HackerTrans
TopNewTrendsCommentsPastAskShowJobs

nicolast

no profile record

Submissions

The Different CTO Roles

allthingsdistributed.com
1 points·by nicolast·3 anni fa·0 comments

Cardinal/WASM: In-Browser Modular Synth Based on VCV Rack

cardinal.kx.studio
68 points·by nicolast·3 anni fa·30 comments

Bespoke Synth, an open-source modular DAW

bespokesynth.com
4 points·by nicolast·3 anni fa·0 comments

Surge XT: Free and Open Source Hybrid Synthesizer

surge-synthesizer.github.io
3 points·by nicolast·3 anni fa·0 comments

SPJ: What I love about the Haskell community

discourse.haskell.org
2 points·by nicolast·3 anni fa·0 comments

The Lonely Work of Moderating Hacker News (2019)

newyorker.com
292 points·by nicolast·4 anni fa·245 comments

Beyond Block and File: COSI Enables Object Storage in Kubernetes

thenewstack.io
9 points·by nicolast·5 anni fa·0 comments

comments

nicolast
·3 anni fa·discuss
Exactly: a non-blacklisted IP with good reputation, correct mailname and valid PTR record is the foundation, ideally augmented with SPF. I've been running an e-mail service without DKIM and DMARC for many years without any delivery issues, only adding those very recently.
nicolast
·3 anni fa·discuss
I am indeed. Feel free to reach out, would be happy to learn from the approach you took.
nicolast
·3 anni fa·discuss
You may be interested in https://discourse.haskell.org/t/towards-an-actor-framework-f..., then!
nicolast
·4 anni fa·discuss
For this kind of decisions, why not simply keep notes as comments in the code? These can easily be added later, even 14+ years after the code was written. Then, when someone dives into the codebase to figure out why something was done this or that way, the answer is right there. No need to dive into (and scavenge, sometimes) VCS history.
nicolast
·4 anni fa·discuss
GoPro would like a word.
nicolast
·5 anni fa·discuss
There's also 'AX_APPEND_COMPILE_FLAGS' [1] (and its dependency 'AX_CHECK_COMPILE_FLAG' [2]), next to many other (related or unrelated) macros in the autoconf archive.

[1] https://www.gnu.org/software/autoconf-archive/ax_append_comp...

[2] https://www.gnu.org/software/autoconf-archive/ax_check_compi...
nicolast
·6 anni fa·discuss
An 'easy' way to deploy a cluster could be using kubeadm. Then you'll need a CNI like Calico to get Pod networking up-and-running. However, you'll want to install a bunch of other software on said cluster to monitor it, manage logs,...

Given you're running on physical infrastructure, MetalK8s [1] could be of interest (full disclosure: I'm one of the leads of said project, which is fully open-source and used as part of our commercial enterprise storage products)

[1] https://github.com/scality/metalk8s
nicolast
·6 anni fa·discuss
> first of all with k3s keeping a production cluster running is still pretty easy.

Fair enough. I'll admit I have no direct experience with K3s. There are, however, many K8s deployment systems out there which I would not consider 'production-ready' at all even though they're marketed that way.

> second you should always be ready to start from scratch, which is also pretty simple, because of terraform.

That may all be possible if your environment can be spawned using Terraform (e.g., cloud/VMWare environments and similar). If your deployment targets physical servers in enterprise datacenters where you don't even fully own the OS layer, Terraform won't bring much.

> a lot of people are scared of k8s but they did not even try. they prefer to maintain their scary ansible/puppet whatever script that works only half as good as k8s.

We've been deploying and running K8s as part of our on-premises storage product offering since 2018, so 'scared' and 'didn't try' seems not applicable to my experience. Yes, our solution (MetalK8s, it's open source, PTAL) uses a tech 'half as good' as K8s (SaltStack, not Ansible or Puppet) because you need something to deploy/lifecycle said cluster. Once the basic K8s cluster is up, we run as much as possible 'inside' K8s. But IMO K8s is only a partial replacement for technologies like SaltStack and Ansible, i.e., in environments where you can somehow 'get' a (managed) K8s cluster out of thin air.
nicolast
·6 anni fa·discuss
My comment above did not come out of the blue, but based on real-world experience ;-) You may be interested in our MetalK8s project [1] which seems related to yours.

[1] https://github.com/scality/metalk8s
nicolast
·6 anni fa·discuss
> Getting Kubernetes up and running isn't really the issue anymore, that's pretty easy to do. The tricky part is long term maintenance and storage.

This times 100. Deploying basic clusters is easy. Keeping a test/dev-cluster running for a while? Sure. Keeping production clusters running (TLS cert TTLs expiring, anyone?), upgrading to new K8s versions, proper monitoring (the whole stack, not just your app or the control-plane), provisioning (local) storage,... is where difficulties lie.
nicolast
·6 anni fa·discuss
> How to distribute secrets if not by env? (which I agree! Honest question)

You'll want to use BuildKit (`docker buildx`), see https://docs.docker.com/develop/develop-images/build_enhance...

[edit] My bad, that works for secrets needed at build time, not at runtime of course.
nicolast
·6 anni fa·discuss
Not an Arrow expert at all, so I may be missing something, but I fail to understand the "The Science of Reading/Writing Data" section, or rather, its relevance to the article (and Arrow).

From what I could find, Arrow supports reading (writing?) data from (to?) memory-mapped files (i.e., memory regions created through mmap and friends). However, this has no relation to how the IO is being done, hence not related to access to IO devices using either IO ports, or memory mappings (DMA and such).

This section seems to be mixing up two fairly distinct concepts, i.e., talking about ways to access IO devices and transfer data to/from them (among which memory mapping is an option), where the memory mapping (mmap of files) as used by Arrow is something a little different.