Personal Tracker: February 2026
Overview
Visual dashboard tracking home enterprise infrastructure projects, learning goals, and personal growth for February 2026.
Projects
In Progress
| Project | Description | Status | Notes |
|---|---|---|---|
k3s Platform |
Production k3s cluster on kvm-01 |
Active |
Prometheus, Grafana, Wazuh deployed |
Wazuh Archives |
Enable archives indexing in Filebeat |
Active |
PVC fix pending |
kvm-02 Hardware |
Supermicro B deployment |
Active |
Hardware ready, RAM upgrade done |
Completed (Feb 2026)
| Project | Description | Date |
|---|---|---|
Wazuh SIEM 4.14.3 |
k3s deployment, all pods running |
2026-02-23 |
Vault SSH CA |
8h certs, 9 hosts configured |
2026-02-21 |
Prometheus + Grafana |
Monitoring stack on k3s |
2026-02-23 |
CLI Mastery Docs |
openssl/curl/awk/sed/xargs |
2026-02-26 |
Vault External TLS |
TLS on 10.50.1.60:8200 |
2026-02-20 |
certmgr-01 → vault-01 |
VM rename, DNS, 82 docs updated |
2026-02-20 |
Planned
| Project | Description | Target | Blocked By |
|---|---|---|---|
Vault HA (3-node) |
vault-02, vault-03 on kvm-02 |
Q1 2026 |
kvm-02 deployment |
k3s HA (3-node) |
Control plane HA |
Q1 2026 |
kvm-02 deployment |
ArgoCD GitOps |
k3s GitOps deployment |
After k3s stable |
— |
MinIO S3 |
Object storage for k3s |
After ArgoCD |
— |
Personal asset management (YAML + CLI + AsciiDoc) |
Q2 2026 |
Schema approved |
Tasks
BLOCKERS — Fix Immediately
| Task | Details | Origin | Days | Impact |
|---|---|---|---|---|
Z Fold 7 Termux |
gopass and SSH not working |
2026-03-10 |
30 |
BLOCKER — Cannot access passwords on mobile |
gopass v3 organization |
Inconsistent structure, poor key-value usage |
2026-03-20 |
20 |
Inefficient password management, no aggregation |
Active — Infrastructure
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Wazuh agent deployment |
Deploy agents to all infrastructure hosts |
P2 |
Pending |
After archives fix |
k3s Platform |
Production k3s cluster on kvm-01 |
P1 |
In Progress |
— |
Wazuh Archives |
Enable archives indexing in Filebeat, PVC fix |
P1 |
In Progress |
— |
kvm-02 Hardware |
Supermicro B deployment, RAM upgrade done |
P1 |
In Progress |
— |
Active — Security & Encryption
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Configure 4th YubiKey |
SSH FIDO2 keys |
P1 |
TODO |
— |
Cold storage M-DISC backup |
age-encrypted archives |
P1 |
TODO |
After YubiKey setup |
Active — Development & Tools
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
netapi Commercialization |
Go CLI rewrite with Cobra-style argument discovery, package for distribution |
P0 |
Active |
— |
Ollama API Service |
FastAPI (17 endpoints), productize — config audit, doc tools, runbook gen |
P0 |
Active |
— |
Shell functions (fe, fec, fef) |
File hunting helpers |
P3 |
TODO |
— |
Active — Documentation
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
D2 Catppuccin Mocha styling |
domus-* spoke repos (177 files total) |
P3 |
In Progress |
— |
Active — Financial
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Amazon order history import |
Download CSV from Privacy Central → parse with awk → populate subscriptions tracker |
P1 |
Waiting |
Pending Amazon data export (requested 2026-04-04) |
Active — Education
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
No active education tasks — see education trackers |
Active — Personal & Life Admin
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
ThinkPad T16g Setup |
Arch install, stow dotfiles, Ollama stack, netapi dev env |
P0 |
Pending |
— |
