The Theory Behind Understanding Failure is a great article that provides a viewpoint that any system has more than just a technical aspect of it, as well as any failure (incident) is not a single isolated event. It uses some known and less known examples to illustrate it.
I also appreciated that it has references to the scientific works behind it. So, you can dive deeper, if you want to. The author did, however, misinterpret Nietzsche, but everybody does, so it's Ok.
#culture #theory
I also appreciated that it has references to the scientific works behind it. So, you can dive deeper, if you want to. The author did, however, misinterpret Nietzsche, but everybody does, so it's Ok.
#culture #theory
Evan Smith
The Theory Behind Understanding Failure
In the last 100 years, there’s been a lot of intense and distributed advancement in technology, and our use of it as a species. As technology advanced, it also brought catastrophic and costly failure. There’s a lot to be learned about the theory behind failure…
👍6
How hard could it be to write a calculator app?
This article tells the story of the Android’s calculator app and shows that building a calculator is not as trivial as it may seem.
Honestly, I love articles like this one! They truly remind me why I like engineering.
#programming
This article tells the story of the Android’s calculator app and shows that building a calculator is not as trivial as it may seem.
Honestly, I love articles like this one! They truly remind me why I like engineering.
#programming
Chad Nauseam Home
calculator-app - Chad Nauseam Home
"A calculator app? Anyone could make that." (this was originally a https://x.com/ChadNauseam/status/1890889465322786878, and has since been turned into an asterisk article) "A calculator app? Anyone …
👍7
Here are two somewhat related articles. Related, because they come from the same author and touch the same topic of the incident management. The articles are not in order and they highlight different aspect of how we deal with incidents.
- The danger of overreaction is about how good intentions of preventing incidents (usually taken after a high-impact incident occurs) can lead to worse results. In German language there are words "die Verschlimmbesserng" and "zu verschlimmbessern" respectively, that mean exactly that: make something worse by trying to make it better.
- You’re missing your near misses about the importance of tracking situations when incidents nearly happen. This intertwines a bit with an article I shared earlier. Yet, this one is less science and more common wisdom.
#sre
- The danger of overreaction is about how good intentions of preventing incidents (usually taken after a high-impact incident occurs) can lead to worse results. In German language there are words "die Verschlimmbesserng" and "zu verschlimmbessern" respectively, that mean exactly that: make something worse by trying to make it better.
- You’re missing your near misses about the importance of tracking situations when incidents nearly happen. This intertwines a bit with an article I shared earlier. Yet, this one is less science and more common wisdom.
#sre
Surfing Complexity
The danger of overreaction
The California-based blogger Kevin Drum has a good post up today with the title Why don’t we do more prescribed burning? An explainer. There’s a lot of great detail in the post, but the bit t…
👍5
On Saturday, I gave a talk at the FW Days DevOps conference. I will share the videos with you once they are available.
During the conference, they were raising money for a night vision device PVS-14 for the 4th battalion of the 46th separate brigade.
The goal is to raise 220k UAH, and almost 150k was raised during the conference. Let's help them to close this goal!
Monobank Jar: https://send.monobank.ua/jar/vxr5ywPjM
#donations #Ukraine
During the conference, they were raising money for a night vision device PVS-14 for the 4th battalion of the 46th separate brigade.
The goal is to raise 220k UAH, and almost 150k was raised during the conference. Let's help them to close this goal!
Monobank Jar: https://send.monobank.ua/jar/vxr5ywPjM
#donations #Ukraine
❤9👍2
What is common between Helm and the article about the abuse of the
Year of initial release. But if the article is not more accessible outside the Web Archive, Helm still provides that as a valid installation option.
Anyway, the article is old but gold, worth reading to understand how tricky attakers can be.
#security #bash
curl | bash setup to load bad payload?Year of initial release. But if the article is not more accessible outside the Web Archive, Helm still provides that as a valid installation option.
Anyway, the article is old but gold, worth reading to understand how tricky attakers can be.
#security #bash
web.archive.org
Detecting the use of "curl | bash" server side | Application Security
Another reason not to pipe from curl to bash. Detecting curl | bash serverside.
❤2
Terraform Patterns, Observed. Part 5: Logic in Terraform is a nice article with observations of how people incorporate logic in their Terraform code, even though TF’s logic is somewhat limited.
BTW, as you can see, this is a part 5. Robert has other articles with Terraform observations on his Medium. I highly recommend checking them out as well!
P.S. This article is brought to you (and me) by weekly.tf - a newsletter about the Terraform ecosystem by Anton Babenko. This is a great place to keep up-to-date with Terraform, even if you don’t work with it a lot.
#terraform
BTW, as you can see, this is a part 5. Robert has other articles with Terraform observations on his Medium. I highly recommend checking them out as well!
P.S. This article is brought to you (and me) by weekly.tf - a newsletter about the Terraform ecosystem by Anton Babenko. This is a great place to keep up-to-date with Terraform, even if you don’t work with it a lot.
