The MirageOS retreat 2024

Written by hannes 2024-05-15

My involvement and experience of the MirageOS retreat 2024

Redeveloping TCP from the ground up

Written by hannes 2023-11-28

Core Internet protocols require operational experiments, even if formally specified

Deploying reproducible unikernels with albatross

Written by hannes 2022-11-17

fleet management for MirageOS unikernels using a mutually authenticated TLS handshake

Mirroring the opam repository and all tarballs

Written by hannes 2022-09-29

Re-developing an opam cache from scratch, as a MirageOS unikernel

All your metrics belong to influx

Written by hannes 2022-03-08

How to monitor your MirageOS unikernel with albatross and monitoring-experiments

Deploying binary MirageOS unikernels

Written by hannes 2021-06-30

Finally, we provide reproducible binary MirageOS unikernels together with packages to reproduce them and setup your own builder

Cryptography updates in OCaml and MirageOS

Written by hannes 2021-04-23

Elliptic curves (ECDSA/ECDH) are supported in a maintainable and secure way.

The road ahead for MirageOS in 2021

Written by hannes 2021-01-25

Home office, MirageOS unikernels, 2020 recap, 2021 tbd

Traceroute

Written by hannes 2020-06-24

A MirageOS unikernel which traces the path between itself and a remote host.

Deploying authoritative OCaml-DNS servers as MirageOS unikernels

Written by hannes 2019-12-23

A tutorial how to deploy authoritative name servers, let's encrypt, and updating entries from unix services.

Reproducible MirageOS unikernel builds

Written by hannes 2019-12-16

MirageOS unikernels are reproducible :)

X509 0.7

Written by hannes 2019-08-15

Five years since ocaml-x509 initial release, it has been reworked and used more widely

Summer 2019

Written by hannes 2019-07-08

Bringing MirageOS into production, take IV monitoring, CalDAV, DNS

The Bitcoin Piñata - no candy for you

Written by hannes 2018-04-18

More than three years ago we launched our Bitcoin Piñata as a transparent security bait. It is still up and running!

My 2018 contains robur and starts with re-engineering DNS

Written by hannes 2018-01-11

New year brings new possibilities and a new environment. I've been working on the most Widely deployed key-value store, the domain name system. Primary and secondary name services are available, including dynamic updates, notify, and tsig authentication.

Albatross - provisioning, deploying, managing, and monitoring virtual machines

Written by hannes 2017-07-10

all we need is X.509

Conex, establish trust in community repositories

Written by hannes 2017-02-16

Conex is a library to verify and attest package release integrity and authenticity through the use of cryptographic signatures.

Who maintains package X?

Written by hannes 2017-02-16

We describe why manual gathering of metadata is out of date, and version control systems are awesome.

Jackline, a secure terminal-based XMPP client

Written by hannes 2017-01-30

implement it once to know you can do it. implement it a second time and you get readable code. implementing it a third time from scratch may lead to useful libraries.

Exfiltrating log data using syslog

Written by hannes 2016-11-05

sometimes preservation of data is useful

Re-engineering ARP

Written by hannes 2016-07-12

If you want it as you like, you've to do it yourself

Minimising the virtual machine monitor

Written by hannes 2016-07-02

MirageOS solo5 multiboot native on bhyve

Counting Bytes

Written by hannes 2016-06-11

looking into dependencies and their sizes

Configuration DSL step-by-step

Written by hannes 2016-05-10

how to actually configure the system

Catch the bug, walking through the stack

Written by hannes 2016-05-03

10BTC could've been yours

Fitting the things together

Written by hannes 2016-04-24

building a simple website

Why OCaml

Written by hannes 2016-04-17

a gentle introduction into OCaml

Operating systems

Written by hannes 2016-04-09

Operating systems and MirageOS