Linux, Containers and Open Source

Get data from an etcd backup (encrypted or not!)

Get data from an etcd backup (encrypted or not!) The following post aims to provide a step by step procedure to recover data from an etcd snapshot (even if it’s encrypted) from a Kubernetes cluster. The post targets the following use cases: We have a non-encrypted etcd snapshot file, and we want to get some data from it. We have an encrypted etcd snapshot file, and we want to get some data from it....

Published on October 2, 2025 · Last updated on October 2, 2025 · 4 min · Mario

A Beginner’s Guide to RAG: What I Wish Someone Told Me

A Beginner’s Guide to RAG: What I Wish Someone Told Me In this post, I’ll try to provide a beginners guide to RAG, focusing on what I wish someone told me before trying to build a RAG solution. Attention While I’ve made a strong effort to ensure the information is accurate, I’m far from an expert on the topic, and some details may not be entirely correct. If you notice anything missing or inaccurate, please leave a comment!...

Published on May 27, 2025 · Last updated on May 27, 2025 · 12 min · Mario

Introduction to LLM concepts

Introduction to LLM concepts In this post, I’ll cover various LLM concepts and the questions I asked myself while diving deep into the world of LLMs. I expect this post to be updated as I continue to learn more things around LLMs. Attention This post is the result of my exploratory work on LLMs. While I’ve made a strong effort to ensure the information is accurate, I’m far from an expert on the topic, and some details may not be entirely correct....

Published on March 25, 2025 · Last updated on March 25, 2025 · 16 min · Mario

Signing and verifying container images with Cosign and your own PKI

Signing and verifying container images with Cosign and your own PKI In this post we are going to cover how we can sign and verify container images using Cosign and our own PKI. You can learn more on how to build your own PKI with CFSSL in this post. Warning The way we will see to sign and verify images in this post is not the recommended approach. For production usage, you should use ephemeral keys as described here....

Published on April 25, 2024 · Last updated on May 3, 2024 · 9 min · Mario

Extending a VXLAN across nodes with Wireguard

Extending a VXLAN across nodes with Wireguard Virtualizing environments is something I do quite often in a day-to-day basis, usually, these environments live in different hypervisors. While I don’t always need these environments to talk to each other, from time to time I need some sort of connectivity between them. Getting the VMs running on these hypervisors routed through the lab network is one of the solutions I have been using for a long time....

Published on December 19, 2023 · Last updated on December 19, 2023 · 11 min · Mario