Newsletter #6


Software releases, news articles and other new stuff

Plundering of crypto keys from ultrasecure SGX sends Intel scrambling again | Ars Technica
#cpu, #security

Intel's speculative execution flaws go deeper and are harder to fix than we thought.

Another bad news from the world of CPUs. Time to go for cpuless computing? I'm sure this flaw isn't the last one. Crossing fingers for all sysadmins out there that patching goes well.


Interesting articles and blog posts

Pod Lifecycle Event Generator: Understanding the "PLEG is not healthy" issue in Kubernetes - Red Hat Developer
#kubernetes, #sysadmin, #openshift

We look at the Pod Lifecycle Event Generator (PLEG) module in Kubernetes and show how to troubleshoot various issues.

Been there, done that. This PLEG thingy can keep you busy as a sysadmin.

Windows Explorer Timeline | Gekk
#windows, #history

At a glance comparison of every major Explorer release

From time to time it's cool to look back. And such episodes are always fun to read and to remember good old days. Yes, I worked with Windows 3.11 when it was the current version, I still remember how it was. Playing my first ever MP3, downloaded over dial-up with something called Napster. This even worked on Windows 3.11 back then. And I gained my first "serious" sysadmin experience with Windows NT 4.0. Bluescreen because of plugging in a USB device? Just usual back then...

Want to improve? Add a delay
#tipps, #process

If you’re a bit like me, you’re probably impatient. You want things to move quickly. There’s no time to waste!

Yes! Before I send an E-Mail, publish a post, commit a documentation page, ... I re-read what I've written. And if I had to correct things, I re-read it again and so on, until I'm confident that it's worth sending.

Gitception @ TechTalkThursday
#git, #howto

Gitception is the idea of putting your Git repository in a Git repository to see what Git does when Git is used. It is a different approach to learn Git. Git is not a tool that just works. Most users memorized a list of commands to sync up but don’t know what happens. It may throw errors at some point or you might get lost with branches. Therefore it certainly helps to understand how it works and that, for example branches are no magic, delete a branch is not dangerous and why creating branches is so fast. To see the internals of Git helps you learn the concepts behind and can create aha-moments because if you are in a situation that doesn’t follow the happy path you would have expected, you will be able to understand what is happening and why.

This is a cool idea to discover what Git exactly does. I'm by far no Git expert, but having some understanding of how it works certainly helped me with my daily Git usage.

You can list a directory containing 8 million files! But not with ls.
#linux, #sysadmin, #debugging

TLDR: Write a C program that calls the syscall getdents directly, with a large buffer size, ignore entries with inode == 0.

Interesting read about the inner workings of Linux and filesystems.

hacker-news-undocumented/ at master · minimaxir/hacker-news-undocumented · GitHub
#hackernews, #howto

Hacker News, a simple link aggregator owned and operated by Silicon Valley startup incubator Y Combinator, has had many positive effects on SV startups and engineers as a whole. On Hacker News, users receive Karma whenever another user upvotes a submission or comment they made, which incentives positive contributions to the community. However, in maintaining its simplicity, many new features and behaviors added over the years on Hacker News are not fully documented other than the occasional comments from staff. This list details some of the hidden norms about Hacker News not otherwise covered in the Guidelines and the FAQ, along with a few bonus features outside of typical HN usage.

Git serve: I would like it that simple - Stack Overflow
#git, #server

I want to know how to simply publish over http = much like Mercurial's hg serve!

TL;DR: git daemon --reuseaddr --base-path=. --export-all --verbose. How cool is that?

Intel + ARM Performance Characteristics for S3 Compatible Object Storage
#cpu, #performance

This post looks at the relative strengths of Intel and ARM as it relates to object storage. Specific attention is paid to single core vs. multi-core.

ARM might see a bright future. Why? See first link of this Newsletter issue.

