DevOps'ish

DevOps, Cloud Native, Hybrid Cloud, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 224: Take your time off, Bryan Liles on a mission, John McAfee dead, Dell SupportAssist assisting the wrong people, AWS DNS hijack, Istio 1.10, Intel to make RISC-V chips, and more

Let me be someone to remind you to take some time off (if you can). As a family, we had many lessons learned from not being in our daily routines, setting, or location. This whole month has been a lot of optimizations in our household. All these learned from being outside our sixteen-month grooves. For example, I confirmed I needed glasses after a persistent headache went away then came back when I went back to work.

Time off is healthy. Do it (again, if you can or as soon as you’re able). Go to another part of your state/country and do something different. You’ve earned it. You made it through some of the earth’s darker days. Tell your people Chris Short said so. A few friends have come through Michigan lately. I invite you to fall through if you’re able to safely. A surprising concentration of Kubernetes contributors lives here. We all seem to have a desire to show off this wonderland of ours. Case in point, I’ll see you soon, Pop.

OpenShift.TV has a shiny new web page. Yes, the calendar is busted, I know. But, the proper calendar is here and is the source of truth for the channel. This is why we talk about the calendar in our docs so much. In general, I have a feeling things are about to take off. A friend who started at Red Hat at the same time as me reminded me that “you’ve proven you’re good enough to everyone but you.” Until these kids are through college and hopefully set up well for the future with good heads on their shoulders, I’m always going to be competing against a younger but brighter version of myself. This is what drives me. So, I’m curious, what drives you?

People

The Science of Why Swearing Reduces Pain
If anyone wonders why I swear so much…

Easy steps on how to secure your Kubernetes cluster by installing Teleport, an open-source, identity-aware access proxy. SPONSORED

Sole Black VMware principal engineer aims to diversify tech
“VMware’s only Black principal engineer talks about his rise in the cloud-native world, how to bring in a new generation of minorities and the future of technology.”

Twitter hired a team of tech critics to build ethical AI
Hopefully they’re fairing better than Google.

John McAfee dead of apparent suicide in Spanish jail after extradition order John McAfee has been busy doing a lot of dirt lately and took his life after being cleared for extradition back to the United States.

In Argentina, cheap government-issued netbooks sparked a musical renaissance
Never underestimate the power of technology in the hands of youth.

How YouTube’s rules are used to silence human rights activists
The system is built to protect the oppressor.

The Linux Foundation Appoints Industry Veteran as Chief Marketing Officer
Congrats to Derek Weeks!

OpenGitOps - The Vendor-Neutral GitOps Project
Congrats to Christian Hernandez!

Process

Preliminary Assessment: Unidentified Aerial Phenomena
It’s interesting to see a government grapple with inconsistencies in policies, procedures, reporting, stigmas, and not having the right tooling in place to make for consistent reporting. Sounds like a story or two I’ve told before. I intentionally buried the lede here: ALIENS!

LaunchDarkly Named a Leader in Feature Management and Experimentation Discover why in its first Wave report dedicated to Feature Management And Experimentation, Forrester rates LaunchDarkly’s platform a Leader among vendor features that enable development teams to reduce software release headaches and enable true testing in production. Download today! SPONSORED

Dell SupportAssist bugs put over 30 million PCs at risk
Holy smokes this is a big blast radius.

A Review of the Linux Kernel’s Release Signing and Key Management Policies
There are definitely some improvements our Linux kernel devs could make to their security practices.

A terrible, horrible, no-good, very bad day at Slack
When your massive infrastructure and HAproxy servers handles configuration changes like the ocean your incidents when come in waves.

New DNS Name Server Hijack Attack Exposes Businesses, Government Agencies
“Researchers found a ‘novel’ class of DNS vulnerabilities in AWS Route53 and other DNS-as-a-service offerings that leak sensitive information on corporate and government customers, with one simple registration step.” This will make your skin crawl a little.

North Korean hackers breach South Korea’s atomic research agency through VPN bug
“Thirteen different IPs were seen abusing the vulnerability and accessing the organization’s internal network.” Can I recommend we prioritize VPN updates, upgrades, and 2FA.

Tools

Last Week in Azure
Microsoft snark incoming.

In their upcoming O’Reilly book, Honeycomb’s Charity Majors, Liz Fong-Jones, and George Miranda explain what constitutes good observability and show you how to make improvements from what you’re doing today. They also provide practical do’s and don’ts for migrating from legacy tooling, such as metrics monitoring and log management. Check out a preview of their book, which includes introductory chapters focused on how observability differs from traditional approaches to managing software in production. SPONSORED.

Istio 1.10: Q&A with Release Manager Sam Naser
“On older versions of Istio the sidecar would intercept pod traffic and forward it to the user application on localhost. Users had to make sure their apps were listening on localhost for things to work. Starting with 1.10, the sidecar will redirect traffic to eth0. This change makes Istio work out of the box with popular stateful applications like Zookeeper or Elasticsearch, but to that end, user applications that are bound exclusively to localhost will have to be modified. We added a command to catch this automatically and make the migration easier.” (emphasis mine)

Microsoft left Linux users in the cold for almost an entire day
I mean, we’re kinda used to this.

PipeWire Under The Hood
The post-pulseaudio era is here.

Semgrep
“The Surgical Static Analysis Tool”

4 Useful fzf Tricks for Your Terminal
fzf seems fun.

Intel to Create RISC-V Development Platform with SiFive P550 Cores on 7nm in 2022
If you can’t beat ‘em, join ‘em.

netlify-labs/netlify-plugin-lighthouse
“Netlify Plugin to run Lighthouse on each build”

Call-for-Code-for-Racial-Justice/Open-Sentencing
“To help public defenders better serve their clients, Open Sentencing shows racial bias in data such as demographics providing insights for each case”

DevOps’ish Tweet of the Week

Want more? Be sure to check out the notes from this week’s issue to see what didn’t make it to the newsletter but are still worth your time.


Sponsor DevOps'ish and put your brand in front of thousands of highly skilled operators, maintainers, developers, and leaders from Amazon, Apple, Google, IBM, Intel, Microsoft, Red Hat, many of the Fortune 100, and beyond. Download the DevOps'ish Sponsorship Prospectus now!


Join the Conversation

Join //devopsish for a stream of news and content throughout the week.


Share