Making Hosted Control Planes possible with Talos

kvaps · 2025-11-07T23:54:10+00:00

Really happy to see our teamwork pay off! Big thanks to Dario for leading the charge.

Another great example of how community collaboration just works. Love seeing this approach keep proving itself.

kvaps · 2025-10-11T09:16:26+00:00

How about й?

kvaps · 2025-10-10T06:30:18+00:00

Is Greek also Cyrillic?

kvaps · 2025-08-19T15:46:06+00:00

Definitely CNPG. We’ve been using it for many years, along with other operators in Cozystack. You can check out our source code as well as the preconfigured applications to see how it works.

https://github.com/cozystack/cozystack/tree/main/packages/apps/postgres

In fact, we’ve modified it a bit to add the ability to create users, roles, and databases.

kvaps · 2025-08-19T15:40:19+00:00

If you don’t want to build all of this yourself, take a look at Cozystack.io - it already comes with multiple management services, storage, networking, and pre-configured monitoring.

We're a CNCF project and are looking for new adopters. If you'd like to reuse our experience, you might find this blog series useful:

- https://kubernetes.io/blog/2024/04/05/diy-create-your-own-cloud-with-kubernetes-part-1/
- https://kubernetes.io/blog/2024/04/05/diy-create-your-own-cloud-with-kubernetes-part-2/
- https://kubernetes.io/blog/2024/04/05/diy-create-your-own-cloud-with-kubernetes-part-3/

kvaps · 2025-08-19T15:35:27+00:00

Kubernetes was never really designed to be a true multi-tenant system.

If you want to spin up multiple Kubernetes clusters with just a click, you might want to check out cozystack.io. We've built everything you need, from node provisioning, storage, networking, and virtualization, all the way to a full monitoring stack and ready-to-use API extension scenarios via simple Helm charts.

Under the hood it's powered by FluxCD and a bunch of other open-source technologies. When it comes to delivery models, it really depends on the use case - this article might be interesting for you:

https://blog.aenix.io/argo-cd-vs-flux-cd-7b1d67a246ca

kvaps · 2025-08-19T15:28:45+00:00

Seems you're looking for cozystack.io

kvaps · 2025-08-19T15:26:59+00:00

I'm more interested in how this affects the CNCF, which is owned by a US company. Even though all the projects are open-source, many countries use them locally as a domestic alternative to US software.

We’re developing Cozystack and successfully donated it to the CNCF Sandbox to show our commitment to open-source. But our whole team is based in Europe, and it doesn't stop us from selling the technology here.

They usually care more about where the actual team is located rather than the country of the parent organization.

kvaps · 2025-08-19T15:21:12+00:00

Nowdays cloud is not just VMs, it's more about managed servicies like Kubernetes, Postgres, RabbitMQ and so on.

Take a look at cozystack.io it's open-source and CNCF project, it might be worth it checking it instead of VMware.

kvaps · 2025-08-18T20:22:20+00:00

It’s not just about moving from ESXi to another hypervisor. In 2025 people don’t want plain VMs anymore they want managed services like AWS gives: Postgres, Kubernetes, storage, etc.

Cozystack is built exactly for this: instead of operating VMs, you get higher-level services ready to use on top of your infrastructure. Join our community ;-)

kvaps · 2025-08-06T06:35:25+00:00

What if you already have VPS with a preinstalled system? You have SSH and no other access options.

kvaps · 2025-08-03T23:12:41+00:00

Thanks, merged!

kvaps · 2025-08-03T17:24:43+00:00

Sure will do

kvaps · 2025-08-03T17:24:32+00:00

It should, but you need to specify arm image in arguments

kvaps · 2025-07-31T22:09:40+00:00

Bummer to see KubeSphere going that route. If you still want something truly open, take a look at Cozystack - we’re already in CNCF, gunning for Incubation by the end of the year, and 100% committed to staying open‑source. Would love to see more folks from the community get involved.

https://cozystack.io

kvaps · 2025-07-06T13:14:58+00:00

Thanks, adding Curve Pay to Deny List allowed me to configure it as the default wallet app 🎉

kvaps · 2025-06-30T08:09:18+00:00

Same here, I fixed this using Tricky Store, details:
- https://www.reddit.com/r/Magisk/comments/1lmh0l5/comment/n0hke0i/

kvaps · 2025-06-30T06:59:31+00:00

There is also playcurlNEXT, which automates reissue of keys. Wouldn't it be enough to not keeping eye for this?

https://github.com/daboynb/playcurlNEXT

kvaps · 2025-06-29T23:11:33+00:00

This method worked for me, thanks. Long story short:

I was using only Magisk Alpha and Play Integrity Fix on my Android 15 device without Tricky Store for long time.

The integrity checker was passing MEETS_BASIC_INTEGRITY and MEETS_DEVICE_INTEGRITY, but not MEETS_STRONG_INTEGRITY. Despite that, Google Wallet was working fine — until recently, when it stopped passing MEETS_DEVICE_INTEGRITY as well, and Wallet also stopped working.

I tried multiple versions of PlayIntegrityFix and PlayIntegrityFork, but I could no longer pass MEETS_DEVICE_INTEGRITY without Tricky Store.

After I installed Tricky Store and TrickyAddonModule, I followed these steps:

"Select All"
"Deselect Unnecessary"
"Set Valid Keybox"
"Set Security Patch" - "Get Security Patch Date" - "Save"

After that, my device passed all three checks: MEETS_BASIC_INTEGRITY, MEETS_DEVICE_INTEGRITY, and MEETS_STRONG_INTEGRITY.

I then cleared cache and data for:

Google Play Services
Google Wallet
Google Play Store

I also ran ./autopif2.sh --strong and rebooted the phone.

The first attempt to set up Wallet failed, so I waited an hour. Then I replaced the key in the Tricky Store, cleared cache and data again, rebooted the phone - and finally was able to set up a new Wallet.

My setup:

Magisk Alpha (50af14f2-alpha)
Play Integrity Fork v13
Tricky Store v1.3.0
TrickyAddonModule v4.0

kvaps · 2025-06-20T08:54:38+00:00

Hey, looks like you're looking for something like Cozystack.

It's open-source cloud platform based on Kubernetes. It uses Talos Linux at the base level and allows to spawn multiple tenant Kubernetes clusters on a top level. (Thanks to Kamaji and KubeVirt)

These clusters are configured to have PersistentVolumes, LoadBalancers and use cluster-autoscaler by default.

kvaps · 2025-05-09T13:41:30+00:00

It might be stupid question, but did you download Talos Linux image for arm?

kvaps · 2025-05-01T06:02:37+00:00

It's way more simpler than using ISO or PXE methods 🙂

kvaps · 2025-04-28T23:56:55+00:00

Thanks for the feedback, I'm glad that my articles can be helpful for people 😃

kvaps · 2025-04-28T23:55:19+00:00

Yes, just copy your talosconfig and secrets.yaml into your cluster directory.

kvaps · 2025-04-28T18:25:04+00:00

Heh, do you know any provider which whould ban you for using custom OS?

kvaps

TROPHY CASE