DevOps'ish

DevOps, Cloud Native, Open Source, and the ‘ish in between.

Chicago River from Michigan Ave Bridge after ChefConf
Chicago River from Michigan Ave Bridge after ChefConf

077: ChefConf 2018, GDPR, Go CoC 🙌, Go vgo 😞, Kubernetes, Laptop Giveaway, Security, and More

I have a lot to talk about this week. I’m putting sections in the introduction for ease of reading (feel free to skip parts you’re not mildly interested in). Also, thank you to this week’s sponsors; Replicated and GoCD!

ChefConf 2018

The highlight of my week was being able to meet 1,400 new friends at ChefConf 2018 in Chicago. If you are ever wondering how to run an amazing event, look no further than the good folks at Chef. From a speaker’s perspective, I have never felt more prepared for a talk. The event itself was meticulously planned and executed. I presented my talk, DevOps is Not War to a standing room only audience. Thanks to the fantastic guidance from the conference’s speaking coach, Anna Boynton, I was able to take a forty minute talk and land it perfectly inside the twenty-minute time slot I had. The event morphed my bias of Chef from a niche tool to a formidable accompaniment of software to ease automation tasks. The messages from the keynotes were like those I’ve delivered to many audiences before, “You’re not an X company, you’re a technology company.” I highly recommend adding ChefConf 2019 to your schedules as soon as it is announced.

GDPR Fatigue

I won’t bore annoy you with more GDPR news. But, I do have one ask from readers: What do you want to know about the data gathered by this newsletter and accompanying web site? I think GDPR is important but, I have not changed much to implement it (and I’m not really sure if I need to either). With that being said, I present to you the 👎 GDPR Hall of Shame.

Go Code of Conduct and vgo

There were two announcements this week from the Go community that merit attention: one is good, the other is disconcerting. First, Go has adopted a new Code of Conduct (based on Google’s new Code of Conduct template) Go’s new Code of Conduct now applies to community members working in non-Go community spaces. This change is a good thing. You shouldn’t be able to prey on people in a community outside of that community’s space and expect to have your standing in the community protected. This allows for open secrets to be acted upon (and I feel transparency is good).

Sadly, this good news was offset by something that I’m deeply concerned about in the Go community. You may recall at GopherCon 2017, Sam Boyer gave a keynote stating that dep was the “official experiment” for Go package management. According to Matt Farina at the very same GopherCon, “Russ Cox, the current lead of the Go team, came to the table. He made a comment that he could do better if he went off on his own and built something. That something was later announced as vgo.” This indicates that dep literally had no chance at being the official anything for Go. Russ Cox announced on 2018-04-25 that the vgo proposal has been accepted. Sam Boyer is a friend. I know he has spent countless hours working on dep as well as analyzing vgo. Sam has several articles in progress analyzing vgo; An Analysis of Vgo and Failure Modes have already been published.

My concern as a somewhat outsider looking in, as well as others I’ve talked to in the Go community, is not in the solution itself but how the communication has been handled. Why announce dep as even a remote possibility as the one way forward at GopherCon 2017? Why was Russ the proposer, writer, and approver of something that clearly needed more debate? I understand Go is a Google project but, this seems rather dictatorial. It’s not a good look for Go’s core maintainers (to say the least). My worry is that this could hurt a young and growing community. I would hate to see that. I ❤️ Go!

Memorial Day and Veterans Day: Know the Difference

It is Memorial Day weekend here in the US. One thing we veterans get mildly irritated about is when citizens don’t recognize the difference between Memorial Day and Veterans Day. Remember this: we remember the fallen on Memorial Day. We thank veterans on Veterans Day.

Replicated: The modern way to ship and manage enterprise software
Replicated gives SaaS and software vendors a cloud-native platform for easily and securely deploying their applications inside customers’ data centers or VPC environments. Replicated provides tooling for automatic updates, license management, support, audit logs, LDAP integration and more. Sign up for a free trial and get started now. SPONSORED

Test Strategy for Microservices
Testing microservices systems is significantly more nuanced and complex than testing a traditional monolithic application. Is traditional testing pyramids still relevant? How to verify overall system behavior? Check out our new post: Test Strategy for Microservices. SPONSORED

Events

DevOpsDays Toronto 2018
Dates: 2018-05-30 through 2018-05-31
I’ll admit it, I’ve never been to Canada. But, I’m definitely going to DevOpsDays Toronto this year to present What the Military Taught Me about DevOps.

DevNation Federal
Date: 2018-06-05
Join us to learn about the revolutions happening in communities around containers, data, and application modernization. This is an opportunity for you to hear how visionary teams in the federal government are innovating with open source, and hear from leaders in the private sector doing the same.

Chaos Conf
Date: 2018-09-28
Chaos Conf looks super awesome. Opening the event will be Adrian Cockcroft, VP AWS, who called 2018 “The year of #chaosengineering”. Closing out the night will be Jessie Frazelle, one of the top #containers experts on the planet currently at Microsoft.

If you’d like me to speak at your conference, Meetup, office, party, etc. please send me a DM on Twitter (@ChrisShort) or e-mail. Thanks!

