Jonathan Matthews jpluscplusm

## bosh-links-why-and-how.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                jpluscplusm
                / bosh-links-why-and-how.md
            
            
              Created
              September 27, 2018 15:46
                — forked from Amit-PivotalLabs/bosh-links-why-and-how.md
            
              
                BOSH Links: Why and How
              
          
    BOSH Links: Why and How

Audience: anyone in the BOSH ecosystem, whether you work on something open-source or proprietary
"BOSH Links" is a feature which simplifies how data is shared between BOSH-deployed jobs that need to collaborate with one another (e.g. a web server and its backing database).  Like many BOSH things, the whole "BOSH Links" thing can seem counter-intuitive at first, and it may not be clear why things are the way they are.  This note hopes to show some of the powerful benefits of BOSH Links, and provide examples and explanations that make things more intuitive.

Why?
BASIC: A simple problem statement
BASIC: Putting the puzzle pieces together
ADVANCED: But what about...


## vpnc-script-aws
#!/bin/bash

# vpnc-script wrapper for use with openconnect that routes all AWS IP ranges over the VPN.
# Pass any additional IP ranges to be routed as args to the script.
#
# Requirements: bash, curl and jq.
#
# Example usage:
# openconnect https://vpn.example.com/profile --script '/path/to/vpnc-script-aws'
#

## infra-secret-management-overview.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                jpluscplusm
                / infra-secret-management-overview.md
            
            
              Created
              May 9, 2016 18:54
                — forked from maxvt/infra-secret-management-overview.md
            
              
                Infrastructure Secret Management Software Overview
              
          
    Currently, there is an explosion of tools that aim to manage secrets for automated, cloud native
infrastructure management. Daniel Somerfield did some work classifying the various approaches,
but (as far as I know) no one has made a recent effort to summarize the various tools.
This is an attempt to give a quick overview of what can be found out there. The list is alphabetical.
There will be tools that are missing, and some of the facts might be wrong--I welcome your corrections.
For the purpose, I can be reached via @maxvt on Twitter, or just leave me a comment here.
There is a companion feature matrix of various tools.
Comments are welcome in the same manner.

  
## index.md

      
              2 files
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                jpluscplusm
                / index.md
            
            
              Created
              April 29, 2016 21:12
                — forked from lusis/index.md
            
              
                Docker "Best Practices"
              
          
    This is a copy/paste from an internal wiki on how we should use docker
This guide is to serve as an outline of internal best practices to using Docker. The idea is to give enough information to allow engineers to create containers for new stack components while minimizing the cleanup required to make them production ready.
Concepts

Before we get to the practices, it's important to understand WHY we are doing this. The key concepts we're concerned about with broad Docker usage are provenance, determinism, repeatability and auditability.
Provenance

Provenance refers to knowing WHERE something comes from. Generally with the end use of software, this is easy:

Maven artifacts are pulled from central


## scale-summit.org

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                jpluscplusm
                / scale-summit.org
            
            
              Created
              March 24, 2014 23:09
                — forked from philandstuff/scale-summit.org
            
          
    Scale Summit 2014

Intro, MBS


  Chatham House Rule, so no attribution of ideas to people or
    companies

ideas for sessions


  bootstrapping environments (without object stores)
  service discovery
  removing spofs


## gist:4366287
server {
  listen [::]:80;
  listen 80;
  server_name "~^(?<thishost>[^.]+.)?(subdomain.example.com)$";
  access_log off;

  location / {
    resolver 8.8.8.8; # or whatever your server can use
    sub_filter_once off;
    sub_filter 'thepiratebay.se' 'subdomain.example.com';

## user-manage.rb
#!/usr/bin/env ruby
require 'sinatra'
require "sinatra/reloader" if development?
require 'chef'
require 'rack/flash'
require 'haml'

POSSIBLE = [('a'..'z'),('A'..'Z'),(0..9),'.','/'].inject([]) {|s,r| s+Array(r)}

set :sessions, true
	#!/bin/bash

	# vpnc-script wrapper for use with openconnect that routes all AWS IP ranges over the VPN.
	# Pass any additional IP ranges to be routed as args to the script.
	#
	# Requirements: bash, curl and jq.
	#
	# Example usage:
	# openconnect https://vpn.example.com/profile --script '/path/to/vpnc-script-aws'
	#
	server {
	listen [::]:80;
	listen 80;
	server_name "~^(?<thishost>[^.]+.)?(subdomain.example.com)$";
	access_log off;

	location / {
	resolver 8.8.8.8; # or whatever your server can use
	sub_filter_once off;
	sub_filter 'thepiratebay.se' 'subdomain.example.com';
	#!/usr/bin/env ruby
	require 'sinatra'
	require "sinatra/reloader" if development?
	require 'chef'
	require 'rack/flash'
	require 'haml'

	POSSIBLE = [('a'..'z'),('A'..'Z'),(0..9),'.','/'].inject([]) {\|s,r\| s+Array(r)}

	set :sessions, true