observability

Coffee and Cloud Native - E121

Feb 25, 2021 operations education community rancher security development observability

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
14:26	Who can remember everything that cURL can do? Here’s a cheat sheet for the low low price of an email address.	☕️☕️☕️
17:19	Kubernetes makes it easy to do host upgrades with minimal downtime. salesforce took it a step further and wired ASG events into Lambda to handle draining nodes before termination.	☕️☕️☕️☕️
21:24	Free scenario-based Kubernetes training from freeCodeCamp.	☕️☕️☕️☕️
23:55	Anyone from the Rancher community want to help praqma update their KVM scripts to use Helm v3 and the latest cert-manager?	☕️☕️☕️☕️
27:02	Did you know that you can reclaim lost access to an EKS cluster by creating an IAM user with the same name as the one that launched it?	☕️☕️☕️☕️
29:50	A foray into the world of MS Dynamics365, Azure DevOps, and source control.	☕️☕️☕️
32:54	Tool of the Day: Convert Kyverno PolicyReportResults to Grafana dashboards via Prometheus and Loki, from FrankJogeleit	☕️☕️☕️☕️☕️

Coffee and Cloud Native - E114

Feb 9, 2021 storage orchestration pwny pwny security operations networking development observability

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
3:46	An awesome article from a community member about OpenEBS, Rancher, RKE, and the NFS Server Provisioner.	☕️☕️☕️☕️☕️
4:57	TeamTNT is at it again, cryptojacking your Kubernetes clusters. You have to really work hard to make it easy for them, though.	☕️☕️☕️☕️
8:36	How hard is it to pwn a Kubernetes cluster through the kubelet? Easier than you think.	☕️☕️☕️☕️
13:51	kubeaudit can help identify Kubernetes misconfigurations that could cost you dearly.	☕️☕️☕️☕️☕️
15:22	Where Kubernetes complexity lets you down, Boundary can step in and simplify your life with solid RBAC controls for clusters and the underlying substrate.	☕️☕️☕️☕️☕️
18:26	Bion Consulting is offering free audits of Kubernetes clusters as an intro to their security service offerings.	☕️☕️☕️☕️
20:04	New features in k0s are taking shape around their goals to be the “frictionless” Kubernetes distro.	☕️☕️☕️
21:41	This article demonstrates how Traefik Ingress can be implemented as an entry point to an Istio service mesh.	☕️☕️☕️
23:28	Garden wants to solve the elusive problems developers face with Kubernetes by easing the transition between dev and prod in local testing and CI environments.	☕️☕️☕️☕️
25:56	This is the first in a series of AWESOME AWESOME AWESOME articles from codefresh on Kubernetes anti-patterns. This isn’t rehashed content. Read it and I guarantee you’ll learn something new.	☕️☕️☕️☕️☕️
27:32	Tool of the Day: This K8s operator creates UptimeRobot monitors for Kubernetes Ingresses. uptime_robot will you please gift Max a Pro account so he can test the Pro features?	☕️☕️☕️☕️☕️

Coffee and Cloud Native - E112

Feb 4, 2021 orchestration development operations observability

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
4:34	How to combine the power of a local VM with the flexibility of IaC and build your own Kubernetes development environment with Packer and K3s.	☕️☕️☕️☕️
7:16	How to use shell tools to quickly generate totally random passwords.	☕️☕️☕️
11:50	You don’t need Krew to build your own kubectl plugins. It’s easy. Here’s how.	☕️☕️☕️☕️
14:28	Nothing says “easy” like kicking off a Kubernetes install from a Chrome extension.	☕️☕️☕️
17:05	Did you know that you can use 1Password like your own HashiCorp Vault for local shell scripts? There’s a CLI!	☕️☕️☕️☕️
19:02	Apache Camel K doesn’t just bring Camel into Kubernetes. It does everything, from building to deploying the workloads for your project.	☕️☕️☕️
22:35	This service claims it can do cost reduction of Kubernetes across multiple clouds, with automatic migrations and other magic.	☕️☕️☕️
25:35	Tool of the Day: kubequery models Kubernetes resources as SQL tables and exposes them to standard SQL queries.	☕️☕️☕️

Coffee and Cloud Native - E111

Feb 2, 2021 operations orchestration observability gitops security development serverless random

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
3:08	Building PXE servers is a skill every operator should have. Here’s how to use a PXE env to build flatcar_linux nodes for Kubernetes.	☕️☕️☕️☕️
6:27	How to use kubeadm to build a Kubernetes cluster on Flatcar Linux.	☕️☕️☕️☕️
7:24	The logging operator from Banzai CLoud is amazing but has a bit of a learning curve. This walks you through setting it up w/ Loki from grafana.	☕️☕️☕️
10:12	Monk is a “modern Heroku,” and I like what monk_io has built. My only concern is that they will lock you out of your own systems and remove access to templates you’ve “bought” if you don’t keep paying them.	☕️☕️☕️
15:41	A plugin for ArgoCD to pull secrets from Hashicorp Vault and inject them into Kubernetes secrets.	☕️☕️☕️☕️
19:47	The state, or lack thereof, of GUI options for Rust.	☕️☕️☕️☕️
22:04	What do you do when your neighbor’s an a**hole? You build a serverless app to easily log his actions to support your complaint. Of course that’s what you do.	☕️☕️☕️☕️
24:35	How to create an awesome README for your GitHub profile. Show off them skillz!	☕️☕️☕️☕️
27:22	Tool of the Day: From the King of the Honk comes k8s-mirror, a tool to stuff a K8s cluster into a Docker container for offline poking and prodding.	☕️☕️☕️☕️