People

opensource.com is giving away a System76 laptop: Enter for a chance to win a brand new laptop from System76. Not just any laptop either; it’s a first generation Oryx Pro!

Would you wear this muzzle around the office for private calling?: You’ve got to be kidding me! When are we going to build walls again?

IBM’s Watson Health wing left looking poorly after ‘massive’ layoffs: Up to 70% of staff shown the door this week, insiders claim

15 books for kids who (you want to) love Linux and open source: Plus, three books for babies.

‘Elitist den of hate’: Silicon Valley pastor decries hypocrisy of area’s rich liberals: Gregory Stevens resigns after tweets about Palo Alto, slamming tech industry greed and empty social justice promises

Process

Observability+: A fantastic site about all things observability from the brilliant JBD.

Why do Kubernetes clusters in AWS cost more than they should?: Like all things AWS you have to actively manage your cloud spend. Dmytro Dyachuk shows us how.

Writing Technical Articles: People struggle with writing. Here’s my attempt at getting you started. “Pick three points, add an introduction and conclusion and you have the beginnings of a great article.”

Has Kubernetes Already Become Too Unnecessarily Complex for Enterprise IT?: Is Enterprise IT stupid? No. There’s the answer to that question.

Making Kubernetes work for the average engineer—via PaaS: Despite being the hottest thing since, well, Docker, Kubernetes remains a dark art for most mainstream enterprises

Will Kubernetes Collapse Under the Weight of Its Complexity?: Is it? I’m pretty sure Kelsey Hightower said it was boring in Austin last year.

Navigating the container security ecosystem: As container adoption increases, security automation will become a critical element of every organization’s workflow.

Five Words that Get In The Way of DevSecOps: “Vulnerability, risk, policy, compliance and governance are words that get lost in translation between development, security and operations and cause confusion.”

Improve Security with Automated Image Scanning Through CI/CD: “Using cloud-native security tools that hook right into Jenkins or your favorite CI/CD tool, enterprise security teams can set policies for developers who are building container images.”

The DevOps Security Checklist: This security checklist aims to give DevOps professionals a list of DevOps security best practices they can follow to implement DevSecOps.

CNCF To Host Telepresence in the Sandbox: “Telepresence is an open source tool — licensed under the Apache 2.0 License — that lets developers run a single service locally, while connecting that service to a remote Kubernetes cluster.”

Kubernetes best practices: terminating with grace: “When it comes to distributed systems, handling failure is key.”

Your Success with Enterprise Kubernetes Isn’t About Kubernetes: Running like Google is more than Kubernetes products or a nice UI.

Tools

A healthy debate happening on my LinkedIn page (of all places) about why containers matter (and VMs still do too): “I still don’t see the point of containers and Kubernetes when you can just have a good old VM. Why should I have multiple containers for each process I need when I can just run them all on the VM?”

Accessing Kubernetes Services Without Ingress, NodePort, or LoadBalancer: ECMP can make Kubernetes services accessible without Ingress, NodePort, or LoadBalancer service types.

Kubernetes won – so now what?: Iterative improvements, that’s what!

Open Sourcing Zuul 2: Netflix open sourced Zuul 2, their “cloud gateway”

All aboard the gRPC train: A Datadog intern migrated a legacy, homegrown RPC to gRPC.

ianmiell/autotrace: Runs a process, and gives you the output along with other telemetry on the process, all in one terminal window.

Building a Microservices Application in Go Following the CQRS Pattern: This article walks through the development of a simplistic social network application where anyone can post anonymous messages.

Announcement: Scope community: Weaveworks has decided to promote and foster Scope as a community project.

Go2 status: This page tracks the status of “Go 2”. Go 2 is in a very early, planning phase.

atlassian/escalator: Escalator is a batch or job optimized horizontal autoscaler for Kubernetes

Playing battleships over BGP: “Two communities were produced that would allow me run a game of battleships over BGP”

Open Sourcing Coinbase’s Secure Deployment Pipeline: Odin takes a description of a project release and then safely and securely launches it into AWS using auto-scaling groups.

facebookincubator/katran: A high performance layer 4 load balancer

avantoss/vault-infra: Terraform to create Vault infrastructure

The Kata Containers project launches version 1.0 of its lightweight VMs for containers

State of Cloud Native CI/CD Tools for Kubernetes: A smorgasbord of cloud native tooling!

A Docker Image in Less Than 1000 Bytes

kubernetes/kubernetes-template-project: A template for starting new projects on the github.com/kubernetes organization

How OpenFaaS came to rescue us!: An overview on our experience with serverless computing and speeding up Iconscout

Automatically Generating InSpec Controls from Terraform

鯨魚水上飄的修煉 Day 4:Raspberry Pi上的Kubernetes: 兩個月學習Docker & Kubernetes 的心得分享

CalVer: CalVer is a software versioning convention that is based on your project’s release calendar, instead of arbitrary numbers.

Subscribe to DevOps’ish for updates on DevOps, Cloud Native, and Open Source news.

Tweet of the Week

whoami

I’m Chris Short, 20+ year veteran of the IT industry and 11 year veteran of the US Air Force. I help people and companies embrace DevOps practices and tools through writing and public speaking. I am a staunch advocate for transparency and open source solutions to problems. Follow me on Twitter!


Share