DEVOPS WEEKLY ISSUE #308 - 20th November 2016

2 minute read

Two sets of presentations from two very different conferences (KubeCon and DevSecCon) this week, all published within a week or so of the event and free for everyone to watch and read. The fact this is becoming the norm means a pretty amazing learning resource exists for even the latest technology or thinking. Good job conference folks.

Sponsor

Downtime sucks. Learn how leading minds in tech respond to outages on the Nov. 16th “Ask Me Anything” from Catchpoint & O’Reilly Media.
http://try.victorops.com/AMA

Sponsored

A Tale of Two Pipelines: To DevOps or Not to DevOps

Trying to move to a DevOps methodology, or improve your current DevOps methods? Need to increase innovation and the speed of your software delivery pipeline? Brett Hofer, Global DevOps Practice Lead at Dynatrace, will show you how through a tour of two pipelines. You’ll get insights on key pipeline factors that plague traditional delivery pipelines and how to overcome them with practices that establish a true DevOps.
http://ow.ly/a3Av302XEHK

News

The slides and videos are available from the recent DevSecCon event, with lots of great security and devops content on everything from patching and securing continuous delivery to moving network rules into the application.
http://www.slideshare.net/FrancoisRaynaud/clipboards/devseccon-london-2016
http://www.devseccon.com/london-2016-videos/

I’ve been writing again, this time about the end of the general purpose operating system, and what to expect next.
http://www.morethanseven.net/2016/11/05/the-end-of-the-general-purpose-operating-system-as-it-happens/

KubeCon was only a week or so ago and the videos are already all available. Lots of real-world case studies plus deep dive technical talks about Kubernetes and related technologies.
https://www.youtube.com/channel/UCvqbFHwN-nwalWPjPUKpvTA

Interesting post about learning from other architectures, in this case learning about how to build your own services in AWS by looking at how platform as a service providers operate.
https://jvns.ca/blog/2016/11/16/ideas-about-how-to-use-aws/

5 solid tips for running incident postmortems, from defining clear roles to taking good notes and sharing the findings.
http://tech.shutterstock.com/2016/11/11/5-ways-to-hone-your-production-incident-postmortems/

A handy walkthrough of how to use Vault to secure secrets when running containers in AWS ECS.
https://www.kickstarter.com/backing-and-hacking/ecs-and-vault-shhhhh-i-have-a-secret

A useful reminder that you really should be running your Docker containers as read-only. Simple example of some of the benefits.
https://diogomonica.com/2016/11/19/increasing-attacker-cost-using-immutable-infrastructure/

A look at some of the data and observsations from the recent swarm3k experiment in running a reasonably large Docker Swarm cluster. Lots of graphs and interesting analysis.
https://sematext.com/blog/2016/11/14/docker-swarm-lessons-from-swarm3k/

If you want to understand system programming then it’s useful to have a good understanding of what’s happening at the kernel level and with syscalls. The tutorial (part of a series) explains how to write your own syscall.
https://brennan.io/2016/11/14/kernel-dev-ep3/

Some good tips for anyone building Docker images and looking to reduce the size of the resulting image.
https://blog.codeship.com/reduce-docker-image-size/

A look at using Docker to build container images and then exporting the resulting filesystem, which can then be run under systemd-nspawn. The usecase here is for desktop software but it’s an interesting workflow for other situations as well.
http://blog.fntlnz.wtf/post/systemd-nspawn/

Tools

Storing credentials in your shell profile and exporting them as environment variables is incredibly handy but very insecure. Envchain looks to provide the same ease of use but to use OS X Keychain or gnome-keyring as the backing service.
https://github.com/sorah/envchain

Pinpoint is an open source Application Performance Management tool for large-scale distributed systems. It features some tracing capabilities, the various screenshots give a good sense of its capabilities.
https://github.com/naver/pinpoint

IronFunctions is an open source serverless platform which supports running Docker images via a simple API. It’s quite early but the documentation walks you through how to try it out quickly.
https://github.com/iron-io/functions

Downtime sucks. Learn how leading minds in tech respond to outages on the Nov. 16th “Ask Me Anything” from Catchpoint & O’Reilly Media.
http://try.victorops.com/AMA

Updated: