DevOps'ish

DevOps, Cloud Native, Open Source, and the ‘ish between.

153: The week before KubeCon, KubeKhan is back, PodCTL, Microsoft making moves, GitOps, AWS Savings Plans, OpenTitan, Vitess, and more

Note: DevOps’ish will no longer publish an RSS feed. It’s a business decision at this point. Please subscribe via e-mail. Subscribers seem to be the only metric potential sponsors care about. This change should ensure the long term viability of DevOps’ish.

Are you ready for KubeCon? I’m not, but I hope to be by end of day Friday. There are a number of events every night (see Events section). If your calendar isn’t booked and you’re looking for something to do, several sponsors are hosting things across San Diego. I’ll be arriving on Sunday midday and heading over to Cloud Native Rejekts. Monday, I’ll be helping at the New Contributor Summit. Tuesday and Wednesday are going to be non-stop Kubernetes and cloud native awesomeness. Thursday things seem to slow a little. When in doubt, I’ll be near the Red Hat booth or supporting my friends that are speaking. I tell my family that this is essentially our Super Bowl for the year. I hope it doesn’t disappoint.

But, the event of the year we all know is #KubeKhan. The come as you are, judgment-free gathering is back this year with a little extra oomph thanks to our friends at Cloud Native Computing Foundation. It’s casual and will take place every night of KubeCon activities in some capacity. But, the first official night of #KubeKhan will be Monday, November, 18th at the Marriott Marquis® San Diego Marina starting around 7-ish. The KubeCon Code of Conduct will be adhered to.

Notes for this weeks issue are avaialble here: Notes

Events

KubeCon + CloudNativeCon North America 2019
The Cloud Native Computing Foundation’s flagship conference gathers adopters and technologists from leading open source and cloud native communities in San Diego, California from November 18-21, 2019. Join Kubernetes, Prometheus, Envoy, CoreDNS, containerd, Fluentd, OpenTracing, gRPC, CNI, Jaeger, Notary, TUF, Vitess, NATS, Linkerd, Helm, Rook, Harbor, etcd, Open Policy Agent, CRI-O, and TiKV as the community gathers for four days to further the education and advancement of cloud native computing. Use code KCNACSN10 at checkout for a 10% discount on KubeCon Corporate Registration.

Diversity and Inclusion Lunches and Hacks - KubeCon + CloudNativeCon North America 2019

KubeHunt San Diego 2019 — Complete the form. Spots are limited. Registration will close at 3pm on Monday, November 18th, 2019.

San Diego Mixer: Meet the DigitalOcean Kubernetes Team & Kick-Off KubeCon Tickets, Mon, Nov 18, 2019 at 6:30 PM

KubeCon k8s Rooftop Happy Hour Registration, Mon, Nov 18, 2019 at 6:30 PM

Snyk & CloudBees Happy Hour at KubeCon, Monday, November 18th at 5:30 PM

K8s or Die! Party by Mirantis, Tuesday, Nov 19th, 2019 at 8:30pm

People

PodCTL Co-host — This week, Brian Gracely reached out to me to cohost PodCTL, Red Hat’s Kubernetes podcast. Knowing that Brian has the tooling and processes in place for podcast production, I didn’t even hesitate to say, “Yes!” We recorded an episode during the calm before the KubeCon storm. A fancy mic for my iPhone is now part of my kit and we’re off to the races.

My Job Interview at Google — A walkthrough of the Google SRE hiring process.

Microsoft finds workers are more productive with a 4-day workweek — ”More importantly from a bottom-line standpoint, however, productivity went up 39.9%, as fewer and shorter meetings were held, often virtually rather than in person.” That right there is reason enough to try it for me.

Tikam02/DevOps-Guide — DevOps Guide from basic to advanced with Interview Questions and Notes 🔥

In a world of infosec rockstars, shutting down sexual harassment is hard work for victims — How a close-knit hero-worshiping culture can make reporting abusers difficult – and how help is at hand

Welcome, Singular “They” — The Publication Manual of the American Psychological Association has adopted singular They/Their as opposed to “his or hers.” That’s going to save me a lot of mental capacity in their long run.

