PowerShell 101 by Mike F. Robbins is free with a Leanpub Reader membership! Or you can buy it for $7.99! https://leanpub.com/powershell101 #powershell #devops

Achievement unlocked: SSO for the hypervisor! 🎉

My Proxmox VE is now officially using Keycloak OIDC for authentication, and the setup is fantastic:

- Centralized Users: Managed alongside my other apps (Keycloak using my LDAP as the backend).

- Hardware MFA: Locked down with a FIDO2 stick from @nitrokey

- Unified Control: Centralized policies, logging, and RBAC across the board.

Another great improvement for my HomeLab/SelfHosting setup.

#Proxmox #Keycloak #DevOps #Auth #OpenID #Homelab #SelfHosted

تسعى كل من Agile و DevOps لتحسين إنتاجية التطوير، لكنهما يختلفان في نقطة المركز:

🔹 **الهدف** – Agile يركز على التكيف السريع والتواصل داخل الفريق؛
🔹 **العمليات** – DevOps يدمج التطوير والتشغيل لنسخ أسرع وأأمن.

الاختلاط المثالي يخلق دورة إنتاج متكاملة: Agile يحدد الأولويات، وممارسات DevOps تضمن تسليم مستمر.

#تقنية #Agile #DevOps #تطوير_البرمجيات #مستقبل_البرمجة

🔗 https://news.google.com/rss/articles/CBMiekFVX3lxTFBSenh5cVV1TzBOU05zQ015UHdWTjRPeXhOSHV4cHJYRExwbjBpSk54Nk5CTjdYMWl0MGc2S2JKSDAzQm5vckpfNlRoWWN1d3JTSlVKMENpUUZPXzkzYmo0em91UU1abHJ1S0FuTkUxdGxkZlJJa3NMVm9B?oc=5

Huh, are the projects clawed back from #puppet , namely #choria and #OpenVox #OpenVoxProject, the only entries in #ConfigurationManagement without LLMs in them?

#SysAdmin #DevOps #OpenSource

7 Course-Bundle: Shut Up and Code Python + PyCharm + Coding Interview + Machine Learning + One-Liners + Regex + Lambdas by Finxter, Lukas Rieger, and Shubham Sayon is the featured track of online courses 🛤️ on Leanpub!

Link: https://leanpub.com/set/leanpub/7courses

#computer_programming #devops

Modern Networking by Declan Moran is on sale on Leanpub! Its suggested price is $39.00; get it for $29.00 with this coupon: https://leanpub.com/modern-networking/c/LeanpubWeeklySale20260519 #networking #devops #cloud_computing

Dew Drop Weekly Newsletter 484 - Week Ending May 20, 2026

https://zc.vg/h6WSi?m=0

#dewdrop #newsletter #javascript #aspnetcore #azure #css #cpp #windowsdev #winui #dotnet #csharp #ai #mcp #devops #agile #gamedev #appdev #podcasts #m365 #sqlserver #data #powershell #python

Ansible for DevOps by Jeff Geerling is on sale on Leanpub! Its suggested price is $9.99; get it for $6.99 with this coupon: https://leanpub.com/ansible-for-devops/c/LeanPublishingDaily20260518 #agile #software #startups #ansible #devops #cloud_computing

True threat modelers don't be usin' no checklists, savvy...
They spy 'em out with their trusty spyglasses!
And when they be layin' down the cards,
they don't waste their breath on soft #games like Solitaire or Sir Tommy!
Nay, they be wagerin' their gold on high-stakes plunder like Cornucopia or EoP!

Threat Modeling is about exploration, not checkbox compliance.
Exploration and innovation happen when playing and exploring like children.

#appsec #llm #agentic #ai #security #cloud #devops #agile

Alt...

True threat modelers don't be usin' no checklists, savvy... They spy 'em out with their trusty spyglasses!

The Kubernetes Course by Nigel Poulton is the featured course 🎓 on Leanpub!

This course is based on the 2025 edition of the best-selling Kubernetes book, that has been fully updated for the latest versions of Kubernetes and the latest industry trends. You won't find a better and more up-to-date book-based course on Kubernetes. Hand-crafted over the past 8 years by best-selling author Nigel Poulton.

