Welcome to tobilehman.com!

kubernetes posts

Wildcard TLS Certificates for Your LAN

for the impatient, skip to the how-to This article explains how to get a TLS Certificate for your LAN so you can use https:// and not have to ignore these “⚠️ Your connection is not secure” errors: The reason that the browser throws this error is that TLS (and SSL before it) were designed to perform two functions: Authenticate the website to the user (prove it is really that site, and not a MITM) and Secure the contents of the data that flows between the user and the website When you ignore this https error you are forgoing function #1, authentication, but you still get #2.

Cybernetics in the Age of the Cloud

There’s an old saying: There is no such thing as the cloud, there’s just someone else’s computer. That saying is true on the object level, a cloud provider is just a service that runs your app on a bunch of computers that belong to the service owner, like AWS or Google Cloud. But while it’s true that there isn’t a cloud there, it’s also true in the same way that there is no “computer” there.

Moving to SUSE

After 3.6 years at Amazon, I’ve decided to move to another company to work on open source software. The company is SUSE, they make a Linux distribution and sell cloud computing services, among other things. At Amazon I worked on AWS Elemental’s Live (video streaming software), a small video encoding device, and the Amazon Scout robotics project. At Scout I built software that controls the robots when autonomy fails, and I worked on safety features and performance optimization of a distributed application that ran on a cluster of servers managed by AWS Fargate.