Over the weekend I have increased security and automatized processes - that’s lame! This can be anything or nothing, too vague and unspecific. Well technically correct and with a touch of cynicism: “I translated bash scripts to YAML.” Okay, let’s agree on: I consolidated numerous bash scripts for automatically renewing certificates, reduced complexity, eliminated potential security risks when transferring certificates from outside reverse proxies to inside hosts, and made everything more transparent with both Ansible and Git. Read more

The simple, unspectacular things in life bring you ahead the curve. This bash script, for instance, removes all comments from a configuration file. In order that no empty lines remain instead, these are subsequently removed afterwards. What remains is the essence: what really counts. The usage is straightforward: Just add the desired config file(s) as parameters and you’re done! Read more

The last two days I improved my own architecture and extended everything with a PDF workflow. If you like, you may download my larger blog series from the previous year in one piece as a PDF file and read them offline, a total of 75+ pages of condensed facts: Read more

The foundation of every ISMS is a “living” inventory. In an ideal world, this communicates with the Ansible, Bash or PowerShell scripts within IT Operations. Snipe-IT, which I value and have successfully used for many years, was unknown to c’t up until now. Enjoy the read (in German): “IT-Assets im Griff” in der c’t Ausgabe 7/2021. Read more