Docker is overkill for local development
Docker is overkill for production servers
⤳ Executable binaries supervised
by something like openrc?
Cloud didn’t erase sysadmins; it turned them into DevOps engineers, scripting infra and pipelines with fatter paychecks.
MNT Pocket Reform - Open Hardware from Deutschland
CPU ⧒ 4x 2.4 GHz Cortex-A76 + 4x 2.2 GHz Cortex-A55
shop.mntre.com/products/mnt-pocket-reform
LLM brains
Gemini ⨠ TPU google
GPT ⨠ GPU nvidia
Claude ⨠ Trainium aws
Jan 2025 -> July 2025
DNS over HTTPS (DoH) server
1 146 956 hits
https://doh-own-recursion.nicolas-dorriere.fr/dns-query
Ballistics (2001) PC
Such memories of my first Nvidia GeForce, I loved breaking the speed of 1000 km/h. The mood reminds me of Blade Runner. I even wonder if Marcus from GameOne would have done a Level One on it.
Edit found! https://youtu.be/JkydiqU_GkA?si=RDGgUlEiFP-mEtfZ
Claude Status Line
I’m using a minimal Claude code statusline [model] [context]
jq is used to explore the Claude API. You will need to install it on your system beforehand
Run ‘Claude’ and you’ll see the new status bar
The available configurations are here
claude-statusline.zip
New goal for 2026: designing a lighting fixture to later be 3D printed with a BambuLab using translucent PETG filament and a 0.8mm nozzle.
My very first model, named Halys
I got hit by ‘React2Shell (CVE-2025-55182)’, and my little Intel N150 ended up mining Monero for 4 days. Luckily, my Umami app was running in an unprivileged LXC container under Incus
I deleted the container, then recreated a new one with the Next.js patch in Umami version 3.0.3. I carefully checked all the processes on my Incus Arch Linux host, and there was no container escape :-]
I’m thinking of vibecoding a small alerting system to detect abnormal CPU usage.
The same thing happened to this person on a Hetzner server.
https://blog.jakesaunders.dev/my-server-started-mining-monero-this-morning
https://news.ycombinator.com/item?id=46305585
However, I feel sorry for users running non-rootless Docker with solutions like Coolify or Dokploy
Docker can automatically modify iptables and open host ports. Example: docker run -p 8080:80 nginx exposes port 8080 on the host, potentially bypassing firewall rules and making the service reachable from the internet. Docker is powerful, but not secure by default. Always review exposed ports and bind to localhost when possible.
November 2025
DNS over HTTPS (DoH) server
453k hits
If you want to sharpen your sysadmin/devops skills, it’s like an Advent of Code but for system administrators
My Windows workstation (2015–2025)
✦ Olmo 3 from Ai2
A very interesting model for local LLM use, one to keep an eye on
Olmo 3 32B Think
Olmo 3 7B Instruct
Olmo 3 7B Think
https://allenai.org/
I love this format on Arte, I recommend it
Le dessous des cartes
I took photos of dental burs for Directfraise, a B2B website specializing in the sale of dental burs. Equipment used: a Canon EOS 700D, f/10, 1/4 second, ISO 100. Fixed focal 100mm lens.
I created a promotional clip for a B2B website selling dental burs. I used Blender, rendered at 30 FPS for a 20-second duration. I worked with five Nvidia A10 GPUs on Lambda.ai’s cloud, using Blender’s CLI in a Bash terminal on Ubuntu.
