Every week I comb through 1000s of articles that get curated down to somewhere between 60 to 100 URLs eligible for DevOps'ish. Those URLs land in this notes file that ends up being source material for the newsletter. Being in that group of links is an achievement of its own and should be lauded.

It's a shame when I have to choose between having too many links or someone's special thing getting featured in the newsletter. Here's another chance to shine!

As always, thank you for reading,
Chris Short

The following links and/or notes accompany the corresponding issue of DevOps'ish.



From Log4j to the Future of Business: Our year in review - Lacework

New Apache Log4j Update Released to Patch Newly Discovered Vulnerability

Apache releases Log4j patch to address new RCE vulnerability - SiliconANGLE

CVE-2021-44832: New Arbitrary Code Execution Vulnerability in Log4j

The Log4j Flaw Will Take Years to be Fully Addressed

Other Notes

What’s Launching to the Moon in 2022 - The New York Times

davideshay/vulnscan: Vulnerability Scanner Suite based on grype and syft from anchore

This Year In Programming: Go, Rust, GitHub Lead 2021 Stories – The New Stack

2021: Year in review

ioSafe’s New Disaster-Proof NAS Can Store 100TB and Withstand 1,550F of Heat | Tom’s Hardware

My Setup for Self-Hosting Dozens of Web Applications + Services on a Single Server - Casey Primozic’s Homepage

A Common Sugar Additive Could Be Driving The Rise of One of The Most Aggressive Superbugs

Experts Detail Logging Tool of DanderSpritz Framework Used by Equation Group Hackers

TremoloSecurity/kube-oidc-proxy: Reverse proxy to authenticate to managed Kubernetes API servers via OIDC.

What happened to enterprise tech in 2021 - Protocol — The people, power and politics of tech

Upnotes - A open standard notes app for software developers

Linux Patches Posted For Enabling WiFi On Apple M1/T2 Platforms - Phoronix

White House national security adviser asks software companies to discuss cybersecurity | Reuters

Our best GitOps blogs in 2021

Facebook’s “Horizon Worlds” isn’t the metaverse. The metaverse doesn’t exist. - The Washington Post

Wesley Aptekar-Cassels | Consider SQLite

Retailers surrender to unprecedented costs on online returns - Axios

Privacy-focused search engine DuckDuckGo saw record growth in 2021 - The Record by Recorded Future

Nearshoring | Exploding Topics

The hacker-for-hire industry is now too big to fail | MIT Technology Review

The Pandemic Has Created a ‘Zoom Boom’ in Remote Psychotherapy - Scientific American

marktext/marktext: 📝A simple and elegant markdown editor, available for Linux, macOS and Windows.

Why the Secrets You Keep Are Hurting You - Scientific American

[2106.14204] Bitcoin, Currencies, and Fragility

superhedgy/AttackSurfaceMapper: AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

Analysis and reverse-engineering of the original Starlink router – Oleg Kutkov personal blog

Riot Games to pay $100 million to settle gender discrimination lawsuit | Ars Technica

Thanks to the Chip Shortage, Texas Instruments Is Worth $170 Billion - WSJ

‘Widevine Dump": Leaked Code Downloads HD Video from Disney+, Amazon, and Netflix * TorrentFreak

An inside look at how CISA is building an agency for elite cybersecurity talent - The Record by Recorded Future

Apple offering engineers $180,000 bonuses to prevent poaching | AppleInsider

Fedora Had A Stellar 2021 & Continued Running At The Forefront Of Linux Innovations - Phoronix

Hello, youki! – utam0k