P50 Arch to Ubuntu migration |
P2 |
In Progress |
— |
|
X1 Carbon Ubuntu installs |
2 laptops, LUKS encryption |
P2 |
In Progress |
— |
P50 Steam Test |
Test Flatpak Steam + apt cleanup of broken i386 packages |
P3 |
Pending |
— |
Recurring — Operations
| Task | Context | Frequency | Notes |
|---|---|---|---|
Borg backup verification |
Workstation backups |
Weekly |
|
SSH cert renewal |
vault-ssh-sign |
Every 8h |
Automated |
Vault unseal check |
After reboots |
As needed |
|
ISE eval backup restore |
Cisco ISE 3.4 eval license |
Every 90 days |
Restore from backup to reset timer |
Tracker days update |
work/adhoc.adoc, personal/adhoc.adoc |
Each worklog |
Recurring — Maintenance & Hygiene
| Task | Context | Frequency | Notes |
|---|---|---|---|
Subscriptions tracker review |
Audit for cost creep, unused services |
Monthly |
|
Cancelled services audit |
Verify no zombie charges after cancellation |
Quarterly |
|
FOSS inventory sync |
|
Quarterly |
Catch drift between system and tracker |
Pending — Infrastructure
| Task | Details | Blocked By |
|---|---|---|
Vault HA (3-node) |
vault-02, vault-03 on kvm-02 |
kvm-02 deployment |
k3s HA (3-node) |
Control plane HA |
kvm-02 deployment |
ArgoCD GitOps |
k3s GitOps deployment |
k3s stable |
MinIO S3 |
Object storage for k3s |
After ArgoCD |
Pending — Security
| Task | Details | Blocked By |
|---|---|---|
SanDisk USB offsite rotation |
Backup strategy |
Time |
Cold storage verification |
M-DISC read test |
After M-DISC burn |
Windows PC Vault PKI migration |
EAP-TLS certs |
Runbook creation |
Pending — Development
| Task | Details | Blocked By |
|---|---|---|
OpenClaw evaluation |
Deploy on separate machine (security concerns) |
Needs dedicated VM |
Deferred
| Task | Details | Reason | Revisit |
|---|---|---|---|
ISE HA |
PAN HA (ise-01 reconfigure) |
Wait until ise-02 stable |
After ISE 3.4 migration |
ISE 3.5 Migration |
Upgrade path: 3.2p9 → 3.4 → 3.5 |
After 3.4 completes |
Q3 2026 |
Keycloak Rebuild |
keycloak-01 corrupted, rebuild from scratch |
Priority P3 — SSO broken but not blocking |
When bandwidth allows |
FreeIPA HA |
ipa-02 replica |
SPOF but stable |
After Vault HA |
AD DC HA |
home-dc02 replication |
SPOF but stable |
After FreeIPA HA |
iPSK Manager HA |
ipsk-mgr-02 with MySQL replication |
Low urgency |
After AD HA |
Dotfiles Windows sync |
winfiles-optimus parity with dotfiles-optimus |
Low priority |
— |
Recently Resolved
| Task | Details | Resolved | Notes |
|---|---|---|---|
domus-captures accuracy sweep |
Verify all statistics, indices |
2026-03-16 |
Completed |
nvim-domus public release |
GitHub repo creation |
2026-03-16 |
|
Repository structure audit |
Projects vs operations organization |
2026-03-16 |
Fixed |
Kinesis 360 BT disconnect |
Keyboard pairing |
2026-02-27 |
|
Attributes split |
attributes.adoc → home/work/styles |
2026-03-22 |
327 → 94+239+33 lines |
Wazuh SIEM 4.14.3 deploy |
k3s deployment, all pods running |
2026-02-23 |
Completed |
Vault SSH CA |
8h certs, 9 hosts configured |
2026-02-21 |
Production |
Prometheus + Grafana |
Monitoring stack on k3s |
2026-02-23 |
Production |
Ideas — Infrastructure
| Idea | Context | Category | Captured |
|---|---|---|---|
Vault HA runbook |
3-node Vault cluster on kvm-02 |
infra |
2026-03-22 |
k3s HA runbook |
3-node control plane |
infra |
2026-03-22 |
BIND secondary DNS |
bind-02 for HA (currently SPOF) |
infra |
2026-03-22 |
ipa-02 replica |
FreeIPA HA (currently SPOF) |
infra |
2026-03-22 |
Borg backup dashboard |
Visualize backup status across hosts |
