In Part 1 of this series, we built the foundation of our container using Go. We successfully used the CLONE_NEWUTS namespace and process forking to isolate our container’s hostname from the host machine.

But we still have a massive security flaw. Right now, if we drop into our container’s bash shell, we can still see all of the host’s files. We could easily cd straight out of our “isolated” environment and mess with the host machine.

Let’s lock it down.

chroot to Jail

Linux has a wonderful system call called chroot (short for “change root”). It lets us change the root directory (/) for a given process. As far as the process is concerned, the directory we point chroot to is the entire universe. Anything outside of it simply doesn’t exist.

Let’s update our child() function to set the root directory to our current working directory:

func child() {
	fmt.Printf("Running in new child process %v \n", os.Args[2:])
	
	must(syscall.Sethostname([]byte("container")))
	
	// Get current directory and lock the process inside it
	pwd, err := os.Getwd()
	must(err)

	must(syscall.Chroot(pwd))
	// chroot changes the root, but doesn't automatically move us there. 
	// We must explicitly change our working directory to the new root!
	must(os.Chdir("/"))
	
	cmd := exec.Command(os.Args[2], os.Args[3:]...)
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	must(cmd.Run())
}

Run sudo go run main.go run /bin/bash.

Crash!

panic: fork/exec /bin/bash: no such file or directory

What happened?

We just told our process that our current directory is the entire universe. So, when we ask exec.Command to run /bin/bash, it isn’t looking at your computer’s actual hard drive anymore. It is looking inside your project folder for a directory called bin containing an executable called bash.

Because our current directory doesn’t have those, it fails! We need an actual root filesystem to provide the basic binaries our shell expects.

(Note: Production container runtimes like runC actually use a more advanced system call called pivot_root for better security, but chroot is perfect for understanding the core concept!).

The Image

To fix this, we need to provide an actual root filesystem that contains the basic folders and binaries (like /bin/bash) that our shell expects.

You can grab a basic Ubuntu root filesystem yourself using Docker. Open a new terminal tab and run these exact commands in your project directory:

# Use docker to start a Ubuntu container and then export its filesystem to a compressed file called ubuntu.tar
docker export $(docker create ubuntu) > ubuntu.tar

# Create a directory called ubuntu-rootfs and unzip your tar file into it
mkdir ubuntu-rootfs
tar -xf ubuntu.tar -C ubuntu-rootfs

This creates a folder called ubuntu-rootfs containing a complete, brand-new Ubuntu file system.

Assuming you have that folder in your project directory, let’s change our chroot call to point to it as follows:

	must(syscall.Chroot(filepath.Join(pwd, "ubuntu-rootfs")))
	must(os.Chdir("/"))

Now, when we run sudo go run main.go run /bin/bash, everything works perfectly!

You can run ls / and you will only see the files inside your ubuntu-rootfs directory. Try running cd .. to escape, and you will find yourself in the exact same directory as before. You cannot access the host machine at all.

PIDs and /proc

We’re ready for the next step. If you remember, when we ran docker run -it ubuntu /bin/bash back in the beginning of Part 1, one of the ways we could tell we were in an isolated container was by running ps aux and observing only two processes running with very low PIDs.

Let’s try to replicate that. While inside our new container, try running ps aux to view the running processes.

It breaks with an error:

Error, do this: mount -t proc proc /proc

The ps command works by reading the /proc directory, which is a special virtual filesystem in Linux that contains live data about running processes. Our isolated root filesystem has an empty /proc folder, and the operating system hasn’t been told to attach the live process data to it. Because it’s empty, ps fails!

To fix this, we need to do two things:

1. Give our container its own isolated Process IDs (PIDs) using namespaces.
2. Mount the proc filesystem so commands like ps can read it.

First, update the SysProcAttr in the run() function to include the PID and Mount namespaces. (Note: CLONE_NEWNS stands for “New Namespace”, but it specifically refers to the Mount namespace! It just happens to be the first namespace added to the Linux kernel and back then no one thought they might end up needing more so they just called it “namespace” 🤷).

	cmd.SysProcAttr = &syscall.SysProcAttr{
		Cloneflags: syscall.CLONE_NEWUTS | syscall.CLONE_NEWPID | syscall.CLONE_NEWNS,
	}

Next, mount the proc directory inside our child() function, right after we chroot. We will also use Go’s defer keyword to ensure we unmount it and clean up after ourselves when the function exits:

	must(syscall.Chroot(filepath.Join(pwd, "ubuntu-rootfs")))
	must(os.Chdir("/"))
	
	// Mount the proc filesystem
	must(syscall.Mount("proc", "proc", "proc", 0, ""))
	// Clean up after ourselves when the function exits
	defer syscall.Unmount("proc", 0)

Now, run your container and type ps aux. You’ll see only three processes running: exe (our Go program) running as PID 1, bash running as PID 2, and the ps command we just ran!

Cgroups (Keeping it Civil)

We have our invisibility cloak (Namespaces) and our isolated universe (chroot). But what happens if we write an infinite while loop inside our container that eats up all the CPU and memory?

It would completely crash the host machine!

To prevent our container from using up all of our resources, Linux uses cgroups (Control Groups). Cgroups act as the bouncer, ensuring no single container uses more than its fair share of resources.

