A practical deep-dive into Linux stack overflow protections — how canaries, NX, ASLR, PIE, and RELRO actually work, what they stop, what they don't, and what breaks when you enable them.
Cloud Future New Life
CFN Cloud
Cloud-native notes on Kubernetes, platform engineering, and modern infrastructure.
Browse by topic
Popular topics
Editors' picks
Featured reads
A good place to start if you're new to the site.
A detailed look at the system calls behind malloc — brk/sbrk for heap growth, mmap for large allocations and thread arenas, and the internal kernel data structures for process memory.
A deep dive into how Linux dynamically links shared libraries at runtime — PIC, GOT, PLT, lazy binding, gdb tracing, and the real cost of -fPIC.
A practical guide to GPU overprovisioning strategies, including scheduler-level oversubscription, time slicing, memory controls, MIG, vGPU, queue backfill, and operational guardrails.
A practical guide to choosing between serverless GPUs and dedicated GPUs for startups, based on cost structure, delivery speed, performance predictability, operations burden, and team maturity.
A practical deep-dive into Linux glibc (ptmalloc2) heap memory management — arenas, chunks, bins, tcache, and how each structure becomes an attack surface.
Read by topic
Topic guides
Start with the basics, then continue to operations and troubleshooting topics.
Kubernetes
A curated reading track for Kubernetes.
System
A curated reading track for System.
Stack Overflow Protection Mechanisms: Canaries, NX, ASLR, and Beyond
Linux Memory Allocation Syscalls: brk, mmap, and How malloc Talks to the Kernel
Dynamic Linking and Lazy Binding in Linux: GOT, PLT, and How dlopen Works
Deep Dive into Linux Heap Memory Management: From Basics to Core Exploitation
GPU
A curated reading track for GPU.
Latest posts
Recent writing
New notes, guides, and long-form pieces from the main archive.
Ephemeral Volumes
Ephemeral volumes live with the Pod and fit cache or temp files.
Kubernetes Volumes Explained: EmptyDir, HostPath, and Persistent Storage Basics
Learn the core Kubernetes volume types, what data survives Pod restarts, and how to choose between temporary and persistent storage.
Kubernetes ConfigMap vs Secret: Configuration, Sensitive Data, and Safe Usage
Understand when to use ConfigMap or Secret in Kubernetes, how they reach Pods, and which practices reduce config drift and secret exposure.
Running Stateful Apps on Kubernetes: Storage, Identity, and Operations
A practical guide to stateful applications on Kubernetes, covering storage choices, stable identities, rollout concerns, and failure handling.
Deploying MySQL on Kubernetes: Stateful Basics, Storage, and Services
Learn the essentials of running MySQL on Kubernetes, including StatefulSets, persistent storage, Services, and operational tradeoffs.
Kubernetes Declarative Configuration Explained: Apply, Drift, and Reconciliation
Understand declarative configuration in Kubernetes, why desired state matters, and how apply, diff, and reconciliation shape safe operations.
Kubernetes Canary Releases Explained: Safer Rollouts and Traffic Control
Learn practical canary release patterns in Kubernetes, how to reduce rollout risk, and which signals to watch before promoting traffic.
Kubernetes Service Explained: ClusterIP, NodePort, LoadBalancer, and DNS
Learn how Kubernetes Services provide stable networking for Pods, how service types differ, and how to troubleshoot selectors, endpoints, and traffic flow.
Kubernetes Namespaces Explained: Isolation, Scope, and Team Boundaries
Learn how Kubernetes Namespaces organize resources, scope policies and quotas, and support safer multi-team or multi-environment clusters.
Kubernetes Pods Explained: Lifecycle, Scheduling, and Debugging Basics
Understand what a Pod really is in Kubernetes, how Pods are scheduled and restarted, and which commands help you debug them.
Kubernetes Deployment vs ReplicaSet: Rolling Updates and Desired State
Learn how Deployments and ReplicaSets work together in Kubernetes, how rolling updates happen, and how to debug rollout and selector problems.
Install Minikube and Start a Local Cluster
Get a working single-node cluster fast with Minikube.
K3s Quick Start: Lightweight Kubernetes Setup and Core Concepts
Learn when to use K3s, how to install it quickly, and how to run core Kubernetes workloads on a lightweight cluster for labs and edge environments.
Kubernetes Introduction: What It Solves and How to Think About It
A practical introduction to Kubernetes: what problems it solves, what it does not solve, and how desired state and controllers work in real clusters.
Kubernetes Architecture Explained: Control Plane, Nodes, and Reconciliation
Understand Kubernetes architecture from the control plane to worker nodes, including the API server, scheduler, controllers, kubelet, and reconciliation loops.
Kubernetes Learning Path: A Practical Quickstart Course Guide
A step-by-step Kubernetes learning path covering core concepts, workloads, networking, storage, and troubleshooting so you can study in the right order.
Kubernetes Basics: Pods, Deployments, Services, and Namespaces Explained
Learn the four Kubernetes basics that matter most in practice: Pods, Deployments, Services, and Namespaces, plus the declarative workflow behind them.
← Prev
2 / 2