Joe Rayhawk
===========
* Email: `jrayhawk@fairlystable.org`
* Phone: `+1 503.869.8658`
* PGP: `0xFEEDBEEF 4096R`
Professional Objective:
-----------------------
Provide well-architected system and network infrastructure solutions to
optimize high-utility projects.
Employment History:
-------------------
### System Administrator - X.Org Foundation
and
December 2012 - Present
Planning, deployment, and maintenance of servers, VMs, services, and
support for Freedesktop.org projects. Services include file hosting,
documentation management, email, mailing lists, issue tracking,
continuous integration, and DVCS.
#### Achievements:
* Rearchitecture of primary web resources using DVCS and static
compilation.
* Creation of a unified, security-isolated, and PAM-compatible
authentication system for HTTP.
* Creation of conference remote presence infrastructure using
crtmpserver and manual gstreamer pipelines on three days notice.
### CEO - Fairly Stable
September 2011 - Present
Day to day management of customers, finances, network infrastructure,
servers, VMs, and services for a managed hosting and consultation
company.
#### Achievements
* Debian package for automatic generation of iptables rule utilization
round-robin databases for use in graphs.
### System Administrator - APDM
December 2008 - Present
Aiding employees in the planning, deployment, and maintenance of
servers, VMs, services, and network infrastructure for a medical
device support and telemetry management.
#### Achievements:
* Remote-keyed MD-RAID1+DM-CRYPT+LVM root filesystem for HIPAA
compliance with failover to remote recovery environment.
* Selective versioning and selective distribution of large telemetry
datasets with git-annex.
* Cross-platform distributed build system automation with MinGW/Cygwin
and KVM.
### System Administrator - The TOVA Company
May 2008 - Present
Planning, deployment, and maintenance of servers, VMs, and services for
development and public-facing resources. Services include DVCS, build
and release automation, customer relations, PGP and OTP-secured product
activation, affiliate marketing, and HIPAA-compliant internal instant
messaging.
#### Achievements:
* Architecture and deployment of x509 PKI
() for enabling non-technical
employees to use two-way public-key authentication for internal
resources over HTTP, including HTTP-namespace-discriminated SSL
renegotiation.
* Integration of extra build, library, and kernel capabilities to an
embedded Linux medical device.
* Architecture and deployement of various customer relations network
APIs.
### System Administrator - Portland State University Foundation
August 2007 - Present
Planning, deployment, and maintenance of servers, VMs, and services
for various academic projects.
#### Achievements:
* Piny: a git-backed Wiki and project management/hosting engine.
(ssh newuser@piny.be to explore)
* Project management for exotic asynchronous processor architecture
projects at the Asynchronous Research Center.
* Setup and debugging of embedded rocket operating system for guidance
and telemetry.
* Debugging many many regrettably fascinating problems with donated
hardware. ("But it was free!" -- Bart)
### System Administrator - Cascadia Information Technologies/Cas Soft
October 2003 - September 2009
Planning, deployment, and maintenance of servers, VMs, and services for
commercial hosting, e-commerce, and occasional network infrastructure
consulting. Very occasionally management of interns.
#### Achievements:
* Modularization and migration of services, remote distribution
installation and migration (Redhat -> Debian)
* Established remote service monitoring, SNMP parameter monitoring, and
PAM-based login monitoring.
* Added and managed nodes for a fault-tolerant multi-homing corporate
VPN using KAME and Racoon.
* Maintenance and development of web applications under a proprietary
mod_perl/sablotron/oracle framework.
### I.T. Lackey - EasyStreet Online Services
October 2002 - June 2003
#### Achievements:
* Sample migration to and demonstration of mod_xslt under Apache and
XML namespace linking for the modularization of the customer
support site using XML, XSLT, XHTML, and SVG.
* Installation of internal corporate Jabberd instant messaging
server including SSL, remote administration, MUC text
conferencing, a fully browsable user directory (JUD), and gateways
to other chat services, and the installation of clients including
Gabber, IMCom, Tkabber, Exodus, WinJab, and myJabber.
Skills:
-------
* Languages: Ruby, Perl, POSIX-compliant shell.
* Standards: x509, SSL, OpenPGP, POSIX, IP and assorted transport
layer protocols, HTTP, XMPP, SSH, DNS (incl. rfc2136), MDNS, X11,
SMTP, NTP, rsync, git, RTSP/RTMP/RTP, SNMP, Bitcoin, OFX, FIPS
140-2, Opal, TPM, SecureBoot, dpkg.
* System Administration: Debian family, Redhat family, FreeBSD,
MacOS X, Cygwin/MinGW, Linux VServer, OpenVZ, Xen, QEMU/KVM,
Linux namespaces and meta-tooling (LXC, Kubernetes, Docker, etc.),
LUKS/dmcrypt, DRBD, Linux-HA.
* Service Administration: Linux IPTables, FreeBSD ipfilter/ipnat,
Apache, Lighttpd, Jabberd, KAME/Racoon (IPSec), BIND, Oracle,
CUPSys, Xorg, NET SNMP daemon, Exim4, Cyrus, Git, Subversion,
Ikiwiki, Mailman, Sympa, Rsync, Rsyslog, mon.
* Multimedia: libavcodec/FFmpeg, GStreamer, Audacity, Gimp/Cinepaint,
ImageMagick, Open Broadcast Software.
* Social: networked with architecture-minded technical people:
Graphics stack, hardware, microarchitecture, and compiler
specialists.
* Amazon APIs: EC2, S3, Twitch.
Non-professional interests:
---------------------------
* Complex systems: epistemology, philosophy, psychology,
physiology, cars, economy, games.
References:
-----------
Available on request.