To set up a cgroup, we can lean on a famous Linux philosophy: “Everything is a file.” This means we can configure the kernel’s resource limits by creating specific directories and writing text into special files.

Let’s add a quick helper function to our main.go file to limit the maximum number of processes our container is allowed to spawn to 20:

func cg() {
	cgroups := "/sys/fs/cgroup/"
	pids := filepath.Join(cgroups, "pids")
	
	// 1. Create a new cgroup for our container
	containerCgroup := filepath.Join(pids, "my-container")
	os.Mkdir(containerCgroup, 0755)
	
	// 2. Write the limit into the cgroup file (max 20 processes)
	must(os.WriteFile(filepath.Join(containerCgroup, "pids.max"), []byte("20"), 0700))
	
	// 3. Add our current process to this cgroup
	must(os.WriteFile(filepath.Join(containerCgroup, "cgroup.procs"), []byte(strconv.Itoa(os.Getpid())), 0700))
}

Let’s break down what this function is doing:

1. Create the group: By making a new directory inside /sys/fs/cgroup/pids, the Linux kernel automatically creates a new Control Group for us.

2. Set the rule: Inside that new directory, Linux automatically generates a file called pids.max. We open that file and write the text "20" into it. This establishes a rule that our process will only be allowed to run 20 sub-processes.

3. Enforce the rule: Linux also generates a file called cgroup.procs. We get our Go program’s current Process ID (os.Getpid()) and write it into this file. This tells the kernel, “Hey, apply the rules of this folder to me!”

Finally, let’s call this function inside our run() function, right before we execute our child process:

func run() {
	fmt.Printf("Running %v \n", os.Args[2:])
	
	args := append([]string{"child"}, os.Args[2:]...)
	cmd := exec.Command("/proc/self/exe", args...)
	
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	cmd.SysProcAttr = &syscall.SysProcAttr{
		Cloneflags: syscall.CLONE_NEWUTS | syscall.CLONE_NEWPID | syscall.CLONE_NEWNS,
	}
	
	// Set up our resource limits!
	cg()
	
	must(cmd.Run())
}

And just like that, our container is officially resource-limited! Because cgroups inherit down to child processes, everything that runs inside our container is bound by this rule. If a malicious script inside tries to execute a “fork-bomb” (a script that endlessly copies itself to freeze the computer), the kernel will step in and aggressively kill it the second it hits 20 processes.

The Reveal

If you put all of this together, we just built Docker from scratch in about 50 lines of code.

Containers aren’t magic. They aren’t heavyweight VMs. They are simply standard Linux processes wrapped in namespaces, jailed in a specific directory, and policed by cgroups.

In fact, you don’t even need Go to do this. You can trigger the exact same isolation using a single line of bash:

sudo unshare --uts --pid --mount --fork --root=/home/ubuntu-rootfs --mount-proc /bin/bash

And there you have it! The next time someone says “it works on my machine,” you know exactly what it takes to ship their machine to production.

We’ve all been there. You spend days writing a new feature. You test it locally, everything passes, you push it to production, and… boom. It crashes immediately.

“But it works on my machine!” you cry out to your lead engineer.

And that is exactly what containers are. They are a way to bundle up your application and the environment it runs in—your machine—so that it behaves exactly the same way in production as it does on your laptop.

But what is a container, really?

Most people have an intuition of containers as some kind of complicated application that runs on your computer and simulates another computer. That is the image I had in my head even after working on containers for a few months at Pivotal/VMware… and it’s a myth.

The reality is a lot simpler, and a lot more interesting!

The truth is that a container is simply a directory on your computer—like any other directory—with a process running inside of it. What makes it a container and not just another process running inside a directory is that we use some clever built-in Linux features to trick the process into thinking that this directory is the entire computer. As far as this process is concerned, nothing exists outside of the directory we “trapped” it in and that directory is the entirety of its universe.

In this two-part series, we are going to demystify this illusion by building Docker from scratch in exactly 60 lines of Go code.

Note: Because containers rely heavily on the Linux Kernel, this tutorial will only run natively on a Linux machine. If you are following along on a Mac, you’ll need to spin up a Linux VM first, as Macs run on the Darwin kernel and don’t have these system calls!

Let’s get started!

Setting the Stage

We’ll be writing our container in Go. Why Go? Because it gives us incredibly clean access to underlying Linux system calls, which we’ll need to create our container illusion. This is the reason Docker, Kubernetes, and other cloud-native projects are all written in Go.

Let’s try to replicate the core behavior of Docker.

Normally, when using Docker, you run a command like:

docker run -it ubuntu /bin/bash

If you run that (assuming you have docker installed) you will see that you have been dropped into a new shell. This shell looks different than your original shell and you can tell it’s completely isolated from the rest of your machine (the host) in a few ways (it’s worth opening a new tab in your terminal so you can see these changes side by side):

1. Your prompt: Everyone’s prompt is different, but most have something in the beginning that looks like [username]@[hostname]. The prompt you see now probably looks like root@[some-random-string].

2. Your hostname: If you type hostname in your host computer’s terminal, it will output your computer’s actual name. If you run hostname inside your container, on the other hand, you will see that same random sequence of characters from your prompt. Docker assigned this fake hostname to your container at random.

