excellent tool for the management of programmatically used secrets when coupled with a physical token like a Yubikey. That said, that doesn’t erase its inherent complexity. Specifically, GPG imposes a rather significant foot-gun factor that requires mitigation. Read more

⚠️ Monitum vestris Let’s get something out of the way first: if you’re thinking of doing this in the enterprise you have big problems that are not technical. Doing this is a clear anti-pattern of scalability and isolation. Why on earth Like a lot of people online, I love Linux. And as such, I use Bittorrent to share Linux images. As your needs as a Linux image consumer grow, and as you share the joy of Linux with your friends and family, you might end up deploying multiple chained applications in different Kubernetes namespaces that pull those sweet sweet ISOs. Read more

Why even start a tech blog? Pretty simple. I need an excuse to practice and ramp up my communication skills. Parallel to that I’m also trying to give more presentations. Maintaining a blog requires you to formalize and package ideas so they can be consumed by others. It’s also very handy whey I do give presentations to have a platform I can use for sharing material. So what is this blog about? Read more