Container CPU requests and limits explained with GOMAXPROCS tuning
(victoriametrics.com)
In this article, we’re going to cover a few things that might’ve puzzled you if you’ve been running your applications, especially Go applications, in Kubernetes:
In this article, we’re going to cover a few things that might’ve puzzled you if you’ve been running your applications, especially Go applications, in Kubernetes:
InitWare, a portable systemd fork running on BSDs and Linux
(github.com/InitWare)
The InitWare Suite of Middleware allows you to manage services and system resources as logical entities called units. Its main component is a service management ("init") system.
The InitWare Suite of Middleware allows you to manage services and system resources as logical entities called units. Its main component is a service management ("init") system.
When you deleted /lib on Linux while still connected via SSH (2022)
(tinyhack.com)
Let’s first not talk about why this can happen, but deleting /lib, /usr/lib, or some other essential runtime files happens quite a lot (as you can see: here, here, here, and here). In this post, I will only discuss what happens when you delete /lib on Linux and how to recover from that.
Let’s first not talk about why this can happen, but deleting /lib, /usr/lib, or some other essential runtime files happens quite a lot (as you can see: here, here, here, and here). In this post, I will only discuss what happens when you delete /lib on Linux and how to recover from that.
Reviving the modprobe_path Technique: Overcoming search_binary_handler() Patch
(theori.io)
This blog post introduces a new method for utilizing the Overwriting modprobe_path technique. Since this patch was merged last year, it is no longer possible to trigger modprobe_path in the Upstream kernel by executing dummy files.
This blog post introduces a new method for utilizing the Overwriting modprobe_path technique. Since this patch was merged last year, it is no longer possible to trigger modprobe_path in the Upstream kernel by executing dummy files.
JSON has become today's machine-readable output format on Unix
(utoronto.ca)
Recently, I needed to delete about 1,200 email messages to a particular destination from the mail queue on one of our systems.
Recently, I needed to delete about 1,200 email messages to a particular destination from the mail queue on one of our systems.
Dinit: Service Monitoring / "Init" System
(github.com/davmac314)
Dinit is a service supervisor with dependency support which can also act as the system "init" program.
Dinit is a service supervisor with dependency support which can also act as the system "init" program.
Show HN: Interactive systemd – a better way to work with systemd units
(isd-project.github.io)
Simplify systemd management with isd! isd is a TUI offering fuzzy search for units, auto-refreshing previews, smart sudo handling, and a fully customizeable interface for power-users and newcomers alike.
Simplify systemd management with isd! isd is a TUI offering fuzzy search for units, auto-refreshing previews, smart sudo handling, and a fully customizeable interface for power-users and newcomers alike.
Maybe we should explicitly schedule rebooting our fleet every so often
(utoronto.ca)
We just got through a downtime where we rebooted basically everything in our fleet, including things like firewalls.
We just got through a downtime where we rebooted basically everything in our fleet, including things like firewalls.
GNU Shepherd 1.0 Service Manager Released as "Solid Tool" Alternative to Systemd
(phoronix.com)
GNU Shepherd as a service manager for both system and user services that is used by Guix and relying on Guile Scheme has finally reached version 1.0. For those not pleased with systemd, GNU Shepherd can be used as an init system and now has finally crossed the version 1.0 milestone after 21 years of development.
GNU Shepherd as a service manager for both system and user services that is used by Guix and relying on Guile Scheme has finally reached version 1.0. For those not pleased with systemd, GNU Shepherd can be used as an init system and now has finally crossed the version 1.0 milestone after 21 years of development.
Configure Kernel Modules Like a Pro
(naut.ca)
Kernel modules are powerful pieces of code that extend the capability of your kernel, for example, WireGuard was originally developed as a kernel module. Modules can be loaded at the time of kernel image load, initramfs load, or later on during the boot sequence. Unfortunately, the syntax of config files, options, and modules can be quite confusing, which is why I created a complete guide to loading kernel modules, in order of the boot sequence:
Kernel modules are powerful pieces of code that extend the capability of your kernel, for example, WireGuard was originally developed as a kernel module. Modules can be loaded at the time of kernel image load, initramfs load, or later on during the boot sequence. Unfortunately, the syntax of config files, options, and modules can be quite confusing, which is why I created a complete guide to loading kernel modules, in order of the boot sequence:
PRoot: User-space implementation of chroot, mount –bind, and binfmt_misc
(proot-me.github.io)
PRoot is a user-space implementation of chroot, mount --bind, and binfmt_misc.
PRoot is a user-space implementation of chroot, mount --bind, and binfmt_misc.
Ask HN: Homelab projects to learn Linux admin and DevOps to get hired as one?
(ycombinator.com)
I'm purchasing a mini PC soon (3-4 months) as I don't have any personal device as of now for labbing. Till then I want to make a list of project ideas to work on that will enhance my resume as well as give myself a point to talk about in interviews regarding system administration or devops engineering.
I'm purchasing a mini PC soon (3-4 months) as I don't have any personal device as of now for labbing. Till then I want to make a list of project ideas to work on that will enhance my resume as well as give myself a point to talk about in interviews regarding system administration or devops engineering.
The GNU Shepherd Manual
(gnu.org)
This manual documents the GNU Daemon Shepherd, or GNU Shepherd for short. The Shepherd looks after system services, typically daemons. It is used to start and stop them in a reliable fashion. For instance, it will dynamically determine and start any other services that our desired service depends upon.
This manual documents the GNU Daemon Shepherd, or GNU Shepherd for short. The Shepherd looks after system services, typically daemons. It is used to start and stop them in a reliable fashion. For instance, it will dynamically determine and start any other services that our desired service depends upon.
Using /tmp/ and /var/tmp/ Safely
(systemd.io)
/tmp/ and /var/tmp/ are two world-writable directories Linux systems provide for temporary files.
/tmp/ and /var/tmp/ are two world-writable directories Linux systems provide for temporary files.
Traditionally, init on Unix was not a service manager as such
(utoronto.ca)
Init (the process) has historically had a number of roles but, perhaps surprisingly, being a 'service manager' (or a 'daemon manager') was not one of them in traditional init systems.
Init (the process) has historically had a number of roles but, perhaps surprisingly, being a 'service manager' (or a 'daemon manager') was not one of them in traditional init systems.
A word about systemd (2016)
(skarnet.org)
systemd is becoming de facto a standard init system for Linux. But even this choice of words is treacherous, because systemd is much more than an init system. It's basically an integrated redesign of all the low-level userspace of a Linux system, with great plans to change how software is run and organized.
systemd is becoming de facto a standard init system for Linux. But even this choice of words is treacherous, because systemd is much more than an init system. It's basically an integrated redesign of all the low-level userspace of a Linux system, with great plans to change how software is run and organized.
S6 – Skarnet's small supervision suite
(skarnet.org)
s6 is a small suite of programs for UNIX, designed to allow process supervision (a.k.a service supervision), in the line of daemontools and runit, as well as various operations on processes and daemons.
s6 is a small suite of programs for UNIX, designed to allow process supervision (a.k.a service supervision), in the line of daemontools and runit, as well as various operations on processes and daemons.
Post-mortem: MRI disables every iOS device in facility: R/sysadmin
(reddit.com)
It's been a few weeks since our little incident discussed in my original post.
It's been a few weeks since our little incident discussed in my original post.