building or appending to an array using a lambda in Puppet

Tripped over a challenge shifting KVM guest definitions into hiera. I’m using the cirrax/libvirt module which offers up this way to define a guest.  (I’ve modified the example in the module documentation.) libvirt::domain { ‘my-domain’: max_memory => ‘2000’, cpus => 2, boot => ‘hd’, disks => [{‘type’ => ‘file’, ‘device’ => ‘disk’, ‘source’ => {‘dev’ […]

puppetising kvm on centos7

Yak shaving I found out about a bunch of stuff today, including the now 19-year-old term yak shaving. Clearer examples out there such as here, here and here. I was trying to roll creation of KVM virtual machines into Puppet (that is, bring my existing use of KVM at home under management) and in unpicking […]

AWOL Linux LVM volume group and physical volume

TL;DR Looks like there maybe a bug in lvm2-2.02.180-10.el7_6.3. Will raise a ticket for it with Centos. Update 2019-02-23 Ticket raised with Centos. Having tried to reproduce it on another machine, it takes more than just upgrading the package – as one would expect. No idea what the other variables might be. Update 2019-04-22 I […]

java – troubleshooting SSL/TLS truststores

Troubleshooting TLS issues involving a Java app can be difficult if the division of responsibility means that responsibility for the certs and truststores is not vested in a team with any Java skill.  This post is aimed at someone, like me, in that situation. SSLPoke Atlassian (JIRA/Confluence/Bitbucket) provide a simple program that does about as […]

wileyfox swift (crackling) squashfs fun

TL;DR It’s easy to get lulled into a false sense of security.  I bricked my Wileyfox Swift trying to install Lineage: with hindsight, should have tried harder to ensure I had a backout. I’d have tried using ‘dd’ to back up the ‘system’ partition, as the usual toolset (TWRP, adb, fastboot etc) don’t seem to […]

https using Cloudflare

Why? Lots of good reasons as of July 2018 posted here by Troy Hunt, including that the National Cyber Security Centre (part of GCHQ) says so here – the title of that blog post is ‘serve websites over HTTPS (always)’. As we state in our HTTPS guidance, all websites should use HTTPS, even if they don’t include […]