djieno.com

Incoherent ramblings

All Posts

A thumbnail image

Certificate governance without the ceremony: cert-manager + Venafi on k3s

December 2022 — because PKI shouldn’t require a JIRA ticket and three approvals

There’s a version of certificate management that lives in large enterprises. You file a request. A team reviews it. Someone checks a compliance box. Five days later, a certificate lands in your inbox as a .pfx file. You paste it into a UI. Two weeks from now it expires and nobody notices until a monitoring alert fires at 2am.

Dec 13, 2022 · 5 min read

ai ai-agents amsterdam arm automotive bgp biomass claude debugging deepseek diy docker ecmp eco embedding esp32 floor-heating fluxcd gemini gitops golang heating helm hobby homelab hvac incident infrastructure iot k6 kubernetes librechat mcp mikrotik networking observability ollama performance porsche prometheus rag security self-build self-hosted self-hosting solar-thermal sre storage varnish