Automatic unlocking of a LUKS partition at boot with a TPM 2.0

Wow what a title! With Windows if you BitLocker a drive you can have it automatically unlocked at boot if you have a compatible TPM. However, if you’ve installed Ubuntu with the default installer you’ve probably been frustrated that you have to enter the drive password on every boot. This default is the safest option in terms of security – …

Setting up AWS ECR Credential Helper in Windows

You’re probably here because the AWS documentation for Windows on the AWS ECR Credential Helper isn’t very helpful when it comes to Windows. Fortunately the installation is straightforward: Step 1 Download the latest windows-amd64 binary from the GitHub repository: Releases · awslabs/amazon-ecr-credential-helper (github.com) Step 2 Put the binary into your path, if you don’t already have a folder set up …

Running a PowerShell script in Dockerfile

Recently we needed to create a Docker image that provided multiple command line tools as part of our CI/CD pipeline. As part of our pipeline we use PowerShell Core to run scripts, triggering changes within our AWS infrastructure, this means installing the AWS SDK module into the Docker image so we don’t have to download it on every single use. …

Running a pod in EKS with Service Accounts, AWS SDK 2

EKS is a brilliant feature from AWS, providing a mostly managed Kubernetes cluster that you can deploy your own services to. If you’re running in AWS you’ll likely be using multiple services such as S3, DynamoDB, SQS, etc. All of these services require credentials to gain access. The best practice is to ensure your code only has permissions to do …