Process

At Ignite, Microsoft pitches its new role embracing the wider tech ecosystem — As Microsoft, VMware, and Google look to get into running faster on their new long term business strategies it seems that Microsoft has eeked ahead ever so slightly this week.

5 GitOps Best Practices — ”Here are some of the key best practices we’ve discovered while engineering Argo CD and running it at scale managing thousands of apps in production at Intuit.”

Cloud Native Chaos Engineering - Enhancing Kubernetes Application Resiliency — A look at the MayaData stack

Re-Licensing Sentry — Sentry isn’t an open source company anymore.

Cloud Native Computing Foundation Announces Vitess Graduation — Congrats to the Vitess team!

Helm Security Audit Results — Ship it! Helm is ready to set sail into its Tillerless future.

Python overtakes Java to become second-most popular language on GitHub after JavaScript — ”Build once, run anywhere” versus “I have three versions of this on my system and seven virtual envs (that I know of).”

Tools

AWS Begins Sunsetting RIs; Replaces Them With Something Much, Much Better — ”AWS announced ‘Savings Plans,’ which sounds like a bank’s Christmas Club account offering but is in fact something far more compelling. It amounts to nothing less than a complete overhaul of the AWS compute pricing model.”

OpenTitan - open sourcing transparent, trustworthy, and secure silicon — A big step forward for securing compute.

Istio: Up and Running: Using a Service Mesh to Connect, Secure, Control, and Observe — ”In this book, Lee Calcote and Zack Butcher explain why your services need a service mesh and demonstrate step-by-step how Istio fits into the life cycle of a distributed application. You’ll learn about the tools and APIs for enabling and managing many of the features found in Istio.”

Note: DevOps’ish may earn compensation for sales from links on this post through affiliate programs.

Kubernetes Patterns by Bilgin Ibryam and Roland Huß — One of the best reference books for Kubernetes is now available after signup. However, the signup form is annoying as hell and for that I am sorry. Disclaimer: My views do not reflect those of Red Hat.

Mario’s Adventures in Tekton Land

BLESSing away SSH worries — ”Ultimate Practical Guide to setup Netflix Bless in under 60 minutes from scratch with the Go Client”

The 10 Best Linux Books To Read in 2019

Introducing Pkger — Static File Embedding in Go — “Today I would like to introduce Pkger, a tool for embedding static files into Go binaries that is idiomatic, lossless, and less complex.”

Kubernetes Multi-Operator Stacks and Advanced Pod Scheduling — ”Kubernetes provides several advanced Pod scheduling constructs. As an Operator developer it is important for you to carefully evaluate these constructs when designing your Custom Resources and Custom Controllers.”

Basic security principles for containers and container runtimes

Primer: What Is Container Security? — ”The way modern DevOps operates, it is impossible to implement successful controls without automation. The scale and dynamic nature are too much to try and keep up by using static or manually updated tools. If your security tool cannot keep up with the way your DevOps teams operate, then it is unlikely it will be adopted or effective.”

Basic troubleshooting with telnet and netcat — Two popular tools for testing network services on a basic level are telnet and Netcat. Here’s how to use them.

aquasecurity/tracee — [EXPERIMENTAL] Container tracing using eBPF

linki/chaoskube — chaoskube periodically kills random pods in your Kubernetes cluster

kubecost/cost-model — Cross-cloud cost allocation models for workloads running on Kubernetes

DShield-ISC/dshield — DShield Raspberry Pi Sensor

No Maintenance Intended — ”The linking project’s code is provided as-is, and is not actively maintained.”

Tweet of the Week


DevOps'ish is a weekly newsletter assembled by open source contributor, DevOps veteran, and CNCF Ambassador Chris Short. Join the 3,837 member community and subscribe now!


Sponsor DevOps'ish and put your brand in front of thousands of highly skilled operators, maintainers, developers, and leaders from across the Fortune 500, Silicon Valley, and beyond.


Join the Conversation

Join the DevOps'ish group on Telegram for insight and in-depth discussions about real technical challenges facing real people. If you're into Reddit, join //devopsish. You can follow me on Twitter and LinkedIn too.


Share