Every week I comb through 1000s of articles that get curated down to somewhere between 60 to 100 URLs eligible for DevOps'ish. Those URLs land in this notes file that ends up being source material for the newsletter. Being in that group of links is an achievement of its own and should be lauded.

It's a shame when I have to choose between having too many links or someone's special thing getting featured in the newsletter. Here's another chance to shine!

As always, thank you for reading,
Chris Short
He/Him/His
TZ=America/Detroit

The following links and/or notes accompany the corresponding issue of DevOps'ish.

Notes

Log4j

‘Log4Shell’ vulnerability poses critical threat to applications using ‘ubiquitous’ Java logging package Apache Log4j | The Daily Swig

The Internet’s biggest players are all affected by critical Log4Shell 0-day | Ars Technica

Did I get owned by Log4Shell? | Pixie Labs Blog

Digging deeper into Log4Shell - 0Day RCE exploit found in Log4j | Fastly

Maintenance Update 12/10/2021 – Backblaze Help

Other Notes

Improving GitHub code search | The GitHub Blog

How To Do Canary Deployments In Kubernetes Using Flagger And Linkerd? - YouTube

Kali Linux 2021.4 released with Samba compatibility, Apple M1 support, 9 new tools

Mercedes-Benz gets world’s first approval for automated driving system | Ars Technica

Two Things I Practised in 2021 – More Questions Than Answers

How eBPF will solve Service Mesh - Goodbye Sidecars

‘Crisis mode.’ Hospitals across Michigan dealing 4th COVID-19 surge

DNS “propagation” is actually caches expiring

Report: Apple CEO Tim Cook signed secret $275 billion deal with China | iMore

Store Secrets in Git - Sealed Secrets - YouTube

kubeshop/kusk: Kusk makes your OpenAPI definition the source of truth for API resources in your cluster

ARM64 VM on macOS with libvirt + QEMU

EBS CSI driver now available in EKS add-ons in preview

redkubes/otomi-core: A Kubernetes application deployment and configuration platform with developer self-service

ArgoCon 2021 - Amazing Community Participation! | by Henrik Blixt | Dec, 2021 | Argo Project

RISC-V Summit 2021 - High Performance Processors, Other Interesting Talks - Phoronix

“Incident” shouldn’t be a four-letter word |> Changelog

Russian hackers bypass 2FA by annoying victims with repeated push notifications - The Record by Recorded Future

1.6 Million WordPress Sites Hit With 13.7 Million Attacks In 36 Hours From 16,000 IPs

US Military’s Hacking Unit to take on ransomware gangs

A key inflation measure rose to a 39-year high last month - CNN

Secure end-to-end traffic on Amazon EKS using TLS certificate in ACM, ALB, and Istio | Containers

reddec/ingress-dashboard: Kubernetes-native automatic dashboard for Ingress

How WireGuard made it into Linux • The Register

Newly Found Authentication Flaws Highlight Dangers of Coding From Scratch

What will happen to Arm now? | Digits to Dollars

Using CloudTrail to identify unexpected behaviors in individual workloads | AWS Security Blog

https://twitter.com/todaywasawesome/status/1468670520438575106?s=12

Russia Blocks TorProject.org and Begins Blocking of Wider Tor Network * TorrentFreak

[2010.08850] Against Scale: Provocations and Resistances to Scale Thinking

South Korea sets reliability standards for Big Tech • The Register

Intel’s Cloud-Hypervisor Moving To The Linux Foundation - Backed By Arm, Microsoft - Phoronix

When Terrorists Govern | Foreign Affairs

LeoLabs

FAA Sets 5G Flight Restrictions to Avoid Possible Hazards From New Wireless Service - WSJ

Making Engineering Team Communication Clearer, Faster, Better | First Round Review

Linux Foundation Expects Revenues Of $177 Million This Year - Phoronix

Verizon overrides users’ opt-out preferences in push to collect browsing history | Ars Technica

How SpaceX’s massive Starship rocket might unlock the solar system—and beyond | MIT Technology Review

SolarWinds Hackers Targeting Government and Business Entities Worldwide

When Should Your Company Develop Its Own Software?

DARPA Funded Researchers Accidentally Discover The World’s First Warp Bubble - The Debrief

China ‘modified’ the weather to create clear skies for political celebration – study | China | The Guardian

Suspected Russian Activity Targeting Government and Business Entities Around the Globe | Mandiant

Updated Rust Code For Linux Kernel Patches Posted - Phoronix

No easter eggs in curl | daniel.haxx.se

White House to unveil alliance to curb human rights abuse of tech | Reuters

U.S. Military Has Acted Against Ransomware Groups, General Acknowledges - The New York Times

How to use dig

Twitter’s new CEO used to be CTO. That’s rare. - Protocol — The people, power and politics of tech

Shardz · rakyll.org

Personal brands: embracing imperfection and staying authentic – rkulidzan

Announcing our Seed Round, and Chainguard Services! | Chainguard, Inc.