DEVOPS WEEKLY ISSUE #315 - 8th January 2017
A bit of a bumper issue this week if I do say so myself. Lots of individual blog posts, videos from the excellent LISA16 conference, some interesting new tools and a great set of incident response documentation. Enjoy.
Sponsor
The “2016/17 State of On-Call” report from VictorOps is now available to download. Learn what 800+ respondents have to say about life on-call, and steps they’re taking to make it better. Get your free copy here:
https://victorops.com/state-of-on-call-2016/
Sponsored
DevOps adoption stuck in “analysis paralysis”? Get unstuck
Join us January 12th at 1:00 PM ET for practical tips that all IT groups from Dev to Ops can use to start their DevOps journey quickly. With experience from hundreds of DevOps deployments, Andreas Grabner, Chief DevOps Activist at Dynatrace, will provide insights it would take your team months or years to learn firsthand. Can’t make it? Register and we’ll send you the replay.
http://ow.ly/yJpv306Zlyy
News
Being on-call and incident response are recurring topics for the newsletter so this new site is well worth a read. In-depth guides on preparing an on-call schedule, responding to events and what to do afterwards. It’s available under an Apache license as well so you can use it in your organisation.
https://www.pagerduty.com/blog/incident-response-documentation/
https://response.pagerduty.com/
https://github.com/PagerDuty/incident-response-docs
The videos from all the LISA16 talks have been posted, and a whole bunch are likely relevant to readers. A whole range of talks on monitoring, load balancers, discussions of operations as a discipline and lots of talks about operations culture.
https://www.usenix.org/conference/lisa16/conference-program
A good look under the hood of the Docker daemon, looking at dockerd, containerd, runc and how the processes work together.
https://hackernoon.com/docker-containerd-standalone-runtimes-heres-what-you-should-know-b834ef155426#.vbyp9plis
How containers get rebuilt is an unsolved problem for many, and the nature of how most people are using containers (with an embedded operating system) can lead to some critical issues.
http://sobersecurity.blogspot.co.uk/2017/01/looks-like-you-have-bad-case-of.html
A thorough hello world walkthrough for using Concourse CI for continuous integration. Lots of code examples and screenshots.
https://specify.io/how-tos/concourse-ci-continious-integration-and-delivery-of-microservices
A nice example of using various AWS services to ensure end-to-end encryption of application traffic. A nice non-trivial CLoudFormation example ties it together.
https://blog.drie.co/e2e-encryption-with-lambda-cloudformation-and-acm-2b8020d6c6a4#.819v70g8h
I’ve included several links to The Morning Paper over the last year or so, but this catch up of some of the highlights is worth reading for newcomers or folks not already subscribed.
https://medium.com/@AshwinBaskaran/the-morning-paper-s-of-the-year-9d83a26215f7#.fkratnrtd
Security is now firmly embedded as one of the strands of devops I think. This post goes into detail about adding security testing to a continuous delivery pipeline
http://www.denimgroup.com/blog/2016/12/effective-application-security-testing-in-devops-pipelines/
Some good tips for anyone wanting to make sure there Docker images are up to date with security patches.
https://medium.com/microscaling-systems/dockerfile-security-tuneup-166f1cdafea1#.7m8fp7nnv
A nice detailed set of content for anyone deploying OpenShift in a secure environment, especially in the US Federal Government. It covers specific compliance regimes and a long list of controls.
http://openshift-compliance-guide.readthedocs.io/en/latest/
https://github.com/RedHatGov/openshift-compliance
Some discussion and ideas about how Docker Swarm could facilitate a serverless or function-as-a-service mode.
http://blog.alexellis.io/functions-as-a-service/
CNCF
Free Introduction to Cloud Native Networking on January 12th 2017
Join experts from Weaveworks and Tigera (the people behind Calico) for a free introduction to cloud native networking as part of the Cloud Native Computing Foundation’s new webinar series. Networking knowledge is becoming essential for developers so grab a spot while you still can:
http://bit.ly/cncfnetworkingwebinar
Jobs
Riffyn (Oakland, CA) seeks a lead DevOps engineer to operate and scale our development and production infrastructure on AWS, and support operational integrations with Riffyn’s enterprise customers. Riffyn provides research design and analytics software (SaaS) to global biotech, pharmaceutical, food and chemical companies. Riffyn offers a unique “design-first” approach to scientific product development to bring medicines and greener materials to market faster.
http://riffyn.com/lead-devops-engineer/
Events
Salt Lake City Devopsdays is coming up on May 16th and 17th. The organisers are looking for talks and ignites and have a CFP open until February 15th.
http://slcdevopsdays.org/2017-slc-devops-days-call-for-speaker-proposals/
Tools
Cherami is a new distributed, scalable, durable, and highly available message queue system. The accompanying blog post does a good job of explaining why another queuing server, and the animations give you a good sense of the design.
https://eng.uber.com/cherami/
https://github.com/uber/cherami-server
Grumpy is a Python to Go source code transcompiler and runtime. That means you can convert your Python code to a Go static binary, avoiding the python global interpreter lock and runtime dependency. Still early days but very interesting.
https://github.com/google/grumpy
The “2016/17 State of On-Call” report from VictorOps is now available to download. Learn what 800+ respondents have to say about life on-call, and steps they’re taking to make it better. Get your free copy here:
https://victorops.com/state-of-on-call-2016/