3. Your File System: If you type ls / inside your container you will see that none of the files from your computer’s actual root directory are there, instead you will see a fresh list of files and directories, exactly like you would find in a brand new Ubuntu installation.

4. Your processes: If you type ps aux in your container you will find only 2 processes with very low Process IDs (PIDs)—typically PID 1 for the shell process you’re in and another low number PID for the ps command you just ran. Meanwhile, running ps aux on your host machine will show a massive list of running processes, many of them with very high PIDs.

We will try to replicate this behavior from scratch, with a few minor differences.

Our goal is to run:

go run main.go run /bin/bash

And if we do everything right the behavior will be mostly the same. We will drop into a new shell where:

1. We will see a different hostname than our existing one.

2. The root directory we will have access to will not be the root directory of our computer, instead it will be a new root directory.

3. If we inspect the processes running using ps we will see only the processes running in our program and not all the processes on our computer.

So let’s start!

Show Me the Code

Let’s build this step by step. Create a new directory on your Linux computer, make a file named main.go, and let’s add our initial boilerplate:

package main

import (
	"fmt"
	"os"
)

func main() {
	// os.Args is a list of everything typed in the terminal.
	// [0] is the program name (main.go), [1] is our command ("run")
	switch os.Args[1] {
	case "run":
		run()
	default:
		panic("Invalid argument")
	}
}

func run() {
	// os.Args[2:] takes everything AFTER the "run" command
	// e.g., ["echo", "hello", "world"]
	fmt.Printf("Running %v \n", os.Args[2:])
}

In Go, os.Args captures every word you type into the terminal as a list (a slice) of strings. We are telling our program to look at the second word (os.Args[1]). If it says “run”, we trigger our run() function which, for now does nothing but print all our arguments to the terminal.

If we run this in our terminal:

$ go run main.go run echo hello world
Running [echo hello world]

Awesome. It successfully reads our command. But it’s just printing text; it’s not actually executing the command yet.

To make it execute the command, we need to wire up Go’s os/exec package (a package for executing commands on our computer). Let’s update our file:

package main

import (
	"fmt"
	"os"
	"os/exec"
)

func main() {
	switch os.Args[1] {
	case "run":
		run()
	default:
		panic("Invalid argument")
	}
}

func run() {
	fmt.Printf("Running %v \n", os.Args[2:])
	
        // 1. Define the command we want to execute. This includes the third element in our array 
	// (the actual command, in our case "echo"), as well as any optional arguments we may 
	// want to pass to it ("hello world").
	cmd := exec.Command(os.Args[2], os.Args[3:]...)
	
	// 2. Wire up the plumbing
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	// 3. Run the command and handle any errors
	must(cmd.Run())
}

// A tiny helper function to catch errors and crash the program 
// cleanly if something goes wrong.
func must(err error) {
	if err != nil {
		panic(err)
	}
}

Let’s look at what we just added to run():

1. Define the command: exec.Command takes the program we want to run (like echo) and any arguments we want to pass to it (hello world).

2. Wire up the plumbing: This part is crucial. By default, when a program spins up a new process, it runs invisibly in the background. By pointing the new command’s Standard Input, Output, and Error to our own os.Stdin, os.Stdout, and os.Stderr, we are attaching its “mouth and ears” directly to our terminal so we can actually interact with it.

3. Run it: We execute the command. Because Go requires explicit error handling, we wrapped it in a tiny must() helper function to keep our code readable.

Let’s test it out:

$ go run main.go run echo hello world
Running [echo hello world]
hello world

We actually get hello world echoed back at us by the system!

Even better, we can tell our program to drop us into an interactive shell:

$ go run main.go run /bin/bash
Running [/bin/bash]
root@your-computer:/home/yechiel/docker-clone# 

However, this shell is absolutely not a container yet. If you type hostname, you’ll see your host machine’s actual name. If you type ls /, you can see all your host files. Right now, we have just written a fancy Go wrapper around a regular bash process.

It is time to start building the walls of our container.

Introducing Namespaces (The Invisibility Cloak)

To isolate our process from the rest of the computer, we need to put it inside a Namespace. A namespace is like an invisibility cloak that hides the rest of the computer from our process.

There are different namespaces that isolate different aspects of the system. Let’s start with the UTS namespace, which isolates the hostname.

To create a new namespace, we pass a specific “clone flag” to the system call spinning up our process. Update your run() function:

func run() {
	fmt.Printf("Running %v \n", os.Args[2:])
	
	cmd := exec.Command(os.Args[2], os.Args[3:]...)
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	// Set up the namespace!
	cmd.SysProcAttr = &syscall.SysProcAttr{
		Cloneflags: syscall.CLONE_NEWUTS,
	}
	
	must(cmd.Run())
}

If you try to run the command now, you’ll get a “permission denied” error. Because changing a namespace requires modifying kernel-level structures, you now need root privileges.

Instead, let’s run sudo go run main.go run /bin/bash.

If you run hostname now you will still see your computer’s actual hostname. This is because, by default, Linux has your new process inherit the hostname of the host computer.

However, if you manually run hostname container inside this new bash shell, and then type hostname, you’ll see your hostname is now container. But if you switch to a terminal tab on your host machine and type hostname, you’ll see your actual computer’s name hasn’t changed at all! Our process is successfully isolated.

