DevOps'ish

DevOps, Cloud Native, Hybrid Cloud, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 218: What is DevOps eBook, Linux on the Desktop, racist AI, Darkside goes dark, systemd 💪, AWS free tier, lots of tools, and more

Finally, an average week, expect weeks are anything but “normal” these days. This past week marked the first birthday of OpenShift.TV (which is for all intents and purposes) what I’ve been working on the past year. 540 hours of content that has been archived to help folks tackle all kinds of issues with Kubernetes, OpenShift, and a host of other open source projects. I bet we’ve touched on etcd’s thirst for low latency, having to remind people to use DHCP for IPI installations, and have come up with as many “stage” names; it might total up to about 540 times too. Read more →

DevOps’ish 216: KubeCon EU is here, Manager Tools, Microsoft adds a Kinvolk caboose, Feature Flags, GitOps with Argo CD, 100 Days Of Kubernetes, OSI Model, and more

A migraine is taking me down hard this weekend. Here’s hoping it goes away soon. See you all at KubeCon next week. GitOps Con on Monday. OpenShift Commons Gathering (also live streamed) on Tuesdays. OpenShift.tv KubeCon EU Office Hours on Wednesday through Friday. People How to bust 5 creativity myths with your team “Try these exercises to dispel common misconceptions and infuse more creativity into your day-to-day work– and your team’s. Read more →

DevOps’ish 213: Kubernetes 1.21, ArgoCD 2.0, Supreme Court saves industry, Googlers can discuss salary, Amazon made illegal firings, former Facebook recruiter sees diversity policy flaws, and more

I’ve had a rough week, please forgive me for not laboring over an intro. Event Call for Papers The GitOps Working Group is putting together a KubeCon + CloudNativeCon Day 0 event! Come share your experiences, practices, and challenges with us at #GitOpsConEU2021! Call for papers open through April 16, 2021. People The woman who took on Google and won “Google signed a document saying its employees ‘have the right to discuss wage rates, bonuses, and working conditions. Read more →

DevOps’ish 212: Linux lawsuit, universities breached, massive Facebook breach, Amazon’s horrible PR in light of conditions, Git Submodules = 👿, GitOpsCon CFP, and more

An old headline rears its ugly head again this week. The company that now owns the remnants of The SCO Group (whose claim to fame was going bankrupt in suing Linux distro makers until their dying breath), Xinuos, has decided to try this strategy out for itself in hopes of a different outcome. Xinuos is suing IBM and Red Hat for using Linux. Talk about bringing back ancient memories of trying to keep up with a new and essential thing to me back in the early 2000s: Linux. Read more →

DevOps’ish 211: He who was mentioned in DevOps’ish 145, OpenSSL updates, New AWS CEO, Apple linked to Chinese tracking apps, 92% of all on-premises Microsoft Exchange servers patched, TSMC, coffee shortage, and more

Well, what’s it like living in the last throes of the Free Software Foundation (FSF)? Many companies came out against the FSF’s recent decision to re-add he who was mentioned in DevOps’ish 145. Red Hat probably gave the most scathing repudiation. I can think of no worse strategy than bringing back someone who for so long abused, criticized, belittled, harassed, and bullied the people (especially women) around them. I used to support FSF and only did so after he who was mentioned in DevOps’ish 145 (droves of others are denouncing the decision too). Read more →

Microsoft Exchange

DevOps’ish Microsoft Exchange Hafnium Compromise Index

A one-stop shop for opinion, analysis, and/or coverage of the Microsoft Exchange Hafnium compromise. Coverage includes official statements and filings, accredited media coverage, industry analyisis, and noteworthy blogs, digital media, and other mediums as deemed worthwhile. Note: All links shared here have gone through the normal DevOps’ish editorial and curation process. To add content for review, issue a pull request against this file in GitHub. Official Statements Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: March 2, 2021 (KB5000871) Joint Cybersecurity Advisory Compromise of Microsoft Exchange Server CISA Strongly Urges All Organizations to Immediately Address Microsoft Exchange Vulnerabilities | CISA Microsoft Exchange Server Vulnerabilities Mitigations – updated March 9, 2021 – Microsoft Security Response Center Multiple Security Updates Released for Exchange Server – updated March 12, 2021 – Microsoft Security Response Center “Patching and mitigation is not remediation if the servers have already been compromised. Read more →

DevOps’ish 207: Solarwinds, 4 hour a week Kubernetes maintainer, mischievous Mailchimp, secrets management, Digital Ocean IPO, Sysdig, BOOP, Flux, and More

DevOps’ish is in a state of spring cleaning. First, I’ve found a tool that I like more than Pocket to bookmark and save pages in Raindrop.io. All the Recommended Reads automation is now pulling from Raindrop.io. Then three Zapier rules ferry everything off to the appropriate places. I made that transition midweek. Next is the newsletter service itself. I’ve been unhappy with the current provider ever since doing the never-easy switch from Mailchimp (how forward-thinking that was) to the current provider. Read more →

DevOps’ish 205: Kubernetes Pod Security Policy Deprecation, open source skills are crucial, harms of large language models, Supermicro, water plant breach, VSCode repo FUD, and more

First off, Happy Valentine’s Day. I hope you’re enjoying it as best you can. This week I learned that an organization in the healthcare industry is working on a large project involving Kubernetes Pod Security Policies as a mainstay in their project. In case you haven’t heard, Pod Security Policies (PSPs) will begin the Kubernetes deprecation process in the 1.21 release. Kubernetes 1.21 releases on or about Thursday, April 8th, 2021. Read more →

DevOps’ish 202: AWS/Elastic drama, prioritize disability issues, ADT Peeping Tom, Software Is Your Competitive Advantage, Traefik to Caddy, No-Cost RHEL, serverless with Podman and more

Unpopular opinion alert (and Disclaimer)… Call me old fashioned, but I thought two of the top tenets of open source were candor and goodwill. I thought it was good practice to contribute to a project before baking it into a product. This was often the case for open source friendly vendors. But, it feels like AWS came along and never got that memo. I feel like AWS has done a lot more taking and productizing (aka making AWS a trillion-dollar, with a T, business) than contributing back to open source. Read more →

DevOps’ish 200: Solarwinds plot thickens, Women hit hard in jobless report, Red Hat acquires StackRox, Slack outage, Podman and Docker Compose, WebAssembly training, greatsuspender compromise, and more

The first full work week of the year has already been filled with news. But, Monday saw a Slack outage, Wednesday saw an insurrection in the US, and there is a new twist in the Solarwinds supply chain compromise. We’ll discuss two of these topics and more. Note: I’m looking for an intern this summer to help with OpenShift.tv (live streaming). If you know anyone that may be interested, please ask them to apply. Read more →