Ansible yum_versionlock Supports Versions for Pinning
Ansible’s yum_versionlock module has been available in Ansible for several years. Since my initial release this module has also been tweaked and forked as dnf_versionlock. However, there has been a new feature request for supporting specific package versions to pin and lock. Starting with community general version 7.2, yum_versionlock is also able to handle specific versions instead of just plain .... [read more] | [2023-07-13]Vagrant, Virtualization and Apple Silicon on ARM64 in 2023
Many DevOps used Vagrant together with VirtualBox (Box) in their default setups to quickly spawn new VMs. However, when switching from AMD64 (Intel architecture) to Apple Silicon (M1/M2/M3) there was a lack of unsupported tools which broke many workflows. Currently, there’s an ARM64 supported build of Virtual Box but it doesn’t support ARM64 guests at all. This makes it necessary .... [read more] | [2023-03-25]Password Rotation Policy Nowadays
Unfortunately, many companies still have security policies according to frequently password changes for endusers. Which first sounds like a good idea may fastly result in a less better security – I also often call this security by obscurity. So, why is password rotation a bad idea nowadays? First, let us have a look at the past before year 2000, where .... [read more] | [2023-02-08]Ansible Packet Filter Module for BSD Systems
My new module pf (packet filter) allows managing the BSD’s packet filter (pf – as a firewall) which is compatible with FreeBSD, OpenBSD etc. When running in dry_run mode a generated rule set file will be validated and printed within Ansible’s meta output (json). Rulesets can be loaded by filters (e.g. filter, options or nat) and tested in dry_run mode. .... [read more] | [2023-01-17]FreeBSD – HA Firewall Cluster w/ CARP and Pfsync
FreeBSD is even in year 2022 and 2023 a popular open-source operating system that is used as the basis for many different types of servers, including web servers, email servers, and database servers. One of the key features of FreeBSD is its support for the Common Address Redundancy Protocol (CARP), which provides high availability for network services. CARP is a .... [read more] | [2023-01-12]Plutono – Grafana 7.5 Fork with Apache 2.0 License
Plutono is an interactive visualization web application that provides graphs, charts and also alerts. It is based on a Grafana 7.5 fork, maintained by credativ GmbH ( NetApp GmbH ), under the Apache 2.0 license which is limited to maintenance and security updates. In 2021, Grafana switched the licensing of its core products from the Apache License 2.0 to the .... [read more] | [2023-01-10]Released Monkey Switcher V1.2
Monkey Switcher just got released in V1.2. witch your Bluetooth capable devices like Magic Keyboard 2, Track Pad, AirPods, etc. between multiple Macs (e.g. personal & business) with a single click for macOS. This can especially be helpful to avoid connecting you wired USB-C to Lightning cable to your Magic Keyboard to establish a peering session to another Mac and .... [read more] | [2022-11-19]Garden Linux with Firecracker Support
Now, Garden Linux comes with Firecracker (microVM) images for running heavy workloads. You may also find some more information on Firecracker within my last post. Thanks to nkraetzschmar for adding Firecracker support within the Garden Linux feature system. Next to this, the Pytest pipeline needed further adjustments as well as a new IAAS type to perform tests on microVMs. With .... [read more] | [2022-10-07]Garden Linux with SELinux Support
While Garden Linux was running with SELinux all the time, Garden Linux finally supports running SELinux in enforcing mode. Within the last few weeks I made several adjustments to make sure we could switch from permissive mode to enforcing. By pushing the last commit , the gardenlinux-selinux-module gets reactivated in synergy with the patched refpolicy package within the Garden Linux .... [read more] | [2022-09-01]Garden Linux with macOS Build Support
Finally, my Garden Linux PR feature(build): Add support for macOS #1013 got merged which allows building Garden Linux images on macOS regarding the underlying hardware architecture (Intel and Apple Silicon are supported). As a result, no further Linux virtual machines are needed to create artifacts. This is a big step forwards for all macOS users in usability and also speeds .... [read more] | [2022-06-23][previous] | [next]