Forking the Process

Did you notice something weird when you manually changed the hostname in the last step? Even though typing hostname printed out container, your actual bash prompt likely still said root@your-computer#!

This happens because the bash shell reads the machine’s hostname when it first starts up. Changing the hostname after the shell is already running doesn’t dynamically update your prompt. If we want our container to feel like a truly isolated environment from the second it boots, we need our Go program to change the hostname automatically before we execute /bin/bash.

Luckily, Go has a function to change the hostname: syscall.Sethostname().

But here we run into a “chicken and egg” problem: where do we call that function?

If we call it before cmd.Run(), it executes on our host machine and changes our actual computer’s name (bad!). If we call it after cmd.Run(), it’ll only run after our bash shell has already exited (still bad!).

We need a middleman. We need our Go program to cross over into the new namespace, set the hostname, and then execute the /bin/bash command.

To do this, we are going to have our Go program run itself again as a child process.

Let’s update our main.go file. We will update the main() and run() functions, and add a brand new child() function:

package main

import (
	"fmt"
	"os"
	"os/exec"
	"syscall"
)

func main() {
	switch os.Args[1] {
	case "run":
		run()
	case "child":
		child() // We added a new command here!
	default:
		panic("Invalid argument")
	}
}

func run() {
	fmt.Printf("Running %v \n", os.Args[2:])
	
	// /proc/self/exe is a special Linux file that points to the program 
	// currently running. So, our program is calling itself!
	// We pass "child" as the first argument, followed by the rest of our commands.
	args := append([]string{"child"}, os.Args[2:]...)
	cmd := exec.Command("/proc/self/exe", args...)
	
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	cmd.SysProcAttr = &syscall.SysProcAttr{
		Cloneflags: syscall.CLONE_NEWUTS,
	}
	
	must(cmd.Run())
}

func child() {
	fmt.Printf("Running in new child process %v \n", os.Args[2:])
	
	// We are now inside the namespace! It is safe to change the hostname.
	must(syscall.Sethostname([]byte("container")))
	
	// Now we run the actual command the user requested (like /bin/bash)
	cmd := exec.Command(os.Args[2], os.Args[3:]...)
	cmd.Stdin = os.Stdin
	cmd.Stdout = os.Stdout
	cmd.Stderr = os.Stderr
	
	must(cmd.Run())
}

func must(err error) {
	if err != nil {
		panic(err)
	}
}

Let’s break down the magic happening in exec.Command("/proc/self/exe", args...):

1. "/proc/self/exe": In Linux, /proc is a special directory that holds information about all running processes. If you check what’s in there (by running ls /proc) you will see a whole bunch of directories that have numbers as names. Each number is a PID and that directory contains information about the process with that PID. /proc/self/exe is essentially a shortcut to the directory for the process that’s currently running (in our case go run main.go).

2. args...: We are taking the word "child" and appending the rest of the user’s commands (like /bin/bash) to it. The ... syntax in Go simply “unpacks” the list so it can be passed as individual arguments.

So, when you type go run main.go run /bin/bash, here is what happens:

1. The program starts, sees "run", and triggers the run() function.

2. The run() function sets up the invisibility cloak (the NEWUTS namespace).

3. Inside that cloak, it runs itself again, but this time passing the command "child".

4. The program starts a second time, sees "child", and triggers the child() function.

5. Because we are now safely inside the namespace, it changes the hostname to container and finally runs /bin/bash.

Let’s test it. Run sudo go run main.go run /bin/bash:

$ sudo go run main.go run /bin/bash
Running [/bin/bash]
Running in new child process [/bin/bash]
root@container:/home/yechiel/docker-clone# 

Look at that prompt! We’ve successfully isolated the hostname programmatically before bash loaded. You’ll see both print statements execute, and if you type hostname in the new shell, it will say container.

We are still not in a proper container, though. If you run ls /, you will see all the files on your host machine, and you can even use cd .. to “escape” the directory entirely. Worse, if you were running this in a shared cloud environment, you would theoretically be able to see everyone else’s files and running processes—a massive security risk! We need a way to lock our process down so it can’t escape its designated environment.

In Part 2, we will tackle the final pieces of the container puzzle: jailing the file system, isolating the Process IDs (PIDs) so our container can only see itself, and stopping infinite loops from crashing the host computer using cgroups. Stay tuned!

Refactoring Your Bitachon: Moving From Monolith to Modular

I was recently learning Shaar HaBitachon (“The Gate of Trust”) — a section of the classic 11th-century work Chovot Halevavot (“Duties of the Heart”) by Rabbeinu Bachya ibn Pekuda dedicated to cultivating trust in G-d — with my Chavruta (study partner). (By the way, shout-out to this amazing book! If you aren’t learning it yet, I highly recommend picking it up! It’s a game-changer for your mindset!)

We were learning a part in Chapter Five which discusses the proper attitude one should have towards the “means” (hishtadlut, or personal effort) we employ to make a living.

Rabbeinu Bachya, the author, explains that there is a fundamental difference between someone who has Bitachon (trust in G-d) and someone who trusts in their own efforts:

“While a person who relies on G-d also involves himself in various means of obtaining his livelihood… he doesn’t rely on them, nor does he expect them to either benefit him or cause him harm unless G-d wills it to be.

