Every week I comb through 1000s of articles that get curated down to somewhere between 60 to 100 URLs eligible for DevOps'ish. Those URLs land in this notes file that ends up being source material for the newsletter. Being in that group of links is an achievement of its own and should be lauded.

It's a shame when I have to choose between having too many links or someone's special thing getting featured in the newsletter. Here's another chance to shine!

As always, thank you for reading,
Chris Short

The following links and/or notes accompany the corresponding issue of DevOps'ish.


How to avoid bad assumptions during incidents | incident.io | incident.io

A fork for the time-zone database? [LWN.net]

Why Should I Care About HTTP Request Smuggling?

Notorious Spyware Tool Found Hiding Beneath Four Layers of Obfuscation

Hardening Kubernetes Beyond NSA, CISA Guidance - Container Journal

How my open source project got angel investment from a user itself! - DEV Community

Spotlight on SIG Node | Kubernetes

Why EFF Flew a Plane Over Apple’s Headquarters | Electronic Frontier Foundation

Developers fix multitude of vulnerabilities in Apache HTTP Server | The Daily Swig


The Melting Face Emoji Has Already Won Us Over - The New York Times

Latest web hacking tools – Q4 2021 | The Daily Swig

How to get robust GitOps? The U.S. Department of Defense uses Flux and Helm | Cloud Native Computing Foundation

All my zines are now available in print!

the most important HTTP request headers

Zoom’s planned $14.7B Five9 contact center acquisition is off | VentureBeat

Arm-Based 128-Core Ampere CPUs Cost a Fraction of x86 Price | Tom’s Hardware

The U.S. Department of Defense formally authorizes Grafana, Grafana Enterprise, and Loki for its 100,000 developers | Grafana Labs

USB-IF is, once again, trying to logo its way out of USB-C confusion | Ars Technica

gitpod-io/openvscode-server: Run upstream VS Code on a remote machine with access through a modern web browser from any device, anywhere.

“Intel Software Defined Silicon” Coming To Linux For Activating Extra Licensed Hardware Features - Phoronix

I Don’t Think ElasticSearch Is A Good Logging System | Sinkingpoint

How we deploy code – [[WM:TECHBLOG]]

New Azure Active Directory password brute-forcing flaw has no fix | Ars Technica

Stack Overflow The Key Macropad | Mechanical Keyboards | Mini Mechanical Keyboards | Drop

Top10/A04_2021-Insecure_Design.md at master · OWASP/Top10

Generate & Show QR Code

aristocratos/btop: A monitor of resources

Common mistakes when using libcurl | daniel.haxx.se

Multi-Site, Active Active Replication

Linux Page Cache for SRE | Viacheslav Biriukov


Researchers use Starlink satellites to pinpoint location, similar to GPS | Ars Technica

1,460-Day Old Known Vulnerability Catches Microsoft Off Guard

Tech Boom Floods Israel’s Silicon Valley With Cash, Exposing Divisions - WSJ