Security

2026

The Management Cluster

17 April 2026·3 mins

Project Diary Project Chronicles New Kubernetes Security Architecture Infrastructure

First component: the management cluster on Kubernetes.

From a Clean Slate

16 April 2026·4 mins

Project Diary Project Chronicles New Kubernetes Security Architecture Infrastructure

Architecture 2.0 is taking shape — time to build. First component: a Kubernetes management cluster. But before any logic or services, there’s one question that comes first: security.

Architecture 2.0

12 April 2026·3 mins

Architecture & Research Crossroads Architecture Security Kubernetes Zero-Trust

Breaking down what was wrong with the old architecture and how I redesigned it: from a tree to two independent clusters, zero trust, one domain per cluster, and Docker-based onboarding.

Notes of a Surviving Lemming

31 March 2026·13 mins

Technology & Society Invisible Threads DPI VLESS Architecture Security

Last autumn I lost my VPN. A story about the patterns that kill services, the arms race between regulators and protocols — and why all of it is ultimately about people.

No Guarantees

26 February 2026·6 mins

Architecture and Research Protective Runes Security VLESS TLS VPN DPI

People often ask about the security of our network and what guarantees we offer. Here’s an honest answer — no marketing promises, no fine print.

gRPC path rotation

1 February 2026·2 mins

Architecture and Research Protective Runes New Security Obfuscation Xray Grpc

It’s been on the roadmap for a while — and it’s finally done. The most vulnerable segment of the network is now protected by automatic address rotation.