All posts

Red Hat Certified System Administrator (RHCSA) #5: Local Storage 1 — Partitions, swap, LVM basics
11 min read

Red Hat Certified System Administrator (RHCSA) #5: Local Storage 1 — Partitions, swap, LVM basics

The fifth post in the Red Hat Certified System Administrator (RHCSA) series. We check disks with lsblk and fdisk, create partitions with fdisk,parted, add swap with mkswap,swapon, build LVM with pvcreate,vgcreate,lvcreate, then mount it permanently with mkfs and fstab (UUID) — all typed out by hand. We carry RHCSA's most common task, "create an LVM and mount it," all the way through so it survives a reboot.

AWS Certified Developer - Associate (DVA-C02) #6 Domain 1-5 Development with AWS Services — SDK Development Patterns
5 min read

AWS Certified Developer - Associate (DVA-C02) #6 Domain 1-5 Development with AWS Services — SDK Development Patterns

The fifth post of the DVA-C02 development domain. It covers the common patterns that recur when calling services with the AWS SDK: pagination, exponential backoff and jitter for handling throttling and transient errors, idempotency implementation, S3 multipart upload and presigned URLs, and the SDK credential provider chain along with region and retry configuration, all at the exam level.

Build an Online Shop with Next.js #1: Getting Started and Design
9 min read

Build an Online Shop with Next.js #1: Getting Started and Design

Build an online shop from scratch with the Next.js App Router. The first post covers requirements, tech decisions, route structure, the product data model, and project setup.

Certified Kubernetes Administrator (CKA) #15 Resource Management: requests/limits, QoS, LimitRange, ResourceQuota
9 min read

Certified Kubernetes Administrator (CKA) #15 Resource Management: requests/limits, QoS, LimitRange, ResourceQuota

The 15th post in the Certified Kubernetes Administrator (CKA) series. We lay out how requests and limits reserve and cap cpu and memory, the difference between CPU throttling and memory OOMKilled, and how the three QoS classes — Guaranteed, Burstable, BestEffort — decide eviction order. Then we work through the operational policies that enforce container defaults with LimitRange and namespace totals with ResourceQuota, all in YAML.

Certified Kubernetes Application Developer (CKAD) #10 Kustomize: The Overlay Pattern and Per-Environment Manifests
9 min read

Certified Kubernetes Application Developer (CKAD) #10 Kustomize: The Overlay Pattern and Per-Environment Manifests

The tenth post in the Certified Kubernetes Application Developer (CKAD) series. It covers Kustomize, which transforms manifests per environment without templates. From the core fields of kustomization.yaml to the base/overlays structure, patchesStrategicMerge and JSON6902 patches, the hash-based rolling of configMapGenerator and secretGenerator, and the build-and-apply flow via the -k flag — organized from a hands-on exam perspective.

Certified Kubernetes Security Specialist (CKS) #8: kernel hardening, capabilities, /proc protection
11 min read

Certified Kubernetes Security Specialist (CKS) #8: kernel hardening, capabilities, /proc protection

The eighth post of the Certified Kubernetes Security Specialist (CKS) series. We cover how to strip privileges from containers with securityContext to shrink the attack surface. From the drop-ALL-then-add-only-what-you-need pattern for Linux capabilities, to the dangers of privileged and allowPrivilegeEscalation, runAsNonRoot and readOnlyRootFilesystem, /proc masking via procMount, and blocking hostPID/hostNetwork/hostIPC and host path mounts — all pulled together into a hardened YAML example.

How Do Chatbots Answer? The Difference Between Rule-Based and AI Chatbots
4 min read

How Do Chatbots Answer? The Difference Between Rule-Based and AI Chatbots

This post explains, without any code, how a support chatbot produces its answers. It covers the difference between rule-based chatbots that follow a fixed path and AI chatbots that understand sentences, how the two are mixed in practice, and the limit of hallucination, at a non-developer's level.

Python Data Analysis #5 Grouping and Joining: groupby, pivot_table, merge
6 min read

Python Data Analysis #5 Grouping and Joining: groupby, pivot_table, merge

Starting from the classic sales-by-branch-by-month question, we build a mental model for groupby, multi-stat aggregation with agg, pivot_table for Excel users, and merge and concat as the pandas counterparts of SQL JOIN — plus the habit of checking row counts after every join.

Red Hat Certified Engineer (RHCE) #7: Jinja2 Templates — Filters, Control Flow, and lookup
4 min read

Red Hat Certified Engineer (RHCE) #7: Jinja2 Templates — Filters, Control Flow, and lookup

The seventh post in the Red Hat Certified Engineer (RHCE) series. We render .j2 files into per-host configuration with the template module, cover Jinja2 syntax for variable output, for, and if, plus filters like default, upper, join, and to_nice_yaml, read files and environment variables with lookup, and even handle whitespace control — all in the form the exam asks for.

Red Hat Certified System Administrator (RHCSA) #4: Boot and the system — systemd, target, GRUB2, password recovery
10 min read

Red Hat Certified System Administrator (RHCSA) #4: Boot and the system — systemd, target, GRUB2, password recovery

The fourth post in the Red Hat Certified System Administrator (RHCSA) series. We work through the structure of systemd and how to control services with systemctl, switching the boot target, editing kernel parameters in GRUB2, and the single most frequent RHCSA task — root password recovery with rd.break — by typing the commands ourselves.

AWS book now available free in full — AWS: From Basics to Production Operations
2 min read

AWS book now available free in full — AWS: From Basics to Production Operations

From your first IAM policy to running a fullstack app on ECS Fargate, this 33-chapter, six-part AWS practical book is free to read in full on the site.

AWS Certified Developer - Associate (DVA-C02) #5 Domain 1-4 Development with AWS Services — Messaging and Events
5 min read

AWS Certified Developer - Associate (DVA-C02) #5 Domain 1-4 Development with AWS Services — Messaging and Events

The fourth post of the DVA-C02 development domain. It covers the difference between SQS standard queues and FIFO queues, visibility timeout and long polling, DLQs, SNS pub/sub and fan-out (SNS + SQS), EventBridge's event bus and rule-based routing and schedules, and Step Functions' state machines (Standard vs Express), all at the exam level. Knowing when to choose which messaging service is the core.