Posts
All the articles I've posted.
Kubernetes Beginner Series 2 — Cluster Architecture
We dissect the components that make up the Control Plane and Worker Nodes one by one. Get a feel for what the API Server, etcd, and kubelet each do.
Kubernetes Beginner Series 1 — What Is Kubernetes
Why container orchestration became necessary. From the limits of manual operations to the core philosophy of Kubernetes, we lay the groundwork for the...
Docker Part 13 — Troubleshooting and Alternatives
What exit 137, permission denied, and CrashLoopBackOff mean. When to use logs/inspect/events/stats/top. When Podman and containerd can replace Docker.
Docker Part 12 — Production Best Practices
HEALTHCHECK, SIGTERM handling, log drivers, resource limits, init processes like tini. The settings that make containers run quietly and reliably in...
Docker Part 11 — BuildKit and Advanced Builds
What changes when you enable BuildKit. Cache mounts, build secrets, parallel builds, multi-architecture images with buildx and QEMU — the tools for...
Docker Part 10 — Container Security: Blocking Issues Before They Blow Up
No root, image scanning, secret management, read-only filesystem, dropping capabilities. Practical guardrails to set up before production incidents happen.
Docker Part 9 — Registry: Where Do Images Live?
Docker Hub, ECR/GCR/ACR, and self-hosted Harbor. Registry selection criteria, authentication methods, and tagging strategies combining semver and git...
Docker Part 8 — Slimming Images with Multi-Stage Builds
Strip build tools from the runtime image. Builder/runner separation, layer caching, distroless/scratch — the process of shrinking images from several...
Docker Part 7 — Multi-Container Orchestration with Docker Compose
Spin up your app, DB, and cache all at once with a single docker-compose.yml file. From the services/networks/volumes structure to depends_on,...