Matt Bacchi Devops Engineer Home base: a quaint drinking village with a fishing problem, splitting time in Longmont, Colorado. Working on cloud, python, chef, release engineering, QA, Eucalyptus, AWS.

AWS CodeCommit SSH Key ID

Working on AWS CodeCommit today, I setup SSH access to the repository. During the initial configuration I provided the SSH public key in the AWS Console, but then couldn’t connect to my repository. In the brief instructions on the IAM...

3rd Party Github Credential Scanning

While writing a Python library that performs scanning of Git repositories similar to AWS Labs’ git-secrets, I was surpris...

Writing to the AWS Lambda SAM Local container /tmp filesystem

While using AWS Lambda SAM Local to test Lambda functions locally, I encountered an error writing to the current directory where the function was running i...

3 Ways to Prevent .pypirc Credentials or Other Secrets from Leaking onto Github

Even if you’re not involved in the Python community, you might have heard about this security incident a while back. This is...

Using dnsmasq on Asuswrt-merlin to ignore MAC addresses

Here’s another ‘for posterity’ type post. I forgot I had configured my WiFi router to ignore certain MAC addresses and when I tried to put that machine on the Network today I had a rude awakening. Using the asuswrt-merlin firmware on ...

Ajax/jQuery on AWS Lambda

I’ve been trying to learn more about AWS Lambda, at the same time learning some web development. For a newcomer to web application development, there is the question of whether you work on leveling up with traditional server based app...

Using Zappa as an AWS Lambda Python Framework

I spent a little time with Zappa today which is an AWS Lambda (aka “serverless”) framework for Python. Its not hard to create a very basic Flask application, then invoke Zappa to perform...

Docker error IPv4 forwarding is disabled

Another common error is that the docker daemon cannot connect to the outside world to download anything during build time. This can be corrected in a number of ways, but I have done it thusly.

The error is commonly encountered...

Docker socket group permissions

I always forget this when trying to run docker as a non-root user, so documenting it for posterity.

If you get an error connecting to the docker daemon as a standard user, such as:

Empty greenhouse.io job posts

I was interested in a job description a company posted via Twitter, but I couldn’t view the text and didn’t understand why. This wasn’t the first time this happened so decided to dig into the problem and determine if it was an issue w...

Using Docker to create an ad hoc Yum repository

Docker can be used to quickly create and serve many services, one such example is serving RPMs via Yum in an ad hoc manner. Have you ever wanted to create a Yum repository consisting of some RPMs very quickly to be used for testing p...

Vagrant NFS synced_folders

After upgrading to Fedora 25 yesterday, Vagrant 1.8.5 in the updates repo was unusable with VirtualBox for 2 reasons:

  1. The newest centos/7 box didn’t use vbox guest additions for shared folders, forcing the use of NFS