Haven’t used Ansible in years. Has it been improving over the years or has it mostly just stayed the same?

The good news is that Wiz disclosed this mess to the developers overseeing Kubernetes in December 2024 and January 2025, and that fixes for five CVEs – collectively dubbed IngressNightmare by Wiz – were issued on March 10, with the details under embargo until now.

Nginx Controller version 1.12.1 and 1.11.5 fix the flaws – and they are available to download at this link.

Quick reference to find out what version ingress-nginx you’re running:

$ kubectl exec -it -n NAMESPACE INGRESS_NGINX_CONTROLLER_POD -- /nginx-ingress-controller --version
-------------------------------------------------------------------------------
NGINX Ingress controller
  Release:       v1.11.2
  Build:         46e76e5916813cfca2a9b0bfdc34b69a0000f6b9
  Repository:    https://github.com/kubernetes/ingress-nginx
  nginx version: nginx/1.25.5

-------------------------------------------------------------------------------

🙁

People really afraid of Rust out here.

I know it’s dumb to feel sad about computers and software getting shutdown, but it feels sucky to see all my hours of hard work getting trashed without a second thought.

Sadly, something we all have to get used to. Everything we do is ephemeral and the next guy will likely have better/different ideas on how to do things.

Basically everything I’ve ever built has been torn down or somehow bastardized eventually.

Start from the install guide on the wiki. It’ll branch out fast and just follow all the links and read. If something goes wrong, check if you missed something on the wiki. It’s an amazing resource.

Also, look up your hardware on the wiki before you start.

Don’t?

Hot

Don’t think you’d regret it. I can’t speak for that one in particular, but I’m still running one of the DIY Kickstarter versions. Will probably replace it with another Framework (or maybe even just upgrade the components if I can).

Is this like a reference implementation or something they expect people to run?

I have similar, but I turn my display on/off with HDMI-CEC based on time.

Most company leadership just isn’t that deep. They go through the supply catalog, order whatever’s cheap or whatever they’ve always ordered and then go about their day.

I feel like this would fit in some unexpected areas of mobile computing. Music, interfacing with other equipment (e.g. industrial computing), or other places where people might normally take a full laptop where that’s kind of overkill.

I’m not really sure, and I kind of wish I had a need for one.

Your community gets access to the network? So it’s basically a virtual LAN?

ELI5 headscale?

Doesn’t recall actually use the values and re-writes them to the brain? I seem to recall that being why we can have new associations and why memories can be slightly altered or degrade every recall.

Though I’m no brain guy.

Ah, fair enough then.

“Adds […] as an Option” sounds like default to you?

Or shift+right click on the unplayed video and copy image link to get the thumbnail.

I’ve been doing it manually because otherwise nobody watches it.

But we’ll never know because people can’t do basic reporting.

Also, you generally don’t magically get things like API keys and database credentials from buckets. Unless your team is completely braindead.

Fuck this article.

Using publicly available AWS IP ranges, attackers identified potential targets by scanning for application vulnerabilities or misconfigurations. […] The group scanned exposed endpoints for sensitive data, including database access credentials, API keys and other security secrets

That’s the most detailed information about the exploit in the article. And there’s no relevant external links either. Literally nothing actionable in it.