Various SSL errors while using VMware Web Client or vClient
Many errors can occur while using a misconfigured client. Below you can find the errors I found. Opening console from Web Client SSL verification failure for "vcenter1.example.com" due to a host thumbprint mismatch: stored thumbprint "8d:29:ae:69:87:e5:cc:a0:ff:01:51:25:84:8a:b4:d3:b5:a3:55:33" does not match certificate thumbprint "5B:E9:36:23:44:F0:4D:E5:6A:F3:7E:BC:4F:FE:9D:0D:93:64:03:E0". Opening console from vClient Unable to connect to the MKS: Login (username/password) incorrect. […]Kubernetes – Notable changes since my first build
During my latest Kubernetes lab rebuild, I noticed some significant differences in the some functions of Kubernetes cluster. I’ve done my best to go back and update the previous blog posts with notes and pointers to make this clear. However – going forward please consider my GitHub Salt repo as the ‘source of truth’ for the Kubernetes configuration files and current build process. I’ll be updating that regularly as I continue to optimize the Salt config and add onto the Kubernetes configuration. A couple of big hitters I want to call out as differences between my initial build and this one…
cAdvisor is now part of kubelet
That’s right! We no longer need to have a separate manifest and container for cAdvisor. We can see that any host running the kubelet process is exposing port 4194…
And sure enough…
kube-proxy and kubelet no longer use etcd
In my first build, both the kubelet and kube-proxy service relied on talking directly to etcd to interact with the cluster. The associated configs looked like…
The newest systemd service configuration looks like this…
So what’s happened here is the cluster communication has moved to Continue reading
x86 is a high-level language
Just so you know, x86 machine-code is now a "high-level" language. What instructions say, and what they do, are very different things.I mention this because of those commenting on this post on OpenSSL's "constant-time" calculations, designed to avoid revealing secrets due to variations in compute time. The major comment is that it's hard to do this perfectly in C. My response is that it's hard to do this even in x86 machine code.
Consider registers, for example. Everyone knows that the 32-bit x86 was limited to 8 registers, while 64-bit expanded that to 16 registers. This isn't actually true. The latest Intel processors have 168 registers. The name of the register in x86 code is really just a variable name, similar to how variables work in high-level languages.
So many registers are needed because the processor has 300 instructions "in flight" at any point in time in various stages of execution. It rearranges these instructions, executing them out-of-order. Everyone knows that processors can execute things slightly out-of-order, but that's understated. Today's processors are massively out-of-order.
Consider the traditional branch pair of a CMP (compare) followed by a JMPcc (conditional jump). While this is defined as two separate instructions as Continue reading
How to update a GitHub pull request (PR)
So what happens when you submit a PR, but then you want to change it? After reviewing my proposed changes from my last post, it was decided that I should take a different approach. The changes I needed to make weren’t substantial, and were in the same spirit as the initial PR, so I decided that updating made more sense then starting over. All you have to do is update the code and push another commit to the branch. Let’s assume we’ve made the changes we want to our code again. Let’s verify that Git sees these updates…
Yep – Looks good so far. Now we need to add these files to the commit just like last time…
git add .
So now the files are ready to be committed, let’s go ahead and make a commit…
git commit -m "Updated the ENV variables and the way they are set"
Perfect – So now let’s check and see if our remote (GitHub) is still defined…
All looking good – So now all we need to do is push the commit…
git push -u origin fluentd-elasticsearch-kibanafix
Let’s go check out our PR Continue reading
docker run -ti chanezon/dockerized Chanezon -v
I am a software platform builder. I joined Docker last week, to help Solomon and the Docker team build the distributed computing platform we need for the next decade, as software eats the world and is assembled in systems composed … ContinuedCommodity Manufacture is the Majority of Switch Products
How much of an Ethernet switch product is custom made by the vendor and how much is commodity components selected and assembled into a closed vendor solution ?
The post Commodity Manufacture is the Majority of Switch Products appeared first on EtherealMind.