DevOps'ish

DevOps, Cloud Native, Open Source, and the ‘ish in between.

089: Kubernetes, Get a Dog, GitHub, GitOps, Istio, AKS Woes, and More

This week’s newsletter is a day early. I’ll be moving my daughter into college Sunday and Monday. It’s a two-day process because southeastern Michigan isn’t as close to southern Ohio as you’d think. I’ll be in Dayton on Sunday and Cincinnati on Monday. Lemme know if you’re around.

Blog Series: Continuous Delivery of Microservices - Parts 1 - 5
This blog series from Sheroy Marker cover the principles of CD of microservices. Get a practical guide on designing CD workflows for microservices, testing strategies, trunk based development, feature toggles and environment plans. SPONSORED

Correlate request traces, metrics, and logs
Smoothly navigate between logs, metrics, and request traces for a clear view of all your systems. Visualize and alert on metrics in real-time with anomaly and outlier detection. Try Datadog’s full-stack monitoring for free SPONSORED

eBook: Building Continuous Delivery Pipelines
Learn the steps required to plan and implement a CD pipeline in your organization, including the benefits and best practices. Download eBook SPONSORED

People

Kwyn Meagher is looking for work: You should hire Kwyn. “I’m looking for a senior full-stack role on a product or developer tools team.”

Hackers can cook you alive using ‘microwave oven’ sat-comms – claim: Planes, ships, military equipment at risk due to backdoors, vulns

This lifehack will change your life—if you can stand it: The secret to achieving excellence is disarmingly simple. You might not like it, though.

Powerful women told me getting a dog is the key to success. They were right: We don’t deserve dogs.

Netflix CFO David Wells to step down

I started a corporation!: “So I decided to start a corporation (just on the side, I still work at the same place ❤) to manage the logistics. I’m pretty excited about this so I wanted to explain why.”

Engineers Say “No Thanks” to Silicon Valley Recruiters, Citing Ethical Concerns: “Some engineers are turning down tech recruiters by citing concerns about corporate values.” One good thing the Baby Boomers showed us is that selling your soul for work doesn’t actually get you much.

An Interview with Jez Humble on Continuous Delivery, Engineering Culture, and Making Decisions

Process

Spectre-Like Flaw Undermines Intel Processors’ Most Secure Element: Another bad week for Intel.

Pinning its Past, Present, and Future on Cloud Native: My friend, Kim McMahon, shows us a talk I sadly missed at KubeCon last year (I was looking for a job after all).

2FA, SMS, and you: Julia Ferraioli (sorry Julia, I probably spelled your name wrong) shows us, “not all 2FA is created equal.”

GitHub goes off the Rails as Microsoft closes in: Ruby shop turns to Go, Java, and Kubernetes for platform makeover

[Firefighters choke on Oracle’s alleged smoke-and-mirrors cloud](https://www.theregister.co.uk/2018/08/13/oracle_sued_cloud_numbers/: Pension fund cries fraud over database giant’s boasts about its off-prem biz performance

Site Reliability Engineering at New Relic: Philosophies, Habits, and Tools for SRE Success

What the f*** is the edge?: The edge is far and wide and close and narrow all at the same time.

7 best practices for operating containers: “This post goes over what you need to know and do to efficiently run containers in Kubernetes.”

Horrors of using Azure Kubernetes Service in production: Even with all the brain power Microsoft has pulled in, running AKS is a huge challenge.

Jack Dorsey says he’s rethinking the core of how Twitter works: Twitter CEO Jack Dorsey said he was experimenting with features to address misinformation and reduce “echo chambers.”

Apple says no personal data compromised in teenager hacking incident: This made me laugh out loud when I read it today. “The individual collected tens of gigabytes of confidential, secure, company files and saved them in a folder named ‘hacky hacky hack’.”

cliqz-oss/local-sheriff: Think of Local sheriff as a recon tool in your browser (WebExtension). While you normally browse the internet, Local Sheriff works in the background to empower you in identifying what data points (PII) are being shared / leaked to which all third-parties.

Logging Best Practices for Kubernetes using Elasticsearch, Fluent Bit and Kibana: “There are many options for logging when building Cloud Native applications. We’ve evaluated several options and found a set of tools that work well for us.”

CNCF Seeks to Advance IT Performance Monitoring with OpenMetrics Spec: “Prometheus will move to this OpenMetrics model, as will microservices-oriented monitoring software from InfluxData, Sysdig, Weave, and OpenCensus.”

Tools

Managing Helm releases the GitOps way: “using git push instead of kubectl create/apply or helm install/upgrade.”

Multi-stage Serverless on Kubernetes with OpenFaaS and GKE: Learn how to set up OpenFaaS on Google Kubernetes Engine (GKE) with a cost-effective, auto-scaling, multi-stage deployment.

Health Checks and Graceful Degradation in Distributed Systems: “The ‘health’ of a process is a spectrum. What we’re really interested in is the quality-of-service — such as how long it takes for a process to return the result of a given unit of work and the accuracy of the result.”

Kubernetes Networking: How to Write Your Own CNI Plug-in with Bash: Learn how to create a container network interface plug-in, configure and test it, as well as enable external access and communication between containers.

Automating Deployments Using Ansible AWX & Jenkins: “Jenkins was deployed to intercept the webhook from GitHub and then trigger the correct playbook run in Ansible AWX”

Rook.io : Ceph Persistent Storage Made Easy on Kubernetes

Python3 support for Podman: “The python3-podman package containers a module that allows you to connect to a Podman socket activated systemd service on the same host or a remote host using a ssh tunnel.”

jesseduffield/lazygit: simple terminal UI for git commands

A sysadmin’s handy cheat sheet for SELinux: Improve your skills managing and using Security-Enhanced Linux with this helpful guide.

The Five Stages of YAML

Getting started with the Secure DevOps Kit for Azure (AzSK): Mark Jacobs joins Scott Hanselman to discuss how Microsoft’s internal enterprise increases compliance and creates a more trusted cloud environment using the Secure DevOps Kit for Azure (AzSK).

Introducing Kafka-Kit: Tools for Scaling Kafka: Kafka-Kit is a collection of tools that handle partition to broker mappings, failed broker replacements, storage based partition rebalancing, and replication auto-throttling.

Istio Aims To Be The Mesh Plumbing For Containerized Microservices: “There is a third piece of the puzzle that is still up in the air, which Istio is designed to meet.”

vr00n/Amazon-Web-Shenanigans: A lambda function that checks your account for Public buckets and emails you whenever a new public s3 bucket is created

Minio as an S3 Gateway for Backblaze B2 Cloud Storage: “Minio is designed to be straightforward to deploy and use. If you’re using an S3-compatible integration, or just want to try out Backblaze B2 using your existing knowledge of S3 APIs and commands, then Minio can be a quick solution to getting up and running with Backblaze B2 and taking advantage of the lower cost of B2 cloud storage.”

cattlepi/cattlepi: effortlessly boot, configure, update and monitor your raspberry pi

Tutorial: How to deploy an app to production with an actual button

Tweet of the Week


Subscribe to DevOps'ish for updates on DevOps, Cloud Native, and Open Source news.

Join the DevOps'ish group on Telegram

E-mail this to a friend!


whoami

I'm Chris Short, 20+ veteran of the IT industry and 11 year veteran of the US Air Force. I help people and companies embrace DevOps practices and tools through writing and public speaking. I am a staunch advocate for transparency and open source solutions to problems.

Follow me on Twitter and LinkedIn. Join the discussion on Facebook and Telegram.


Share