OpenShift Node-to-Node encrypted network mesh with WireGuard and Ansible

Connecting nodes with masters is usually secured with TLS. But there's more traffic than just between nodes and masters. This article describes how to set up a WireGuard mesh network between all nodes in a cluster by using Ansible.


Tencrypt: Hardening OpenShift by Encrypting Tenant Traffic

The aim of this work is the research of possibilities which allow automatic and transparent encryption of internal network traffic between applications of Tenants in a multi-tenant OpenShift infrastructure.


Using a PCI graphics card in KVM/QEMU on Debian Stretch

Are you looking to use your graphics card or another PCI device in your computer inside a virtual machine? In this article I'll explain how I did it with KVM/QEMU on Debian Stretch.


Firefox WebExtensions: injecting, sending data and detecting AJAX

Firefox "Quantum" 57 dropped the support for legacy XUL addons and made WebExtensions the new standard for addon development inside the browser. For a project I built a WebExtension with multiple features which I'd like to share - it might help you!


The Intel Management Engine

Want to know more about the Intel Management Engine? This blog post contains an extraction of my research paper, in the hope that it clears some confusions that surround the Management Engine chip.