Forwarded from LearnKube news
  
Kube Trace NFS is designed to observe NFS connections in a Kubernetes cluster by collecting telemetry data from a node-level eBPF program utilizing the BCC tool.
More: https://github.com/4rivappa/kube-trace-nfs
  More: https://github.com/4rivappa/kube-trace-nfs
How We Built a Self-Healing System to Survive a Terrifying Concurrency Bug At Netflix
https://pushtoprod.substack.com/p/netflix-terrifying-concurrency-bug
#debug #netflix
  https://pushtoprod.substack.com/p/netflix-terrifying-concurrency-bug
#debug #netflix
Forwarded from Kubernative by Palark | Kubernetes news and goodies
KubeCon NA is approaching, and social media is already packed with related posts of the Cloud Native crowd travelling there, meeting each other, etc. Cloud Native Rejekts is the official pre-party featuring lots of great talks that didn’t make it to KubeCon itself. Moreover, these talks are streamed online and available for offline watching afterwards.
Here’s the list of yesterday’s (Nov 10) talks with the links to relevant video moments:
- “Welcome to Cloud Native Rejekts NA 2024!” by Benazir Khan
- “Malicious Compliance Automated: When You Have 4000 Vulnerabilities and only 24 Hours Before Release” by Duffie Cooley, Kyle Quest
- “Ten years of Kubernetes: Building the future” by Lachlan Evenson
- “Images Bite Back -- Dealing with Day 2 Build Issues” by Adrian Mouat
- “A Day in the Life of Kubernetes Release with Tools, Challenges, and Operations” by Meha Bhalodiya
- “Building an Open Source Observability Stack from Raw Telemetry” by Joshua Lee
- “Debug Like a Pro: Ephemeral Containers and Wolfi Linux in Action” by Chad Crowell, Natalie Lunbeck
- “Integrating eBPF superpowers into your observability tooling” by Mauricio Vasquez Bernal, Chris Kuehl
- “Meet the New Kid in the Sandbox - Integrating Visualization with Prometheus” by Eric D. Schabell
- “From Fragile to Resilient: Using Admission Policies to Strengthen Kubernetes” by Marcus Noble
- “Cloud Native Nix!” by Leigh Capili
- “Virtual Machines, Containers, and WebAssembly Face-off” by Danilo (Dan) Chiarlone, Jiaxiao (Joe) Zhou
- “Platform Engineering Loves Security: Shift Down to Your Platform, not Left to Your Developers!” by Mathieu Benoit, Maxime Coquerel
+ You can find 7 more yesterday' talks from another room here.
The schedule for today (Nov 11) is available here. These talks will be streamed via the same YouTube channel. Enjoy!
#video #events
  Here’s the list of yesterday’s (Nov 10) talks with the links to relevant video moments:
- “Welcome to Cloud Native Rejekts NA 2024!” by Benazir Khan
- “Malicious Compliance Automated: When You Have 4000 Vulnerabilities and only 24 Hours Before Release” by Duffie Cooley, Kyle Quest
- “Ten years of Kubernetes: Building the future” by Lachlan Evenson
- “Images Bite Back -- Dealing with Day 2 Build Issues” by Adrian Mouat
- “A Day in the Life of Kubernetes Release with Tools, Challenges, and Operations” by Meha Bhalodiya
- “Building an Open Source Observability Stack from Raw Telemetry” by Joshua Lee
- “Debug Like a Pro: Ephemeral Containers and Wolfi Linux in Action” by Chad Crowell, Natalie Lunbeck
- “Integrating eBPF superpowers into your observability tooling” by Mauricio Vasquez Bernal, Chris Kuehl
- “Meet the New Kid in the Sandbox - Integrating Visualization with Prometheus” by Eric D. Schabell
- “From Fragile to Resilient: Using Admission Policies to Strengthen Kubernetes” by Marcus Noble
- “Cloud Native Nix!” by Leigh Capili
- “Virtual Machines, Containers, and WebAssembly Face-off” by Danilo (Dan) Chiarlone, Jiaxiao (Joe) Zhou
- “Platform Engineering Loves Security: Shift Down to Your Platform, not Left to Your Developers!” by Mathieu Benoit, Maxime Coquerel
+ You can find 7 more yesterday' talks from another room here.
The schedule for today (Nov 11) is available here. These talks will be streamed via the same YouTube channel. Enjoy!
#video #events
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
https://github.com/docker/docker-bench-security
#docker #security
Please open Telegram to view this post
    VIEW IN TELEGRAM
  WeSQL
https://github.com/wesql/wesql
#mysql #s3 #sql
  