The only reason he involves himself in them is his choice to carry out the service of the Creator, Who instructed him to involve himself in the world…”

Contrast this with the person without Bitachon :

“However, a person who does not rely on G-d involves himself in the means of pursuing his livelihood because he relies on them for help and protection… If they do indeed help him, then he will praise them…

If, however, they do not help him, then he will abandon them, reject them, and turn his desire away from them.”

As I was reading this, it hit me: This is exactly the concept of Decoupling in programming.

Spaghetti Code vs. Modular Design

As developers, we know the pain of “tightly coupled” code. That’s when Module A is so knowledgeable about, and dependent on, the inner workings of Module B that you can’t touch one without breaking the other. If you want to swap out your database from MySQL to Postgres, but your business logic is writing raw SQL queries directly inside the controller, you’re in for a nightmare. Everything is tangled. The logic depends on the specific implementation.

Good architecture, on the other hand, strives for Decoupling.

You define an interface. Your business logic requests data, but it doesn’t care how that data is retrieved. You can swap out the database, change the API, or refactor the entire backend — and as long as the interface remains the same, the application keeps running smoothly. The logic is independent of the implementation details.

Refactoring Your Bitachon

Shaar HaBitachon is teaching us to refactor our lives to be loosely coupled.

A person with true Bitachon has “decoupled” their livelihood (Parnassah) from their job.

• The Interface: G-d’s promise to sustain us.
• The Implementation: The current job, gig, or business deal (the means/effort).

When you are tightly coupled to your job, you are living in a legacy codebase full of dependencies. You think, “This job is the only way I can pay my mortgage.” That’s a fragile architecture. If that specific “module” (the job) crashes, your whole system goes down.

However, when you live with Bitachon, you realize that your livelihood comes from the “Sustenance Service” (G-d), and your job is just one interchangeable module used to deliver it.

If you lose your job, or a deal falls through? It’s not a system failure. It’s just a hot-swap. G-d is simply deprecating one method and initializing another. You don’t panic because your “Sustenance Provider” hasn’t changed — only the delivery mechanism has.

The “Why” Matters

What really struck me in that chapter of Shaar HaBitachon is the motivation. The person with Bitachon still works just as hard! But why?

Not to get money, but to fulfill the will of G-d.

Just like we write modular code to make our applications robust, scalable, and maintainable, we should strive to make our trust in G-d robust and modular. We do the work because it’s the right thing to do (the spec), but we know that the result is handled entirely by the Core System.

So, the next time you’re refactoring a messy class or abstracting away a dependency, take a second to think: Is my own Bitachon tightly coupled to my job, or is it modular enough to handle whatever life throws at it?

Do You Even Wordle?

If you’re on social media, chances are that you are one of two kinds of people; those who post their Wordle results every day or those who are extremely annoyed by the yellow and green boxes flooding their feeds.

What is it about this word game that took the world by storm and made it so popular (at least until the next trend comes along)?

There are plenty of takes out there, but it seems to me that people find Wordle so wholesome because it stands in contrast to so much of what makes the toxic parts of the internet so toxic.

Unlike most apps and games out there, Wordle isn’t spying on you, it isn’t trying to drive engagement, it’s not addictive, and it isn’t trying to suck you into playing for hours every day. In fact, by only giving one word a day, it sets a pretty tight limit to how much time you can waste on it every day.

A lot has been said about the toxic parts of internet culture, and the large tech companies have been blamed for putting shareholder profits over the well-being of their users.

In Parshat Mishpatim, the first Parshah after the Jews got the Torah at Mount Sinai, the Torah goes into great detail about the laws of civil liability and the responsibility we have for damages caused by our actions and our property.

Just as a person can’t say “I just let my goat graze; it’s not my fault she ate up your tomato patch,” similarly, we can’t absolve ourselves from responsibility for the products and the technology we create.

Sure, profits are important, but they can’t come at the expense of the first principle; don’t be evil.

P.S. Really? “Knoll”? What’s up with that?

This year it’s especially exciting for me; it’s my first in-person conference in exactly two years (the vaccine mandates and mask policy helped me feel safe with the decision to attend in person), AND I’ll be giving a talk (which you should totally come watch if you’ll be there)!

Who else is planning on attending?

Come say hi (either in person or in the discord)!

Talmudic Gems For Rails Developers

A few weeks ago, I gave a talk at RailsConf titled Talmudic Gems For Rails Developers.

In the talk I discussed lessons I learned from a lifetime of Talmudic study that helped me in my journey as a developer, and which I felt could benefit other developers in their growth.

The talk is geared at any developer looking to grow using the timeless wisdom of the Talmudic sages, not just Rails developers.

I shared a transcript of the talk in the Torah && Tech newsletter issue #123 (if you haven’t yet, you can sign up to the newsletter, and get the first year’s worth of newsletters in book format, at the Torah && Tech website: torahandtech.dev).

The talk has just been posted to YouTube, and I’m happy to share it with my audience!

If you would like to delve into some of the sources I mentioned, you can find links in the source sheet I prepared here.

Happy Learning!

In part one and part two of this series, we created a working deadman’s switch in our rails app.

This part isn’t necessary, but it can be helpful.

The deadman’s switch we wrote will trip if it isn’t reset after seven days (or however long you set it for). That may seem like a safe interval, but it would be nice to have a reminder if you haven’t reset it in a few days and the deadline is coming up.

