DevOps'ish

Cloud Native, DevOps, GitOps, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 227: So hot right now, Sunk Cost Fallacy, Right to Repair, future of tech events, HelloKitty ransomware now targets VMware ESXi, GitHub Copilot, and more.

I was struck with a very mild case of heat exhaustion a couple of weeks ago after standing over a hot grill hosting our family’s 4th of July party. So when the article “How hot is too hot for the human body?” came across my desk this week, I was uniquely interested in it. I’ve run several miles in the Middle East, the high plains of Colorado, Florida, the jungles of Honduras, and many points in between. Read more →

DevOps’ish 223: Hostile AWS Free Tier, Bye bye Bezos, InfoSec competencies, Rust in Linux Kernel, Git for Computer Scientists, secrets on the CLI, and more

In vacation mode this week. News reading played second fiddle to having fun. People AWS pricing problems could deter new cloud engineers I was quoted in this piece. I take the same opinion that the AWS Free Tier is indeed user hostile. Not because it’s limited in weird ways but, because new users could be billed thousands and before they know it, it’s too late. Take a deep dive into observability at o11ycon+hnycon, a two-day virtual conference on the future of shipping software. Read more →

DevOps’ish 222: Industry under pressure, Holy $%^& I agree with Torvalds, US Congress begins assault on big tech, polkit vuln, ALPACA, How To Love Kubernetes and Not Wreck The Planet, and more

I want to point out a few signs that I think we’re pushing the industry too hard, too fast. Fires in AWS data centers, Fastly (the CDN) took an hour-long outage triggered by a customer finding a bug, Cloudflare had outages in Chicago and Los Angeles. Ransomware is running through companies like Grant went through Richmond (to the point the US Justice department is equating them, in some ways, to terrorist attacks). Read more →

DevOps’ish 218: What is DevOps eBook, Linux on the Desktop, racist AI, Darkside goes dark, systemd 💪, AWS free tier, lots of tools, and more

Finally, an average week, expect weeks are anything but “normal” these days. This past week marked the first birthday of OpenShift.TV (which is for all intents and purposes) what I’ve been working on the past year. 540 hours of content that has been archived to help folks tackle all kinds of issues with Kubernetes, OpenShift, and a host of other open source projects. I bet we’ve touched on etcd’s thirst for low latency, having to remind people to use DHCP for IPI installations, and have come up with as many “stage” names; it might total up to about 540 times too. Read more →

DevOps’ish 218: What is DevOps eBook, Linux on the Desktop, racist AI, Darkside goes dark, systemd 💪, AWS free tier, lots of tools, and more

Finally, an average week, expect weeks are anything but “normal” these days. This past week marked the first birthday of OpenShift.TV (which is for all intents and purposes) what I’ve been working on the past year. 540 hours of content that has been archived to help folks tackle all kinds of issues with Kubernetes, OpenShift, and a host of other open source projects. I bet we’ve touched on etcd’s thirst for low latency, having to remind people to use DHCP for IPI installations, and have come up with as many “stage” names; it might total up to about 540 times too. Read more →

DevOps’ish 214: Kubernetes mentioned 26 times, Burnout, VMware spun off, Google’s FloC, Kanban, chip shortage, shell operator and more

We’ve had another rough week in the Short household. The adults, at least, are exhausted. Max is fully energized. Sunny is getting nursed back to health. I always try to provide some value in the intro but, I have to say, I almost skipped this week due to everything. Some valuable nuggets live on a few other sites I run. New and old subscribers alike can get some benefit from these: Read more →

DevOps’ish 212: Linux lawsuit, universities breached, massive Facebook breach, Amazon’s horrible PR in light of conditions, Git Submodules = 👿, GitOpsCon CFP, and more

An old headline rears its ugly head again this week. The company that now owns the remnants of The SCO Group (whose claim to fame was going bankrupt in suing Linux distro makers until their dying breath), Xinuos, has decided to try this strategy out for itself in hopes of a different outcome. Xinuos is suing IBM and Red Hat for using Linux. Talk about bringing back ancient memories of trying to keep up with a new and essential thing to me back in the early 2000s: Linux. Read more →

Microsoft Exchange

DevOps’ish Microsoft Exchange Hafnium Compromise Index

A one-stop shop for opinion, analysis, and/or coverage of the Microsoft Exchange Hafnium compromise. Coverage includes official statements and filings, accredited media coverage, industry analyisis, and noteworthy blogs, digital media, and other mediums as deemed worthwhile. Note: All links shared here have gone through the normal DevOps’ish editorial and curation process. To add content for review, issue a pull request against this file in GitHub. Official Statements Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: March 2, 2021 (KB5000871) Joint Cybersecurity Advisory Compromise of Microsoft Exchange Server CISA Strongly Urges All Organizations to Immediately Address Microsoft Exchange Vulnerabilities | CISA Microsoft Exchange Server Vulnerabilities Mitigations – updated March 9, 2021 – Microsoft Security Response Center Multiple Security Updates Released for Exchange Server – updated March 12, 2021 – Microsoft Security Response Center “Patching and mitigation is not remediation if the servers have already been compromised. Read more →

DevOps’ish 207: Solarwinds, 4 hour a week Kubernetes maintainer, mischievous Mailchimp, secrets management, Digital Ocean IPO, Sysdig, BOOP, Flux, and More

DevOps’ish is in a state of spring cleaning. First, I’ve found a tool that I like more than Pocket to bookmark and save pages in Raindrop.io. All the Recommended Reads automation is now pulling from Raindrop.io. Then three Zapier rules ferry everything off to the appropriate places. I made that transition midweek. Next is the newsletter service itself. I’ve been unhappy with the current provider ever since doing the never-easy switch from Mailchimp (how forward-thinking that was) to the current provider. Read more →