infra |
2026-03-22 |
Vault backup to S3 |
Automated Vault snapshots to MinIO |
infra |
2026-03-22 |
Ideas — Development & Tools
| Idea | Context | Category | Captured |
|---|---|---|---|
netapi vyos commands |
Add VyOS API integration (replaced pfSense) |
netapi |
2026-03-22 |
netapi bind commands |
Add BIND nsupdate/rndc integration (DNS management) |
netapi |
2026-03-22 |
netapi k3s commands |
kubectl wrapper with common patterns |
netapi |
2026-03-22 |
netapi batch operations |
Cross-vendor batch commands (e.g., backup all) |
netapi |
2026-03-22 |
adoc improvements |
Add --watch flag, live reload |
tooling |
2026-03-22 |
tmux sessionizer |
Project-based tmux sessions (like ThePrimeagen) |
tooling |
2026-03-22 |
fzf git integrations |
Interactive branch switching, log searching |
tooling |
2026-03-22 |
gopass v3 restructure |
Use gopass-personal-docs templates (bills, storage, subscriptions) |
tooling |
2026-03-22 |
gopass-query enhancements |
Add |
tooling |
2026-03-22 |
gopass v3 → ADMINISTRATIO migration |
Script to move remaining entries from old structure |
tooling |
2026-03-22 |
Ideas — Education & Training
| Idea | Context | Category | Captured |
|---|---|---|---|
AWK curriculum |
Like regex curriculum — 10 modules, drills |
education |
2026-03-22 |
sed curriculum |
Pattern-based editing mastery |
education |
2026-03-22 |
Lua/Neovim curriculum |
Plugin development, lazy.nvim patterns |
education |
2026-03-22 |
Go CLI curriculum |
Learn Go via CLI tool development |
education |
2026-03-22 |
Anki deck from Don Quijote |
Extract vocabulary to spaced repetition |
language |
2026-03-22 |
DELE C1 mock exams |
Practice test structure |
language |
2026-03-22 |
Ideas — Documentation
| Idea | Context | Category | Captured |
|---|---|---|---|
Antora search fix |
Lunr index too large — explore alternatives |
docs |
2026-03-22 |
domus-* cross-reference audit |
Find and fix broken xrefs across all repos |
docs |
2026-03-22 |
Runbook template standardization |
Consistent format across all runbooks |
docs |
2026-03-22 |
Ideas — Personal & Creative
| Idea | Context | Category | Captured |
|---|---|---|---|
LilyPond → PDF pipeline |
Automate music notation compilation |
music |
2026-03-22 |
age encryption workflow doc |
Document full workflow for cold storage |
security |
2026-03-22 |
Ad-Hoc / Troubleshooting
BLOCKERS — Fix Immediately
| Task | Details | Origin | Days | Impact |
|---|---|---|---|---|
Z Fold 7 Termux |
gopass and SSH not working |
2026-03-10 |
30 |
BLOCKER — Cannot access passwords on mobile |
gopass v3 organization |
Inconsistent structure, poor key-value usage |
2026-03-20 |
20 |
Inefficient password management, no aggregation |
Active — Infrastructure
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Wazuh agent deployment |
Deploy agents to all infrastructure hosts |
P2 |
Pending |
After archives fix |
k3s Platform |
Production k3s cluster on kvm-01 |
P1 |
In Progress |
— |
Wazuh Archives |
Enable archives indexing in Filebeat, PVC fix |
P1 |
In Progress |
— |
kvm-02 Hardware |
Supermicro B deployment, RAM upgrade done |
P1 |
In Progress |
— |
Active — Security & Encryption
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Configure 4th YubiKey |
SSH FIDO2 keys |
P1 |
TODO |
— |
Cold storage M-DISC backup |
age-encrypted archives |
P1 |
TODO |
After YubiKey setup |
Active — Development & Tools
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
netapi Commercialization |
Go CLI rewrite with Cobra-style argument discovery, package for distribution |
