freiburg.social

0 posts0 participants0 posts today

Dan ⁂finally found some time to play with <a href="https://beoriginal.social/tags/SOPS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOPS</a> (<a href="https://getsops.io/docs/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://getsops.io/docs/</a>) and migrated a project to it. seems like a good replacement and optimization for our current secrets sharing workflow. also super useful that it works with both <a href="https://beoriginal.social/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PGP</a>/ <a href="https://beoriginal.social/tags/GPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GPG</a> and <a href="https://beoriginal.social/tags/age" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#age</a> keys

Eddie RogerAfter a few nights and weekends of mashing keys, I have figured the right order to bring up a <a href="https://hachyderm.io/tags/nixos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nixos</a> instance built for <a href="https://hachyderm.io/tags/proxmox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proxmox</a>, provision it with <a href="https://hachyderm.io/tags/colmena" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#colmena</a>, shove secrets on it with <a href="https://hachyderm.io/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a>, bring up a docker container, and get it on my <a href="https://hachyderm.io/@tailscale" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@tailscale</a> <a href="https://hachyderm.io/tags/tailnet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tailnet</a>. I don’t know how many times I nearly gave up, but it paid off, and I’m thrilled. Now to do it again.

David Guillot📣 New <a href="https://social.tchncs.de/tags/webdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webdev</a> related blog post here, introducing my take on what a <a href="https://social.tchncs.de/tags/Django" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Django</a> project template could be for an advanced usage. Obviously <a href="https://social.tchncs.de/tags/astraluv" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#astraluv</a> is there, but also <a href="https://social.tchncs.de/tags/justsystems" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#justsystems</a> , <a href="https://social.tchncs.de/tags/esbuild" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#esbuild</a> , and... <a href="https://social.tchncs.de/tags/SOPS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOPS</a> 🔐 It's very early stage so please tell me what do you think about it 🙏<a href="https://david.guillot.me/en/posts/tech/proposal-for-a-django-project-template/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://david.guillot.me/en/posts/tech/proposal-for-a-django-project-template/</a>

Lennart J. Kurzweg 🇪🇺For all the <a href="https://ieji.de/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a> <a href="https://ieji.de/tags/nix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nix</a> enjoyers out there, Where do you keep your <a href="https://ieji.de/tags/AGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AGE</a> key? Does it just live on your drive? Do you use something like a <a href="https://ieji.de/tags/yubikey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#yubikey</a>? Because boot strapping the key with sops obviously doesn't work<a href="https://ieji.de/tags/nixos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nixos</a> <a href="https://ieji.de/tags/homemanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homemanager</a> <a href="https://ieji.de/tags/sopsnix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sopsnix</a>

Lennart J. Kurzweg 🇪🇺Learning how to create <a href="https://ieji.de/tags/ssh" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ssh</a> keys from my <a href="https://ieji.de/tags/gpg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gpg</a> <a href="https://ieji.de/tags/pgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pgp</a> keys so that I can use <a href="https://ieji.de/tags/age" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#age</a> for <a href="https://ieji.de/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a> <a href="https://ieji.de/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a>-nix so I don't have to enter my email password manually if I even were to nuke my system <a href="https://ieji.de/tags/NixOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NixOS</a> <a href="https://ieji.de/tags/homemanager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homemanager</a> <a href="https://ieji.de/tags/cryptograpy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cryptograpy</a>

Heinlein Support👉 Egal ob Zugriffskontrolle oder Notfallwiederherstellung, ob Datensicherung in der Cloud oder im Rechenzentrum – Schlomo Schapiro von der Tektit Consulting GmbH zeigt im Vortrag auf der Secure <a href="https://social.heinlein-support.de/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> Administration Conference, wie sich Herausforderungen rund um betriebliche Geheimnisse in modernen IT-Infrastrukturen lösen lassen. Sein Werkzeug der Wahl: Mozilla <a href="https://social.heinlein-support.de/tags/SOPS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOPS</a> (Secrets OPerationS). 🎟️ Jetzt Tickets für die SLAC vom 6.-8.5.24 in Berlin sichern & mehr erfahren:<a href="https://www.slac-2024.de" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.slac-2024.de</a>

