DevOps'ish

DevOps, Cloud Native, Hybrid Cloud, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 229: Kubernetes 1.22, KubeCon schedule announced, security fails abound, Zoom’s paltry fine, finally death to 996, NSA Kubernetes Hardening Guidance, and much more

Kubernetes 1.22 shipped this week. I suggest you, at a minimum, read the release blog post or take a gander at the CHANGELOG and definitely read the No, really, you MUST read this before you upgrade. Some of the bigger changes: Audit log files are created with mode 0600 (owner read-only) Rootless mode containers moving to alpha: In my opinion, if you use Podman, you’re used to this. If you’re not, you should be using rootless containers intentionally for security reasons (more on that later). Read more →

DevOps’ish 228: Natural disasters, GitOps with Codefresh, NSO Group, MeteorExpress, Linkerd, Kubernetes 1.22, TSMC’s 2nm chips, cloud outposts, and more

At 8:13 PM last Saturday, the family and I were gathered in our basement, evading a tornado warning that came through the area. The storm spawned three tornadoes. Luckily, we weren’t hit directly. But we lost power, internet, and cell service. After getting the all-clear and assessing the situation, it was clear that we would be without power for quite a few hours. Making a newsletter last week wasn’t happening. Read more →

DevOps’ish 227: So hot right now, Sunk Cost Fallacy, Right to Repair, future of tech events, HelloKitty ransomware now targets VMware ESXi, GitHub Copilot, and more.

I was struck with a very mild case of heat exhaustion a couple of weeks ago after standing over a hot grill hosting our family’s 4th of July party. So when the article “How hot is too hot for the human body?” came across my desk this week, I was uniquely interested in it. I’ve run several miles in the Middle East, the high plains of Colorado, Florida, the jungles of Honduras, and many points in between. Read more →

DevOps’ish 226: Kubernetes non-code contributions, don’t ban politics at work, engineers waste 1 day a week on technical debt, CentOS Stream is working out, and more

If you follow me on Twitter you know I’ve had a hard time with stable internet this week. Co-workers asking about my absence, I appreciate you. Sorry, y’all, sometimes everything breaks at once. But then today I get this when working on something newsletter related. Y’all… I can’t. I can’t. I can’t. Omg... Y'all... This error message. I can't. "This is an unsupported graphic file. GIF is the only supported graphic file type. Read more →

DevOps’ish 225: AWS Infinidash, GPT-3 via GitHub Copilot, Polywork, rainbow marketing, LinkedIn breach, VMs hiding ransomware, Kubernetes overspend, Helm, GitOps, Tailscale with Kubernetes, and more

“AWS Infinidash is a new networking technology that is being introduced to the AWS cloud. This technology is being used by AWS to provide a new networking model that is more efficient and more scalable than the current networking model.” —GPT-3 GPT-3 generated that statement about AWS Infinidash thanks to GitHub Copilot. I’m also using GitHub Codespaces through VSCode and the web to write this week’s newsletter. I’ll probably have a write-up on these new tools in the near future. Read more →

DevOps’ish 224: Take your time off, Bryan Liles on a mission, John McAfee dead, Dell SupportAssist assisting the wrong people, AWS DNS hijack, Istio 1.10, Intel to make RISC-V chips, and more

Let me be someone to remind you to take some time off (if you can). As a family, we had many lessons learned from not being in our daily routines, setting, or location. This whole month has been a lot of optimizations in our household. All these learned from being outside our sixteen-month grooves. For example, I confirmed I needed glasses after a persistent headache went away then came back when I went back to work. Read more →

DevOps’ish 223: Hostile AWS Free Tier, Bye bye Bezos, InfoSec competencies, Rust in Linux Kernel, Git for Computer Scientists, secrets on the CLI, and more

In vacation mode this week. News reading played second fiddle to having fun. People AWS pricing problems could deter new cloud engineers I was quoted in this piece. I take the same opinion that the AWS Free Tier is indeed user hostile. Not because it’s limited in weird ways but, because new users could be billed thousands and before they know it, it’s too late. Take a deep dive into observability at o11ycon+hnycon, a two-day virtual conference on the future of shipping software. Read more →

DevOps’ish 222: Industry under pressure, Holy $%^& I agree with Torvalds, US Congress begins assault on big tech, polkit vuln, ALPACA, How To Love Kubernetes and Not Wreck The Planet, and more

I want to point out a few signs that I think we’re pushing the industry too hard, too fast. Fires in AWS data centers, Fastly (the CDN) took an hour-long outage triggered by a customer finding a bug, Cloudflare had outages in Chicago and Los Angeles. Ransomware is running through companies like Grant went through Richmond (to the point the US Justice department is equating them, in some ways, to terrorist attacks). Read more →

DevOps’ish 221: On the passing of Peeyush Gupta, Apple employees balk at return to office plans, 1:1 with CNCF’s Priyanka Sharma, StackOverflow acquired, Flux, Argo, HTTP 3, and more

The Cloud Native community lost a great person; Peeyush Gupta. He leaves behind a wife and 10-month old child. His employer, Digital Ocean, and the Kubernetes community are trying very hard to make that that mother and child will not be as devastated. I beg of you, please donate to the Peeyush Gupta: Family Education Fund. If half the DevOps’ish readership gave $25, we’ll hit the current goal of Rs. Read more →

DevOps’ish 220: Fretting over free tier, Amazon’s creepy network, NOBELIUM, Half-Double Rowhammers on sale, Istio vs. Linkerd, cost of cloud, and more

I’m in surgery recovery mode. I will be for a while it looks like. Nerves are weird. Do me a favor; if you’re reading this, take the 2021 DORA State of DevOps survey. People Growing Concerns among Developers about the AWS Free Tier It feels like if you think you’re keeping yourself in the free tier you’re an API call or bug in the system away from a massive panic attack. Read more →