P0 |
Active |
— |
Ollama API Service |
FastAPI (17 endpoints), productize — config audit, doc tools, runbook gen |
P0 |
Active |
— |
Shell functions (fe, fec, fef) |
File hunting helpers |
P3 |
TODO |
— |
Active — Documentation
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
D2 Catppuccin Mocha styling |
domus-* spoke repos (177 files total) |
P3 |
In Progress |
— |
Active — Financial
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
Amazon order history import |
Download CSV from Privacy Central → parse with awk → populate subscriptions tracker |
P1 |
Waiting |
Pending Amazon data export (requested 2026-04-04) |
Active — Education
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
No active education tasks — see education trackers |
Active — Personal & Life Admin
| Task | Details | Priority | Status | Due |
|---|---|---|---|---|
ThinkPad T16g Setup |
Arch install, stow dotfiles, Ollama stack, netapi dev env |
P0 |
Pending |
— |
P50 Arch to Ubuntu migration |
P2 |
In Progress |
— |
|
X1 Carbon Ubuntu installs |
2 laptops, LUKS encryption |
P2 |
In Progress |
— |
P50 Steam Test |
Test Flatpak Steam + apt cleanup of broken i386 packages |
P3 |
Pending |
— |
Deferred
| Task | Details | Reason | Revisit |
|---|---|---|---|
ISE HA |
PAN HA (ise-01 reconfigure) |
Wait until ise-02 stable |
After ISE 3.4 migration |
ISE 3.5 Migration |
Upgrade path: 3.2p9 → 3.4 → 3.5 |
After 3.4 completes |
Q3 2026 |
Keycloak Rebuild |
keycloak-01 corrupted, rebuild from scratch |
Priority P3 — SSO broken but not blocking |
When bandwidth allows |
FreeIPA HA |
ipa-02 replica |
SPOF but stable |
After Vault HA |
AD DC HA |
home-dc02 replication |
SPOF but stable |
After FreeIPA HA |
iPSK Manager HA |
ipsk-mgr-02 with MySQL replication |
Low urgency |
After AD HA |
Dotfiles Windows sync |
winfiles-optimus parity with dotfiles-optimus |
Low priority |
— |
Recurring — Operations
| Task | Context | Frequency | Notes |
|---|---|---|---|
Borg backup verification |
Workstation backups |
Weekly |
|
SSH cert renewal |
vault-ssh-sign |
Every 8h |
Automated |
Vault unseal check |
After reboots |
As needed |
|
ISE eval backup restore |
Cisco ISE 3.4 eval license |
Every 90 days |
Restore from backup to reset timer |
Tracker days update |
work/adhoc.adoc, personal/adhoc.adoc |
Each worklog |
Recurring — Maintenance & Hygiene
| Task | Context | Frequency | Notes |
|---|---|---|---|
Subscriptions tracker review |
Audit for cost creep, unused services |
Monthly |
|
Cancelled services audit |
Verify no zombie charges after cancellation |
Quarterly |
|
FOSS inventory sync |
|
Quarterly |
Catch drift between system and tracker |
Recently Resolved
| Task | Details | Resolved | Notes |
|---|---|---|---|
domus-captures accuracy sweep |
Verify all statistics, indices |
2026-03-16 |
Completed |
nvim-domus public release |
GitHub repo creation |
2026-03-16 |
|
Repository structure audit |
Projects vs operations organization |
2026-03-16 |
Fixed |
Kinesis 360 BT disconnect |
Keyboard pairing |
2026-02-27 |
|
Attributes split |
attributes.adoc → home/work/styles |
2026-03-22 |
327 → 94+239+33 lines |
Wazuh SIEM 4.14.3 deploy |
k3s deployment, all pods running |
2026-02-23 |
Completed |
Vault SSH CA |
8h certs, 9 hosts configured |
2026-02-21 |
Production |
Prometheus + Grafana |
Monitoring stack on k3s |
2026-02-23 |
Production |
Ideas — Infrastructure
| Idea | Context | Category | Captured |
|---|---|---|---|
Vault HA runbook |
3-node Vault cluster on kvm-02 |
infra |
2026-03-22 |