Link: https://leanpub.com/courses/leanpub/thekubernetescourse

#cloud_computing #kubernetes #docker #devops

Do you enjoy spending quality time threat modeling? That's fantastic! But, don't forget... "All models are wrong, but some are useful." - George Box Instead, ask yourself, "How often do I do threat modeling with others?" #appsec #owasp #llm #agentic #ai #security #cloud #devops #agile #games

Alt...

Do you enjoy spending quality time threat modeling? That's fantastic! But, don't forget... "All models are wrong, but some are useful." - George Box

Do you enjoy spending quality time threat modeling?
That's fantastic! But, don't forget... "All models are wrong, but some are useful."
- George Box

Instead, ask yourself, "How often do I do threat modeling with others?"

Don't spend too much time on your own; make sure you get regular feedback from developers and testers, and that the developers and testers get regular feedback from you.

#appsec #owasp #llm #agentic #ai #security #cloud #devops #agile #games

A Simple Path to Python Success by Finxter, Lukas Rieger, and Shubham Sayon is the featured track of online courses 🛤️ on Leanpub!

Link: https://leanpub.com/set/leanpub/asimplepathtopythonsuccess

#computer_programming #devops

Closing thought: Compliance doesn't have to be the brake on your agile engine. Build it into the assembly line, and it becomes the thing that keeps your SaaS platform running smoothly at scale. Try decomposing one regulation this sprint and see how it changes your team's rhythm.

#Fintech #SaaS #Agile #Compliance #HenryFord #XP #RegTech #ScaleUp #DevOps #EngineeringLeadership (10/10)

<p>When you work backwards from the customer, technical debt stops being a hidden cost and becomes a clear signal. That's when your platform starts moving faster, not slower. Try this in your next PI and tell us what changed.</p>

#TechnicalDebt #SAFe #Agile #FinancePlatform #WorkingBackwards #ProductManagement #EngineeringLeadership #ScaleUp #CustomerFirst #DevOps (9/9)

The DevOps Toolkit (Kubernetes, Helm, ArgoCD, Terraform) by Kirshi Yin | Curious Devs Corner is the featured bundle of ebooks 📚 on Leanpub!

Link: https://leanpub.com/b/devops-toolkit

#terraform #devops #cloud_computing #computer_programming #infrastructure_as_code #software_engineering #docker #go #kubernetes #git

the last weeks we saw more and more security issues coming up. Let's talk!

Sorry, a pretty long blog post about this...

https://gyptazy.com/blog/coding-after-ai-are-humans-still-good-enough/

#ai #aicoding #coding #opensource #foss #security #infosec #vulns #developer #devops #engineer #ops #fedi #philosophy

Alt...

Are humans still good enough for coding? Let's talk about AI coding!

Modern Networking by Declan Moran is on sale on Leanpub! Its suggested price is $39.00; get it for $29.00 with this coupon: https://leanpub.com/modern-networking/c/LeanpubWeeklySale20260512 #networking #devops #cloud_computing

Dew Drop Weekly Newsletter 483 - Week Ending May 15, 2026

https://zc.vg/67UPi?m=0

#dewdrop #newsletter #aspnetcore #javascript #css #azure #xaml #windowsdev #cpp #csharp #dotnet #efcore #ai #mcp #devops #agile #IoT #appdev #podcasts #m365 #sqlserver #data #powershell #devtools

Do you feel like Pablo Escobar waiting for developers to learn threat modeling? The waiting time is over!! #appsec #owasp #llm #agentic #ai #security #cloud #devops #frontend #webdev #threatmodeling #agile #games

Do you feel like Pablo Escobar waiting for developers to learn threat modeling?

The waiting time is over!!

The new OWASP Cornucopia 25th anniversary edition contains both the OWASP Cornucopia Companion and the Website App Edition. The new edition comes with 6 companion suits covering new topics:
Agentic AI (AAI), Automated Threats (BOT), Cloud (CLD), Frontend (FRE), Large Language Models (LLM), and DevOps (DVO).

#appsec #owasp #llm #agentic #ai #security #cloud #devops #frontend #agile #games

One of the most useful Red Hat products I use daily is also one of the least-known: the Red Hat Offline Knowledge Portal (RHOKP).

