F Guerraz

I'm writing this mostly so I can reference it when "people on the Internet" come-up with the same misconceptions over and over again about BTRFS. Misuse #1: using BTRFS on top of LVM/mdadm/hardware/JBOD RAID For whatever reason, I see a lot of people wanting to use BTRFS on top of another block device abstraction layer. Now the whole point of using a file system like BTRFS is that thanks to its copy-on-write capabilities, it can guarantee data integrity thanks to reliable check-summing of the ...

Goal The default seccomp profile for docker is on by default and still allows for more than 300 syscalls, that's about 3/4 of the available syscalls on Linux. We pay a hefty performance cost for enabling seccomp so we may as well get some serious protection from it! The same is true for containerd/kubernetes, but GKE for example does not enable it by default outside of Autopilot. Profiles can be created by hand, but need expertise that few people possess, fortunately a great tool exist, oci-...

Today should be the day when the message hits home. Spoiler alert, it won't.Most of Western Europe is wrestling with an intense heat-wave and there are hundreds of fires roaring. In France alone, nearly 20'000 people have been forced out of their homes, abandoning all their possessions behind.In the northwest, where I'm staying, the summer sky is grey, heavy with ash and smoke. At lunch-time on the French 24/7 news channel C-News, the panel debates two crucial topics:Are ecologists responsible f...