DevOps'ish

DevOps, Cloud Native, Hybrid Cloud, Open Source, industry news, culture, and the ‘ish between.

DevOps’ish 229: Kubernetes 1.22, KubeCon schedule announced, security fails abound, Zoom’s paltry fine, finally death to 996, NSA Kubernetes Hardening Guidance, and much more

Kubernetes 1.22 shipped this week. I suggest you, at a minimum, read the release blog post or take a gander at the CHANGELOG and definitely read the No, really, you MUST read this before you upgrade. Some of the bigger changes: Audit log files are created with mode 0600 (owner read-only) Rootless mode containers moving to alpha: In my opinion, if you use Podman, you’re used to this. If you’re not, you should be using rootless containers intentionally for security reasons (more on that later). Read more →

DevOps’ish 228: Natural disasters, GitOps with Codefresh, NSO Group, MeteorExpress, Linkerd, Kubernetes 1.22, TSMC’s 2nm chips, cloud outposts, and more

At 8:13 PM last Saturday, the family and I were gathered in our basement, evading a tornado warning that came through the area. The storm spawned three tornadoes. Luckily, we weren’t hit directly. But we lost power, internet, and cell service. After getting the all-clear and assessing the situation, it was clear that we would be without power for quite a few hours. Making a newsletter last week wasn’t happening. Read more →

DevOps’ish 227: So hot right now, Sunk Cost Fallacy, Right to Repair, future of tech events, HelloKitty ransomware now targets VMware ESXi, GitHub Copilot, and more.

I was struck with a very mild case of heat exhaustion a couple of weeks ago after standing over a hot grill hosting our family’s 4th of July party. So when the article “How hot is too hot for the human body?” came across my desk this week, I was uniquely interested in it. I’ve run several miles in the Middle East, the high plains of Colorado, Florida, the jungles of Honduras, and many points in between. Read more →

DevOps’ish 225: AWS Infinidash, GPT-3 via GitHub Copilot, Polywork, rainbow marketing, LinkedIn breach, VMs hiding ransomware, Kubernetes overspend, Helm, GitOps, Tailscale with Kubernetes, and more

“AWS Infinidash is a new networking technology that is being introduced to the AWS cloud. This technology is being used by AWS to provide a new networking model that is more efficient and more scalable than the current networking model.” —GPT-3 GPT-3 generated that statement about AWS Infinidash thanks to GitHub Copilot. I’m also using GitHub Codespaces through VSCode and the web to write this week’s newsletter. I’ll probably have a write-up on these new tools in the near future. Read more →

DevOps’ish 222: Industry under pressure, Holy $%^& I agree with Torvalds, US Congress begins assault on big tech, polkit vuln, ALPACA, How To Love Kubernetes and Not Wreck The Planet, and more

I want to point out a few signs that I think we’re pushing the industry too hard, too fast. Fires in AWS data centers, Fastly (the CDN) took an hour-long outage triggered by a customer finding a bug, Cloudflare had outages in Chicago and Los Angeles. Ransomware is running through companies like Grant went through Richmond (to the point the US Justice department is equating them, in some ways, to terrorist attacks). Read more →

DevOps’ish 215: Prepping for KubeCon, we’re languishing, CodeCov debacle, Signal slashes Cellebrite, not so Golden Gophers, ARM deal halted, Kubernetes Gateway API, and more

Two weeks before KubeCon EU and the work is ramping up quickly. If you haven’t gotten your tickets yet, grab yours today. As always, if you are underrepresented in tech and still need a ticket, let me know. I will be busy next week prepping for a flip to Central European Summer Time with a lot going on. On May 3rd, I will be mc’ing GitOps Con. It’s going to be awesome. Read more →

DevOps’ish 214: Kubernetes mentioned 26 times, Burnout, VMware spun off, Google’s FloC, Kanban, chip shortage, shell operator and more

We’ve had another rough week in the Short household. The adults, at least, are exhausted. Max is fully energized. Sunny is getting nursed back to health. I always try to provide some value in the intro but, I have to say, I almost skipped this week due to everything. Some valuable nuggets live on a few other sites I run. New and old subscribers alike can get some benefit from these: Read more →

DevOps’ish 209: Hafnium, dhcpcd needs new maintainer, Beat the Systemic Racism of IT, Google HR issues, OVH disaster, git vulnerability, sigstore and more

In a first, there are two DevOps’ish Indexes in flight right now. I did not want this day to ever happen but here we are. Solarwinds and Microsoft both have their hands full. DevOps’ish has your back. Here’s all the data points for both incidents so far. NEW DevOps’ish Microsoft Exchange Hafnium Compromise Index DevOps’ish Solarwinds supply chain compromise Index What a time to be alive. Also, DevOps’ish is 101 subscribers from officially passing the 5,000 subscribers mark. Read more →

DevOps’ish 202: AWS/Elastic drama, prioritize disability issues, ADT Peeping Tom, Software Is Your Competitive Advantage, Traefik to Caddy, No-Cost RHEL, serverless with Podman and more

Unpopular opinion alert (and Disclaimer)… Call me old fashioned, but I thought two of the top tenets of open source were candor and goodwill. I thought it was good practice to contribute to a project before baking it into a product. This was often the case for open source friendly vendors. But, it feels like AWS came along and never got that memo. I feel like AWS has done a lot more taking and productizing (aka making AWS a trillion-dollar, with a T, business) than contributing back to open source. Read more →

DevOps’ish 201: Elastic’s license problem, Dropbox layoffs, CISA recommending ad blockers, KubeLinter, kube-state-metrics, awesome-limits, folks fleeing for Signal & Telegram, and more

I lost a co-worker from the Ansible team this week. I’ve been struggling to get past the insanity of people younger than dying. 2021 is off to a real shit start. But, I think the biggest tech story of the week comes from Elastic. Keep reading for the details on Elastic’s idiocy. Here’s your weekly reminder that open source isn’t a business model, though. But, there’s been a moment of justice for those here in Michigan who were impacted by the Flint Water Crisis. Read more →