Category Archives: Devops/Linux

Securing network communication on kubernetes using network policies

An often overlooked topic in kubernetes is network security. This is probably caused by the fact that perople just assume it is secure by default because it is new, and because of the Service concept. The standard way to expose … Continue reading

Posted in Devops/Linux | Leave a comment

Basic kubernetes infrastructure: RPM and container repo

As part of migrating all the stuff I have from virtual machines to a kubernetes infrastructure, some important pieces of infrastructure are needed. These are: RPM repository: I use custom RPM repositories for setting up virtual machines. These same RPMs … Continue reading

Posted in Devops/Linux | Leave a comment

Automatic certificate renewal with Let’s Encrypt and DnsMadeEasy on Kubernetes

These days, it is ill-advised to run a website (such as this one), over HTTP, even if there is no security risk at all. When hosting your website on HTTP, users will see a warning triangle in the address bar … Continue reading

Posted in Devops/Linux | Leave a comment

Hosting services on Google Kubernetes Engine

This post explains how to host services on Google Compute Engine, parts of this are applicable to regular (non-GKE) Kubernetes clusters as well. This post will cover: allowing multiple services to be deployed in different namespaces allowing multiple (sub)domains to … Continue reading

Posted in Devops/Linux | Leave a comment

Setting up up a deep learning box

After doing a number of courses on machine learning I now have some overview of what is available and how it all works. So now it is getting time to start doing some work from start to finish myself. To … Continue reading

Posted in Data Science, Devops/Linux, Fun, Software | Leave a comment

Encrypting an existing Centos install (2)

In a previous post, I described how to encrypt an existing Centos install that approach was based on find out how LUKS worked and then creating a storage logical volume that was encrypted with then logical volumes on top of … Continue reading

Posted in Devops/Linux | Leave a comment

Encrypting an existing Centos install

Edit: Meanwhile I have found a better way to migrate an existing centos unencrypted install to a fully encrypted install with /boot as the only unencrypted disk space. This solution is much preferred over the one described in this post. … Continue reading

Posted in Devops/Linux, Java, Software | 1 Comment

Creating a USB install for Centos 6.4

The days of rotating disks for storing information and in particular for installing OSes are nearing their end. Why rely on something with rotating parts for storing data in the 21st century? Unfortunately, not every software vendor has caught up … Continue reading

Posted in Devops/Linux, Software | 4 Comments

Java from the trenches: improving reliability

Java and the JVM are great things. In contrast to writing native code, making a mistake in your Java code will not (or should not) crash the virtual machine. However, in my new position working for a SAAS company I … Continue reading

Posted in Devops/Linux, Java, Software | 1 Comment

Nested Logical Volume Management for VMs

Towards a more consistent virtual machine setup using nested logical volume management. I.e. the host/hypervisor allocates storage for virtual machines using logical volume management. The virtual machine itself partitions these virtual disks and uses logical volume management again to simplify management. This blog describes how I migrated and existing VM to use this approach as well.
Continue reading

Posted in Devops/Linux | Leave a comment