What was that field in the manifest again?
$ kubectl explain statefulset.spec.template.spec
List contexts:
Michael Hausenblas mhausenblas
🤷♂️
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <stdint.h> | |
| #ifdef _MSC_VER | |
| #include <intrin.h> /* for rdtscp and clflush */ | |
| #pragma optimize("gt",on) | |
| #else | |
| #include <x86intrin.h> /* for rdtscp and clflush */ | |
| #endif |
itaysk
/ prepull.yaml
Last active
January 26, 2024 17:37
Kubernetes: Pre-pull images into node (moved to: https://github.com/itaysk/kube-imagepuller )
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### | |
| # There's a newer version available here: | |
| # https://github.com/itaysk/kube-imagepuller | |
| # All future updates will be made there. | |
| # Please also post you questions as issues on that repo instead of commenting here | |
| ### | |
| apiVersion: apps/v1beta2 | |
| kind: DaemonSet |
jwendell
/ openshift.yaml
Created
November 10, 2017 13:47
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # Allow users to read the istio config map | |
| # | |
| apiVersion: rbac.authorization.k8s.io/v1beta1 | |
| kind: Role | |
| metadata: | |
| name: istio-configmap-viewer | |
| namespace: istio-system | |
| rules: | |
| - resources: ["configmaps"] |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| set imap_user="[email protected]" | |
| set imap_pass=`/usr/bin/security find-generic-password -w -a '[email protected]' -s 'Gmail'` | |
| set folder=imaps://imap.gmail.com/ | |
| set spoolfile=+INBOX | |
| set record="+[Gmail]/Sent Mail" | |
| set postponed="+[Gmail]/Drafts" | |
| # https://www.neomutt.org/guide/reference search sleep_time for additional info | |
| set sleep_time=0 # be faster |
mhausenblas
/ jump.yaml
Last active
August 28, 2017 08:03
A jump box pod for Kubernetes troubleshooting, use `kubectl exec jump -c busybox -i -t -- sh` to connect to it
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| apiVersion: v1 | |
| kind: Pod | |
| metadata: | |
| name: jump | |
| spec: | |
| containers: | |
| - name: busybox | |
| image: busybox | |
| command: | |
| - sleep |
Create file /etc/systemd/system/[email protected]. SystemD calling binaries using an absolute path. In my case is prefixed by /usr/local/bin, you should use paths specific for your environment.
[Unit]
Description=%i service with docker compose
PartOf=docker.service
After=docker.service
- Healthy Open Source
- explicit goal to be a lightweight process
- concrete ability to scale to hundreds of contributors
- good fundamental goals
- transparency
- participation
- efficacy
- ecosystem projects encouraged but not required to adopt foundation governance templates
- creation of projects under TSC explicity delegates authority from TSC to project TC
ageis
/ systemd_service_hardening.md
Last active
May 14, 2025 22:12
Options for hardening systemd service units