Hands on with Kubernetes Pod Security Admission
https://medium.com/@LachlanEvenson/hands-on-with-kubernetes-pod-security-admission-b6cac495cd11
https://medium.com/@LachlanEvenson/hands-on-with-kubernetes-pod-security-admission-b6cac495cd11
Data-driven negotiation with SLIs, SLOs and Error Budgets
Part 2: https://medium.com/jump-start/data-driven-negotiation-with-slis-slos-and-error-budgets-2-2-e52ebd5a9d4f
In this series of posts, I’m writing about using Service Level Indicators (SLIs) and Service Level Objectives (SLOs) in data-driven negotiations between Engineering, Product and Business to achieve this goal.Part 1: https://medium.com/jump-start/data-driven-negotiation-with-slis-slos-and-error-budgets-1-2-8b23603b570e
Part 2: https://medium.com/jump-start/data-driven-negotiation-with-slis-slos-and-error-budgets-2-2-e52ebd5a9d4f
Pinterest’s Analytics as a Platform on Druid
Part 2: https://medium.com/pinterest-engineering/pinterests-analytics-as-a-platform-on-druid-part-2-of-3-e63d5280a1a9
Part 3: https://medium.com/pinterest-engineering/pinterests-analytics-as-a-platform-on-druid-part-3-of-3-579406ffa374
In this blog post series, we’ll discuss Pinterest’s Analytics as a Platform on Druid and share some learnings on using Druid. This is the first of the blog post series with a short history on switching to Druid, system architecture with Druid, and learnings on optimizing host types for Mmap.Part 1: https://medium.com/pinterest-engineering/pinterests-analytics-as-a-platform-on-druid-part-1-of-3-9043776b7b76
Part 2: https://medium.com/pinterest-engineering/pinterests-analytics-as-a-platform-on-druid-part-2-of-3-e63d5280a1a9
Part 3: https://medium.com/pinterest-engineering/pinterests-analytics-as-a-platform-on-druid-part-3-of-3-579406ffa374
Improving efficiency and reducing runtime using S3 read optimization
https://medium.com/pinterest-engineering/improving-efficiency-and-reducing-runtime-using-s3-read-optimization-b31da4b60fa0
https://medium.com/pinterest-engineering/improving-efficiency-and-reducing-runtime-using-s3-read-optimization-b31da4b60fa0
Community-based SLIs to boost SLO reliability and adoption
https://itnext.io/community-based-slis-to-boost-slo-reliability-and-adoption-d849c8b921eb
https://itnext.io/community-based-slis-to-boost-slo-reliability-and-adoption-d849c8b921eb
Top 10 Kubernetes Application Security Hardening Techniques
https://blog.aquasec.com/kubernetes-hardening-techniques
https://blog.aquasec.com/kubernetes-hardening-techniques
kubeswitch
The kubectx for operators. kubeswitch (lazy: switch) takes Kubeconfig context switching to the next level, catering to operators of large scale Kubernetes installations. Designed as a drop-in replacement for kubectx.https://github.com/danielfoehrKn/kubeswitch
Dynamic content for GitHub repository templates using cookiecutter and GitHub Actions
https://simonwillison.net/2021/Aug/28/dynamic-github-repository-templates
https://simonwillison.net/2021/Aug/28/dynamic-github-repository-templates
A Kubernetes engineer’s guide to mTLS
Mutual TLS, or mTLS, is a hot topic in the Kubernetes world, especially for anyone tasked with getting “encryption in transit” for their applications. But what is mTLS, what kind of security does it provide, and why would you want it?https://buoyant.io/mtls-guide
Linux 5.14 SSD Benchmarks With Btrfs vs. EXT4 vs. F2FS vs. XFS
https://www.phoronix.com/scan.php?page=news_item&px=Linux-5.14-File-Systems
https://www.phoronix.com/scan.php?page=news_item&px=Linux-5.14-File-Systems
Five Ansible Techniques I Wish I’d Known Earlier
1) --stephttps://zwischenzugs.com/2021/08/27/five-ansible-techniques-i-wish-id-known-earlier
2) Inline logging
3) Run ansible-lint
4) Run ansible-console
5) The Ansible Debugger
Kubernetes Troubleshooting: The Complete Guide
https://komodor.com/learn/kubernetes-troubleshooting-the-complete-guide
https://komodor.com/learn/kubernetes-troubleshooting-the-complete-guide
Automating quality checks for Kubernetes YAMLs
https://dev.to/wkrzywiec/automating-quality-checks-for-kubernetes-yamls-398
https://dev.to/wkrzywiec/automating-quality-checks-for-kubernetes-yamls-398
Restricting Docker Access With a Reverse Proxy
https://raesene.github.io/blog/2021/09/05/restricting-docker-access-with-a-proxy
https://raesene.github.io/blog/2021/09/05/restricting-docker-access-with-a-proxy
Track Error Budget & Burn Rate automatically
An open-source tool designed to make Error Budget and SLO tracking simplerhttps://slotracker.com
DevOps&SRE Library
SRE Teams #9: Delivery Center DeliveryCenter has about 600 employees. Their primary mission is to be OneStepToSell to restaurants and marketplaces. They connect the restaurants with many food apps, managing everything through a single platform. One hundred…
SRE Teams #10: Quintoandar
Quintoandar is an end-to-end solution for long-term rentals that, among other things, connects potential tenants to landlords and vice versa. Last year, they also expanded into connecting home buyers to sellers. Their long-term plan is to evolve into a one-stop real estate shop offering mortgage, title insurance, and escrow services. They raised more than $700 million and are valued at $5.1 billion.https://sreteams.substack.com/p/quintoandar
Five Ways Developers Can Help SREs
1. Scaling The Platform With The Concept Of A 12-factor App Methodhttps://www.squadcast.com/blog/five-ways-developers-can-help-sres
2. Sharing Performance Testing Data Insights
3. Significance of Documentation and Configuration files
4. AIOps Supported System Admin Functionalities
5. Increasing Observability Of The System
headscale
An open source, self-hosted implementation of the Tailscale control serverhttps://github.com/juanfont/headscale