Automate your open-source dependency scanning with Advanced Security.
"On July 23, 2025, AWS deleted my 10-year-old account and every byte of data I had stored with them. No warning. No grace period. No recovery options. "
https://www.seuros.com/blog/aws-deleted-my-10-year-account-without-warning/
Missed one of my past conference talks? Let’s fix that.
I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.
“Incident Response for Devs” - And #DevOps folks too!
https://twp.ai/4ioL7f
Ever wondered which SSH keys are lurking on your servers?
Just published a comprehensive Ansible playbook in my gists that audits your entire infrastructure for SSH keys and finds dangerous unprotected private keys!
- Detects unprotected private keys
- Lists all Pubkeys for root and users
- Comprehensive reporting (TXT + CSV)
https://codeberg.org/Larvitz/gists/src/branch/main/2025/20250804-SSHKeyAuditPlaybook.md
When working in IT-Ops it is often important to know what it means to go to "the cloud". From time to time there are still managers waveing around the potential 9's you can buy at AWS. In such a case it is good to have a historic list of SaaS incidents. Sadly so far I found no simple overview anywhere on the web.
This is why I'm tracking major SaaS outages at my repo https://github.com/lwindolf/cloud-outages/
Combining two ideas from my feed.
First, there is the account of @pluralistic on how AI are the perfect bullshit machines and spit out hard code bugs. This is especially true when forced upon people (the reverse-centaurs).
https://pluralistic.net/2025/08/04/bad-vibe-coding/#maximally-codelike-bugs
Second, an old account on how improper use of image compression algorithms in Xerox scans lied about numbers, at scale.
These two things are related, and someone will take the fall for failure.
The TechBash 2025 schedule is now available - Get 10% off registration thru Labor Day!
First release:
I wrote an Ansible 
connection-plugin to automate FreeBSD Jails 
via their host, by utilizing jls and jexec to run automation via a SSH connection to the FreeBSD host.
I released that on GitHub https://github.com/chofstede/ansible_jailexec
And on my Codeberg: https://codeberg.org/Larvitz/ansible_jailexec
Released under a BSD license.
This enables seamless automation of FreeBSD jails without needing a SSH connection to the Jails themselves.
Dew Drop Weekly Newsletter 443 - Week Ending August 1, 2025.
I've already pushed to production twice today! Who's rocking it with me?
Come on board the "Friday I'm in LIVE" club (a tribute to one of my beloved bands).
If you're still not sure about deploying on Friday, I'll drop more information in the comments.
@allanjude @jimsalter @joeress are hosting an amazingly awesome Podcast: @25admins; definitely look them up if you wanna keep up with the pros out there
and ofc support them if you find the podcast awesome! Doffing my hat to you guys 
The #techbash 2025 schedule is now available! Plan your week and register today.
Freelance Web/Graphisme & Linux vs macOS vs Windows
quelques hashtags en complément du sondage du dessus
#graphisme #adobe #linux #macOs #gimp #inkscape #photoshop #illustrator #CMJN #imac #macbook #windows #Photopea #Scribus #nextcloud #icloud #git #figma #penpot #flyer #affiche #webdesign #devops #pulsar #virtmanager #Krita #illustration #Darktable #vscode #vscodium #Blender #3D #Bottles #wine #flatpak #debian #fedora #GNU #X11 #Wayland
HTTP security headers are server response headers that help strengthen web security by instructing browsers to enforce protections against common attacks
Here is a list of key security-related HTTP headers 
#infosec #devops
Find high-res pdf books with all my #cybersecurity related infographics at https://study-notes.org
Project reveal:
For the past couple of weeks, I was working on a modern Ansible connection plugin for FreeBSD Jails: jailexec.py
It utilizes the SSH connection to the host-system and jexec to execute Ansible automation within FreeBSD jails.
Makes it even possible to automate jails, that aren't reachable via SSH themselves (or even have no IP address).
Bonus features:
- Connection pooling and persistence for improved performance
- Efficient file transfer with proper permission handling
- Jail command execution via jexec with privilege escalation (doas/sudo)
- Comprehensive error handling and logging with multiple log-levels (-v -vv and -vvv)
After some polishing and testing, I will publish that under a BSD 2-Clause license on my Codeberg repositories and GitHub (Likely during the weekend)
#freebsd #bsd #ansible #automation #python #devops @vermaden
#Drupal Devs! Don't let your data be an Achilles' heel! My latest post unpacks a robust bash script for automated nightly Drupal database backups. 
It runs outside Drupal for max reliability & performance, and I'll show you how to skip cache data for super lean backups.
Secure your site, streamline your workflow. Get the script & full breakdown here: https://drupalodyssey.com/blog/devops/bulletproof-your-drupal-data-automated-nightly-backups
So, my fellow #devops peoples...
Keycloak?
