F Guerraz

Understanding BTRFS: Common Misconceptions and Best Practices BTRFS is a powerful filesystem with built-in features for data integrity and management. However, these features are often misunderstood or misused. This article addresses common misconceptions that frequently appear in online discussions about BTRFS. Misuse #1: using BTRFS on top of LVM/mdadm/hardware/JBOD RAID BTRFS provides data integrity through copy-on-write operations and checksumming. When properly configured, it can both de...

Goal The default seccomp profile for docker is on by default and still allows for more than 300 syscalls, that's about 3/4 of the available syscalls on Linux. We pay a hefty performance cost for enabling seccomp so we may as well get some serious protection from it! The same is true for containerd/kubernetes, but GKE for example does not enable it by default outside of Autopilot. Profiles can be created by hand, but need expertise that few people possess, fortunately a great tool exist, oci-...

Today should be the day when the message hits home. Spoiler alert, it won't.Most of Western Europe is wrestling with an intense heat-wave and there are hundreds of fires roaring. In France alone, nearly 20'000 people have been forced out of their homes, abandoning all their possessions behind.In the northwest, where I'm staying, the summer sky is grey, heavy with ash and smoke. At lunch-time on the French 24/7 news channel C-News, the panel debates two crucial topics:Are ecologists responsible f...