It is basically a self-hosted, locally searchable mirror of docs.redhat.com + the Red Hat Knowledgebase in a single container image.

Perfect for:

- air-gapped environments
- customer networks with painful proxies
- trains, planes, and terrible WiFi
- anyone who wants docs that still work offline

I wrote up how it works, why I think it matters, and how to run it locally with Podman:

https://blog.hofstede.it/red-hat-offline-knowledge-portal-all-the-docs-air-gapped-on-your-laptop/

#linux #redhat #ansible #openshift #rhokp #docs #devops

Yes! It’s time to party!!

It was an honor to participate at the OWASP Virtual Conference commemorating the 25th anniversary. Here is the video: https://youtu.be/KmjUM0EF_24?is=4-0fir-KT02lAr6A

The OWASP Foundation is celebrating 25 incredible years of open source security. That’s why OWASP Cornucopia is launching its 25th anniversary edition. Read all about it here:  https://dev.to/owasp/introducing-a-owasp-game-for-threat-modeling-agentic-ai-cloud-devops-frontend-llm-automation-5984

#OWASP25thAnniversary #OWASP #AppSec #security #threatmodeling #games #agile #lean #llm #agentic #devops #cloud #fromtend

The OWASP Foundation is celebrating 25 incredible years of open source security. That’s why OWASP Cornucopia is launching its 25th anniversary edition. Read all about it here:  dev.to/owasp/introd... #AppSec #security #threatmodeling #games #agile #lean #llm #agentic #devops #cloud #fromtend

Introducing a OWASP Game for t...

Yes! It’s time to party!! It was an honor to participate at the OWASP Virtual Conference commemorating the 25th anniversary. Here is the video: youtu.be/KmjUM0EF_24?... #OWASP25thAnniversary #OWASP #AppSec #security #threatmodeling #games #agile #lean #llm #agentic #devops #cloud #fromtend

OWASP Cornucopia - Stop Lectur...

Ansible for DevOps by Jeff Geerling is on sale on Leanpub! Its suggested price is $9.99; get it for $6.99 with this coupon: https://leanpub.com/ansible-for-devops/c/LeanPublishingDaily20260511 #agile #software #startups #ansible #devops #cloud_computing

The edition comes with 6 companion suits covering new topics:
Agentic AI (AAI), Automated Threats (BOT), Cloud (CLD), Frontend (FRE), Large Language Models (LLM), and DevOps (DVO).

Play it at copi.owasp.org , buy it at CyberSec Games: https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection , or download from our latest release: https://github.com/OWASP/cornucopia/releases/tag/v3.0.0

#appsec #owasp #llm #agentic #ai #security #cloud #devops #threatmodeling #agile #games

Games are an excellent way to ensure the team grows and learns together; this is why OWASP Cornucopia helps teams scale application processes like threat modeling and requirement analysis.

So, play OWASP Cornucopia!

The new OWASP Cornucopia 25th anniversary edition contains the OWASP Cornucopia Companion and the Website App Edition.

#appsec #owasp #llm #agentic #ai #security #cloud #devops #threatmodeling #agile #games

Are you responsible for all the battles?

Then stop and let the monsters rampage a bit.
You can always swoop down and take out the final boss before the credits rolls.

When we take on the battles ourselves, we stop the rest of the team from growing. Growth and learning are important to scale security processes. What happens if you get killed by the super villain, and the others have to fend for themselves?

#appsec #owasp #llm #agentic #ai #security #cloud #devops #threatmodeling #agile #games

Are you responsible for all the battles? Then stop and let the monsters rampage a bit. Remember, you can always swoop down and take out the final boss before the credits roll at the end of the movie. #appsec #owasp #llm #agentic #ai #security #cloud #devops #threatmodeling #agile #games

New post: FreeBSD resource monitoring and accounting.

A practical tour of the base-system toolkit for figuring out *what is actually using my server*: top, vmstat, systat, gstat, netstat/sockstat, procstat, pfctl, and per-jail attribution with kern.racct and rctl.

