Kubernetes 1.22 shipped this week. I suggest you, at a minimum, read the release blog post or take a gander at the CHANGELOG and definitely read the No, really, you MUST read this before you upgrade. Some of the bigger changes:
Audit log files are created with mode 0600 (owner read-only) Rootless mode containers moving to alpha: In my opinion, if you use Podman, you’re used to this. If you’re not, you should be using rootless containers intentionally for security reasons (more on that later).
Read more →Last week, I enabled a workflow to automate more of the DevOps’ish process. One thing I did not test as a part of this workflow was link tracking. To be honest, I did not think it would matter. That assumption bit me hard. Within minutes, reports from readers came in saying Gmail was flagging the links in the e-mail as suspicious.
As it turns out, disabling the link tracking also bypassed a bug in Mailchimp’s platform.
Read more →