Fork me on GitHub

Luke Hinds

Security, clouds, containers and code.

Intel TXT on RHEL 7.5
Support for TPM 2.0 is now available in RHEL 7.5. This post covers a basic set up of Intel TXT...
posted on Wednesday, September 5, 2018 in
Trusted Platform Module 2.0 on RHEL 7.5
Support for TPM 2.0 is now available in RHEL 7.5. What follows is a very basic set of steps to...
posted on Tuesday, August 28, 2018 in
Running Minishift on Arch Linux
Install Dependencies sudo pacman -S libvirt qemu dnsmasq ebtables Grab the latest docker-machine-kvm release (as of time of writing 0.10.0)...
posted on Wednesday, February 28, 2018 in
TripleO AIDE Service
Just a quick post about some patches that have landed in TripleO (upstream Red Hat OSP Director) to deploy AIDE...
posted on Monday, January 22, 2018 in
Inov8 Roclite 305 Gore-Tex Trail Shoes Review
Quick review of the 305 Roclites. I had made a post to the fell-runners uk facebook page and asked about...
posted on Saturday, January 20, 2018 in
The Winter Fan Dance
This Saturday I went out to the Brecon Beacons in South Wales to take part in an mountain endurance event...
posted on Monday, January 8, 2018 in
TripleO Security Hardening
Over this Ocata cycle I have been working on the automation of security hardening in the TripleO OpenStack Installer and...
posted on Thursday, January 26, 2017 in
Debugging Puppet Modules in the Overcloud
I have recently been working a lot on OpenStack TripleO via Puppet module development. Testing changes in this enviroment can...
posted on Tuesday, January 17, 2017 in
Puppet Master / Agent Setup using vagrant and libvirt
This guide will provide two vagrant vm’s sutiable for quickly testing puppet code. Ideally these should be ported into Vagrantfile....
posted on Saturday, January 14, 2017 in
DLRN for RDO package builds
What follows are the steps to create a spec file, test that spec file in a local dlrn instance, and...
posted on Friday, January 13, 2017 in
Simple way to have a dotfiles repo, with no symlinking
Hands down, this is the best way I have found so far, for managing dotfiles without needing to symlink to...
posted on Friday, September 2, 2016 in
Learned Optimism
Optimists explain good things as being personal, general, and permanent, and explain away bad things as being impersonal, specific, and...
posted on Wednesday, August 17, 2016 in
Record your terminal to gif
I recently needed to record some terminal sessions, as back up for a demo I planned to present. I was...
posted on Tuesday, June 14, 2016 in
Shibboleth on CentOS7
For the following, we will be deploying this to a virtual machine running on top of KVM / QEMU, but...
posted on Saturday, April 30, 2016 in
Building the latest version of OVS and mininet within CentOS 7
Set to SElinux to Permissive (obviously this is only for a test machine, if you’re doing anything in production ,...
posted on Thursday, April 21, 2016 in
X11 forwarding request failed on channel 0
Ever get the following issue when trying to X-forward? ssh -X root@192.168.124.29 root@192.168.124.29's password: X11 forwarding request failed on channel...
posted on Tuesday, April 19, 2016 in
Epson Wireless Scanner on Fedora
This is for the Epson XP-312 wireless scanner / printer, but it should work with most wireless scanners from Epson....
posted on Tuesday, April 12, 2016 in
Using domifaddr
Two useful IP tools I discovered in virsh, care of Daniel P Berrange virsh domifaddr <domain> [interface] [–full] [–source lease|agent]...
posted on Saturday, April 2, 2016 in
Multi Tenancy in Keystone
This is an extension of a forum post that got out of hand. Someone was asking how the access control...
posted on Wednesday, March 2, 2016 in
Linux Capabilities
I came across Linux Capabilities while researching PID namespaces in the Linux Kernel. They are certainly nothing new (they came...
posted on Sunday, February 7, 2016 in
securityheaders.io Hall of Fame
Note: This post was made on my old site, nfv.space. I have since then moved to markdown / Jekyll on...
posted on Friday, January 1, 2016 in
Convert qcow2 to VDI
It’s actually quite simple to convert a VDI to QCOW2. There is no need for a virtualbox install, you can...
posted on Tuesday, December 15, 2015 in
Experiences starting an opensource security group.
I would like to merit a post on the experience of starting a security group within an open source project,...
posted on Wednesday, December 2, 2015 in
Ansible Module Development
So I have recently being writing some middleware code on top of the very powerful Ansible Python API. Ansible for...
posted on Tuesday, November 17, 2015 in
Mi5 Security challenge
OK, before anyone gets the wrong idea. I did not literally hack MI5. I guess the title is a little...
posted on Monday, July 20, 2015 in
The pains of entropy in the cloud
I noted a new feature listed on the Ubuntu Security page called ‘Cloud PRNG seed’. This got my interest and...
posted on Tuesday, March 3, 2015 in