Writing

Notes that took long enough to think through that I figured I should write them down.

2026

  • Epic

Improved Blog UI

Today I refactored the Blog UI. (No AI was harmed during the making of this style.)

Read
  • Epic

Argocd

Migrated all K8s apps to ArgoCD deployments. Argocd bootstrap with Helmfile, projects and ApplicationSets, Helm and simple manifest apps… Let the stuff break :D

Read
  • Epic

Telekom peering II

To overcome this stupid Telekom peering (contract will end in August finally), I set up a Hetzner VPS with Wireguard. Totally automated via Terraform and Cloudinit. I set up my FritzBox to use that…

Read
  • Rant

Trivy attack

Trivy was again attacked. This time really bad -> https://www.crowdstrike.com/en-us/blog/from-scanner-to-stealer-inside-the-trivy-action-supply-chain-compromise/ For me, this is another example for…

Read
  • Epic

k3s homelab cluster stack III

More great changes to land soon™️. But first need to handle the heavily diverged code.

Read
  • Rant

I love circular dependencies (which I hate (which I love))

Cilium with Spire needs a persistent volume to start. My persistent volume provider needs a cni to start. (╯°□°)╯︵ ┻━┻

Read
  • Epic

OS install party on a Wednesday evening

So when I set up my new Netcup server back then, I totally fckd up the filesystem. I am using LVM for a long time, but guess what XFS cannot do. Right… shrink :) So this evening I reinstalled the…

Read
  • Epic

k3s homelab cluster stack II

Following up on my previous post. The cluster stack is published to GitHub. I will improve it gradually and highly appreciate feedback: https://github.com/dschuldt/kubernetes-stack

Read
  • Rant

Note taking apps

Note taking apps.. Tried eight or so. Frustrating..

Read
  • Epic

k3s homelab cluster stack

The full helmfile that drives my k3s homelab cluster — every chart, every dependency.

Read
  • Epic

Helmfile

On Valentine’s Day seriously fell in love with Helmfile in interaction with bedag/raw.

Read
  • Epic

Maintenance and research

Nothing to crazy happened today. Just patched some servers and did some research on Postgres production configuration values. Damn; quite a lot to research there.

Read
  • Epic

K3s in homelab

K3s is finally running in my homelab like it’s intended to. Also proxied by Tailscale with impersonation. That is so awesome. -> https://tailscale.com/kb/1437/kubernetes-operator-api-server-proxy

Read
  • Epic

Mozilla HTTP Observatory

Implement best practices security headers. Fck this will break this website for a couple of hours. -> HTTP Observatory Edit: Ok, got this pretty quickly. A+ is the reward. Also…

Read
  • Epic

Traefik revisited

Today I set up my new server with Traefik again to give it a try. Self configuring services is still a great thing. Built in ACME support, too.

Read
  • Epic

Tailscale

Yesterday I ranted about Telekom - the #@!/% Netzbremse. (Also, see 👉 this website). This is why I fell in love with my Tailscale exit node setup. Seriously, give it a try. It’s free!

Read
  • Epic

Ansible done right

I forgot how damn good Ansible is, if used correctly. Implement best practices, adhere to conventions and make use of own Galaxy collections and roles. Scales great and is reliable.

Read
  • Rant

Telekom peering

Some ISPs just want to watch the world burn. Telekom and it’s peering makes computer go brrr (╯°□°)╯︵ ┻━┻

Read
  • Epic

Repo spring cleaning

I archived or deleted a couple of Gitlab repos. Old, shitty, not useful. As Biggie Smalls said: Never fall in love with your own code… No wait ಠ_ಠ

Read
  • Epic

Monitor all the things

One thing I learned from my profession: Don’t stop in private. My infrastructured is monitored with UptimeRobot. Heartbeat on my NAS Heartbeat on my Tailscale home subnet router Port check on my…

Read
  • Epic

Lets get this started

I dreamt the other night. Of working stuff and peace of mind. Then my monitoring screamed… service down it seemed ಠಠ

Read