Writing
Notes that took long enough to think through that I figured I should write them down.
2026
- Epic
Improved Blog UI
Today I refactored the Blog UI. (No AI was harmed during the making of this style.)
Read- Epic
Argocd
Migrated all K8s apps to ArgoCD deployments. Argocd bootstrap with Helmfile, projects and ApplicationSets, Helm and simple manifest apps… Let the stuff break :D
Read- Epic
Telekom peering II
To overcome this stupid Telekom peering (contract will end in August finally), I set up a Hetzner VPS with Wireguard. Totally automated via Terraform and Cloudinit. I set up my FritzBox to use that…
Read- Rant
Trivy attack
Trivy was again attacked. This time really bad -> https://www.crowdstrike.com/en-us/blog/from-scanner-to-stealer-inside-the-trivy-action-supply-chain-compromise/ For me, this is another example for…
Read- Epic
k3s homelab cluster stack III
More great changes to land soon™️. But first need to handle the heavily diverged code.
Read- Rant
I love circular dependencies (which I hate (which I love))
Cilium with Spire needs a persistent volume to start. My persistent volume provider needs a cni to start. (╯°□°)╯︵ ┻━┻
Read- Epic
OS install party on a Wednesday evening
So when I set up my new Netcup server back then, I totally fckd up the filesystem. I am using LVM for a long time, but guess what XFS cannot do. Right… shrink :) So this evening I reinstalled the…
Read- Epic
k3s homelab cluster stack II
Following up on my previous post. The cluster stack is published to GitHub. I will improve it gradually and highly appreciate feedback: https://github.com/dschuldt/kubernetes-stack
Read- Rant
Note taking apps
Note taking apps.. Tried eight or so. Frustrating..
Read- Epic
k3s homelab cluster stack
The full helmfile that drives my k3s homelab cluster — every chart, every dependency.
Read- Epic
Helmfile
On Valentine’s Day seriously fell in love with Helmfile in interaction with bedag/raw.
Read- Epic
Maintenance and research
Nothing to crazy happened today. Just patched some servers and did some research on Postgres production configuration values. Damn; quite a lot to research there.
Read- Epic
K3s in homelab
K3s is finally running in my homelab like it’s intended to. Also proxied by Tailscale with impersonation. That is so awesome. -> https://tailscale.com/kb/1437/kubernetes-operator-api-server-proxy
Read- Epic
Mozilla HTTP Observatory
Implement best practices security headers. Fck this will break this website for a couple of hours. -> HTTP Observatory Edit: Ok, got this pretty quickly. A+ is the reward. Also…
Read- Epic
Traefik revisited
Today I set up my new server with Traefik again to give it a try. Self configuring services is still a great thing. Built in ACME support, too.
Read- Epic
Tailscale
Yesterday I ranted about Telekom - the #@!/% Netzbremse. (Also, see 👉 this website). This is why I fell in love with my Tailscale exit node setup. Seriously, give it a try. It’s free!
Read- Epic
Ansible done right
I forgot how damn good Ansible is, if used correctly. Implement best practices, adhere to conventions and make use of own Galaxy collections and roles. Scales great and is reliable.
Read- Rant
Telekom peering
Some ISPs just want to watch the world burn. Telekom and it’s peering makes computer go brrr (╯°□°)╯︵ ┻━┻
Read- Epic
Repo spring cleaning
I archived or deleted a couple of Gitlab repos. Old, shitty, not useful. As Biggie Smalls said: Never fall in love with your own code… No wait ಠ_ಠ
Read- Epic
Monitor all the things
One thing I learned from my profession: Don’t stop in private. My infrastructured is monitored with UptimeRobot. Heartbeat on my NAS Heartbeat on my Tailscale home subnet router Port check on my…
Read- Epic
Lets get this started
I dreamt the other night. Of working stuff and peace of mind. Then my monitoring screamed… service down it seemed ಠಠ
Read