k3s HA runbook |
3-node control plane |
infra |
2026-03-22 |
BIND secondary DNS |
bind-02 for HA (currently SPOF) |
infra |
2026-03-22 |
ipa-02 replica |
FreeIPA HA (currently SPOF) |
infra |
2026-03-22 |
Borg backup dashboard |
Visualize backup status across hosts |
infra |
2026-03-22 |
Vault backup to S3 |
Automated Vault snapshots to MinIO |
infra |
2026-03-22 |
Ideas — Development & Tools
| Idea | Context | Category | Captured |
|---|---|---|---|
netapi vyos commands |
Add VyOS API integration (replaced pfSense) |
netapi |
2026-03-22 |
netapi bind commands |
Add BIND nsupdate/rndc integration (DNS management) |
netapi |
2026-03-22 |
netapi k3s commands |
kubectl wrapper with common patterns |
netapi |
2026-03-22 |
netapi batch operations |
Cross-vendor batch commands (e.g., backup all) |
netapi |
2026-03-22 |
adoc improvements |
Add --watch flag, live reload |
tooling |
2026-03-22 |
tmux sessionizer |
Project-based tmux sessions (like ThePrimeagen) |
tooling |
2026-03-22 |
fzf git integrations |
Interactive branch switching, log searching |
tooling |
2026-03-22 |
gopass v3 restructure |
Use gopass-personal-docs templates (bills, storage, subscriptions) |
tooling |
2026-03-22 |
gopass-query enhancements |
Add |
tooling |
2026-03-22 |
gopass v3 → ADMINISTRATIO migration |
Script to move remaining entries from old structure |
tooling |
2026-03-22 |
Ideas — Education & Training
| Idea | Context | Category | Captured |
|---|---|---|---|
AWK curriculum |
Like regex curriculum — 10 modules, drills |
education |
2026-03-22 |
sed curriculum |
Pattern-based editing mastery |
education |
2026-03-22 |
Lua/Neovim curriculum |
Plugin development, lazy.nvim patterns |
education |
2026-03-22 |
Go CLI curriculum |
Learn Go via CLI tool development |
education |
2026-03-22 |
Anki deck from Don Quijote |
Extract vocabulary to spaced repetition |
language |
2026-03-22 |
DELE C1 mock exams |
Practice test structure |
language |
2026-03-22 |
Ideas — Documentation
| Idea | Context | Category | Captured |
|---|---|---|---|
Antora search fix |
Lunr index too large — explore alternatives |
docs |
2026-03-22 |
domus-* cross-reference audit |
Find and fix broken xrefs across all repos |
docs |
2026-03-22 |
Runbook template standardization |
Consistent format across all runbooks |
docs |
2026-03-22 |
Ideas — Personal & Creative
| Idea | Context | Category | Captured |
|---|---|---|---|
LilyPond → PDF pipeline |
Automate music notation compilation |
music |
2026-03-22 |
age encryption workflow doc |
Document full workflow for cold storage |
security |
2026-03-22 |
Education Tracks Overview
Literature
| Track | Description | Status | Progress |
|---|---|---|---|
Don Quijote |
Cervantes' masterwork in original Spanish |
ACTIVE |
Primera Parte Ch 33/52 |
García Márquez |
Colombian magical realism |
In Progress |
Cien años de soledad |
La Reina Valera |
Biblical literature in classical Spanish |
In Progress |
Pentateuco + Evangelios |
Languages
| Track | Description | Status | Progress |
|---|---|---|---|
DELE C1/C2 |
Instituto Cervantes Spanish certification |
ACTIVE |
Conectores phase |
SIELE |
Computer-based proficiency (modular) |
Planning |
0% |
Redacción Español |
Formal writing skills |
In Progress |
Essays + conectores |
Latin |
Classical Latin for etymology, scientific/legal terminology |
Planning |
0% |
Mathematics
| Track | Description | Status | Progress |
|---|---|---|---|
College Algebra |
Foundation for calculus (LaTeX textbook) |
ACTIVE |
Ch 1/8 |
Certifications