I set my switch up to send me an SMS reminder if I didn’t reset it in 4 days, and then every day after that until the switch is either rest or if it trips.

That’s what we will do in part three of this tutorial.

Note: this part of the tutorial uses Twilio to send SMS messages. You will need to sign up for a Twilio account. If you use my referral link to sign up, you will get $10 of credit, which should be last a while for our use-case.

Getting Started

The first thing we need to do before getting started is to make sure we have a Twilio account. For our purposes, a “demo” account is enough. A demo account is free; it means you will have to register your phone number to receive texts, and you can’t send SMS messages to other numbers, which is fine. Sending an SMS costs money ($0.0075 in the US); the $10 you get at sign-up by using my referral link should cover that for a long time.

After creating an account, follow the instructions to create a new project.

On the dashboard, you will need three pieces of information: The Account SID, Auth Token, and the account phone number.

Save these credentials in a safe place; we will need them for the next part.

Note: It’s a bad idea to put API keys in your code as plaintext, especially if you put your code somewhere that’s publicly accessible like GitHub. Someone can find them and use them to rack up quite the phone bill! Store them as environment variables instead. Heroku makes it easy to set environment variables.

Text me, maybe?

Now we have everything we need to set up our script to text us when it doesn’t hear from us in a while.

First, put the following near the top of your rake task:

include ActionView::Helpers::DateHelper

This isn’t strictly necessary, but it will let us use ActionView’s time_ago_in_words method to format a nice human-readable message.

Next, let’s set up a conditional to send the message only after the specified time that the app didn’t hear from you. I set mine up to start bugging me after three days:

if 3.days.ago >= Deadman.last_reset

end

(though for testing purposes, you can make the interval as small as a few seconds so you can trigger the SMS to send and make sure everything is working. Just remember to change it back before pushing to production).

Now, inside the if block, the first thing to do is to construct a message that the script will send:

time_to_trigger = time_ago_in_words(Deadman.last_reset + 7.days)
message_body = "Your deadman switch will trigger in #{time_to_trigger}, please log in to your account and reset it."

You can, of course, edit this to fit your needs and taste.

Next, let’s set up a Twilio client using the credentials we got from the Twilio dashboard:

twilio_client = Twilio::REST::Client.new(ENV['TWILIO_ACCOUNT_SID'], ENV['TWILIO_ACCOUNT_TOKEN'])

Finally, you can use the client to send an SMS message to your phone:

twilio_client.messages.create(from: ENV['TWILIO_PHONE_NUMBER'], to: ENV['PHONE_NUMBER'], body: message_body)

The from: field is the Twilio phone number you got from your Twilio dashboard, and the to: field is your personal phone number (make sure to register it with your Twilio account if you’re on the free “Demo” tier). The body: field is the message we constructed earlier.

The complete code should look something like this:

include ActionView::Helpers::DateHelper

if 3.days.ago >= Deadman.last_reset
    time_to_trigger = time_ago_in_words(Deadman.last_reset + 7.days)
    message_body = "Your deadman switch will trigger in #{time_to_trigger}, please log in to your account and reset it."
    twilio_client = Twilio::REST::Client.new(ENV['TWILIO_ACCOUNT_SID'], ENV['TWILIO_ACCOUNT_TOKEN'])
    twilio_client.messages.create(from: ENV['TWILIO_PHONE_NUMBER'], to: ENV['PHONE_NUMBER'], body: message_body)
end

And that’s it! That’s all there is to it!

Further Reading

I considered adding the capability of resetting my switch via SMS as well, by replying to one of the reminders.

I didn’t end up going with that for various reasons, but if you would like to, here is a blog post I wrote a while ago on the Twilio blog that should help get you started.

A Tale Of Two Inaugurations

Wednesday, the United States and a large part of the world watched as the US swore in Joe Biden as their 46th president.

In his inaugural address, President Biden spoke about unity:

“To overcome these challenges, to restore the soul and secure the future of America requires so much more than words. It requires the most elusive of all things in a democracy: Unity.

“In another January, on New Year’s Day in 1863, Abraham Lincoln signed the Emancipation Proclamation. When he put pen to paper, the president said, and I quote: “If my name ever goes down into history, it’ll be for this act. And my whole soul is in it.”

“My whole soul was in it today. On this January day, my whole soul is in this: Bringing America together, uniting our people, uniting our nation. And I ask every American to join me in this cause.

Uniting to fight the foes we face: anger, resentment, hatred, extremism, lawlessness, violence, disease, joblessness and hopelessness. With unity, we can do great things.”

There is no question that the political discourse has devolved into extreme divisiveness over the last few years, and it’s refreshing to hear from a leader who will do his best to heal the divide rather than fan its flames.

The Lubavitcher Rebbe around the time he assumed leadership of the Chabad Lubavitch movement (1951)

But what does unity even mean? Does it mean that everyone has to conform to the same ideas? Do we have to give up our individuality? Are we required to overlook hate and intolerance in the name of “unity”?

Seventy years ago to the day, on the tenth of Shvat 5711 (Jan 17, 1951), a different inaugural address took place.

