Index ¦ Archives

Resetting a yubikey

Introduction

There might be a time when you'll need to purge a yubikey without access to your gpg stubs (or if you want to avoid importing them). In this case the below method works, even though googling won't reveal at first glance. In short, the procedure involves entering a pin …


Testing if core dumps are enabled correctly

The problem

Core dumps are extremely useful for debugging purposes. However, it is often non-trivial to enable them as many production systems require twiddling with some configuration options to get core dumps working (most notably, the kernel.core_pattern sysctl, and the core file size setable with ulimit -c \<some value …


Signing RPM packages with subkeys on RHEL7

The problem

RHEL7 doesn't support signing RPM packages with GPG subkeys. The tooling will however allow you to shoot yourself in the foot, allowing you to sign a package with a subkey no problemo.

It is only when you attempt to install the package on a RHEL7 system that the …


One-off ansible bootstrapping playbooks

The case for simple playbooks

For my private infrastructure it doesn't make sense to create full-blown ansible roles unless I'm showing off. Therefore I use a set of simple, ansible playbooks that do one thing and cover the most common tasks. These playbooks are mostly intended to make the new …


Disclaimer and terms of use

Disclaimer

All views expressed on this sitre are my own and do not represent the opinions of any entity whatsoever with which I have been, am now, or will be affiliated.

The author is not to be held responsible for your use of the information contained in or linked from …


Links and books for an effective workplace in IT

There are books about the workplace (and articles) that I really like. Disclaimer: I do not endorse that these be applied blindly in any workplace, nor should any of them be used to bash people over the head with. Life is more complicated than books, and management is tough. However …


Compiling HAProxy from source on Fedora

Introduction

Since I always forget to write down all the dependencies and make options, here are my scribbly notes on how to compile HAProxy on Fedora 29/Fedora 30.

Where to get the source

The GitHub URL is a mirror of the main repository and doesn't contain the other branches …


Initial PostgreSQL 11 setup on CentOS 7 with 2ndquadrant goodies

Introduction

PostgreSQL has made some significant strides in making it a less painful database to manage in a high-availability environment. The trouble is, these advances could be documented in a more straightforward (e.g. "hacker-friendly" way). To fill in the gaps here are my scribbles on the essential additions to …


Ad-hoc Ansible for infrastructure navigation

Introduction

The official definition for Ansible is the following:

Ansible is a radically simple IT automation engine that automates
cloud provisioning, configuration management, application deployment,
intra-service orchestration, and many other IT needs.

Or explained simply, ansible is ssh on steroids wrapped in python+yaml bubblewrap to prevent sysadmins from shooting …


Contact

Email:

  • brhenc { at } nua-avenir . net

IRC:

GitHub: brhenc

Gitlab: brhenc

© Bruno Henc. Built using Pelican. Theme by Giulio Fidente on github.