DEVOPS WEEKLY ISSUE #530 - 21st February 2021

1 minute read

A look at the package repository side of dependency confusion attacks, 2021 predictions, working in IT and tools for moving files between cloud storage services and more.

env0 sponsors Devops Weekly

Prevent cloud misconfigurations by shifting security left in your IaC deployments!
https://www.env0.com/blog/better-together-checkov-and-env0

About env0: use Infrastructure as Code to let your team manage their own environments across clouds. Governed by your policies and with complete visibility & cost management.

News

What to expect from devops in 2021? This post pin-points some evergreen topics like security, a focus on the business, automation, but also the growth of low code and pipeline analytics and monitoring.
https://www.cloudbees.com/blog/devops-this-year

An interesting post from someone involved with accessing RubyGems after the recent dependency confusion attack interest.
https://mensfeld.pl/2021/02/rubygems-dependency-confusion-attack-side-of-things/

Python is both a great programming language to get started with, and increasingly a useful extra tool to have in your toolbox for data and analytics work. This university course is a good starting place.
https://farid.berkeley.edu/downloads/tutorials/learnPython/

Another set of public course materials, this time on Systems Administration fundamentals. Storage, file systems, networking, common protocols, system security, configuration management and ethics for systems administrators among the topics.
https://stevens.netmeister.org/615/
https://www.youtube.com/channel/UCK9UCt1zAQ9JvTG0o6Z8zpg

A nice post on why lots of people enjoy working in IT. The people, the constant learning, the problem solving and more.
https://itsm.tools/love-most-about-working-in-it/

The recent changes around the CentOS project, with the new CentOS Streams approach, are triggering some interesting conversations. The new Hyperscale special interest group is just forming to discuss large scale deployment challenges and solutions.
https://wiki.centos.org/SpecialInterestGroup/Hyperscale

Tools

Rclone (rsync for cloud storage) is a command line program to sync files and directories to and from different cloud storage providers like Google Drive, S3, Dropbox, Backblaze B2, One Drive, Google Cloud Storage and more.
https://github.com/rclone/rclone
https://rclone.org

A handy web service that makes it easy to check which cloud provider a website is using for it’s public services.
https://runson.cloud

The above runson.cloud service is based on a set of handy open source libraries that also have accompanying CLI tools that do the same.
https://github.com/sampointer/digaws
https://github.com/sampointer/digaz
https://github.com/sampointer/digg

Updated: