DEVOPS WEEKLY ISSUE #294 - 14th August 2016

2 minute read

Everything from command line user interface design to platform-driven reorganisations and discussion of approaches to cloud adoption to talk of the benefits and risks of applying automation to testing. Definitely lots of good pieces to read this week.

Sponsor

Downtime can be expensive. Download the Incident Management Buyer’s Guide to learn what your DevOps team can do about it. Get your copy here:
http://bit.ly/2aoyLJ0

Sponsored

A Tale of Two Pipelines: To DevOps or Not to DevOps

Need to increase innovation and the speed of your software delivery pipeline? Brett Hofer, Global DevOps Practice Lead at Dynatrace, will show you how through a tour of two pipelines. You’ll get insights on key pipeline factors that plague traditional delivery pipelines and how to overcome them with practices that establish a true DevOps culture for a faster and less troublesome continuous delivery pipeline.
http://ow.ly/a3Av302XEHK

News

A good discussion of building tools to enforce standards and patterns for managing multi-tenant cloud environments. The discussion of the Chandika service registry is particularly interesting.
https://18f.gsa.gov/2016/08/10/patterns-for-managing-multi-tenant-cloud-environments/

A good presentation on the evolution of operations at Spotify. Includes a good list of expected operations activities.
http://www.slideshare.net/davidpoblador/scaling-operations-at-spotify

A good argument for the need for more application layer security controls as many organisations abstract themselves further away from the underlying infrastructure.
https://cohesive.net/2016/08/its-the-year-of-application-layer-security-in-public-clouds.html

Demonstrating hello-world examples for tools aimed at complex distributed systems can be tricky. Ideally you’d have a realistic demo example composed of several services - enter sock shop.
https://www.weave.works/sock-shop-microservices-demo-application/
https://github.com/microservices-demo

With so many of the tools we use being command line based, any discussion of improving the user experience of CLI tools is a good thing in my book. Some interesting ideas here about a formal grammar and about onboarding new users.
http://www.juliandunn.net/2016/08/09/designing-great-command-line-user-experiences/

A look at the medium/long term impact of containers and orchestrators on typical datacenter operations - and the disruptive potential of consistent APIs for heterogeneous workloads.
https://medium.com/microscaling-systems/why-are-containers-so-disruptive-to-the-data-centre-58dad83dda4c#.swe602h1n

How adopting a platform changes individual roles within an organisation is a common devops topic. This presentation is a detailed and very visual look at one approach, focusing on a platform and separate application team model.
http://www.slideshare.net/Pivotal/who-does-what-mapping-cloud-foundry-activities-and-entitlements-to-it-roles

An interesting approach to profiling any arbitrary code, using the new sysdig tracer functionality. If you could print to /dev/null you get a powerful tool for profiling and visualising traces.
https://sysdig.com/blog/system-profiling-lazy-developers/

Moving from statically addressable systems to scheduled containers poses some questions about service discovery. Here’s a simple discussion of the problem and a solution for erlang processes on Kubernetes.
http://bitwalker.org/posts/2016-08-04-clustering-in-kubernetes/

A good example of using Prometheus to monitor containers, in this case those making up Kubernetes. Examples of queries and of the resulting graphs and dashboards.
https://coreos.com/blog/monitoring-kubernetes-with-prometheus.html

A discussion of the role of automation in testing, and in particular why building tools to augment and ease testing by people, rather than to replace it, might be the right approach.
https://medium.com/salesforce-engineering/tester-augmentation-not-test-automation-1de28269c9a4#.dbcekfkxh

Tools

Pshtt is a handy tool for anyone managing a large number of sites and trying to enforce HTTPS best practices like use of HSTS or specific cypher suites.
https://github.com/dhs-ncats/pshtt

Downtime can be expensive. Download the Incident Management Buyer’s Guide to learn what your DevOps team can do about it. Get your copy here:
http://bit.ly/2aoyLJ0

Updated: