terrific

This will go down as one of President Trump’s funniest media takedowns of all time. A Japanese reporter pressed him on why the U.S. didn’t warn allies before the Iran strike — and Trump flipped it instantly. “Why didn’t you tell me about Pearl Harbor?” REPORTER: “Why didn’t you tell U.S. allies in Europe and Asia, like Japan, about the war before attacking Iran?” TRUMP: “One thing you don’t want to signal too much.” “You know when we go in we went in very hard and we didn’t tell anybody about it because we wanted surprise.” “Who knows better about surprise than Japan? Okay.” “Why didn’t you tell me about Pearl Harbor?” “Okay, right? You know, he’s asking me…no, you believe in surprise I think much more so than us.”

最后想到有利用 P2P 给 K8s 集群分发镜像的项目，比如 Dragonfly 但蜻蜓太重，杀鸡用牛刀。 找到 Spegel 这个项目，完美契合要解决的问题：多层缓存机制，利用 DHT 发现集群节点上容器运行时已缓存镜像，利用 P2P pull 本地优先拉取，省流量同时最小化对外部服务的依赖。 有趣的是 RKE2 内置 Spegel

解决实际环境中的痛点 Agentic Engineering 出来的方案在 AKS 里基本不起作用，问题本身极端罕见：下载某些镜像特慢，找不到网络瓶颈。 AKS 有自己的 abstraction 和「独门配方」，比如 nodepool 和升级 K8s 版本时无法彻底禁用生成 surge node 的行为，基本上做不到自架 RKE2 集群能提供的控制粒度。

Ashburn Osaka 的虚拟机对子们提供的服务范围缩小到两个 - wg-easy 用来提供基于 WireGuard 的 VPN 在设备使用不受信任的网络时加密网络流量。 - 3X-UI 则是内置 Xray Core 对抗网络审查的面板，用于配置伪装域名、反嗅探策略和流量混淆。目前 VLESS + XTLS-Reality 是公认最难被检测到的协议。