#terraform
Medium
Terraform Patterns, Observed
In this post, we will discuss where logic appears, major contributors to complexity and confusion, and suggestions on how to approach…
❤5
For my DevEx specialists out there: What's Next in Measuring Dev Productivity?.
tl;dr: this is kinda a very basic description, but at least it has a table with metrics and some justification behind them. This is why I decided to share it.
#culture #devex
tl;dr: this is kinda a very basic description, but at least it has a table with metrics and some justification behind them. This is why I decided to share it.
#culture #devex
refactoring.fm
What's Next in Measuring Dev Productivity? 📈
The four big shifts in measuring and using engineering metrics.
❤4
From time to time I’m revisiting old articles that I have saved somewhere or those that just laying around, etc.
Today, I’d like to share with you two articles by Julia Evans on how to learn new skills, which is a skill on its own.
The second article is actually a presentation from the Strangeloop conference on how to reason about things and make hard or confusing things easier to understand.
#education
Today, I’d like to share with you two articles by Julia Evans on how to learn new skills, which is a skill on its own.
The second article is actually a presentation from the Strangeloop conference on how to reason about things and make hard or confusing things easier to understand.
#education
Julia Evans
How to teach yourself hard things
This blog is mostly about learning computer programming / systems. Probably 70% of these posts are in one way or another about things I’ve learned and why they’re exciting.
❤3
Let’s help Seva to close this fundraising round for a night vision device!
We could close it right away, if only every subscriber of this channel sent ₴6 there.
Monobank jar:
https://send.monobank.ua/jar/vxr5ywPjM
#donations #Ukraine
We could close it right away, if only every subscriber of this channel sent ₴6 there.
Monobank jar:
https://send.monobank.ua/jar/vxr5ywPjM
#donations #Ukraine
❤6
How Do Websockets Work is a short explainer of websockets by the System Design Newsletter.
BTW, that is a good newsletter, I can totally recommend!
#web
BTW, that is a good newsletter, I can totally recommend!
#web
newsletter.systemdesign.one
How Do Websockets Work ✨
#67: A Simple Introduction to Websockets (3 Minutes)
👍7❤4
One of the interesting questions when it comes to SLOs is how to define them, in other words, how to set up boundaries to make the SLOs meaningful.
This article by Honeycomb provides some ideas on how to organize your SLOs, so on one hand they represent the user's needs, but on another hand do not cover things that your team cannot control.
#observability #slo #sre
This article by Honeycomb provides some ideas on how to organize your SLOs, so on one hand they represent the user's needs, but on another hand do not cover things that your team cannot control.
#observability #slo #sre
👍2
Another article from the old stockpiles, and again it's from Julia Evans.
This one is about the ways DNS can break.
It's been a couple of years since this article was published, so some things may be irrelevant today. For example, the issue with DNS over TCP was fixed in
In any case though, this is a nice article that deserves your attention.
#dns #networking
This one is about the ways DNS can break.
It's been a couple of years since this article was published, so some things may be irrelevant today. For example, the issue with DNS over TCP was fixed in
musl to my knowledge.In any case though, this is a nice article that deserves your attention.
#dns #networking
👍7
A book bundle on various computer science topics by No Starch Press.
https://www.humblebundle.com/books/computer-science-fun-way-no-starch-books
#books #bundle
https://www.humblebundle.com/books/computer-science-fun-way-no-starch-books
#books #bundle
Humble Bundle
Humble Tech Book Bundle: Computer Science the Fun Way by No Starch
Master Computer Science the Fun Way with this library of tech courses by No Starch. Learn new skills, pay what you want, support charity!
👍8
The first Spring issue of the newsletter!
https://newsletter.catops.dev/p/catops-digest-2025-03-09
#digest #newsletter
https://newsletter.catops.dev/p/catops-digest-2025-03-09
#digest #newsletter
newsletter.catops.dev
CatOps Digest 2025-03-09
What was on CatOps in the last couple of weeks...
I do not have small fundraisers for you today, so let's donate to Serhii Sternenko for FPV drones:
https://send.monobank.ua/jar/2JbpBYkhMv
#donations #Ukraine
https://send.monobank.ua/jar/2JbpBYkhMv
#donations #Ukraine
👍13🥰3
How to Scale Elasticsearch to Solve Your Scalability Issues is a neat guide for areas where you could optimize your ElasticSearch clusters.
Ties article doesn’t provide any concrete numbers, but gives plenty of suggestions. It makes sense, since any optimization heavily depends on one’s use case.
#elasticsearch
Ties article doesn’t provide any concrete numbers, but gives plenty of suggestions. It makes sense, since any optimization heavily depends on one’s use case.
#elasticsearch
DZone
How to Scale Elasticsearch to Solve Your Scalability Issues
Learn to scale Elasticsearch efficiently by optimizing sharding, query performance, and memory usage to handle high-traffic, real-time applications seamlessly.
👍5
Git is one of those things, where you can discover new things even after decades of using it.
