if u new to git make sure u utilizing a .gitignore and not putting any api keys/ sensitive data on a public repo

yeah thinking back some more one company used aws and okta but that was it AD is so common

yep this is my introduction to using git, thanks for the solid advice.

What's the point of you doing this?

upskill and gain experience that i can apply to my career to command higher salaries. for that post specifically, i manage a few gitlab instances at work but i don't really know how it's used so i will learn that and container skills/knowledge is crucial for more advanced sys admin/engineer roles.

SElinux is used at large banks, healthcare, govt

yeah selinux & apparmor aren’t on permissive till your first vendor integration in any enterprise

I wish my AWS and web dev skills coulda got me a cloud job , but I had to make a lateral move; got nearly a $10 raise though

My previous job let me mess around with AWS and all the systems pretty much freely lol. I figured out how to use lambda functions and APIs (even got processes/systems running on stuff I built, to this day).

Learned a lot of AWS and web dev s*** thanks to my old boss, could probably build a full infra on there myself, but getting a cloud job seems to want a lot of experience, which I don't have yet.

depends on the vendor but yeah some vendors write poor code

like if someone is selling software that needs root access and it's using /var, /opt, /tmp, /home, /root

or it's doing some s*** like updating itself in place and adding crap it's probably not really modern enterprise grade software even if the tards selling it claim it is.. besides a few exceptions like maybe closed-source kernel modules or something

then you really gotta start thinking about running it in a VM for security which is a pain in the ass and limiting it's blast radius

a lot of devs and software vendors sell "enterprise" software but i've worked with some of the lead devs for these teams when I was at an MSP, they did millions every year in rev support businesses that shipping 10-11figs of stuff and they did not understand security

i saw one of them using an AS/400 as a password manager i was like bro you know they have these things now called password managers they encrypt your passwords

all my computers are Sparky Linux based now. 2011 macbook has kde version, lenovo ideapad 5 has xfce, and my mini pc morphine m9 has lxqt.

my gaming rig is still windows 11 deaux since i play anticheat games and make music. renoise works on linux for music but i prefer fl studio.

WSL is so good now hadn’t used since like 2013

Anyone f***s with raspberry pi’s?

I’ve been itching to do a new project with mine. I haven’t done any physical ones yet, most are just coding/home assistant related on the pi itself

So far I have:

• a nightly YouTube playlist builder, builds a YouTube playlist for me overnight so when I wake up I have a playlist of videos to listen to while I work
• epic games notifier, it tells me when a new free game is available in the epic games store and when one is expiring
• light controller (at 11:30pm all my lights flash red telling me to get tf to bed lol)
• running a local web interface to modify the settings of the above scripts lol

But I’m looking to do more, possible physical projects as well (flight trackers, arcade cabinets, etc)

setup two 2025 servers and made them domain controllers.

joined my rhel/rocky machines to the domain (had to use samba with realm instead of adcli because of a known issue with server 2025; had to change the crypto-policies to allow AD-SUPPORT for my rhel systems because the FIPS:STIG policy does not support the AES ciphers for kerberos).
access.redhat.com/solutions/7100465 and access.redhat.com/solutions/5728591 .

setup openssh and the sshd_config file on the dcs and got it working with ansible (had to comment out the AllowGroups option because it would refuse any connection attempts with a domain user and give errors in event viewer about 'unable to generate token' and 'unable to resolve user domain\\user' which is the wrong syntax).

spent some time setting up LDAPS and getting it to work with my gitlab container. lots of troubleshooting pki certs for the dc to make ldaps work and then tweaking the gitlab config and cert files for domain logins to work.

My FiL used to store all his passwords and banking info in his apple contact card notes. Like, theres a whole app you can use to store passwords already on the phone itself.

got a linux thinkcentre otw

homelab time perhaps

Install gentoo

I just used my old gaming PCs.

I didn’t go that root cause of power consumption.

setup elasticsearch and kibana to become more familiar with it. Installed winlogbeat on my windows systems to forward event logs and i will do filebeat for the rhel systems.

filebeat setup on the rhel9 systems, configured the system module so that the logs are easier to read using this dashboard versus the discover tab.

setup the container registry and pushed my first container to it. when i first set it up i could not login to it from podman and after some time i realized that it was trying to pass authentication to port 443 of the host which is not mapped to the gitlab container since its rootless. found one guy who also had this problem and he setup nginx on the host to forward traffic from 443 to the port mapped to the container's port 443 (8443 in my case). after that i was also to login and then tag and publish the ubi9 image so ima spend time this weekend diving into ci/cd and figuring it out. also followed the docs to setup the metadata database for the container registry.

Excited to learn Bash