Coffee and Cloud Native - E107

Jan 20, 2021 chaos engineering security orchestration observability operators operations networking

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
3:53	KubeInvaders has new features where you can watch pod logs or fire off a kube-linter process!	☕️☕️☕️☕️
5:18	There’s an EU-backed bug bounty going on for Matrix. Security good.	☕️☕️☕️☕️
8:13	This is the best guide to Vertical Pod Autoscaling for Kubernetes.	☕️☕️☕️☕️
13:25	I think the new Elastic license is a defense against AWS continuing to profit off of their work.	☕️☕️☕️☕️
16:22	GoFish is like Homebrew, but for macOS, Linux, and Windows.	☕️☕️☕️☕️
17:50	Waiting to take Boundary for a spin? Here’s a full example walkthrough for Kubernetes.	☕️☕️☕️☕️
18:55	Check out this super-awesome synthetic user architecture that AppDynamics built with Kubernetes and ephemeral containers.	☕️☕️
21:26	This is a great use for an operator and a fun way to learn about building them with Python.	☕️☕️☕️☕️
23:37	Canary deployments with Linkerd, Github Actions, and Azure	☕️☕️☕️☕️
24:57	Picking up on the projectcalico article from 2019, lucjuggery digs further into kube-proxy and iptables	☕️☕️☕️☕️
27:12	Tool of the Day: A utility that uses the leader election functionality in Kubernetes to run multiple standby replicas of a pod. No more waiting 6 minutes for K8s to figure out a node died.	☕️☕️☕️☕️☕️

Coffee and Cloud Native - E106

Jan 19, 2021 pwny pwny operations orchestration development ai/ml observability chaos engineering

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
3:16	How Parler totally screwed up the “secure” part of their application and got pwned.	☕️☕️☕️☕️
6:08	A quick overview of the options for Remove-PSSession	☕️☕️☕️
8:07	This article hits a lot of open source nails on the head. It’s a big world. OSS drives innovation. Commercialization stifles it.	☕️☕️☕️☕️
12:36	These are 65 things madzadev wishes he knew when starting to code, but many of them apply to other disciplines and life in general.	☕️☕️☕️☕️
19:21	Event-driven architecture is bubbling up as a popular design paradigm. Here’s an intro into using Azure Event Grid as the broker.	☕️☕️☕️☕️
21:02	Here’s a peek at the internals of just how awesome GPT-3 is. It reveals that any effort to create an OSS GPT-3 lite is going to need a lot of donated/distributed GPU power.	☕️☕️☕️☕️
23:07	Another article on the pitfalls of readiness probes, but this begs the question - should users see database errors, or should we intelligently route to failure pages when a service has no endpoints?	☕️☕️☕️☕️
25:56	Tool of the Day: stressy is a simple CPU stress test tool. no frills. comes in container format.	☕️☕️☕️

Coffee and Cloud Native - E105

Jan 18, 2021 orchestration ci/cd networking observability database chaos engineering random operations

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
6:35	How to compile and test a local Terraform provider.	☕️☕️☕️
8:31	Do you need to move off of Travis CI? Here are some options.	☕️☕️☕️
11:39	Holy Tracing, Batman! ingress-nginx has OpenTracing baked in!	☕️☕️☕️☕️☕️
13:39	A peek into the DALL-E machine learning image generator from OpenAI	☕️☕️☕️☕️
17:02	Before today I had no idea just how awesome Graph DBs are.	☕️☕️☕️☕️
19:39	You can use Gremlin to trigger/test HPA on Kubernetes. It’s easy.	☕️☕️☕️
20:24	This is a great new series exploring unusual/unused HTML tags. kbd! progress! Please make more of these, BraydonCoyer!	☕️☕️☕️☕️
22:23	Azure has great metrics engines, and this article includes a bonus link on how to make your own Prometheus exporter for your apps.	☕️☕️☕️☕️
25:39	If you’re not a Prometheus/Grafana fan, perhaps some Azure ELK suits you? Here’s how to get started with Filebeat for observability.	☕️☕️☕️
26:36	Tool of the Day: Giggleworthy name aside, this tool is a leash for when Kubernetes distros straight-up ignore your image caching configuration.	☕️☕️☕️☕️

