security

I found a topic that I’m going to suggest for an Open Space at every DevOpsDays I go to from this point forward: “Container Conundrum: Pain points around containers” These notes are presented here without opinion. Distilling these notes into a concise narrative will be the topic for an introduction to an upcoming DevOps’ish newsletter. Please subscribe today! I think the best way to look at these notes is to assume that each bullet point is a pain point....

This introduction to eBPF is adapted from the beginning of DevOps’ish 278 I occasionally ask for writing prompts from folks on Twitter for DevOps’ish. Sometimes asking on social media works well. Other times it’s giving someone a good URL and still scratching my head about what to write. But for DevOps’ish 278, the people have spoken. They want to learn more about eBPF. What is eBPF? eBPF (which is no longer an acronym for anything) is a revolutionary technology with origins in the Linux kernel that can run sandboxed programs in a privileged context such as the operating system kernel....

I think I’ve discovered my development environment equivalent to nirvana. code-server fronted by Caddy on a box with Tailscale installed. I maintain a lot of Hugo websites. Hugo has been my go-to content management system (CMS) since discovering it in 2017 (I got my first Hugo site at GopherCon 2017). I’ve lost count of the number of domains I own (a common nerd problem). But, I know I have a handful of websites I update regularly....

Abstract GitOps is a prescriptive way of implementing DevOps. You will not succeed in using GitOps if you haven’t embraced some DevOps philosophies along the way. In this talk, we’ll look at the GitOps Principles and see how they align to existing or new DevOps/SRE functions. GitOps, being a wonderful implementation of DevOps functionality in cloud native environments and beyond, will enable organizations to prescriptively shift left, improve release velocity, and hopefully reap all the other benefits that higher performers in the State of DevOps reports see....

A former co-worker and now friend has a tagline, “Every day is a school day.” I remind myself of this fact almost every time I learn something new. 2019 was the hardest year of my life. I’d like to share some things I picked up on this most recent journey around the sun we call 2019. I’ll make some predictions about 2020 in the process too. Kubernetes Last year, I said I thought Kubernetes would get easier....

Abstract Cloud native technologies are increasingly used by organizations to provide a competitive advantage. Containers and Kubernetes jumpstart developer productivity but, they could increase security teams’ workloads. Threat vectors span cloud providers, control planes, developer tooling, and applications in environment hybrid environments. Use these technologies and cultures to improve security and reduce blast radius while improving velocity. This talk will analyze human tendencies and provide tips to improve security postures in cloud native environments....

Microsoft has come a very long way in its fight back into the graces of all technologists. There will be some die hards that will never forgive Microsoft for what it attempted to do to open source software. Like there will be some die hards that won’t embrace PowerShell, WSL, and future Microsoft improvements. But, there is no denying that Microsoft has changed as a company in a way that is beneficial to the open source community and beyond....

All other DevOpsDays events should be put on notice. DevOpsDays Charlotte 2018 set the bar unattainably high for the quality of the venue and speaker line up. It’ll be insanely hard to beat the great folks who spoke in Charlotte this year. Almost every talk was a home run. The Red Ventures facility was also jaw dropping. Also, I don’t think we could have asked for a more inviting and welcoming speaker lounge either....