Rabbi Menachem Mendel Schneerson assumed the leadership of the Chabad Lubavitch movement after the passing of his father in law, and in the first public talk he gave after accepting the position, he said the following:

“When my father-in-law, the Rebbe, arrived in America, he quoted the words of the Sages “When you come to a town, follow its customs.” Here in America, people like to hear a “mission statement,” a declaration that is novel and preferably sensational. I don’t know whether there is a need for things to be done in this way, but “when you come to a town, follow its customs.”

“The three loves — the love of G‑d, the love of the Torah, and love toward a fellow Jew — are all one. They are by definition indivisible, like one essence. If a person has a love of G‑d but is without a love of the Torah or love of his fellow Jew, this indicates that something is lacking in his love of G‑d, too. On the other hand, when there is Ahavas Yisrael, then even though this is [merely one] mitzvah, it ultimately leads to a love of the Torah and a love of G‑d.”

Real unity is around a shared goal and a shared purpose. In the context of Ahavat Yisrael (love of your fellow Jew), that shared purpose is Ahavat Hashem (love of G-d) and Ahavat Hatorah (love of the Torah).

I believe that in the context of political unity, the shared purpose is a love of one’s country. When we acknowledge that, at the end of the day, we all want what’s best for the country, we can put aside personal and political differences and work together toward a common goal.

But just as a person can’t have a true love of Hashem if they don’t love their fellow Jew, similarly, if we let patriotism and love of our country get in the way of our respect for others’ humanity and dignity, then our faux patriotism and love of country aren’t real. They’re merely a cover to justify our disdain for the “other.”

Let us take this moment to reflect, put aside our differences, and work together to build a world that is better for all of us.

Over the years, I’ve picked up a number of tips and tricks from fellow developers. Almost every time I pair program with someone new, chances are I’ll notice them doing something neat and ask them how they did it.

Here are some of my favorites.

I use bash as my default terminal, but most of these tips translate to other terminals as well.

Note: This post isn’t meant to teach the basics of using the terminal. There are many great resources online (I remember doing Codecademy’s Command Line course when I was starting out.

The - operator

Do you find yourself switching back and forth between two directories often?

You can use cd - to change to the last directory you were in like this:

~ $ cd directory1
~/directory1 $ cd directory2
~/directory2 $ cd -
~/directory1 $

This also works with git when switching between branches:

~/my-project(main)$ git checkout feature-branch
~/my-project(feature-branch)$ git checkout -
~/my-project(main)$

The !! operator

This happens a lot!

You type a command, only to get a “Permission denied” so you have to retype the command again, this time using sudo.

The !! operator echoes the last command you typed into your terminal.

You can use it like this:

$ some-dangerous-script.sh
=> Error: Permission Denied
$ sudo !!
=> Enter password for some-dangerous-script.sh: 

{curly brace expansion}

If you ever need to run a series of very similar commands that differ by just a few characters (like for example, if you want to create a few filenames with lightly different extensions) you can use the characters that will be different between two curly braces and the command will run once for each one.

Like this:

$ touch file-{1,2,3}.md
$ ls
=> file-1.md file-2.md file-3.md

You can also pass in a range:

$ touch file-{1..3}.md
$ ls
=> file-1.md file-2.md file-3.md

Search using Ctrl+R

Are you like me? Would you press the up button 20 times to avoid typing out a 7 character command?

This next one was a lifesaver for me!

You can type Ctrl + R followed by the first few letters of the command you want to search through your bash history and bring up the command you need.

(Sorry, I can’t think of how to demonstrate that with a code snippet. Just go to your terminal, type in Ctrl + R and start typing).

Aliases

Aliases are a great way to save time and keystrokes. If there’s a command or a series of commands you find yourself typing often, it’s making an alias can be very helpful.

In order to set aliases, first open the ~/.bashrc file in your favorite editor and check if it has the following lines in it:

if [ -f ~/.bash_aliases ]; then
    . ~/.bash_aliases
fi

It should be there already, if it isn’t just add it to the bottom of the file.

Next open ~/.bash_aliases in your editor (or create it if it doesn’t exist) and add your aliases in the following format:

alias something="definition"

Some playful aliases I have in my .bash_aliases are:

alias please="sudo "
alias yeet="rm -rf 

I also have a number of functions defined there, for more complex command series:

mk() {
	mkdir $1 && cd $1
}

gclone() {
	git clone "$1" && cd "$(basename "$1" .git)"
}

The mk alias takes a directory name as an argument, mks the directory and then cds into it.

The gclone alias takes a git repo, clones it, and then cds into it.

After adding aliases to your .bash_aliases they should load automatically every time you start a new terminal session.

If you would like to use your aliases in your current session, run:

source ~/.bash_aliases

That’s what I can think of for now.

Do you have any favorite tips and tricks?

Please please do share them! I always love learning new ones!

In part 1 of this tutorial, we learned how to set up the part of the deadman’s switch that allows us to reset the switch.

In part 2, we will get to the main part; how to set up a script that will run if something happens and the switch isn’t reset in a given amount of time.

Rake It In

The standard way of running scripts in Rails apps (and Ruby environments generally) is using Rake tasks.

Rake tasks are, in their most basic form, Ruby scripts that you can run using the command rake [task-name].

In fact, chances are you’ve run quite a few already! If you’ve run commands like rails db:setup, rails db:migrate, these are rake tasks that come built-in with Rails for setting up your database!

