DevOps'ish

DevOps, Cloud Native, Open Source, and the ‘ish in between.

Love and compassion are necessities, not luxuries. Without them humanity cannot survive. —Dalai Lama

036: Google, #WITBragDay, npm Security, AWS, and more!

This week has been a trying week for me. I’ve touched almost every facet of what is important to me both personally and professionally. One kid having surgery, another kid catching a cold, moving into our new home, dealing with Veteran’s Affairs, addressing long-time struggles, new talent starting at work, getting things done, threats to friends on the west coast, threats to friends in Guam, Nazis on the east coast, and I did a lot of community work. This week was great on some fronts and very challenging on others. By the time 4:30 PM on Friday rolled around I was cooked. Next week, I’ll be in South Florida bringing a heavy dose of DevOps to the Sunshine State.

GoCD — open source continuous delivery server
GoCD is a continuous delivery tool specializing in advanced workflow modeling and dependency management. It lets you track a change from commit to deploy at a glance, providing superior visibility into your workflow. It’s open source, free to use and download. SPONSORED

People

Let’s Talk About Google by Kylie Robison inspired me to write Chilling Effect of Google Manifesto. Read both and see two different concerns about the Google memo.

I’m a woman in computer science. Let me ladysplain the Google memo to you by Cynthia Lee

Google CEO Sundar Pichai cancels all-hands meeting about gender controversy due to employee worries of online harassment by Kara Swisher

#WITBragDay: Started by Alice Goldfuss is unbelievably inspiring

The Save 418 Movement: Any attempt to brew coffee with a teapot should result in the error code “418 I’m a teapot”. The resulting entity body MAY be short and stout.

Man who made passwords hard to remember regrets rules that ‘drive people crazy’: The amount of pain it causes is not commensurate with the overall value of it.

Netlify Raises $12m from A16Z (chrisshort.net runs on Netlify because Netlify is dope)

IBM Sues To Stop Former CIO From Taking Leadership Position At AWS: In a complaint filed last week in a New York federal court, Big Blue argues that Jeff Smith knows highly sensitive information about the next-generation of cloud computing technologies that IBM is currently developing, and will share them with AWS if allowed to work for the cloud rival.

Apple staffers reportedly rebelling against open office plan at new $5 billion HQ: “My understanding is that that building [off to the side on the campus] was built because Srouji was like, ‘F — — this, my team isn’t working like this.’”

Figuring out how to contribute to open source by Julia Evans: This post isn’t about “how to find small issues in open source projects to get started with open source” — instead it’s about “I have a specific change I want to make to a specific project, what will help me get that done”.

Process

Memory Security in Go: “This post is intended as a starting point for anyone needing to manage sensitive information in Go, and as far as I can tell, this is the only post of its kind.”

Hunting Malicious npm Packages

Amazon Web Services chooses its Kubernetes path, joins Cloud Native Computing Foundation: The move to join the CNCF at the highest level resolves some questions about AWS and Kubernetes

Technical Debt: an Incomplete Metaphor? The gradual loss of predictability is scarier to business partners than the gradual increase in cost.

Why Github can’t host the Linux Kernel Community

OpenSSL disables TLS 1.0 and 1.1: “OpenSSL made a release 5 years ago that supported TLS 1.2. The current support of the server side seems to be around 90%. I hope that by the time Buster releases the support for TLS 1.2 will be high enough that I don’t need to enable them again.”

Jenkins Security Advisory 2017–08–07: Hide yo kids, patch yo Jenkins!

Learning at work by Julia Evans: “Here are some things me & people on twitter came up with. Everything in here is stuff I can do during my workday.”

Tools

Kubernetes: Up and Running: Dive into the Future of Infrastructure by Kelsey Hightower, Brendan Burns, and Joe Beda

Disney Open Source

Functions as a Service or (FaaS) is a framework for building Serverless functions on top of containers.

Amazon Rekognition Demo for Defense: The day I see an Amazon Echo in a SCIF is the day I divulge every secret I’ve ever known.

Text Editor Performance Comparison

Linux Load Averages: Solving the Mystery

Listen gRPC and HTTP requests on the same port: cmux is a generic Go library to multiplex connections based on their payload.

Let ‘localhost’ be localhost

Atlantis: A unified workflow for collaborating on Terraform through GitHub from HootSuite

Tweet of the Week


Subscribe to DevOps'ish for updates on DevOps, Cloud Native, and Open Source news.

Join the DevOps'ish group on Telegram

E-mail this to a friend!


whoami

I'm Chris Short, 20+ veteran of the IT industry and 11 year veteran of the US Air Force. I help people and companies embrace DevOps practices and tools through writing and public speaking. I am a staunch advocate for transparency and open source solutions to problems.

Follow me on Twitter and LinkedIn. Join the discussion on Facebook and Telegram.


Share