Meetups/Infra/2026-05-04
create page New page 2026-05-04 m [[Meetups/Infra]] {{meetups/infra}} <!-- header --> (TODO summary) == Introductions == * [name] - [background]. [goals for meetup, or interests to explore] * Loren - background platform engineer, you can just push packages * Derek - working on spec-driven development, tools to enable it -- looking to publish soon * Kevin - app developer working with map libre provides tools for building google earth like maps with overlays * Dan - Once setup an internal pypi server * Victor - Works on platform stuff / platform tools * Dave - works with software systems * Daniel - web developer, recently wrote a blogpost about donation * Zaccae - reflashed board with MPU from work * Null - trying to debug ssystem comeup stuff with launch control, getting handle on priv helpers, macos entitlement things. (mac os version of systemd) * Jet - recently swtiched to sway instred * Ben - cloud infrastructure, building out staging patform * Chris - founder of startup that deals cookie banners, * Hayley - deals with inhouse low latency inference * Erik - built a common coding infrastructre for the space * Ciara - kubernetes, devops * Wheezy - background in ml infrastructure pre gpt hype, not a bandwagoner, puul.ai (has short guy energy /s :D ) * Robert - interested in software in general to be honest, also some hardware. * Bjorn - work in industrials and chemicals, process controls. == Lesson or Demo == * Read aloud: clarify for meetup. We are taking notes in a riseup pad (or I am--help appreciated, and links). We have meeting notes posted to the wiki. noisebridge.net, search Infra, or Meetups/Infra. (the Infrastructure page has a disambiguation link.) * Shell, web services, self-hosting, networking! * copy.fail - https://copy.fail/ - priv escalation - 800-byte python script roots every distro - pwn'ing Daniel's laptop running debian with - can escape isolated processes - can disable module - primitive gadget allows 4-byte overwrites into crypto libraries -- live demo * https://endoflife.date/linux - chart that sows end of life for linux kernels (LTS) - * git release follow - github possible to send alerts on new releases under the "watch" menu - chain of history to create for maintainers * Jet's demo: Attempts to - have you ever had need for custom repackaging for package - every time you build a package, a hash is produced for reproducibility - ensures the same hash for custom builds. - prevents malicious hotpatching of git history - (in guix, out of channel packages can be uses to build world deps) - purpose: to keep current with `main` branch - jet packages a repo, on github, t3codes * Astronomy Picture of the Day - apod.nasa.gov - goto calendar, click on random day. * Lawrence Hall of Science https://lawrencehallofscience.org/play/view/ * pypi packages - - download random python code for your mac. - use uv and a language model perhaps /s ? - `uv brew-hop-search` to more quickly search repo - learned about credential stealing - worms that got distributed through pypi - can't push the same version twice - prevent malicious use case - major . minor . patch . <literal hash perhaps> - tmux-handler (working name) - view tmux data in web - control tmux through browser - tmux servers can run multiple sessions - uses libtmux - can send prefix to deeper session * Dave suggests weird ssh tricks as a topic. - ~? to get "secret" menu. - ssh-agent forwarding - spawn sockets in parallel - ssh -R (reverse shell) - tunnel out, then back in - ssh -R 2222:localhost:3333 remotehost - ssh -L (listens) - local fowarding * questions about launchd (we can talk about management daemons, macos entitlements, plists, restarting -- continuity with systemd) - lauchd.info (an app to help write configuration) - apple can be aggressive about killing processes * deepwiki.com - - can write a summary about project as - site exists to mirror and parse github repos, - if repo is public, then they will index the repo * Mr. Name - Tracking file opens, used inotify in the past - epbf: for tracking a great number and variety of events in kernel and userspace - want to do arbitrary tracing at runtime - modern lib for - BPFTune for networking kernel parameter - crowdstrike issue? - wrote a loop in windows driver causing hard crash https://www.brendangregg.com/ebpf.html https://www.brendangregg.com/ebpf.html#eBPF - nice diagram - Brandon Gregg's dtrace used to view graph of screams at computer - https://www.youtube.com/watch?v=tDacjrSCeq4 * Zacchae - - if you have a box and don't want to change root passwd - default password with full network address - mobile tether - prevent in bound SSH into ipv6 addresses? - if monkey brains offered us ipv6? - then we'd each have a personal IP - == Outros == * We-z -- endoflife.date * Loren -- interest in reading changelogs -- about 3 * Null -- launchd stuff, helpful in the future * Robert -- enjoyed learning about the -R / -L * Ciara - always want to learn more about (e)bpf stuff, want to get more into performance monitoring & tuning - interested in the brew - uvx * Erik - tmux-handler project of interest * Daniel - eBPF, friend won't stop talking about it. * Bjorn - memory profiler features seem cool, brendan gregg -- e * Dave - tmux-handler * Eugene - switching main machine from arch to nix -- lots of tmux & ssh -- cool to see. Alex -- game bridge this Wednesday into cyber bridge -- 7pm wednesday / GameBridge -> CyberBridge * Victor - more about bpf -- time to learn more * Dan - will do some bpf trace stuff * Robert - tmux thing looks strange, thought was just a multiplexer * Kevin - going to look into eBPF * Elan - got here late, did not realize how significant noise was for HD latency * Derek - copy.fail need to update my kernel. * Erik - https://www.thegitcity.com/ == Questions, Discussion, or Coworking == * [Issue] = For next time = == Questions == == Readings & Exercises == * Readings ** * Exercises ** == Join online == * Try it yourself! ** Join libera.chat #nb-meetup-infra https://www.noisebridge.net/wiki/Meetups/Infra