NFDI4MicrobiotaYou can still join us online for the <a href="https://nfdi.social/tags/NFDI4Microbiota" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NFDI4Microbiota</a> Knowledge Base Sprint on 15 -16th February! Find more details on the program <a href="https://t1p.de/hnks4" rel="nofollow noopener noreferrer" target="_blank">https://t1p.de/hnks4</a> Topics are e.g. <a href="https://nfdi.social/tags/metadata" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#metadata</a>, reproducible data analysis, <a href="https://nfdi.social/tags/SOPs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOPs</a>, Research data management. ZOOM meeting ID: 889 8299 1488, Passcode: 033653

Paula Gentle on FriendicaMeine erste Zertifikatserneuerung in der immer noch frischen Kubernetes-Infrastruktur verlief zumindest unfallfrei. Nennt mich Captain SOPS!<a href="https://libranet.de/search?tag=k8s" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#k8s</a> <a href="https://libranet.de/search?tag=SOPS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOPS</a> <a href="https://libranet.de/search?tag=EinmalMitProfis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EinmalMitProfis</a>

KarstenIs someone here familiar with <a href="https://chaos.social/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a> and has experience with multiple encrypt/decrypt methods? We are using vault which leaves us unable to decrypt when the vault is down. Is it possible to add an <a href="https://chaos.social/tags/age" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#age</a> recipient as backup "decryptor"? I know multiple pgp keys work. <a href="https://chaos.social/tags/devops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devops</a>

Sebastian Mangelsdorf<a href="https://metalhead.club/tags/introduction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#introduction</a> time I live near <a href="https://metalhead.club/tags/hamburg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hamburg</a>, build and maintain <a href="https://metalhead.club/tags/privatecloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privatecloud</a> installations based on <a href="https://metalhead.club/tags/openshift" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openshift</a> and I'm always eager to automate stuff - <a href="https://metalhead.club/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> for live, technical stuff just makes me happy.Loving games, books, good discussions and real world riddles. And of course: music, rock and a bit of metal.Technical Stuff running in the lab: <a href="https://metalhead.club/tags/proxmox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proxmox</a> <a href="https://metalhead.club/tags/k3s" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#k3s</a> <a href="https://metalhead.club/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a> <a href="https://metalhead.club/tags/fluxcd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fluxcd</a> <a href="https://metalhead.club/tags/metallb" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#metallb</a> <a href="https://metalhead.club/tags/traefik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#traefik</a> <a href="https://metalhead.club/tags/longhorn" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#longhorn</a> <a href="https://metalhead.club/tags/prometheus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#prometheus</a> <a href="https://metalhead.club/tags/thanos" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#thanos</a> <a href="https://metalhead.club/tags/loki" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#loki</a> <a href="https://metalhead.club/tags/alloy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#alloy</a> <a href="https://metalhead.club/tags/grafana" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#grafana</a> <a href="https://metalhead.club/tags/tekton" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tekton</a> <a href="https://metalhead.club/tags/mosquitto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mosquitto</a> <a href="https://metalhead.club/tags/homeassistant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homeassistant</a> <a href="https://metalhead.club/tags/jellyfin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jellyfin</a> <a href="https://metalhead.club/tags/wikijs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wikijs</a> <a href="https://metalhead.club/tags/keycloak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#keycloak</a> <a href="https://metalhead.club/tags/forgejo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#forgejo</a> <a href="https://metalhead.club/tags/openshift" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#openshift</a>

nieebel<a href="https://fosstodon.org/@nalum" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@nalum</a> <a href="https://digitalcourage.social/tags/fluxcd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fluxcd</a> v2 + <a href="https://digitalcourage.social/tags/Mozilla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mozilla</a> <a href="https://digitalcourage.social/tags/sops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sops</a> + <a href="https://digitalcourage.social/tags/Vault" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vault</a> is nice! I prefer it over <a href="https://digitalcourage.social/tags/argoCD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#argoCD</a> (I heard that AWS moved away from argo to flux).For managing k8s resources I prefer simple and small controllers written in Go listening only to small subset of resources instead of what <a href="https://digitalcourage.social/tags/kyverno" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kyverno</a> is doing: intercepting every kubernetes api server traffic, which might be a bottleneck or a single point of failure, which I would avoid. But not sure, have not much experience with it. I use mostly <a href="https://digitalcourage.social/tags/kubebuilder" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kubebuilder</a> code generators which I prefer over Operator Framework. Only unit-testing with the K8s fake client is not possible to an extend I would expect... So we try to get more integration tests in our pipeline via ephemeral Kind/minikube/... clusters via <a href="https://digitalcourage.social/tags/prow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#prow</a> - which is not that straight forward...

Recent searches

Search options

Administered by:

Server stats:

#sops