Angelesen #64 –

The hiatus is real – There were so many articles piled up in the stack that I decided to restart from scratch and just pick a few that I ran into the past few weeks. From bash-scripts to AWS EC2 Spot instances to the usual surveillance topics. Enjoy

My friend Bastian is collecting links as well and publishes them on his blog. This is the latest issue.

Firmware Update of Dragino LGT-92 GPS Tracker with ST-LINK/V2
#dragino, #gps, #firmware

How to upgrade a Dragino LGT-92 GPS Tracker with an ST-LINK/V2 under Linux.

I wrote something about updating the firmware of a Dragino LGT-92 GPS tracker.


Open Source tools newly discovered

inuits/mqttgateway: Prometheus meets the Internet of Things
#mqtt, #prometheus, #iot, #metrics

A project that subscribes to MQTT queues and published prometheus metrics.

square/ghostunnel: A simple SSL/TLS proxy with mutual authentication for securing non-TLS services
#tunnel, #tls, #certificate

Ghostunnel supports two modes, client mode and server mode. Ghostunnel in server mode runs in front of a backend server and accepts TLS-secured connections, which are then proxied to the (insecure) backend. A backend can be a TCP domain/port or a UNIX domain socket. Ghostunnel in client mode accepts (insecure) connections through a TCP or UNIX domain socket and proxies them to a TLS-secured service. In other words, ghostunnel is a replacement for stunnel.

configurator/kubefs: Mount kubernetes metadata storage as a filesystem
#kubernetes, #fuse

Mount kubernetes's metadata object store as a file system

cloudflare/utahfs: UtahFS is an encrypted storage system that provides a user-friendly FUSE drive backed by cloud storage.
#storage, #s3, #fuse

UtahFS is a state-of-the art encrypted storage solution, meant to be similar to Dropbox. It has a FUSE binding that creates a synthetic drive on the user's computer that they can interact with like an external hard-drive. Files stored in the drive are uploaded to a cloud storage provider, which means the drive will never run out of space and minimizes the likelihood of any files being lost. However the files are encrypted such that the cloud storage provider knows almost nothing about what's being stored.

theryangeary/choose: A human-friendly and fast alternative to awk and cut
#awk, #shell, #rust

This is choose, a human-friendly and fast alternative to awk and cut | Design less develop more.
#design, #icons

A collection of tools for developers who have little to no artistic talent. Join the movement #nodesigndev. Follow @nodesigndev

#dns, #authoritative

Lightweight API driven Authoritative DNS server. Extracted from Project Pending.

The Knob
#iot, #button

The sound volume control knob made of concrete, with RGB LED lights.

Who doesn't want to have A KNOB?

antoniomika/sish: An open source serveo/ngrok alternative. HTTP(S)/WS(S)/TCP Tunnels to localhost using only SSH.
#ssh, #tunnel

SSH can normally forward local and remote ports. This service implements an SSH server that only handles forwarding and nothing else. The service supports multiplexing connections over HTTP/HTTPS with WebSocket support. Just assign a remote port as port 80 to proxy HTTP traffic and 443 to proxy HTTPS traffic. If you use any other remote port, the server will listen to the port for TCP connections, but only if that port is available.

bencevans/tracksix: Track your [⛵|🚂|🚙|🚜|🛵|🛷|🚶] with a Raspberry Pi and a GPS.
#owntracks, #gps, #raspberry

To communicate with your GPS device, tracksix utilises GPSd (Global Positioning System daemon) which standardises the format from different GPS devices.

vladocar/Basic.css: Basic.css - Classless CSS Starter File
#webdev, #css, #html

Basic.css gives you basic CSS formatting and ability to make basic grids with only HTML5 syntax. You can use this project to Set your default styling.

You've successfully subscribed to Tobias Brunner aka tobru
Great! Next, complete checkout to get full access to all premium content.
Error! Could not sign up. invalid link.
Welcome back! You've successfully signed in.
Error! Could not sign in. Please try again.
Success! Your account is fully activated, you now have access to all content.
Error! Stripe checkout failed.
Success! Your billing info is updated.
Error! Billing info update failed.