Have you ever wanted to automate Docker container deployment on an EC2 instance. That was exactly what I wanted to do last week and instead of doing it the old-fashioned way with SSH and manual scripts, I decided to automate it using Ansible and run it through GitHub Actions (CI/CD). The result? A super clean…
If you’ve been managing your Terraform state in AWS S3, you’ve probably been using DynamoDB to enable state locking. Well, here’s some great news: Terraform 1.10 lets you ditch DynamoDB and handle state locking directly in S3! No extra tables, no extra costs, and no more unnecessary complexity. So, how does it work? Let me…
Imagine a scenario where you might prefer to provision the resources manually in Cloud because it’s quick and easy. Maybe you needed a Cloud resource such as security group in a hurry, or someone on the team just created it without thinking about Terraform. Fast forward a few weeks, and now you’ve ended with a…
I have sometimes seen some people feel confused in choosing between count and for_each in Terraform. Both constructs help to dynamically create multiple resources, yet their use cases and behavior differ significantly. Let me break it down in simple terms and demonstrate their differences with an example: provisioning AWS Security Groups. Note: Since creating Security…
In modern IT, automation and efficiency are crucial. Terraform and Ansible are leading Infrastructure as Code (IaC) tools, each with unique strengths. Terraform excels at provisioning cloud infrastructure across multiple providers using a declarative language, while Ansible focuses on configuration management and application deployment through agentless automation. Terraform Overview Terraform, developed by HashiCorp, allows…
In this article, I will guide you with the steps on how to provision an instance (VM) in AWS Cloud by using Terraform code and a CICD pipeline that is GitHub Action. But before proceeding further, let me give you a brief overview of Terraform and GitHub Action. Terraform Terraform is an open-source Infrastructure…
In Linux, ensuring persistent device names for storage volumes is crucial, especially in environments where device names can change across reboots or when new devices are added. This persisting mapping become more crucial if you want to provision raw storage volume for Oracle ASM disks. There are two common methods to achieve this persistence either…
Linux, like other operating systems, has an efficient and affective memory management for managing memory hungry Application or database. RAM as you know is a vital part for Operating systems for storing code and data, in Linux it uses memory cache and buffer for improving the system performance. If I talk bit more about memory…
Variables or Vars are used to store the data which is further used by ansible playbook. These variables can either take input from user or it can also be stored in YAML or INI file as well like main.yml or inventory. Variables stored in either playbook or in separate YAML or INI format file can…
The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009. Source Definition: CVE-2023-38408 at…