WeSQL is a cloud-native architected MySQL that uses S3 (and S3-compatible systems) for storage, providing cross-AZ disaster recovery with zero data loss, at nearly the cost of a single replica.
https://github.com/wesql/wesql
#mysql #s3 #sql
WUD
https://github.com/getwud/wud
https://getwud.github.io/wud/#/introduction/
#docker #semver #security
  WUD (aka What's up Docker?) gets you notified when a new version of your Docker Container is available.
https://github.com/getwud/wud
https://getwud.github.io/wud/#/introduction/
#docker #semver #security
Building SQL-based Observability With ClickHouse
https://cmtops.dev/posts/building-observability-with-clickhouse/
#observability #clickhouse #monitoring #fluentbit #vector #grafana #loki #logs #elasticseaarch
  https://cmtops.dev/posts/building-observability-with-clickhouse/
#observability #clickhouse #monitoring #fluentbit #vector #grafana #loki #logs #elasticseaarch
MicroCloud 2.1.0 LTS is now available
https://canonical.com/blog/canonical-releases-microcloud-lts
https://github.com/canonical/microcloud
#snap #ubuntu #ceph #lxc #linux
  MicroClouds are optimized for repeatable and reliable remote deployments. A single command initiates the orchestration and clustering of various components with minimal user involvement, resulting in a fully functional cloud within minutes.
https://canonical.com/blog/canonical-releases-microcloud-lts
https://github.com/canonical/microcloud
#snap #ubuntu #ceph #lxc #linux
DarkFlare
https://github.com/doxx/darkflare
#security #vpn #firewall #cloudflare #proxy
  DarkFlare Firewall Piercing (TCP over CDN)
It has two parts: a client-side proxy (darkflare-client) that encodes TCP data into HTTPS requests and sends it to a Cloudflare-protected domain, and a server-side proxy (darkflare-server) that decodes the requests and forwards the data to a local service (like SSH on port 22). It’s protocol-agnostic, secure, and uses Cloudflare's encrypted infrastructure, making it stealthy and scalable for accessing internal resources or bypassing network restrictions.
https://github.com/doxx/darkflare
#security #vpn #firewall #cloudflare #proxy
Continuous Integration Dashboard for Apache NuttX RTOS
https://lupyuen.github.io/articles/ci4
#grafana #prometheus #observability #monitoring #github
  https://lupyuen.github.io/articles/ci4
#grafana #prometheus #observability #monitoring #github
Designing a Zero Downtime Migration Solution with Strong Data Consistency
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-i/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-ii/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-iii/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-iv/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-v/
#kubernetes #gcp
  https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-i/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-ii/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-iii/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-iv/
https://engineering.mercari.com/en/blog/entry/20241113-designing-a-zero-downtime-migration-solution-with-strong-data-consistency-part-v/
#kubernetes #gcp
Awesome Cloud Security Labs
https://github.com/iknowjason/Awesome-CloudSec-Labs
#security #cloud #aws #azure #gcp #k8s #kubernetes #terraform
  Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs. https://github.com/iknowjason/Awesome-CloudSec-Labs
#security #cloud #aws #azure #gcp #k8s #kubernetes #terraform
5 reasons Proxmox is better than Hyper-V for home lab enthusiasts
https://www.xda-developers.com/reasons-proxmox-is-better-than-hyper-v-for-home-lab-enthusiasts
#proxmox #kvm #hyperv #qemu #linux #hypervisor
  https://www.xda-developers.com/reasons-proxmox-is-better-than-hyper-v-for-home-lab-enthusiasts
#proxmox #kvm #hyperv #qemu #linux #hypervisor
  Sysadmin Tools 🇺🇦
5 reasons Proxmox is better than Hyper-V for home lab enthusiasts  https://www.xda-developers.com/reasons-proxmox-is-better-than-hyper-v-for-home-lab-enthusiasts  #proxmox #kvm #hyperv #qemu #linux #hypervisor
Meanwhile https://www.theverge.com/2024/11/12/24294609/vmware-fusion-workstation-pro-software-free-commercial
  
  The Verge
  
  VMware Workstation and Fusion are now free for everyone
  Support tickets for troubleshooting will go away too.
  Nezha
https://github.com/nezhahq/nezha
#monitoring #observability #selfhosted
  Self-hosted, lightweight server and website monitoring and O&M tool
https://github.com/nezhahq/nezha
#monitoring #observability #selfhosted
