This week’s newsletter is a day early. I’ll be moving my daughter into college Sunday and Monday. It’s a two-day process because southeastern Michigan isn’t as close to southern Ohio as you’d think. I’ll be in Dayton on Sunday and Cincinnati on Monday. Lemme know if you’re around.
Blog Series: Continuous Delivery of Microservices - Parts 1 - 5
This blog series from Sheroy Marker cover the principles of CD of microservices. Get a practical guide on designing CD workflows for microservices, testing strategies, trunk based development, feature toggles and environment plans. SPONSORED
Correlate request traces, metrics, and logs
Smoothly navigate between logs, metrics, and request traces for a clear view of all your systems. Visualize and alert on metrics in real-time with anomaly and outlier detection. Try Datadog’s full-stack monitoring for free SPONSORED
Kwyn Meagher is looking for work: You should hire Kwyn. “I’m looking for a senior full-stack role on a product or developer tools team.”
Hackers can cook you alive using ‘microwave oven’ sat-comms – claim: Planes, ships, military equipment at risk due to backdoors, vulns
This lifehack will change your life—if you can stand it: The secret to achieving excellence is disarmingly simple. You might not like it, though.
Powerful women told me getting a dog is the key to success. They were right: We don’t deserve dogs.
I started a corporation!: “So I decided to start a corporation (just on the side, I still work at the same place ❤) to manage the logistics. I’m pretty excited about this so I wanted to explain why.”
Engineers Say “No Thanks” to Silicon Valley Recruiters, Citing Ethical Concerns: “Some engineers are turning down tech recruiters by citing concerns about corporate values.” One good thing the Baby Boomers showed us is that selling your soul for work doesn’t actually get you much.
Spectre-Like Flaw Undermines Intel Processors’ Most Secure Element: Another bad week for Intel.
Pinning its Past, Present, and Future on Cloud Native: My friend, Kim McMahon, shows us a talk I sadly missed at KubeCon last year (I was looking for a job after all).
2FA, SMS, and you: Julia Ferraioli (sorry Julia, I probably spelled your name wrong) shows us, “not all 2FA is created equal.”
GitHub goes off the Rails as Microsoft closes in: Ruby shop turns to Go, Java, and Kubernetes for platform makeover
Firefighters choke on Oracle’s alleged smoke-and-mirrors cloud: Pension fund cries fraud over database giant’s boasts about its off-prem biz performance
Site Reliability Engineering at New Relic: Philosophies, Habits, and Tools for SRE Success
What the f*** is the edge?: The edge is far and wide and close and narrow all at the same time.
7 best practices for operating containers: “This post goes over what you need to know and do to efficiently run containers in Kubernetes.”
Horrors of using Azure Kubernetes Service in production: Even with all the brain power Microsoft has pulled in, running AKS is a huge challenge.
Jack Dorsey says he’s rethinking the core of how Twitter works: Twitter CEO Jack Dorsey said he was experimenting with features to address misinformation and reduce “echo chambers.”
Apple says no personal data compromised in teenager hacking incident: This made me laugh out loud when I read it today. “The individual collected tens of gigabytes of confidential, secure, company files and saved them in a folder named ‘hacky hacky hack’.”
cliqz-oss/local-sheriff: Think of Local sheriff as a recon tool in your browser (WebExtension). While you normally browse the internet, Local Sheriff works in the background to empower you in identifying what data points (PII) are being shared / leaked to which all third-parties.
Logging Best Practices for Kubernetes using Elasticsearch, Fluent Bit and Kibana: “There are many options for logging when building Cloud Native applications. We’ve evaluated several options and found a set of tools that work well for us.”
CNCF Seeks to Advance IT Performance Monitoring with OpenMetrics Spec: “Prometheus will move to this OpenMetrics model, as will microservices-oriented monitoring software from InfluxData, Sysdig, Weave, and OpenCensus.”
Managing Helm releases the GitOps way: “using
git push instead of
kubectl create/apply or
Multi-stage Serverless on Kubernetes with OpenFaaS and GKE: Learn how to set up OpenFaaS on Google Kubernetes Engine (GKE) with a cost-effective, auto-scaling, multi-stage deployment.
Health Checks and Graceful Degradation in Distributed Systems: “The ‘health’ of a process is a spectrum. What we’re really interested in is the quality-of-service — such as how long it takes for a process to return the result of a given unit of work and the accuracy of the result.”
Kubernetes Networking: How to Write Your Own CNI Plug-in with Bash: Learn how to create a container network interface plug-in, configure and test it, as well as enable external access and communication between containers.
Automating Deployments Using Ansible AWX & Jenkins: “Jenkins was deployed to intercept the webhook from GitHub and then trigger the correct playbook run in Ansible AWX”
Python3 support for Podman: “The python3-podman package containers a module that allows you to connect to a Podman socket activated systemd service on the same host or a remote host using a ssh tunnel.”
jesseduffield/lazygit: simple terminal UI for git commands
A sysadmin’s handy cheat sheet for SELinux: Improve your skills managing and using Security-Enhanced Linux with this helpful guide.
Getting started with the Secure DevOps Kit for Azure (AzSK): Mark Jacobs joins Scott Hanselman to discuss how Microsoft’s internal enterprise increases compliance and creates a more trusted cloud environment using the Secure DevOps Kit for Azure (AzSK).
Introducing Kafka-Kit: Tools for Scaling Kafka: Kafka-Kit is a collection of tools that handle partition to broker mappings, failed broker replacements, storage based partition rebalancing, and replication auto-throttling.
Istio Aims To Be The Mesh Plumbing For Containerized Microservices: “There is a third piece of the puzzle that is still up in the air, which Istio is designed to meet.”
vr00n/Amazon-Web-Shenanigans: A lambda function that checks your account for Public buckets and emails you whenever a new public s3 bucket is created
Minio as an S3 Gateway for Backblaze B2 Cloud Storage: “Minio is designed to be straightforward to deploy and use. If you’re using an S3-compatible integration, or just want to try out Backblaze B2 using your existing knowledge of S3 APIs and commands, then Minio can be a quick solution to getting up and running with Backblaze B2 and taking advantage of the lower cost of B2 cloud storage.”
cattlepi/cattlepi: effortlessly boot, configure, update and monitor your raspberry pi
DevOps’ish Tweet of the Week
Just heard someone mention every member of the state of DevOps report except one person. @nicolefv doesn't get the recognition she deserves.— Jamie Phillips (@phillipsj73) August 16, 2018
Sponsor DevOps'ish and put your brand in front of thousands of highly skilled operators, maintainers, developers, and leaders from Amazon, Apple, Google, IBM, Intel, Microsoft, Red Hat, many of the Fortune 100, and beyond. Download the DevOps'ish Sponsorship Prospectus now!
Join the Conversation
Join the DevOps'ish group on Telegram for insight and in-depth discussions about real technical challenges facing real people. Also, join //devopsish for a stream of news and content throughout the week.