This article provides some tricks you could do with Git. If you knew those already - that's cool. If not, you're welcome :)
#git
This article provides some tricks you could do with Git. If you knew those already - that's cool. If not, you're welcome :)
#git
Highgrowthengineer
Unspoken git secrets that save you mountains ⛰️ of time as an engineer
And no, it's NOT `status`, `add`, and `commit`.
🔥8😐1
Yet another article from the old archives.
This one is about building a multicluster setup with Kubernetes using Kubernetes tools only. Moreover, there are more tools these days that can help you accomplish the architecture outlined in this article.
For example, you could use ClusterAPI instead of Crossplane for leaf-clusters and so on.
The only sad thing is that Kubernetes doesn’t support federation. So, any viable multi-cluster setup always boils down to two distinct approaches: a bunch of independent clusters, or a single leader with leaves.
#kubernetes
This one is about building a multicluster setup with Kubernetes using Kubernetes tools only. Moreover, there are more tools these days that can help you accomplish the architecture outlined in this article.
For example, you could use ClusterAPI instead of Crossplane for leaf-clusters and so on.
The only sad thing is that Kubernetes doesn’t support federation. So, any viable multi-cluster setup always boils down to two distinct approaches: a bunch of independent clusters, or a single leader with leaves.
#kubernetes
👍2
There are two types of folks: those who pin their dependencies to (often) mutable tags and other pointers, and those who already pin to hash sums.
This is true for GitHub Actions as well. For example, most tags in the tj-actions/changed-files repository were repointed to compromised versions by an attacker, potentially affecting 23,000 repositories until GitHub shut down the entire repository.
Manually pinning dependencies can be tedious, so it's better to utilize tools like Renovate. The SpotOnInc/renovate-config preset does exactly that. Note that you can pin it to a hash sum too, just in case ;)
P.S. If you used that GitHub Action, here is a list of possible mitigation steps: antonbabenko/pre-commit-terraform#837.
#security #github #gha
This is true for GitHub Actions as well. For example, most tags in the tj-actions/changed-files repository were repointed to compromised versions by an attacker, potentially affecting 23,000 repositories until GitHub shut down the entire repository.
Manually pinning dependencies can be tedious, so it's better to utilize tools like Renovate. The SpotOnInc/renovate-config preset does exactly that. Note that you can pin it to a hash sum too, just in case ;)
P.S. If you used that GitHub Action, here is a list of possible mitigation steps: antonbabenko/pre-commit-terraform#837.
#security #github #gha
www.stepsecurity.io
Harden-Runner detection: tj-actions/changed-files action is compromised - StepSecurity
👍2
The highest priority after completing the task is to preserve the life and health of the personnel. So, let's help raise money for tactical medicine!
TL;DR: Donate to Monobank jar till EOW and I will double the amount raised[1].
The Hospitallers Battalion is a volunteer formation known for its professionalism and dedication. When I say "voluntarily," I mean that you can join for a rotation, for example, for 2 weeks, and then return to civilian life for a few months before repeating the process. This flexibility allows specialists who, for various reasons, do not want or cannot join AFU still contribute to defensive operations. However, since the Hospitallers are a volunteer formation, their funding relies on donations from ordinary people.
Currently, the Hospitallers are raising 7.5 million UAH (~$180k) for this spring.
Let's aim to raise at least 10k UAH from CatOps by the end of the week, and I will double the amount raised[1].
Monobank jar: https://send.monobank.ua/jar/6eEHjgDTGq
Btw, the Hospitallers offer courses on first aid and tactical medicine that are available to civilians. I recently took the TCCC ASM (3-day) course, and it was excellent. You can check out their courses at Hospitallers Courses site and track new dates on their Telegram channel.
#donations #Ukraine
[1] But not more than 20k UAH/month from me until the fund campaign is closed or until I have doubled the amount, whichever comes first.
TL;DR: Donate to Monobank jar till EOW and I will double the amount raised[1].
The Hospitallers Battalion is a volunteer formation known for its professionalism and dedication. When I say "voluntarily," I mean that you can join for a rotation, for example, for 2 weeks, and then return to civilian life for a few months before repeating the process. This flexibility allows specialists who, for various reasons, do not want or cannot join AFU still contribute to defensive operations. However, since the Hospitallers are a volunteer formation, their funding relies on donations from ordinary people.
Currently, the Hospitallers are raising 7.5 million UAH (~$180k) for this spring.
Let's aim to raise at least 10k UAH from CatOps by the end of the week, and I will double the amount raised[1].
Monobank jar: https://send.monobank.ua/jar/6eEHjgDTGq
Btw, the Hospitallers offer courses on first aid and tactical medicine that are available to civilians. I recently took the TCCC ASM (3-day) course, and it was excellent. You can check out their courses at Hospitallers Courses site and track new dates on their Telegram channel.
#donations #Ukraine
[1] But not more than 20k UAH/month from me until the fund campaign is closed or until I have doubled the amount, whichever comes first.
❤7