There was some discussion in the DevOps’ish Telegram about what the topic of this intro should be this week. One suggestion was excellent; I’m probably going to run with it next week. But, I understand that there are some of you looking for something to learn while we’re in this odd time. I wrote this week’s newsletter with that in mind. If you don’t know
git, now is the time to learn for sure. Please don’t hesitate to reach out if you have any feedback. Thank you for subscribing and reading.
We’re all in this Together: A Wellness Guide from the CNCF Well-Being Working Group
If you’re struggling, I’m right there with you. Don’t be afraid to reach out for help.
IBM awards its second $50,000 Open Source Community Grant to internship and mentorship program Outreachy
“Our open source community nominated a number of nonprofits doing incredible work and, while voting was close with plenty of deserving organizations in the mix, we awarded Outreachy the most votes for their commitment to providing paid internships to underserved and underrepresented minorities.”
Jeff Geerling’s DevOps books are free in April, thanks to Device42
Huge thanks for these books. Ansible for DevOps changed my career. Ansible for Kubernetes builds on that. Thank you!
The best games to play while waiting out the coronavirus
I will freely admit, I’m looking for distractions from the news and numbers.
WeWork founder Adam Neumann loses out as SoftBank scraps share buyout
points and laughs 🤣🤣🤣
Migrating to Kubernetes
“How to migrate depends, to an extent, on what you want to migrate from. The primary consideration is whether your existing infrastructure runs workloads in containers. If so, you’re already off to a quick start because you won’t have the containerization step to complete. Otherwise, you have a clear place to start.”
A hacker has wiped, defaced more than 15,000 Elasticsearch servers
“Hacker tries to pin the blame on Night Lion Security, a US cyber-security firm.”
Ops by Pull Request: An Ansible GitOps Story
“There are many tools you can use in your GitOps pipelines; however, Ansible provides some unique advantages that make it ideal for these workflows and extending their use beyond Kubernetes and cloud-native systems.”
Who’s freezing hiring from coronavirus
A continuously updated AirTable of companies and whether or not they’re hiring.
3 Tips to Avoid WFH Burnout
“Maintain physical and social boundaries. Maintain temporal boundaries as much as possible. Focus on your most important work.”
Kpt: Packaging up your Kubernetes configuration with git and YAML since 2014
“Today we’d like to introduce kpt, an OSS tool for Kubernetes packaging, which uses a standard format to bundle, publish, customize, update, and apply configuration manifests.”
Forget AWS Lambda, Kubernetes AND Fargate - what we need is beyond all three
The case for containers without thinking about capacity (which is exactly what we need right now).
WireGuard 1.0.0 Christened As A Modern Secure VPN Alternative To OpenVPN/IPsec
Welcome to the kernel, WireGuard.
Online Debug for AWS Lambda on your IDE!
Thundra allows you to natively debug your serverless applications on the cloud with their own permissions. Thundra’s online-debugger sets up a secure bridge between your AWS Lambda environment and your IDE. VSCode and IntelliJ IDEA are natively supported with plugins. For other IDEs, we provide a portable client to foster the integration with any IDEs. Start debugging Node.js, Python and Java functions for free today! SPONSORED
Deploying a Windows Server 2019 virtual machine using OpenShift Virtualization (YouTube)
“OpenShift virtualization enables Red Hat OpenShift clusters deployed to bare metal physical servers to use the KVM hypervisor to deploy and manage virtual machines utilizing Kubernetes APIs and Operators. For applications which consist of a mix of containers and VMs, OpenShift virtualization provides a way to bring both components under the same management paradigm, allowing the application team to move at the speed of containers, but still retain the characteristics of a virtual machine when needed.”
Improvements to the Ingress API in Kubernetes 1.18
“In Kubernetes 1.18, we’ve made 3 significant additions to this API”
“I kept being bothered by the fact that
kubens modify a global config file. That is, when you change your shell’s current context or namespace, it also affects all other shells…”
Detailed Guide to Kubernetes Configurations - Download Today
Accidental misconfiguration is one of the leading causes of security breaches. When it comes to Kubernetes, the configuration options are complicated, security features are not enabled by default, and most of the community is learning how to securely configure their infrastructure components. In this guide, StackRox takes a deep dive into key Kubernetes configurations and recommended best practices you should follow to secure your API server, kubelet, pod security policies, etc. - with code snippets to check the configs. SPONSORED
Provisioning cloud resources (AWS, GCP, Azure) in Kubernetes
“TL;DR: You can create and connect to managed cloud resources from Kubernetes using the Service Catalog, a tool such as Kubeform or cloud-specific operators such as Config Connector and AWS Operator Service.”
Kubernetes Topology Manager Moves to Beta - Align Up!
TopologyManager feature enables NUMA alignment of CPUs and peripheral devices (such as SR-IOV VFs and GPUs), allowing your workload to run in an environment optimized for low-latency.
“Kubevious project, application centric Kubernetes UI”
“Sync data from one Postgres database to another”
DevOps’ish Tweet of the Week
Don’t be an aaS!— Diane Mueller (@pythondj) April 1, 2020
Want more? Be sure to check out the notes from this week’s issue to see what didn’t make it to the newsletter.
Sponsor DevOps'ish and put your brand in front of thousands of highly skilled operators, maintainers, developers, and leaders from Amazon, Apple, Google, IBM, Intel, Microsoft, Red Hat, many of the Fortune 100, and beyond. Download the DevOps'ish Sponsorship Prospectus now!
Join the Conversation
Join the DevOps'ish group on Telegram for insight and in-depth discussions about real technical challenges facing real people. Also, join //devopsish for a stream of news and content throughout the week.