Coffee and Cloud Native - E98

Jan 7, 2021 service mesh 5G WSL2 backup serverless observability operations

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
5:10	Lots of things tell you how to deploy service mesh for Kubernetes. How do you know when NOT to deploy one?	☕️☕️☕️☕️
12:53	Even telcos want to break out of vendor lock-in with 5G hardware. OpenRAN will help them do it.	☕️☕️☕️
14:56	Uh oh. WSL2 shutdown might be corrupting virtual disks.	☕️☕️☕️☕️☕️
17:01	I use Borg, but these metrics will certainly have me keeping an eye on Bupstash.	☕️☕️☕️☕️
19:07	A good-practice Dockerfile boilerplate that includes a nonroot user and tini.	☕️☕️☕️☕️☕️
21:45	Serverless Workflow extends Events Workflow for Serverless.	☕️☕️
25:12	Kiali 1.25 through 1.28 introduce some great new features.	☕️☕️☕️☕️☕️
28:35	Tool of the Day: Want a container init that’s secrets aware? How about a mutating webhook that automatically adds it as an init container to Kubernetes workloads?	☕️☕️☕️

Coffee and Cloud Native - E97

Jan 6, 2021 security orchestration networking storage observability ci/cd service mesh development

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
3:05	Continuous Inspiration - Haim Ari
7:12	RBAC isn’t hard, but if you don’t understand it, you’ll take shortcuts to compensate.	☕️☕️☕️☕️
9:54	Using Terraform to set up an HA Kubernetes cluster on Hetzner Cloud. TIL that Cilium 1.9 CNI will do host firewalling too.	☕️☕️☕️☕️
12:07	OpenEBS isn’t the only one to support local host paths for Kubernetes storage. K3s from Rancher_Labs has it too.	☕️☕️☕️☕️
14:52	Peep this amazing single-page web app for listening to podcasts discovered via P2P tools. super private, super cool.	☕️☕️☕️☕️☕️
17:23	Use this tutorial to get started with the BanzaiCloud logging operator and grafana Loki in any Kubernetes cluster, including Rancher 2.5	☕️☕️☕️☕️
20:48	Terraform Cloud to Google Cloud Run via GitHub Actions pipelines. Juicy.	☕️☕️☕️☕️
22:33	A resource for explaining Istio (and other Kubernetes concepts) to non-technical people.	☕️☕️☕️☕️
24:29	How to leverage the power of Falco in an EKS Kubernetes cluster…or anywhere else.	☕️☕️☕️☕️☕️
26:32	Tool of the Day: Deno is a security-first runtime for JavaScript/TypeScript with some amazing features.	☕️☕️☕️☕️☕️

Coffee and Cloud Native - E94

Dec 18, 2020 random security development pwny pwny automation orchestration storage dns observability IoT service mesh

For same-day access to replays and links to the referenced content, please join the free CNCN Community site.

Timestamp	Description / Link	Community Rating
7:15	Sequoia is a Rust library for a modern implementation of OpenPGP, now at v1.0!	☕️☕️☕️☕️☕️
10:43	Researchers exploit RAM bus to create binary-encoded signals in the WiFi range and exfil data from airgapped computers.	☕️☕️☕️☕️
13:34	Don’t have time to build your own home automation infrastructure? Just buy a preconfigured home_assistant box and hit the ground running!	☕️☕️
15:44	ciliumproject eBPF replacement for Kubernetes proxy is not vulnerable to CVE-2020-8554 MitM vuln	☕️☕️☕️☕️
17:35	The Harvester project is open source HCI, built on top of Kubernetes.	☕️☕️☕️☕️☕️
19:22	zfs-localpv for Kubernetes hits GA milestone	☕️☕️☕️☕️
22:11	If I was still using grep, awk, and xargs to prune old Docker images and containers, does that make me an old fogey?	☕️☕️☕️☕️
26:06	Using k8s_gateway and CoreDNS with zone delegation to expose Kubernetes resources in a Windows network	☕️☕️☕️☕️
28:28	The TICK stack gives you an all-in-one solution for doing more than just graphing metrics. How about validating auth on an endpoint?	☕️☕️☕️☕️
31:00	Researchers find a material that may generate enough power from indoor ambient light to power smart devices in the home.	☕️☕️☕️☕️
31:40	Google wants to help independent creators of critical software get paid. Doesn’t sound bad, but lots of people are up in arms anyway…	☕️☕️☕️☕️☕️
34:01	A list of free or cheap hosting solutions for your dev projects	☕️☕️☕️☕️☕️
36:41	The EU cybersecurity policy for the next decade is an engrossing read that shows just how broken things are and what they want to do about it.	☕️☕️☕️☕️
39:22	AWS updated the app mesh controller for Kubernetes	☕️☕️☕️☕️
39:33	Need a book for the holidays? How about one to help you decide how to get the most out of service mesh?	☕️☕️☕️☕️
40:12	Embedding PKI registration and mTLS into IoT devices sounds like a Good Thing, but then you need PKI infrastructure and someone who knows how to run it.	☕️☕️☕️☕️
42:11	Tool of the Day: tor-controller exposes Kubernetes services to the onion network.	☕️☕️☕️☕️