1_r/devopsish

1_r/devopsish

54499 bookmarks
Custom sorting
The basics of observing Kubernetes: a bird-watcher's perspective with Miguel Luna
The basics of observing Kubernetes: a bird-watcher's perspective with Miguel Luna

The basics of observing Kubernetes: a bird-watcher's perspective, with Miguel Luna

https://kube.fm/observability-kubernetes-miguel

In this KubeFM episode, Miguel Luna discusses the intricacies of Observability in Kubernetes, including its components, tools, and future trends.

You will learn:

The fundamental components of Observability: metrics, logs, and traces, and their roles in understanding system performance and health.

Key tools and projects: insights into Keptn and OpenTelemetry and their significance in the Observability ecosystem.

The integration of AI technologies: how AI is shaping the future of Observability in Kubernetes.

Practical steps for implementing Observability: starting points, what to monitor, and how to manage alerts effectively.

Sponsor

This episode is sponsored by Learnk8s — estimate the perfect cluster node with the Kubernetes Instance Calculator

More info

Find all the links and info for this episode here: https://kube.fm/observability-kubernetes-miguel

Interested in sponsoring an episode? Learn more.

via KubeFM https://kube.fm

September 03, 2024 at 06:00AM

·kube.fm·
The basics of observing Kubernetes: a bird-watcher's perspective with Miguel Luna
Master Terminal Multiplexing with Zellij in Minutes!
Master Terminal Multiplexing with Zellij in Minutes!

Master Terminal Multiplexing with Zellij in Minutes!

Discover the power of Zellij, a terminal workspace that boosts productivity! In this video, we'll explore how to set up and use Zellij. We'll learn how to create sessions, split terminal into tabs and panes, and automate tasks using layouts. Watch as we demonstrate running commands, managing resources, and switching between tasks—all without touching the mouse. Perfect for developers looking to streamline their workflow. Don't miss out on mastering terminal multiplexing with Zellij!

Zellij #TerminalProductivity #DeveloperTools #TerminalMultiplexing

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ ➡ Transcript and commands: https://devopstoolkit.live/terminal/master-terminal-multiplexing-with-zellij-in-minutes 🔗 https://zellij.dev

▬▬▬▬▬▬ 💰 Sponsorships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendar.app.google/Q9eaDUHN8ibWBaA7A to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ Twitter: https://twitter.com/vfarcic ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

▬▬▬▬▬▬ ⏱ Timecodes ⏱ ▬▬▬▬▬▬ 00:00 Terminal Multiplexing 01:25 What is Zellij? 02:17 Terminal Multiplexing With Zellij

via YouTube https://www.youtube.com/watch?v=ZndhImXIGlg

·youtube.com·
Master Terminal Multiplexing with Zellij in Minutes!
DevOps Toolkit - Dashboards - Feat. Kubernetes Dashboard Headlamp Meshery (You Choose! Ch. 4 Ep. 01) - https://www.youtube.com/watch?v=GhfRu3l4F8U
DevOps Toolkit - Dashboards - Feat. Kubernetes Dashboard Headlamp Meshery (You Choose! Ch. 4 Ep. 01) - https://www.youtube.com/watch?v=GhfRu3l4F8U

Dashboards - Feat. Kubernetes Dashboard, Headlamp, Meshery (You Choose!, Ch. 4, Ep. 01)

Dashboards - Choose Your Own Adventure: The Observability Odyssey

In this episode, we'll go through dashboards. The contestants are Kubernetes Dashboard, Headlamp, and Meshery.

Vote for your choice of a tool for signing artifacts at https://cloud-native.slack.com/archives/C05M2NFNVRN. If you have not already joined CNCF Slack, you can do so from https://slack.cncf.io.

This and all other episodes are available at https://www.youtube.com/playlist?list=PLyicRj904Z9-FzCPvGpVHgRQVYJpVmx3Z.

More information about the "Choose Your Own Adventure" project including the source code and links to all the videos can be found at https://github.com/vfarcic/cncf-demo.

٩( ᐛ )و Whitney's YouTube Channel → https://www.youtube.com/@wiggitywhitney

ContainerSSH #ConfidentialContainers

▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬ 🔗 Dashboards: https://github.com/vfarcic/cncf-demo/tree/main/manuscript/dashboards/README.md

via YouTube https://www.youtube.com/watch?v=GhfRu3l4F8U

·youtube.com·
DevOps Toolkit - Dashboards - Feat. Kubernetes Dashboard Headlamp Meshery (You Choose! Ch. 4 Ep. 01) - https://www.youtube.com/watch?v=GhfRu3l4F8U
Low Cost Mini PCs
Low Cost Mini PCs
Comparison of tiny pcs available on eBay.
·lowcostminipcs.com·
Low Cost Mini PCs
Bypassing airport security via SQL injection
Bypassing airport security via SQL injection
We discovered a serious vulnerability in the Known Crewmember (KCM) and Cockpit Access Security System (CASS) programs used by the Transportation Security Administration.
·ian.sh·
Bypassing airport security via SQL injection
These Are Apple's Oldest Products Still Sold Today
These Are Apple's Oldest Products Still Sold Today

