DevOps'ish

Cloud Native, DevOps, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 229: Kubernetes 1.22, KubeCon schedule announced, security fails abound, Zoom’s paltry fine, finally death to 996, NSA Kubernetes Hardening Guidance, and much more

Kubernetes 1.22 shipped this week. I suggest you, at a minimum, read the release blog post or take a gander at the CHANGELOG and definitely read the No, really, you MUST read this before you upgrade. Some of the bigger changes: Audit log files are created with mode 0600 (owner read-only) Rootless mode containers moving to alpha: In my opinion, if you use Podman, you’re used to this. If you’re not, you should be using rootless containers intentionally for security reasons (more on that later). Read more →

149: Ahh-Me or Ay-Em-Eye, Don’t stop learning, GitOps, open is better, iTerm2 vuln, Ansible Operators, and More

This week’s introduction is brought to you by Corey Quinn. Send complaints Corey’s way: What’s made of comfy ring-spun cotton, available in your size and shape, AND guaranteed to start a flame war with your AWS pals? The 2019 Last Week in AWS Charity T-Shirt! This year’s shirts come in two flavors — one for each pronunciation of the acronym for Amazon Machine Images. Are you an Ahh-Me or an Ay-Em-Eye? Read more →