No ports, no agents. Just FreeBSD.

https://blog.hofstede.it/freebsd-resource-monitoring-accounting-and-troubleshooting/

#FreeBSD #BSD #Jails #pf #SysAdmin #DevOps #Unix #BSD #Blog

The new OWASP Cornucopia 25th anniversary edition contains both the OWASP Cornucopia Companion and the Website App Edition. The new edition comes with 6 companion suits covering new topics:

Agentic AI (AAI), Automated Threats (BOT), Cloud (CLD), Frontend (FRE), Large Language Models (LLM), and DevOps (DVO).

Play it at copi.owasp.org , buy it at: https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection , or download from our latest release: https://github.com/OWASP/cornucopia/releases/tag/v3.0.0

#appsec #llm #agentic #ai #security #devops #agile #games

Could somebody be feeding your LLM the wrong muffin?
LLM7 from the OWASP Cornucopia Companion illustrates how data poisoning can introduce backdoors or malicious behavior into an AI model. Mitigating these risks requires secure training data, model integrity verification, and strict access controls.

You can read the whole scenario here: cornucopia.owasp.org/cards/LLM7#S...

#appsec #owasp #llm #agentic #ai #security #cloud #devops #frontend #webdev #threatmodeling #agile #games

Ansible for Kubernetes by Jeff Geerling is on sale on Leanpub! Its suggested price is $19.99; get it for $7.99 with this coupon: https://leanpub.com/ansible-for-kubernetes/c/LeanPublishingDaily20260508 #software #ansible #agile #devops #cloud_computing #distributed_systems

Ansible for DevOps by Jeff Geerling is on sale on Leanpub! Its suggested price is $9.99; get it for $6.99 with this coupon: https://leanpub.com/ansible-for-devops/c/LeanPublishingDaily20260508 #agile #software #startups #ansible #devops #cloud_computing

Do you feel like yelling at the world for not doing threat modeling?

No need to yell, the tools are free!

Copi - The OWASP® Cornucopia Game Engine - (copi.owasp.org) Is free to use and perfect for distributed teams.

The new OWASP Cornucopia Companion Edition v1.0 comes with 6 suits covering: Agentic AI (AAI), Automated Threats (BOT), Cloud (CLD), Frontend (FRE), Large Language Models (LLM), and DevOps (DVO).

#appsec #owasp #llm #agentic #ai #cloud #devops #threatmodeling #agile #games

Do you feel like yelling at the world for not doing threat modeling? No need to yell, the tools are free! Copi - The OWASP® Cornucopia Game Engine - (copi.owasp.org) Is free to use and perfect for distributed teams. #appsec #owasp #llm #agentic #ai #cloud #devops #threatmodeling #agile #games

The team brings a DFD, finds threats by playing, and votes on what to fix in the next sprint. There is no ambiguity because threat elicitation and mitigation are part of "the definition of done".

So play OWASP Cornucopia!
The 25th anniversary edition can be played at copi.owasp.org, bought at CyberSec Games: https://cybersecgames.com/pages/owasp-cornucopia-threat-modeling-collection , or downloaded from: https://github.com/OWASP/cornucopia/releases/tag/v3.0.0

Read all about it here: https://dev.to/owasp/introducing-a-owasp-game-for-threat-modeling-agentic-ai-cloud-devops-frontend-llm-automation-5984

#appsec #llm #agentic #ai #cloud #devops #webdev #agile #games

You may be the best threat analyst in the world, but are you able to get the dev team to agree on when and what to fix?

OWASP Cornucopia is a mechanism in the form of a card game to assist software development teams in identifying security requirements in Agile development processes.

It works by allowing the team to agree on "what can go wrong", and "What are we going to do about it"?

#appsec #owasp #llm #agentic #ai #security #cloud #devops #frontend #webdev #threatmodeling #agile #games

Alt...

Threat modeling: It's not finding threats that's the challenge, it's agreeing on when and what to fix.

