Oh the weather outside is frightful,
But the DevOps is so delightful,
And since we’ve no place to go,
Let It Snow! Let It Snow! Let It Snow!
This song has been in my head all day as the US east coast has been coated in a blanket of frozen participation. We have not taken down our interior Christmas decorations yet either so that might be part of it too.
Department of Choice Concepts
Department of Dafuq
When I mentioned the leap second last week I was hoping it would go off without a hitch. That was not the case when Cloudflare had a globally impacting issue with its RRDNS software. Developers have a hard job, I believe all of us in DevOps recognize that. But, this is a good example of how an assumption caused a big problem.
Department of Data Defense
Three hours after the New Year’s leap second, Ask Bjørn Hansen reported that only 26% of servers in the NTP pool were not announcing the leap second. That is not that great but given that the bar to enter the pool is quite low it is not surprising.
You know it’s bad when The Register is talking about it. There are 25,000 publicly exposed MongoDB systems out on the Internet and about 2,000 of them have been taken over by ransomware. I am shaking my head vigorously. Are these MongoDB admins the same people heralding “serverless” (did I go too far there)? If you happen to be a victim make sure you confirm whether or not the ransomware is a hoax.
Department of Discussions
Ansible is launching a single day global conference tour called Ansible Automates. What is it? Ansible Automates is, “one-track conference that takes the best Ansible content and presents it to regional audiences around the world… we expect crowds of 200–400 people who are interested in learning more about IT automation solutions with Ansible…” Ansible Automates might be an answer to some feedback I provided after AnsibleFest Brooklyn. I did not really like the four track conference because I knew I was missing good content elsewhere.
Jess Frazelle is looking for underrepresented folks (minorities, women, veterans, etc.) who want help speaking at conferences this year. If you want to get up in front of a group of people and share your experience but want some guidance let Jess know by e-mailing jess at linux dot com.
Department of Refreshment and Refurbishment
NTPsec is an effort to streamline and optimize the core NTP code into a sustainable effort for a critical core function of the Internet. The project is seriously considering a move away from C and the post about it is absolutely fascinating.
OpenEBS is a block storage solution for container environments. It features “Virtual Storage Machines, a concept similar to k8s PODs.” It seems pretty straight forward. But will it take off, get sucked up by another project, or be bought and added to the portfolio of another larger product line?
Truffle Hog searches through git repositories for high entropy strings, digging deep into commit history and branches. This is effective at finding secrets accidentally committed that contain high entropy.
I'm Chris Short, 20+ veteran of the IT industry and 11 year veteran of the US Air Force. I help people and companies embrace DevOps practices and tools through writing and public speaking. I am a staunch advocate for transparency and open source solutions to problems. Follow me on Twitter and LinkedIn.