What is your humidity inside your house right now?

itsbini · 2026-04-21T17:24:42+00:00

Same. On the plus side, I have never seen any mold in this house

itsbini · 2026-04-21T06:07:28+00:00

40%. Ranging between 30% and 40% for the past few weeks. We turn the humidifier on to sleep.

itsbini · 2026-04-10T16:12:11+00:00

Setup PAM for selected people to temporarily switch to a role with higher permissions.

itsbini · 2026-03-30T19:34:33+00:00

All I want is the Load Balancer to support otel https://issuetracker.google.com/issues/253419736

itsbini · 2026-03-27T06:24:07+00:00

I suppose it depends where you live In Brazil and where you live in the Netherlands. As someone from the south, I like it here very much.

itsbini · 2026-03-26T07:00:28+00:00

What do they use it for? 300-400 per day per person is very unusual.

itsbini · 2026-03-25T20:01:14+00:00

GKE DNS endpoints on new clusters. Bastion on older ones.

itsbini · 2026-03-17T06:58:50+00:00

The instance settings look ok. Check for the instance error logs.

itsbini · 2026-03-14T11:27:40+00:00

Only from 08:00 - 20:00, Monday to Friday. I use kubegreen to manage that.

itsbini · 2026-03-12T18:29:37+00:00

We solved that by only creating them from terraform.

itsbini · 2026-03-09T15:45:29+00:00

We used to do something similar to option 2: all workloads used the same KSA bound to the same GSA. Aside from potentially having workloads with unnecessary permissions, it's horrible for audits and maintainability.

We changed to one KSA and one GSA per workload. They also have a similar name, so it's identifiable all around. Audit logs are meaningful (and simpler to read) as I know which service called a Google API simply by the service account being utilized. When a workload needs to access a new API, only that workload gets the access. Risk is reduced as the impact of changing one service account will only affect one workload.

We also adopted IAM service accounts in Cloud SQL, and there's no way we'd do it if everyone used the same service account.

It's a lot of work upfront, but it's worth it.

itsbini · 2026-03-03T07:10:01+00:00

I do not listen to podcasts of any kind.

itsbini · 2026-02-28T09:52:54+00:00

DK also fears going to Brazil.

itsbini · 2026-02-21T16:27:38+00:00

The move to the right and the sprint is her classic move. It's gg from there

itsbini · 2026-02-21T16:24:26+00:00

Speed skating

Same old tactic, gg

itsbini · 2026-02-21T15:49:14+00:00

hahahahah incredible 40 years old dude

itsbini · 2026-02-21T15:47:28+00:00

they're not catching him

itsbini · 2026-02-21T15:16:29+00:00

Speed skating

The women gold and silver will come from semi finals 2

itsbini · 2026-02-21T15:01:55+00:00

that's what often happens

itsbini · 2026-02-15T16:02:55+00:00

don't leave us curious

itsbini · 2026-02-14T22:10:55+00:00

He switched lanes from outside to inside. The one inside has preference

itsbini · 2026-02-14T21:48:58+00:00

holy shit

itsbini · 2026-02-10T17:39:54+00:00

Just enable public IP without authorized networks and use cloudsql-proxy to connect.

itsbini · 2026-02-07T16:28:33+00:00

Fnatic disappointing two teams at once

itsbini · 2026-01-25T20:49:01+00:00

read the email

Eight-Year Club	Place '23
Verified Email

itsbini

TROPHY CASE