| Track | Description | Status | Progress |
|---|---|---|---|
RHCSA 9 |
Red Hat Certified System Administrator |
ACTIVE |
Ch 1-2 / 20 |
CISSP |
ISC² Security Professional |
Planning |
0/8 domains |
DevNet Associate |
Cisco Developer Network |
Planning |
netapi = portfolio |
LPIC-1 |
Linux Professional (101/102) |
Planning |
After RHCSA |
LPIC-2 |
Linux Professional (201/202) |
Planning |
After LPIC-1 |
Programming
| Track | Description | Status | Progress |
|---|---|---|---|
Python |
Automation, CLI, API development |
In Progress |
netapi development |
Ruby |
Metaprogramming and DSLs |
PARKED |
0% |
C++ |
Systems programming foundation |
Planning |
Future |
Systems & Tools
| Track | Description | Status | Progress |
|---|---|---|---|
Terminal Mastery |
CLI patterns, shell efficiency |
DONE |
100% |
Vim Mastery |
Neovim expertise |
In Progress |
Codex + daily use |
Regex Mastery |
Pattern matching across contexts |
In Progress |
BRE/ERE done, PCRE learning |
CLI Mastery |
Advanced patterns: awk, sed, jq, find, xargs |
ACTIVE |
Daily deliberate practice |
Kubernetes |
Container orchestration (k3s) |
In Progress |
Cluster deployed |
Music
| Track | Description | Status | Progress |
|---|---|---|---|
Violin |
Classical violin, Heifetz-inspired |
In Progress |
Scales + études |
Cello |
Secondary instrument |
Planning |
Future |
Sciences
| Track | Description | Status | Progress |
|---|---|---|---|
Applied Cryptography |
PKI, TLS, secrets management |
In Progress |
Vault PKI production |
Humanities
| Track | Description | Status | Progress |
|---|---|---|---|
Philosophy |
Biblical and classical traditions |
In Progress |
Wisdom literature |
History |
Context for technology and culture |
Planning |
Via literature |
Linguistics |
Language science for Spanish mastery |
In Progress |
Syntax + morphology |
Track Status Legend
| Status | Meaning |
|---|---|
ACTIVE |
Currently working on (limit to 3-4 max) |
In Progress |
Started, working intermittently |
Planning |
Study plan created, not started |
PARKED |
Deliberately paused (priority shift) |
DONE |
Completed, may revisit for mastery |
Quick Stats
| Active | In Progress | Planning | Parked | Done |
|---|---|---|---|---|
5 |
9 |
9 |
1 |
1 |
Total tracks: 25
Category Quick Reference
| Category | Tracks |
|---|---|
Literature |
don-quijote, garcia-marquez, la-reina-valera |
Languages |
dele-spanish, siele, spanish-writing, latin |
Mathematics |
college-algebra |
Certifications |
rhcsa, cissp, devnet, lpic-1, lpic-2 |
Programming |
python-fundamentals, ruby-metaprogramming, cpp-fundamentals |
Systems/Tools |
terminal-mastery, vim-mastery, regex-mastery, cli-mastery, k8s-fundamentals |
Music |
violin, cello |
Sciences |
cryptography |
Humanities |
philosophy, history, linguistics |
Infrastructure Summary
| For complete infrastructure inventory with IPs and hostnames, see domus-infra-ops: architecture/infrastructure-inventory.adoc |
| Category | Services | Status |
|---|---|---|
Identity |
AD, FreeIPA, Keycloak |
Active |
PKI/Secrets |
Vault (PKI, SSH CA, KV) |
Active |
Network |
pfSense, BIND DNS |
Active |
Storage |
Synology NAS, Borg |
Active |
Compute |
kvm-01, kvm-02 (planned) |
Active |
Kubernetes |
k3s + Cilium + Traefik |
Active |
Observability |
Prometheus, Grafana, Wazuh |
Active |
Legend
| Color | Meaning |
|---|---|
Red |
Active/In Progress |
Green |
Completed |
Purple |
Planned |
Orange |
Infrastructure |
Pink |
Personal Growth |
| Arrow | Meaning |
|---|---|
Solid |
Active workflow |
Dashed |
Dependencies |
Animated |
Current focus |