We can write our own Rake tasks as well. They usually live in the lib/tasks/ directory of our Rails app, and the files use the .rake extension instead of the `.rb extension Ruby scripts usually use.

Let’s start by creating a file lib/tasks/deadmans-switch.rake.

In the file, let’s put the following:

desc "Deadman's Switch"

task :deadman_switch do
    puts "Our first task!"
end

At this point, we have a very basic Rake task. If you run rake -T in your terminal, you should get a list of all the Rake asks you have available, including this one:

rake deadmans_switch                       # Deadman's switch

On the left side, we have the name of our task, and on the right, the description that we gave it in the first line following the desc keyword.

If we run rake deadmans_switch in our terminal, we should see the following:

$  rake deadman_switch 
=> Our first task!

Of course, at this point, our task does nothing more than print a line to let us know it’s there, but we can replace that with any Ruby code we want, so let’s do that!

Replace the contents of the task with:

    if 7.days.ago < Deadman.last_reset
        puts "Still alive!"
    else
        puts "Executing Deadman Switch!"
        # whatever you want to do goes here
    end

This script now uses the .last_reset method we put on our DeadmansSwitch class to check when you last reset the switch. If it was less than seven days ago, it just prints “Still alive!” and exits; if you didn’t reset the switch in over a week, it’ll execute whatever script you tell it to.

Note: I put a week in my script because I figured that was a reasonable timeframe for my needs. You can change that to 2 days, two weeks, a month, a year, whatever you feel the right timeframe for your needs. Ruby’s Time class offers great methods for denoting a timeframe, which you can use similar to the 7.days.ago that I used.

Now if you run rake deadmans_switch in the console, you should get:

$  rake deadman_switch 
=> Still Alive!

At this point, you can start working on the actual body of the script, which will be different depending on what it is you need a dead man’s switch, so I’ll leave you to it.

If you want to test and debug the script by running it and don’t want to wait seven days for the switch to expire, you can change the 7.days.ago in your if statement to something more reasonable like 7.minutes.ago. Just don’t forget to change it back when you’re done.

Have You Been Triggered?

Now that we have a script and a way to ensure it only runs after a given time, there’s one more thing we need to do. We probably don’t want this script to run more than once.

For local scripts that run using a cron job, this isn’t such an issue. You can probably use the script to reset the crontab. But this is a script running on Heroku where we don’t have access to the scheduler from within the script, so we’ll have to get creative.

One option I explored, which turned out to be a dead-end for reasons I’ll explain soon, but I’ll include it here anyway purely for its entertainment value, was to put the following on the last line fo my script:

File.delete(__FILE__)

__FILE__ is a Ruby constant representing the current file, so what that line of code does is it deletes the current file once it reaches that line. Sort of like those spy movies where you get a note telling you to destroy it once you’re finished reading it.

At first, I didn’t think it would work. Spending the better part of last year developing for Windows servers and battling numerous “file in use” errors, I was sure Linux wouldn’t let me do it either. But I did it just for kicks, and it turns out Linux is a lot more trusting! You can even try it yourself; create a test file, paste the above line of code, run it using Ruby, and watch it disappear!

While that’s a pretty fun solution, unfortunately, it won’t work for our purposes. Heroku, as mentioned in Part 1, uses an ephemeral file system, so even if we delete the file containing the script, the next time the app deploys, Heroku will do a fresh pull from GitHub, and our file will reappear.

If we want to keep track of whether our script ran, we will need to use something that persists, like a database entry. Fortunately, I’m a psychic who can see into the future, and if you remember, in Part 1, when we created our deamans_switches table, we added a triggered column, and we will now make use of it.

The first thing we will do is add two more methods to our DeadmansSwitch class in app/models/deadmans_switch.rb:

    def self.triggered
        create(triggered: true)
    end

    def self.triggered?
        where(triggered: true).size > 0
    end

The first one, .triggered, creates a new row in the database, but unlike a regular row, we set the triggered column to true.

The second method, .triggered?, queries the database and checks if there are any rows where triggered is set to true and returns true if there is at least one such row.

Now let’s go back to our Rake task and put those to use.

The first thing we will do is add the following line at the end of the script after everything we wanted to run ran:

Deadman.triggered

This will enter a row in the database with triggered: true.

Next, all the way at the beginning of our script, in the very first line, we will put the following:

abort if Deadman.triggered?

This will check the database and see if there are any rows where triggered: true and abort the script if it finds any.

Getting Scheduled

At this point, we have a working deadman’s switch. The only thing left is to deploy it along with our Rails app and set up a scheduler to run it.

My app is deployed on Heroku, so the instructions will be for getting set up on Heroku. If you have a different setup, things will work differently for you.

So once you’ve written up all the code, committed it, and pushed it off to Heroku, here is how to go about scheduling your script.

From the Heroku dashboard, navigate to the “Resources” tab.

Once in the “Resources” tab, find the button that says “Find more add-ons” and click on it.

Search for Heroku Scheduler and install it and provision it to your app.

Once it’s installed properly, you should see it under add-ons in your resources tab. Click on the link to the Scheduler and then on the button that says “Add Job.”

You will be prompted to set a schedule to run your task (I set it to run every night at midnight) and which command to run, which you should set to rake deadmans_switch.

Hit “Save Job,” and that’s it, you’re all set!