These Are Apple's Oldest Products Still Sold Today

For over two decades, the MacRumors Buyer's Guide has served as a valuable resource for keeping track of when Apple products were last updated. Below, we have…

August 29, 2024 at 04:15PM

via Instapaper

·macrumors.com·
These Are Apple's Oldest Products Still Sold Today
DevOps Toolkit - The Observability Odyssey (You Choose! Ch. 4 Ep. 0) - https://www.youtube.com/watch?v=_sVIxEksR1M
DevOps Toolkit - The Observability Odyssey (You Choose! Ch. 4 Ep. 0) - https://www.youtube.com/watch?v=_sVIxEksR1M

The Observability Odyssey (You Choose! Ch. 4, Ep. 0)

Chapter 4 of "Choose Your Own Adventure" is about to begin! In this one, we'll explore observability tools among CNCF projects.

More information about the "Choose Your Own Adventure" project including the source code and links to all the videos can be found at https://github.com/vfarcic/cncf-demo.

This and all other episodes are available at https://www.youtube.com/playlist?list=PLyicRj904Z9-FzCPvGpVHgRQVYJpVmx3Z.

observability #CNCF #cloud

٩( ᐛ )و Whitney's YouTube Channel → https://www.youtube.com/@wiggitywhitney

Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join

▬▬▬▬▬▬ 💰 Sponsoships 💰 ▬▬▬▬▬▬ If you are interested in sponsoring this channel, please use https://calendar.app.google/Q9eaDUHN8ibWBaA7A to book a timeslot that suits you, and we'll go over the details. Or feel free to contact me over Twitter or LinkedIn (see below).

▬▬▬▬▬▬ 👋 Contact me 👋 ▬▬▬▬▬▬ ➡ Twitter: https://twitter.com/vfarcic ➡ LinkedIn: https://www.linkedin.com/in/viktorfarcic/

▬▬▬▬▬▬ 🚀 Other Channels 🚀 ▬▬▬▬▬▬ 🎤 Podcast: https://www.devopsparadox.com/ 💬 Live streams: https://www.youtube.com/c/DevOpsParadox

via YouTube https://www.youtube.com/watch?v=_sVIxEksR1M

·youtube.com·
DevOps Toolkit - The Observability Odyssey (You Choose! Ch. 4 Ep. 0) - https://www.youtube.com/watch?v=_sVIxEksR1M
Introduction | Dalec
Introduction | Dalec

Introduction | Dalec

Dalec is a project aimed at providing a declarative format for building system packages and containers from those packages. Our goal is to provide a secure and…

August 29, 2024 at 10:55AM

via Instapaper

·azure.github.io·
Introduction | Dalec
Three Kinds of Research
Three Kinds of Research
The secret fourth kind is 'we applied a standard theory to their map of every tree and got some suspicious results.'
Archive
·xkcd.com·
Three Kinds of Research
Last Week in Kubernetes Development - Week Ending August 25 2024
Last Week in Kubernetes Development - Week Ending August 25 2024

Week Ending August 25, 2024

https://lwkd.info/2024/20240828

Developer News

KubeCon + CloudNativeCon + Open Source Summit China 2024 happened last week in Hong Kong. The event had various talks on AI, running AI workloads on Kubernetes and the CNCF ecosystem, and updates from various maintainers of different CNCF projects. There was also a keynote by Linus Torvalds. Videos will be posted in the CNCF YouTube channel soon.

Release Schedule

Next Deadline: 1.32 cycle begins, September 9

We’re in the period between releases. Shadow applications for the v1.32 release team are open until September 6. The tentative dates for the v1.32 cycle are from September 9th to December 11th, 2024.

Featured PRs

126745: Improve PVC protection controller’s scalability by batch-processing PVCs by namespace & caching live pod list results [fixed dead loop issue with idle work queue]

This PR significantly enhances the scalability of the PVC Protection Controller by implementing batch processing of PVCs by namespace and caching live pod list results. It resolves a critical dead loop issue in the idle work queue and addresses performance bottlenecks in large clusters by reducing the number of API calls required for PVC deletion. As a result, the kube-controller-manager’s CPU usage is optimized, ensuring more efficient and reliable operation, especially in environments with high pod and PVC churn.

KEP of the Week

KEP 3998: Job success/completion policy

This (KEP) aims to enhance Indexed Jobs by allowing custom success criteria, so a job can be marked as succeeded based on specific pod indexes, such as leader pods, rather than requiring all pods to succeed. It supports distributed computing frameworks like MPI and PyTorch, where only certain pods determine job success. The proposal does not alter the default behavior for jobs without a SuccessPolicy or extend this feature to NonIndexed Jobs in its first iteration.

This KEP is tracked for beta release in v1.31.

