← Graph

cloud-init

concept 8 connections

VM bootstrap mechanism: a user-data script provided at droplet creation time runs on first boot and sets up the system. Strzibny uses it to avoid Ansible for simple setups — running apt upgrade, installing Docker, curl and utilities, enabling unattended-upgrades and fail2ban, configuring UFW, adding swap, creating a non-root 'pass_admin' sudo user in the docker group with the provisioned SSH key, disabling root login and optionally installing Tailscale.

category
practice
talk Kamal is not harder than your PaaS
about
cloud-init concept
Talk shows a cloud-init script bootstrapping the droplet.
takeaway Use cloud-init instead of Ansible for simple bootstraps
about
cloud-init concept
Takeaway centers on using cloud-init scripts.
concept cloud-init
related_to
Ubuntu tool
cloud-init script in the talk targets Ubuntu.
concept cloud-init
related_to
unattended-upgrades tool
Cloud-init bootstrap installs unattended-upgrades.
concept cloud-init
related_to
fail2ban tool
Cloud-init bootstrap installs fail2ban.
concept cloud-init
related_to
UFW tool
Cloud-init configures UFW inside the VM.
concept cloud-init
related_to
chrony tool
chrony is now an Ubuntu default so no longer needs installing via cloud-init.
concept cloud-init
related_to
Tailscale tool
Optionally installs and authenticates Tailscale during bootstrap.

Provenance

Created in
Kamal is not harder than your PaaS — Josef Strzibny at wr... 2026-04-22 08:41