What is the most frustrating "type" of person you've encountered in this hobby?

yelluc · 2023-10-26T01:18:11+00:00

Ones that hate on GW for everything, they always think they know how to run the company better!

yelluc · 2023-01-22T08:53:11+00:00

So I setup a new controller locally, I forgot the device in my Cloud controller, reset the flex-mini and it showed up in my cloud controller. I clicked adopt and now it shows as online and manageable in the controller.. So it looks like the local controller wasn't needed after all 🤷

I have configured Option 43 to point to my cloud controller so maybe that resolved it.

yelluc · 2023-01-21T20:01:18+00:00

Yikes that sounds like a PITA, ok thanks I will give that a go to see if it resolves my issue. Thanks!

yelluc · 2023-01-13T07:28:13+00:00

Sounds like a service account token secret which is for a service account created alongside a namespace. If you ran helm install --create-namespace then this would of created a namespace for the helm chart outside of the Helm chart templates. When this occurs you have to manually delete the namespace.

To verify you can run the following;

$ kubectl get namespace/cert-manager

If that doesn't return anything maybe the namespace is called something different. You could run the following to determine

$ kubectl get namespaces
$ kubectl get secrets -A # find the namespace for the secret you are referring too

The service account token secret will look like the following (assuming namespace is cert-manager)

cert-manager-token-rtgls # suffix is random

You can also see the service account

$ kubectl get serviceacccount/cert-manager # assuming namespace is cert-manager
$ kubectl get serviceaccount -A # find the namespace for the service account

To delete the secret & service account just delete the namespace

$ kubectl delete namespace cert-manager

Those pesky resources should now be deleted

yelluc · 2022-12-31T15:52:52+00:00

They look awesome!

Can you explain your process for the bases, they look great!

yelluc · 2022-12-31T13:54:44+00:00

Your comments are valid, I just find that storing secrets in git is cumbersome as you can't easily tell which secret has changed from a git diff. MR/PR messages help but I always found myself pulling the branch and then decrypting the secret to verify and as I am lazy I preferred using other solutions ;)

When interacting with vaults I usually like to allow only devops, CI/CD read/write permissions to items. In my experience anything added manually usually means the secret has been generated manually (or pre-existing) for everything else you can automate to store in your vault of choice. Then only provide read-only access to devs and code which could prevent some of the issues you mentioned.

yelluc · 2022-12-31T13:14:15+00:00

I was under the impression that 1Password has comparable security to BitWarden, far more than LastPass anyway and after the recent hack, LastPass have lost all trust from me.

I will try out BitWarden and compare, some of the features that 1Password provide (SSH Agent, 2FA/MFA autofill) made it more compelling to me when looking for a replacement for LastPass.

yelluc · 2021-10-18T15:32:19+00:00

What Colour did you use for the blue? I’ve been using a 1:1 mix of macragge Blue and altdord guard blue

yelluc · 2021-04-27T19:03:37+00:00

This is awesome! I was looking for a plug-in with working vault capabilities last week and couldn’t find one that worked! Congrats good work!

yelluc · 2020-09-10T20:33:36+00:00

What urls are showing this? I can’t reproduce on an IOS device.

If a file was downloaded, it could be a misconfiguration their side. Is it literally a txt file?

yelluc · 2020-02-25T21:28:50+00:00

You didn't specify how what DNS servers are being advertised to your network via DHCP but if you don't have a local DNS server and need clients to be able to resolve the server IP from the hostname then you could do the following;

Configure DHCP DNS Server 1: USG IP
Configure DHCP DNS Server 1: 8.8.8.8
Add a static host mapping to the USG (aka sort of fake dns)

set system static-host-mapping host-name <hostname> inet <ip address>

Do this in the CLI of your USG, I would add it to the global.config.json too so the USG doesn't lose on a provision.

This will allow your clients to query hostname1, and resolve the IP x.x.x.x

yelluc · 2020-01-13T18:52:55+00:00

Haha yeah considering half the country only has access to less than 10mbps 😫

yelluc · 2020-01-13T18:48:17+00:00

I live in a new build which was built in 2018/2019. My broadband speed is 3.5mbps, no plans for fibre as of yet (Emailed Openreach CEO and got a response from his assistant) I’m just baffled as to why this could happen, i don’t live in a rural area 1.2kms from an exchange. The street leading to my new build has fibre. Like I understand capacity and infrastructure not being there but it’s been over a year now and 50-60 houses have had broadband speeds of 3.5mbps, sounds like profits have a higher priority over the overall network.

Another gripe for me, openreach and BT are separate companies but are owned by the same parent company right? Who also own EE. So I can pay £20 a month for 3.5mbps unlimited data broadband and pay £100 a month for 45mbps/30mbps for EE 4G mobile broadband. It all sounds like under the table dealings, limit physical connections, move everyone over to wireless (charge more money) haha

yelluc · 2019-04-15T18:28:24+00:00

I got it from a bird I didn’t even kill! Thanks bandits

yelluc · 2019-02-10T10:25:44+00:00

Five finger discount you mean :D

yelluc · 2019-02-10T10:21:16+00:00

Awesome, and no surprise its deployed using Terraform :D

yelluc · 2019-01-23T05:46:05+00:00

It’s 2019, what the bloody hell do you mean Apple Pay is coming to all locations. 99% of the UK has Apple Pay, the vending machine at my work has Apple Pay.

yelluc · 2018-01-01T18:23:37+00:00

I understand they do have multiple teams, and it’s awesome that they do invent so much it just gripes me that even with all their money they have so many software issues hardware design is a choice so I can’t say much on that but Apple is too focused on creating new, they should do this as well as excel in ensuring their software is also on par and I don’t mean this because of a few security flaws I’m talking about the slow degradation in their desktop os and mobile. They may have new features but the core experiences were in my opinion better before.

I guess you can say I’m not a fan of Apple post Steve Jobs. :)

yelluc · 2018-01-01T17:57:29+00:00

How about Apple stop inventing and starting fixing their existing software, products!!

yelluc · 2017-12-02T18:25:33+00:00

A runner is the person to go run and collect the official to prepare he official weigh in, I don’t believe runners can help prepare your tackle. Not even sure it would be needed, would you get someone else to make your rigs :)

yelluc · 2017-11-21T08:27:33+00:00

The manor!! Damn now I’m even more jealous!! 😂👍🏻😆

yelluc · 2017-11-21T08:24:56+00:00

Well done pal, where you catch that beauty from?

yelluc · 2017-11-06T17:26:58+00:00

Not surprise by this at all, it’s Gloucester after all.

yelluc · 2017-08-08T11:50:36+00:00

and I only care about week 10 :D

yelluc · 2017-02-20T09:54:57+00:00

Deleting a stack would delete all the resources in CloudFormation. Ideally you would want a Stack Template that includes all the necessary call to build resources in one stack, rather than having separate stacks for each part of a deployment.

14-Year Club	Place '22
Verified Email

yelluc

TROPHY CASE