Archives

Hey, y’all! What I miss??? This is the only sentence that will feature Elon Musk this week. Promise. He’s had enough coverage lately and I hope you’ve had your fill. Also, I won’t be discussing any CNCF shenanigans until after KubeCon EU 2022. I’d like for there to be a resolution prior, but I doubt there will be at this point. I’m back on the horse after my 4 month old niece’s passing (I hope you can understand the brief hiatus). Thank you to everyone who reached out. Thank you to my incredibly team at AWS. Also, special thanks to our sponsor Honeycomb for allowing me the time to process this loss. It’s tragic; beyond what few can imagine. But, Lucy was strong. She gave hospitals and labs across the country a ton of data on a very rare form of cancer. I’m almost proud to say that my niece might have improved testing nationwide and globally. Whenever the hospital in Detroit did a lab, they sent samples to other labs across the country. This is modus operandi. You never know and sure as hell don’t want to make a mistake. ...

DevOps’ish is brought to you by your friends at Honeycomb. “Stop Letting Complexity Slow You Down” Honeycomb makes it easier to understand and troubleshoot complex relationships within your distributed services. Solve problems faster. Ship reliable and performant features. SPONSORED Events SLOConf - Service Level Objective Conference MAY 9-12, 2022 Site Reliability Engineering is one of the hottest areas as companies look to build reliable systems and their online presence. As companies rush to adopt Site Reliability Engineering principles, Service Level Objectives (SLOs) are the most important place to begin. SLOs are the combination of cultural philosophies, practices, and tools. The SRE community needs a place to gather and focus on SLOs in depth. This virtual conference will cover topics at all levels, from introduction to SLOs to the practical application of SLOs. This conference is a community event made and led by Site Reliability Engineers and influencers who care about reliability and becoming more customer centric by adopting, measuring and optimizing SLOs. ...

This week’s newsletter features some potentially good news about the chip supply chain, a BGP mishap involving Twitter, and a tale of foreign bribes at Microsoft according to a whistleblower. Also, How Go Mitigates Supply Chain Attacks, Lapsus$ and SolarWinds hackers both use the same old trick to bypass MFA, and a bunch of attacks and zero days. Rounding out the newsletter the Tools section brings us a new Detector for Docker Socket for Kubernetes from Justin Garrison, Kris Nóva’s new shiny kaar (“tar for Kubernetes” Nóva called it), and the ultimate question of the year so far; Is Your Cluster Ready for v1.24? DevOps’ish is brought to you by your friends at Honeycomb. “Stop Letting Complexity Slow You Down” Honeycomb makes it easier to understand and troubleshoot complex relationships within your distributed services. Solve problems faster. Ship reliable and performant features. SPONSORED Events SLOConf - Service Level Objective Conference MAY 9-12, 2022 Site Reliability Engineering is one of the hottest areas as companies look to build reliable systems and their online presence. As companies rush to adopt Site Reliability Engineering principles, Service Level Objectives (SLOs) are the most important place to begin. SLOs are the combination of cultural philosophies, practices, and tools. ...

DevOps’ish is brought to you our friends at Honeycomb. “Stop Letting Complexity Slow You Down” Honeycomb makes it easy to understand and troubleshoot complex relationships within your distributed services. Solve problems faster. Ship reliable and performant features. SPONSORED Events Calling all front-line DevOps and SRE practitioners: Join IR Conf on April 1 (no joke), a free, half-day virtual conference for industry experts and new voices in incident response. Incident responders will come together to swap horror stories about the biggest outages, discuss best practices, and gain a better understanding of how the best are dealing with incidents. Register to: Discover trends and tooling in resiliency and incidence response Gain guidance on how to structure your teams, tooling, and processes Learn better practices from incident response experts Connect with a community of incident responders who care about this, learn from each other SLOConf - Service Level Objective Conference MAY 9-12, 2022 ...

This week I wanted to spur discussion around some GitOps hurdles folks are facing. As a co-chair, it’s not only my job to make sure we’re discussing how folks are handling things. We should be providing some guidance on how to implement those GitOps Principles in a practical manner. The discussions themselves are around “Management” Clusters, Progressively Delivery, and Handling Secrets with GitOps. That last one is sticking out in my mind quite a bit: GitOps Secrets Management. I’ll preface this by saying this is my opinion. It’s is not the opinion of the CNCF GitOps Working Group or OpenGitOps. Universally, it’s a bad idea to check secrets into git. Whether they’re encrypted or not that shouldn’t really matter. They’re still secrets and, in my opinion, encrypted or not, secrets shouldn’t live in git. A shared password safe is better than git. Even better an external secret store so you could utilize the Kubernetes Secrets Store CSI Driver. To me, it comes down to a few important things. ...