bowsersenior

require 'rubygems'
require 'yaml'

# A demonstration of YAML anchors, references and handling of nested values
# For more info, see: 
#   http://atechie.net/2009/07/merging-hashes-in-yaml-conf-files/

stooges = YAML::load( File.read('stooges.yml') )
# =>  {
#             "default" => {

sloria

The Best of the Best Practices (BOBP) Guide for Python

A "Best of the Best Practices" (BOBP) guide to developing in Python.

In General

Values

• "Build tools for others that you want to be built for you." - Kenneth Reitz
• "Simplicity is alway better than functionality." - Pieter Hintjens

kpettijohn

// ghprb 1.29.2
import java.lang.reflect.Field
import jenkins.model.*
import org.jenkinsci.plugins.ghprb.*

def descriptor = Jenkins.instance.getDescriptorByType(org.jenkinsci.plugins.ghprb.GhprbTrigger.DescriptorImpl.class)

Field auth = descriptor.class.getDeclaredField("githubAuth")

auth.setAccessible(true)

aallan

000000	Officially Xerox
000001	SuperLAN-2U
000002	BBN (was internal usage only, no longer used)
000003	XEROX CORPORATION
000004	XEROX CORPORATION
000005	XEROX CORPORATION
000006	XEROX CORPORATION
000007	XEROX CORPORATION
000008	XEROX CORPORATION
000009	powerpipes?

acolyer

A collection of The Morning Paper posts relating to containers, operating systems etc.

In order of first appearance in The Morning Paper.

• On the duality of operating system structures
• Why threads are a bad idea
• Why events are a bad idea
• Unikernels: library operating systems for the cloud
• The scalable commutativity rule: designing scalable software for multicore processors
• Jitsu: just-in time summoning of unikernels

irvingpop

Example output:

root@chef:~# ./chef_server_nodes_report.rb -h
Usage: chef_server_nodes_report.rb [options]
    -g, --group-by TYPE              Group results by: ["version", "org", "environment", "check_in_month", "check_in_date", "platform_family", "platform_version", "platform", "os"]

root@chef:~# ./chef_server_nodes_report.rb --group-by version
loading config from /etc/opscode
{

jhertz

In absolutely no order

• Insertion Evasion and Denial of Service: Eluding Network Intrusion Detection http://users.ece.cmu.edu/~adrian/731-sp04/readings/Ptacek-Newsham-ids98.pdf
• The Geometry of Innocent Flesh on the Bone: Return-into-libc without Function Calls (on the x86) https://hovav.net/ucsd/dist/geometry.pdf
• Smashing the Stack for Fun and Profit http://www-inst.eecs.berkeley.edu/~cs161/fa08/papers/stack_smashing.pdf
• Exploiting the DRAM rowhammer bug to gain kernel privileges https://googleprojectzero.blogspot.com/2015/03/exploiting-dram-rowhammer-bug-to-gain.html
• Understanding and Hardening Linux Containers https://www.nccgroup.trust/globalassets/our-research/us/whitepapers/2016/april/ncc_group_understanding_hardening_linux_containers-1-1.pdf
• Spectre Attacks: Exploiting Speculative Execution https://meltdownattack.com/spectre.pdf
• Dolphin Emulator Internals (PPC) https://www.alchemistowl.org/pocorgtfo/pocorgtfo06.pdf
• This World of Ours https://www.usenix.org/system/files/1401_08-12_micke

brandond

#!/bin/bash

FLAGS=""
SOURCE="docker.io/library"
DEST="docker.io/brandond"
IMAGE="busybox"
TAG="1.32.0-uclibc"

docker buildx imagetools inspect ${SOURCE}/${IMAGE}:${TAG} --raw | \
  jq -r '.manifests[] | (.digest + " " + .platform.architecture)' | \

detiber

Tinkerbell w/ image-builder on Physical Hardware (WIP):

Prerequisites

• Bridged gateway with dhcp disabled, configured with a static ip of 192.168.1.254/24
• Base ubuntu 20.04 release, configured with a static ip of 192.168.1.1/24

Install docker and docker-compose

klueska

# Run the export command of nvidia-mig-parted
nvidia-mig-parted export

# Show nvidia-smi on the host with 8 full GPUs
nvidia-smi -L

# List out the NVIDIA container toolkit packages installed
dpkg -l | grep nvidia-container; dpkg -l | grep nvidia-docker

# Show that docker is configured to run with the nvidia container toolkit