Self-rotation inside the single writer. A cut that always fires and a reclaim gated on consumption. The same retention serves an SMPTE timecode bus and a verifiable tape-archive feed.
Read post →A kubernetes worker on a default-deny segment cannot reach any upstream registry. All pulls go through a private OCI registry on the same segment, pre-populated from a control plane that can reach the outside. What it is, what each component does, and the four dead ends on the way.
Read post →How a second ACK sidecar closes the consumer-processing gap and how dual-stack TLS secures every broker endpoint without touching the hot path.
Read post →How a tiny AWK sidecar turns the append log into a pull-based durability contract. A retry loop proves zero-loss delivery across pod restarts.
Read post →A Pub/Sub-shaped pipeline assembled from FIFOs, gawk and Kubernetes primitives. Four scenarios. Four passes. A ring-buffer policy that makes the difference.
Read post →A private OCI registry behind a network and a pull-through cache in front of three public ones. TLS, redirect chains and what each upstream actually does. Production criteria, homelab budget.
Read post →A Pub/Sub-shaped pipeline assembled from FIFOs, gawk and Kubernetes primitives. Four scenarios. Two clean passes. Two failures with measured boundaries.
Read post →What goes in the body payload when zero-knowledge protocol design rules out long-lived plaintext passwords. Five derivations in pure shell, one published test vector, one pipeline that runs unattended.
Read post →A frequency mask built from a corpus of known-good checkpoints measures how much of that invariant structure a new checkpoint still covers. No model loading. No framework. 1.7 seconds on a 27MB file.
Read post →A lightweight method for detecting anomalous binaries without signatures or reproducible builds.
Read post →De n-gramas, smog y el embrujo de la baraja: cómo limpiar un corpus de texto sin saber lo que contiene.
Read post →Tales and tensions of sharing the privilege of creation
Read post →Thoughts on what infrastructure accidentally reveals about teams. Infrasculture (/ˈɪn.frəˌskʌl.tʃər/) n. [Neologism. Portmanteau of Infra- (from Latin infra, ‘below, underneath’), Sculpture (from Latin sculpere, ‘to carve or shape’), and Culture (from Latin cultura, ‘cultivation, practice’)]. The s…
Read post →A test number 2 page!
Read post →