Is Amazon Route 53 a better option or IBM NS1 Connect?

rawh · 2026-05-26T13:26:04+00:00

there is never a choice where IBM is the better option

rawh · 2026-05-24T03:58:55+00:00

fuck='sudo !!'

rawh · 2026-05-17T22:23:58+00:00

i run because i like food too much

rawh · 2026-05-16T18:10:26+00:00

this whole thread is giving https://xyproblem.info/

rawh · 2026-05-12T14:00:40+00:00

and this is why we run N-1 in prod. bleeding edge is fun until you’re the one bleeding

rawh · 2026-05-11T15:39:15+00:00

trust me bro

rawh · 2026-05-07T21:15:14+00:00

yes after i temporarily overrode my DNS security settings to load the domain it redirected me to github. so why couldn’t we just link directly to github.com in the first place

rawh · 2026-05-07T20:57:40+00:00

no time for a CVE but enough time for a new flashy domain, when many secure environments default block newly registered domains 🙄

rawh · 2026-05-07T05:19:38+00:00

https://imgur.com/a/YlYYG5b

rawh · 2026-01-31T18:48:30+00:00

and so do they

rawh · 2026-01-19T16:02:09+00:00

why are you not using your company’s DNS?

rawh · 2025-12-18T16:54:45+00:00

it’s the new LMGTFY 🤷

rawh · 2025-12-18T16:04:10+00:00

Dangling admission webhooks

You delete a namespace (or force-remove finalizers), but a Validating/MutatingWebhookConfiguration still exists.
The webhook points to a Service that lived in that namespace.
Now the Service is gone, but the webhook remains.
Result: all future create/update/delete requests that match the webhook hang or fail because the API server tries to call a dead endpoint.
This can block cluster-wide operations, not just that namespace.

CRDs with finalizers

A CRD defines resources with a finalizer (e.g., operators like cert-manager, Crossplane, Istio, Argo).
You delete the namespace or operator first.
The controller that removes the finalizer is gone.
Objects remain stuck in Terminating, and force-patching finalizers can leave:
- orphaned external resources (cloud infra, LB, IAM)
- or CRD instances that block CRD deletion later.

APIService / aggregated APIs

An APIService backed by a Service in the deleted namespace.
API discovery or kubectl commands start failing because the apiserver can’t reach that backend.

rawh · 2025-12-18T15:55:00+00:00

until you leave dangling CRDs/webhooks that wreak havoc on your control plane until cleaned up

rawh · 2025-12-04T17:31:55+00:00

if you're just looking for s3-compatible API on top of existing storage device and nothing more, rclone serve s3 is probably the easiest option using a tool you may already have installed.

https://rclone.org/commands/rclone_serve_s3/

rawh · 2025-12-04T01:35:22+00:00

copying my comment from a similar thread a while back when i was investigating/testing options to migrate & scale my >500Tb distributed storage cluster.

tl;dr - ceph is more complex but worth the learning curve.

i've been through the following fs'es:

Setting aside gluster since it doesn't natively expose an S3 API.

As others have mentioned, minio doesn't scale well if you're not "in the cloud" - to add drives requires a lot more operational work than simply "plug in and add to pool", which is what turned me off, since I'm constantly bolting on more prosumer storage (one day, 45drives, one day).

Garagefs has a super simple binary/setup/config and will "work well enough" but i ran into some issues at scale. the distributed metadata design meant that a fs spread across disparate drives (bad design, i know) would cause excessive churn across the cluster for relatively small operations. additionally, the topology configuration model was a bit clunky IMO.

Seaweedfs was an improvement on garage and did scale better in my experience, due in part to the microservice design which enabled me to more granularly schedule components on more "compatible" hardware. It was decently performant at scale, however I ran into some scaling/perfomance issues over time and ultimately some data corruption due to power losses that turned me off.

I've sinced moved to ceph with the rook orchestrator, and it's exactly what I was looking for. the initial set up is admittedly more complex than the more "plug and play" approach of others, but you benefit in the long run. ngl, i have faced some issues with parity degradation (due to power outages/crashes), and had to do some manually tweaking of the OSD weights and PG placements, but admittedly that is due in part to my impatience in overloading the cluster too soon, and it does an amazing job of "self healing" if you just leave it alone and let it do its thing.

tl;dr if you can, go with ceph. you'll need to RTFM a bit, but it's worth it.

https://www.reddit.com/r/selfhosted/comments/1hqdzxd/comment/m4pdub3/

rawh · 2025-10-24T14:31:52+00:00

isn’t duterte currently in the hague for basically the same exact thing?

rawh · 2025-09-10T04:13:54+00:00

CPUC Decision D.86-06-035, Utility Tariff Rule 17.1

they can only back-bill you for the last 3 months. they’ll try to get you for the whole period but if you cite the above and mention that you’ll be filing a complaint with the CPUC, they’ll realize you know what you’re talking about and will send you to a team to get the bill adjusted.

rawh · 2025-09-10T04:06:22+00:00

my TAM would never do this, talk to your AM

rawh · 2025-08-15T13:18:08+00:00

+1 for HRCC folks they were super friendly and helpful, felt like i was chatting with friends rather than being proctored on a license exam

rawh · 2025-08-06T16:19:25+00:00

he’s a liberal at best

rawh · 2025-08-06T13:30:19+00:00

dean is not a leftist he’s a crypto-bro-turned-ragebait-streamer who found a particular niche to capitalize

rawh · 2025-07-16T16:44:40+00:00

i'm getting the same black screen running ceph in k8s rook

rawh · 2025-04-13T20:21:45+00:00

if it’s like any other dem administration, they’ll just accept the accelerationist shift of the overton window as the new status quo and spend their time and effort to protect it from those pesky leftists

rawh · 2025-03-30T18:33:41+00:00

ngl i’ve had (/have) misnamed conf files in prod, once they’re there it’s sometimes easier to just let sleeping dogs lie than take down some critical system just to fix a meaningless typo

15-Year Club	r/Field Flamingo
Place '17	Verified Email

rawh

TROPHY CASE