Author: brad

  • Windows Subsystem for Linux: Installing Arbitrary Distributions

    As of the latest version of Windows 10 build 16299.19, also known as the “Fall Creator’s Update”, Linux distributions are now available in the Windows Store, and multiple distributions can be installed and run alongside one another. This is great news, but the old way did offer one feature the latest release makes a bit […]

  • Quick Tip: Setting the Color Space Value in Wayland

    Some televisions and monitors are limited to the “broadcast RGB” color range. This is a subset of an 8-bit range of levels from 0-255 – in this case, 16-235. You’ll find this referred to as 16:235 in some cases. You can find a lot more on this here: If you’re using Xorg this can […]

  • Using Let’s Encrypt! with Kerio Operator

    This assumes you internally maintain a certbot host which retrieves certificates, and then you fetch those certs to the frontend / application servers that need them. It is also assumed you have enabled SSH for your Kerio Operator install. WARNING: This will update your kerio database directly. Do not attempt unless you understand the implications […]

  • Lark: Gentoo in the Windows Subsystem for Linux

    Why? Microsoft’s recent introduction of the Subsystem for Linux (awkwardly called ‘Bash on Ubuntu on Windows’) had me intrigued from the day of its announcement. Though it’s a transparent attempt to keep developers from leaving their Windows environments behind in a world now focused on development for UNIX-like platforms, and though I’m not particularly interested […]

  • OpenStack: Fix Security Group Enforcement on Compute Nodes

    I discovered the instances in my home lab were not being protected by the neutron security groups I’d set up for them – what followed was a week-long odyssey to discover the culprit. IPTables rules were being put in place, and every other aspect of Neutron networking was just fine. Making things more mysterious, a […]

  • OpenStack: Dedicate Compute Hosts to Projects

    Use case: We want to deploy instances on a particular set of compute hosts because of their special or specialized capabilities. On the API server(s) ensure that the following scheduler_default_filters are set: AggregateInstanceExtraSpecsFilter,AggregateMultiTenancyIsolation Dedicate Compute Hosts To a Specific Project Create a host aggregate: $ nova aggregate-create DedicatedCompute $ nova aggregate-add-host DedicatedCompute dedicated-compute-host1 $ nova aggregate-add-host […]

  • Importing an OpenStack VM into Amazon EC2

    Some quick notes for those interested: Install EC2 API TOOLS Set Access and Secret key environment variables: export AWS_ACCESS_KEY=xxxxxxxxxxxxxxx export AWS_SECRET_KEY=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx Set up an S3 bucket and secure it to taste, to be specified later If exporting from OpenStack, remove the cloud-init package Note all prep considerations on Export the VM image – I’m […]

  • Privacy Helper for Windows 10

    During my evaluation of Windows 10 I’ve cobbled together a script that disables most known anti-privacy features in the new system. It also removes the unnecessarily installed default Modern apps. The script was designed with a professional environment in mind, but applies equally well to home users, and most settings will apply to all editions […]

  • Standalone – an extension for Mozilla Firefox

    Found this little gem today, thought I’d mention it on my corner of the web. Creates site specific apps, like Prism used to do – for Chrome users, this is the equivalent of “Create Application Shortcuts” which I find indispensable personally. The strange thing is, it’s been around since 2013. How did I miss […]

  • Thoughts on Docker

    I like the concept of Docker and containerization in general, but I have some pretty fundamental concerns: Thought experiments: How many deployed docker images were torn down and redeployed upon the revelation of heartbleed? Of shellshock? In practice, not in theory. How many Docker images are regularly destroyed and redeployed for the purpose of updating […]