In modern cloud security, the principle of least privilege is paramount. Every component of our system, from servers to containers, should only have the exact permissions required to perform its function, and for the shortest time necessary. For a long time, achieving this for pods running in Amazon EKS was a challenge that often led to overly broad permissions or complex credential management.
Tired of that familiar "Enter your password" prompt when interacting with your Git repositories? Yah, you can enable caching, provide it every once in a while, but how about using Bitwarden to seamlessly manage your Git credentials? git-credential-bws is a Git credential helper that integrates with Bitwarden Secrets Manager to securely store and retrieve your Git credentials for hassle-free authentication.
In a world where data is the new gold, the privacy implications of relying solely on cloud-based AI services are a growing concern. Are you comfortable sharing your most sensitive data with algorithms you don't control? I'm hesitant, it hasn't stopped me, but I feel uneasy about it. That's why I embarked on a quest to build a private, secure, and self-hosted AI environment. Using the power of Ollama, the user-friendliness of OpenWebUI, and the security of Authelia for authentication, I've unlocked the potential of models like Llama and DeepSeek without compromising my data. Let me show you how you can do the same. All thanks to the power of open-source software and the community that supports it!
Ever been frustrated with that pesky dynamic IP address from your ISP? You know, the one that changes every so often, usually when you least expect it, and you're left wondering why your services are down or your remote access isn't working? While there are many Dynamic DNS (DDNS) services out there, I wanted to explore a seamless solution connecting my Cloudflare DNS with my Unifi network, leveraging Cloudflare Workers to keep my DNS records up-to-date.
Overwhelmed by the endless flood of online information? Hoarder is your self-hosted solution for taming the chaos. Combine its powerful bookmarking and note-taking features with OpenAI intelligence, Meilisearch lightning fast search engine and Authelia secure OIDC authentication, and you've got a curated collection of your online discoveries. Let's dive into how to set up Hoarder with multi-user support, supercharged by AI for ultimate organization.
Tired of static screenshots failing to capture the magic of your CLI wizardry? Sometimes you need to show off your tools in motion. Recently, I stumbled upon a charming little tool called VHS from Charmbracelet that allows you to record your terminal sessions in a beautifully consistent way. Let's explore how to use it and some of its features.
Integrating SyncThing and Duplicati can offer an accessible self-hosted Dropbox-like experience, allowing you to keep your files synchronized across multiple devices while ensuring they are securely backed up offsite with end-to-end encryption.
Managing dotfiles on GitHub ensures a consistent development environment across machines and simplifies setup and sharing. Here's how I organize my dotfiles on GitHub using Git submodules for public and private configurations.
In the evolving landscape of cloud security, managing AWS IAM Access Keys securely and efficiently is paramount. This guide introduces a robust method to automate the creation, deletion, and rotation of AWS IAM Access Keys using Terraform, Keybase, and Bitwarden Secrets Manager, ensuring your credentials are always up-to-date and securely stored.
Exploring how to self-host an end-to-end encrypted pastebin using Paaster and Cloudflare R2 storage. I'd like to easily share sensitive information like code snippets or logs with others without the need to trust a third-party service with capabilities like access code protection, expiration, view limits, etc.
Exploring Bitwarden Secrets Manager (BWS) for developers: setup, workflow integration, and managing secrets across projects. The objective is to create an alias that automatically retrieves and sets project-specific secrets as environment variables when switching projects.