Author

Full-Stack DevOps & Kubernetes

Focused on sharing DevOps, Kubernetes, Linux, Docker, Istio, microservices, Spring Cloud, Python, Go, databases, Nginx, Tomcat, cloud computing, and related technologies.

210

Articles

Likes

328

Views

Comments

Latest from Full-Stack DevOps & Kubernetes

100 recent articles max

Full-Stack DevOps & Kubernetes

Aug 19, 2025 · Operations

Boost Linux Server Performance: Proven Optimization Techniques for CPU, Memory, Disk, and Network

Learn how to dramatically improve Linux server efficiency by addressing common resource bottlenecks with modern CPU scheduling, memory management, I/O scheduler selection, network tuning, and practical diagnostic tools, while also exploring emerging AI‑assisted optimization trends for future‑proof performance.

I/O TuningLinuxPerformance Optimization

0 likes · 7 min read

Boost Linux Server Performance: Proven Optimization Techniques for CPU, Memory, Disk, and Network

Full-Stack DevOps & Kubernetes

Jul 22, 2025 · Operations

How to Build Small, Secure Docker Images with Multi‑Stage Builds and Trivy

This article explains why Docker images bloat, then demonstrates using multi‑stage builds, Alpine base images, and Trivy vulnerability scanning—plus CI/CD integration—to produce lightweight, secure containers and streamline DevSecOps workflows.

AlpineDockercontainer security

0 likes · 7 min read

How to Build Small, Secure Docker Images with Multi‑Stage Builds and Trivy

Full-Stack DevOps & Kubernetes

Jul 16, 2025 · Cloud Native

Mastering Kubernetes Service Deployment: From Docker Build to HPA

This guide walks you through the complete Kubernetes service deployment workflow, covering Docker image creation with multi‑stage builds, pushing to a registry, defining Deployment and Service resources, applying and monitoring them, managing configuration, implementing horizontal pod autoscaling, and integrating logging and monitoring solutions.

HPAconfigmapkubernetes

0 likes · 8 min read

Mastering Kubernetes Service Deployment: From Docker Build to HPA

Full-Stack DevOps & Kubernetes

Jul 11, 2025 · Cloud Native

How Kubernetes Will Evolve by 2025: AI Scheduling, Built‑in Security, Multi‑Cluster & WebAssembly

In the cloud‑native era, Kubernetes is transforming from a container orchestrator into a full‑stack operating system, with 2025 bringing AI‑native scheduling, integrated security, multi‑cluster and edge convergence, platform‑engineered developer experiences, and tight WebAssembly integration.

AI schedulingMulti-ClusterPlatform Engineering

0 likes · 9 min read

How Kubernetes Will Evolve by 2025: AI Scheduling, Built‑in Security, Multi‑Cluster & WebAssembly

Full-Stack DevOps & Kubernetes

Jul 7, 2025 · Operations

Unlock Linux Performance: How eBPF Reveals Hidden Bottlenecks

This article explains why traditional Linux monitoring tools often miss deep kernel issues and shows how to use eBPF‑based utilities such as biolatency, runqlat, and offcputime to pinpoint CPU, I/O, and lock‑contention problems with concrete command examples and a practical troubleshooting workflow.

LinuxeBPFops

0 likes · 8 min read

Unlock Linux Performance: How eBPF Reveals Hidden Bottlenecks

Full-Stack DevOps & Kubernetes

Jun 19, 2025 · Operations

Managing a Headless Harbor Registry via Curl API

When a Harbor registry is deployed on a cloud ECS without a public IP or GUI, you can still list projects, view repositories, retrieve image digests, and delete images entirely through RESTful API calls using curl, followed by a manual garbage‑collection step to reclaim disk space.

APIContainer RegistryHarbor

0 likes · 7 min read

Managing a Headless Harbor Registry via Curl API

Full-Stack DevOps & Kubernetes

Jun 12, 2025 · Cloud Native

Trace a containerd ID Back to Its Kubernetes Pod for Fast Debugging

This guide shows how to map a low‑level containerd task ID to the corresponding Kubernetes Pod using ctr, kubectl, and jq commands, then provides step‑by‑step debugging actions such as pod inspection, log retrieval, and resource checks to quickly resolve container issues.

CTRDebuggingcontainerd

0 likes · 8 min read

Trace a containerd ID Back to Its Kubernetes Pod for Fast Debugging

Full-Stack DevOps & Kubernetes

Jun 3, 2025 · Cloud Native

Master Kubernetes Pod Anti-Affinity to Distribute Replicas Across Nodes

Learn how to prevent multiple replica pods from landing on the same node by using Kubernetes Pod Anti-Affinity, understand hard and soft scheduling rules, apply a ready‑to‑use YAML example, and verify that each replica runs on a separate host for high availability.

High AvailabilityPod Anti-AffinityScheduling

0 likes · 7 min read

Master Kubernetes Pod Anti-Affinity to Distribute Replicas Across Nodes

Full-Stack DevOps & Kubernetes

May 28, 2025 · Operations

How to Fix etcd “NOSPACE” Errors in Kubernetes Clusters

When a Kubernetes cluster’s etcd reaches its default 2 GB quota, it triggers a “NOSPACE” alarm that blocks all write operations, causing critical services to fail; this guide explains the root cause, how to diagnose the issue with etcdctl, and step‑by‑step remediation including compaction, defragmentation, and quota expansion.

NOSPACEcompactiondefrag

0 likes · 7 min read

How to Fix etcd “NOSPACE” Errors in Kubernetes Clusters

Full-Stack DevOps & Kubernetes

May 16, 2025 · Information Security

Critical Ingress‑NGINX RCE Vulnerability (CVE‑2025‑19742): Impact, Exploit Details, and Fixes

A severe security flaw in the ingress‑nginx controller (CVE‑2025‑19742) allows unauthenticated attackers to inject malicious NGINX configuration via the auth‑tls‑match‑cn annotation, leading to remote code execution, secret leakage, and potential full Kubernetes cluster takeover, with detailed remediation steps provided.

RCERemediationcve-2025-19742

0 likes · 10 min read

Critical Ingress‑NGINX RCE Vulnerability (CVE‑2025‑19742): Impact, Exploit Details, and Fixes