For Ilya! Recently a conversation came up on a Slack I participate in about PKI, Certificate Authorities, mTLS, etc. and how they all fit together. Ilya had been poking around at some Kubernetes stuff and was seeking more information about how the PKI system was setup. Where the CA came from, how that applied elsewhere, etc. Some others jumped in and they all began to spew information around. And, while the vast majority of it was correct there were some miscommunications that led to bad (and wrong) statements. Not to mention there was such a flurry of typing going on that some wires got crossed. Seeking to clear it all up I wrote a long form response for him which I’ve cleaned up a bit for this post.

Continue reading

I found myself needing to parse an HAProxy log file but was too lazy to write a proper regular expression by hand. I knew that Grok had HAProxy expressions so I wrote a tool to pull out the raw regular expression.

Continue reading

I’ve been a sysadmin and worked with sysadmins for years but we’ve always used the cruddy Java applet interfaces to the remote consoles. I started a new job recently and was fed up with it. So, I went about learning how to do Serial Ove LAN (SOL) using IPMI. Turns out, its super easy!

Continue reading

Create a ring buffer of packet captures on a VoIP/SIP server.

Continue reading

How to quickly cd to the root of your git repository.

Continue reading

Find the IP associated with the default route on Linux and Mac OSX.

Continue reading

What do you do when OSX decides to replace Bash4 with Bash3? Get creative!

Continue reading

Wouldn’t it be nice if you could run docker compose instead of docker-compose? What about Docker Machine? You can!

Continue reading