I am trying to figure out how best to describe my week. Maybe “frustrating”? There isn’t a much better word than that. When you have working code in one environment but not another because of backwardly applied security tooling, frustrated is all you can be. This isn’t some purposeful, subtle change to the environment. This is 1990s tech masquerading as security kabuki. And this code wasn’t rocket science, it was a unit test framework. When you hit roadblocks at every turn when you’re trying to rip through code to help a team accelerate; what do you do? Thankfully I have good bosses and clients that know they are in trouble if this continues. Now the work of fixing it is more of a job in patience than a level of effort.
ReactiveOps — The Kubernetes Experts
ReactiveOps provides DevOps expertise and best practices to help companies implement world-class, Kubernetes-based Infrastructure on AWS/GCP — then we maintain it. We instill confidence in a company’s application so that their engineers can focus on innovation that matters. SPONSORED
Get early access to the all-new Tower Git client for Mac and Windows
The best Git client for your Mac and PC now supports pull requests, interactive rebase and many powerful new features. Read more about the upcoming release and sign up here to get early access. SPONSORED
Events
Open Source 101 Columbia
Date: 2018-04-17
Sadly I won’t be able to participate in Open Source 101 Columbia but if it’s half as good as the one held in Raleigh it’s a can’t miss event. Open Source 101 is such a fantastic and inexpensive event (if you need assistance with a ticket let me know).
DevOpsDays Atlanta 2018
Dates: 2018-04-17 through 2018-04-18
ATL, shawty! I’m a last minute add to the DevOpsDays Atlanta program. I’m busting out a brand new talk for y’all too: DevOps is Not a War.
Heaven is Not a Cloud: Lessons Learned from Cloud Migrations
Date: 2018-04-19 at 6:30 PM ET
Where: Right Brain Networks
There will be a live stream of this talk (which is also brand new). But, I’d much rather see you in person in Ann Arbor, MI.
Kubernetes Cron Jobs: Highly-Available, Distributed Cron Jobs are Awesome!
Date: 2018-04-20 at 6:30 PM
Where: dOpenSource
Event-Based Architectures in Go
Date: 2018-04-27
We’ll talk about design considerations, effective uses for event-based systems, the state of the Go ecosystem, and work through some examples that leverage Apache Kafka.
ChefConf 2018
Dates: 2018-05-22 through 2018-05-25
Join an awesome community of #DevOps and automation professionals at ChefConf in Chicago. I’ll be presenting, DevOps is Not a War. Save 10% with discount code Hugs4Chef.
DevOpsDays Toronto 2018
Dates: 2018-05-30 through 2018-05-31
I’ll admit it, I’ve never been to Canada. But, I’m definitely going to DevOpsDays Toronto this year to present What the Military Taught Me about DevOps.
Chaos Conf
Date: 2018-09-28
Chaos Conf looks super awesome. Opening the event will be Adrian Cockcroft, VP AWS, who called 2018 “The year of #chaosengineering”. Closing out the night will be Jessie Frazelle, one of the top #containers experts on the planet currently at Microsoft.
People
Susan Fowler’s plan after Uber? Tear down the system that protects harassers: Susan Fowler – the engineer who kickstarted a reckoning on sexual harassment in Silicon Valley – says the industry must end an obscure legal clause that prevents people like her seeking justice
Open Layout Offices: I hate open offices and so does everyone else.
Google is Pursuing the Pentagon’s Giant Cloud Contract Quietly, Fearing An Employee Revolt: All is fair in love and war. Or is it?
Making cloud-native computing universal and sustainable: What is the Cloud Native Computing Foundation and why does it matter?
Process
DevSecOps Reference Architectures: Expert Panel featuring Chitra Elango, Franklin Mosley, John Willis, Derek Weeks
A Taxonomy of Tech Debt from Riot Games: Technical debt, like financial debt, is something to be managed. Also like financial debt, some kinds of technical debt are acceptable.
Red Hat Confirms RHEL 8 Will Drop Python 2: It’s about time to put Python 2 to bed.
Kafka, GDPR and Event Sourcing: Proof of concept for compliance with GDPR on an Event Sourcing architecture built with Apache Kafka.
Cloud-native architecture with serverless microservices — the Smart Parking story
How A Tiny Go Microservice Coded In Hackathon Is Saving Us Thousands
Linux computer maker to move manufacturing to the U.S.: System76 explains why the company will soon make its computers in Denver.
How to dynamically generate GCP IAM credentials with a new HashiCorp Vault secrets engine: It’s time to look (again) at Vault
Building a Text Editor for a Digital-First Newsroom: An inside look at the inner workings of a technology you may take for granted
Go away, kid, you bother me: Apple, Google, Microsoft, Mozilla kick W3C nerds to the curb: Web standards body dressed down in spec spat
Tools
Open Container Initiative Announces Distribution Specification Project: OCI creates distribution specification to standardize container image distribution
Container Storage Interface (CSI) for Kubernetes Goes Beta
Google publishes documentation explaining the Fuchsia Operating System
13 Git tips for Git’s 13th birthday: Make your revision-control experience more useful and powerful with these 13 tricks and tips for Git.
Kayenta: An open automated canary analysis tool from Google and Netflix
minikube: A nice update for minikube this week. Kubernetes 1.10 is now provisioned by kubeadm.
Infrastructure Secret Management Software Overview: A very nice overview of the tooling that’s available in the secrets management space.
Spectrum: Extending Cloudflare To 65,533 More Ports
Abusing Linux’s firewall: the hack that allowed us to build Spectrum
NGINX Unit 1.0: A dynamic web and application server that runs multiple languages simultaneously
OpenShift Commons Briefing: Introduction to Quay with Joey Schorr
Kubernetes Persistent Volumes with Deployment and StatefulSet: “We often say that for stateful apps you need to use StatefulSet and for stateless apps Deployment. This doesn’t mean that you couldn’t use deployment to define stateful apps with persistent volumes.”
1Password/1password-teams-open-source: “Are you working on an open source project that needs a password manager? How about a secure place to keep and share secrets — social media logins, code signing certificates, ssh keys, etc? We’ve got your back: get a free 1Password Teams account on us.”
How to keep your ISP’s nose out of your browser history with encrypted DNS: Comcast does some creepy shit so I’ll be implementing this here at home soon.
rak8s/rak8s v0.1.4 was released this week with some bug fixes.
Jobs
SJ Technologies is looking to bring someone on board to work in our DevOps and Digital Transformation practice. If you want to help some big time companies eager to implement change let me know. Plus, you get to work with John Willis and I which is pretty great (IMHO).
Duo Security, a Michigan based company, is looking for an experienced person to fill a Operations Engineer - Platform Security role. I’ve heard nothing but good things about Duo.
DevOps’ish Tweet of the Week
I do not accept the argument from enterprise IT orgs that a skill gap is keeping them from adopting cloud or platforms. Existing teams can develop the necessary skills faster than the organization can move to adopt new tech. There is no skill gap.
— Mark Imbriaco (@markimbriaco) April 13, 2018