Organisational Dysfunction of the Day

DORA, the wrong way round

Context: The DORA metrics have become the gold standard for measuring engineering performance. Deployment frequency, lead time for changes, change failure rate, and time to restore service. The four key metrics. Teams build dashboards around them, set quarterly targets, and run improvement initiatives to move the numbers in the right direction. Some teams genuinely improve, while others find the numbers are stubborn or that improvements one quarter quietly reverse the next. Leadership concludes that the teams need more discipline, better tooling, or another round of training. What gets called cargo culting (for lack of a better term) in the industry, copying the visible practices without the underlying conditions, is exactly this pattern.

OST explains: DORA was designed as a research instrument, not as a target system. The metrics are downstream signals of healthy delivery, not the drivers of it. Healthy delivery is when self-managing teams own the whole product, make decisions without escalation, and have tight feedback loops with the people they serve. Take those structural conditions away, and the numbers regress, no matter how many dashboards you build. Treating DORA as a goal in DP1 (bureaucratic) is exactly the goal displacement Goodhart warned about: the moment a measure becomes a target, it stops being a good measure. In DP2, the self-managing-group structure, the same numbers emerge naturally as side effects of work well done. You do not need to chase them. You need to build the conditions that produce them.

#OpenSystemsTheory #SocioTechnical #OrgDesign #DevOps

Let's Encrypt just stopped the issuance of certificates after an (so far not publicly disclosed) incident:

https://letsencrypt.status.io/pages/incident/55957a99e800baa4470002da/69fe2d6698ca07050eb4b1b3

If anyone encounters issues today with failed certificate renewals: It's probably not your setup.

#letsencrypt #itsec #devops #linux #security #tls

The Kubernetes Course by Nigel Poulton is the featured course 🎓 on Leanpub!

Link: https://leanpub.com/courses/leanpub/thekubernetescourse

#cloud_computing #kubernetes #docker #devops #computer_programming

Dew Drop Weekly Newsletter 482 - Week Ending May 8, 2026

https://zc.vg/2D38e?m=0

#dewdrop #newsletter #javascript #css #azure #blazor #cpp #xaml #windev #csharp #dotnet #ai #mcp #agile #devops #dotnetmaui #appdev #podcasts #m365 #data #sqlserver #powershell #cli

Globally-Distributed Applications with Microsoft Azure by Christos Sakellarios is free with a Leanpub Reader membership! Or you can buy it for $7.99! https://leanpub.com/globally-distributed-applications-with-microsoft-azure #aspnet #azure_documentdb #devops #powershell

A Simple Path to Python Success by Finxter, Lukas Rieger, and Shubham Sayon is the featured track of online courses 🛤️ on Leanpub!

Link: https://leanpub.com/set/leanpub/asimplepathtopythonsuccess

#computer_programming #devops

“Works on my laptop” is a configuration problem, not bad luck.

Execution Environments make your Ansible control node a versioned, reproducible container image. Same artifact locally, in CI, and in AAP/AWX.

I wrote a practical walkthrough of ansible-builder + ansible-navigator, with real-world gotchas:

https://blog.hofstede.it/reproducible-ansible-with-execution-environments/

#ansible #automation #devops #linux

hey so. looking for a job (NZ or fully remote willing to hire a kiwi) in SRE, security, or linux/Unix system administration. 15 years experience administering Linux and Unix boxes, intermediate level of experience working with docker compose and containerisation and container security. No prior job experience unfortunately, all those 15 years were mostly personal projects and small-scale stuff for friends. I'm also 26, so I started when I was 11, explaining the no jobs so far. Currently running an entire multi-machine personal cloud infrastructure with a demonstration of all the services I have running at https://status.highenergymagic.net. Three machines, 72 docker containers. One running most of them, one running Mastodon+glitchsocial, one running the uptime monitor. encrypted root on ZFS, alpine linux, gVisor on supported containers, plan to move to Kata. Entirely willing to accept entry-level job placements, no expectation of being paid a lot or anything, just want to be doing something and move the needle a little on my current "being broke" status. Currently using gVisor, docker compose, and kata containers in production, experience with Linux, docker, Net/Open/FreeBSD, Cisco IOS, Juniper Junos, Mikrotik and UniFi, configuring and administering Asterisk, plus extensive experience with IBM AIX and Sun Solaris. #fedihired #infosec #cybersecurity #linux #unix #docker #sre #DevOps #GetFediHired

Please boost for reach, any job offers please DM me.