DevOps'ish

Cloud Native, DevOps, GitOps, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 244: Milestones, K8s Contributor Celebration, Cassidy Williams, Cloud Native Hackathon, Activision Blizzard CEO, GitOps, Fulcio, tools galore, and more

Editor’s note: Times are hard for a lot of folks right now. Take your time. Your emotions are valid. Process them. Managers should give their people some grace over the coming days. Reader’s in pain, I am with you. This week has been a week of milestones. 1) My daughter turned 21. Yes, I feel old. 2) Julie and I are celebrating ten years of marriage this weekend in Traverse City, Michigan. Read more →

DevOps’ish 229: Kubernetes 1.22, KubeCon schedule announced, security fails abound, Zoom’s paltry fine, finally death to 996, NSA Kubernetes Hardening Guidance, and much more

Kubernetes 1.22 shipped this week. I suggest you, at a minimum, read the release blog post or take a gander at the CHANGELOG and definitely read the No, really, you MUST read this before you upgrade. Some of the bigger changes: Audit log files are created with mode 0600 (owner read-only) Rootless mode containers moving to alpha: In my opinion, if you use Podman, you’re used to this. If you’re not, you should be using rootless containers intentionally for security reasons (more on that later). Read more →

DevOps’ish 226: Kubernetes non-code contributions, don’t ban politics at work, engineers waste 1 day a week on technical debt, CentOS Stream is working out, and more

If you follow me on Twitter you know I’ve had a hard time with stable internet this week. Co-workers asking about my absence, I appreciate you. Sorry, y’all, sometimes everything breaks at once. But then today I get this when working on something newsletter related. Y’all… I can’t. I can’t. I can’t. Omg... Y'all... This error message. I can't. "This is an unsupported graphic file. GIF is the only supported graphic file type. Read more →

DevOps’ish 225: AWS Infinidash, GPT-3 via GitHub Copilot, Polywork, rainbow marketing, LinkedIn breach, VMs hiding ransomware, Kubernetes overspend, Helm, GitOps, Tailscale with Kubernetes, and more

“AWS Infinidash is a new networking technology that is being introduced to the AWS cloud. This technology is being used by AWS to provide a new networking model that is more efficient and more scalable than the current networking model.” —GPT-3 GPT-3 generated that statement about AWS Infinidash thanks to GitHub Copilot. I’m also using GitHub Codespaces through VSCode and the web to write this week’s newsletter. I’ll probably have a write-up on these new tools in the near future. Read more →

DevOps’ish 212: Linux lawsuit, universities breached, massive Facebook breach, Amazon’s horrible PR in light of conditions, Git Submodules = 👿, GitOpsCon CFP, and more

An old headline rears its ugly head again this week. The company that now owns the remnants of The SCO Group (whose claim to fame was going bankrupt in suing Linux distro makers until their dying breath), Xinuos, has decided to try this strategy out for itself in hopes of a different outcome. Xinuos is suing IBM and Red Hat for using Linux. Talk about bringing back ancient memories of trying to keep up with a new and essential thing to me back in the early 2000s: Linux. Read more →

DevOps’ish 209: Hafnium, dhcpcd needs new maintainer, Beat the Systemic Racism of IT, Google HR issues, OVH disaster, git vulnerability, sigstore and more

In a first, there are two DevOps’ish Indexes in flight right now. I did not want this day to ever happen but here we are. Solarwinds and Microsoft both have their hands full. DevOps’ish has your back. Here’s all the data points for both incidents so far. NEW DevOps’ish Microsoft Exchange Hafnium Compromise Index DevOps’ish Solarwinds supply chain compromise Index What a time to be alive. Also, DevOps’ish is 101 subscribers from officially passing the 5,000 subscribers mark. Read more →

DevOps’ish 207: Solarwinds, 4 hour a week Kubernetes maintainer, mischievous Mailchimp, secrets management, Digital Ocean IPO, Sysdig, BOOP, Flux, and More

DevOps’ish is in a state of spring cleaning. First, I’ve found a tool that I like more than Pocket to bookmark and save pages in Raindrop.io. All the Recommended Reads automation is now pulling from Raindrop.io. Then three Zapier rules ferry everything off to the appropriate places. I made that transition midweek. Next is the newsletter service itself. I’ve been unhappy with the current provider ever since doing the never-easy switch from Mailchimp (how forward-thinking that was) to the current provider. Read more →

DevOps’ish 197

This being a holiday break my intros will probably be a little bit shorter than normal. “More punchy” as my first boss at Red Hat would say. Let’s start with the thing with an ever-increasing blast radius: Solarwinds. Solarwinds Supply Chain Compromise For the record, Reuters has been all over this coverage wise. I can’t do them justice. This story has been evolving so rapidly that by the time I hit send, my coverage will be incomplete. Read more →

DevOps’ish 195

A few themes to this week’s news are worth discussing here in the newsletter’s introduction to give folks a clearer picture of each topic. We’ll tackle them in the same People, Process, and Tools format DevOps’ish uses (which are the three core components of DevOps, in order of importance). Surprisingly, I have to explain the Tools section of the news the most because it involves one of the world’s most toxic companies, Docker. Read more →