Other Merges

kubeadm now sorts the result of MergeKubeadmEnvVars, and allows mixing of flags `–print-manifest and –config

Printer unit tests added for DRA resources

transformation_operations_total metric gets additional resource label

pkg/kubelet/cm/dra migrated to contextual logging

Fix for estimated cost for Kubernetes defined CEL types for equals

Common apiserver for all testcases in CEL tests

kube-scheduler removes non-csi volumelimit plugins

Scheduling throughput thresholds set in scheduler_perf tests

Fix to DRA with structured params to make unschedulable pods schedulable again after ResourceSlice cluster events

kube-proxy now uses field-selector clusterIP!=None on Services to avoid watching for Headless Services

NominatedPodsForNode moved to scheduling queue to make the invocations more direct

Events cached in the scheduling queue are cleared as soon as possible when SchedulerQueueingHints is enabled so that scheduler consumes less memory.

New e2e tests for Node endpoints

Deprecated

Graduated feature gates being removed: ValiatingAdmissionPolicy, StableLoadBalancerNodeSet, CloudDualStackNodeIPs, LegacyServiceAccountTokenCleanUp

kubeadm removes the deprecated flag ‘–experimental-output’

kubeadm removes the deprecated sub-phase of ‘init kubelet-finilize’ called experimental-cert-rotation

Version Updates

corefile-migration to v1.0.24

Subprojects and Dependency Updates

prometheus v2.54.1 allow multiple samples on same series, with explicit timestamps

containerd v1.7.21 regenerate introspection UUID if state is empty

grpc v1.66.1 enable EDS dualstack support by default; also v1.66.0

via Last Week in Kubernetes Development https://lwkd.info/

August 28, 2024 at 07:00PM

·lwkd.info·
Last Week in Kubernetes Development - Week Ending August 25 2024
Software Licensing Changes and Their Impact on Financial Outcomes
Software Licensing Changes and Their Impact on Financial Outcomes

Software Licensing Changes and Their Impact on Financial Outcomes

Another day, another rug pull. At least that’s what the cynical might say, as we as an industry once again are discussing the fallout of another company…

August 27, 2024 at 11:04AM

via Instapaper

·redmonk.com·
Software Licensing Changes and Their Impact on Financial Outcomes
Abusing Distroless containers: shell commands on shell-less containers with Harsha Koushik
Abusing Distroless containers: shell commands on shell-less containers with Harsha Koushik

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

https://kube.fm/abusing-distroless-harsha

In this KubeFM episode, Harsha explores the intricacies of Kubernetes security, focusing on the benefits and misconceptions of Distroless container images and the broader aspects of container security.

You will learn:

The advantages and limitations of Distroless container images: understand why these images are smaller, have a reduced attack surface and are not inherently secure.

Best practices for container security: gain insights into selecting base images, managing dependencies, and fortifying your infrastructure at every layer.

Supply chain security: explore how the supply chain can be an attack vector and the importance of signing artifacts and validating sources.

Emerging Kubernetes tools and future projects: discover the latest tools Harsha is monitoring and get a sneak peek into his upcoming projects, including a new podcast and a tool for simulating multistage attacks in cloud-native environments.

Sponsor

This episode is sponsored by Learnk8s — estimate the perfect cluster node with the Kubernetes Instance Calculator

More info

Find all the links and info for this episode here: https://kube.fm/abusing-distroless-harsha

Interested in sponsoring an episode? Learn more.

via KubeFM https://kube.fm

August 27, 2024 at 08:00AM

·kube.fm·
Abusing Distroless containers: shell commands on shell-less containers with Harsha Koushik
AI to go nuclear? Data center deals say it’s inevitable
AI to go nuclear? Data center deals say it’s inevitable
Anticipating astronomical compute-intensive AI workloads, hyperscalers and heavy data center operators are turning to energy providers for nuclear-fueled solutions in a ‘global arms race for power … like nothing we have ever seen before.’
·cio.com·
AI to go nuclear? Data center deals say it’s inevitable
In a Kyiv hangar, Ukraine launches a cyber range for everyone
In a Kyiv hangar, Ukraine launches a cyber range for everyone
Beneath the wings of retired Soviet-era aircraft, Ukrainians recently took part in a cyber range program that organizers hope to expand far beyond the usual participants from military and intelligence agencies.
·therecord.media·
In a Kyiv hangar, Ukraine launches a cyber range for everyone
Revolutionary Quantum Compass Could Soon Make GPS-Free Navigation a Reality
Revolutionary Quantum Compass Could Soon Make GPS-Free Navigation a Reality
A milestone in quantum sensing is drawing closer, promising exquisitely accurate, GPS-free navigation. Peel apart a smartphone, fitness tracker or virtual reality headset, and inside you’ll find a tiny motion sensor tracking its position and movement. Bigger, more expensive versions of the same tec
·scitechdaily.com·
Revolutionary Quantum Compass Could Soon Make GPS-Free Navigation a Reality