1️⃣0️⃣0️⃣,0️⃣0️⃣0️⃣ Subscribers - John Savill's Technical Training Channel - THANK YOU!

Saturday morning, I hit a goal of mine since I really started to focus on my YouTube channel two years ago which was to help as many people as possible with their IT and career goals. That goal:

1️⃣0️⃣0️⃣,0️⃣0️⃣0️⃣ subscribers 🎉

I feel truly blessed to be able to help so many people and for the amazing support the channel has seen so sincerely, THANK YOU 🙏

For those that don't know my channel I focus on Azure, DevOps, PowerShell with some other technology and mentoring thrown in.

There are ZERO adverts, memberships or upsells on the channel. Nothing to distract you from being the best you can be.

Some key content for people new to the channel is below but there are over five hundred videos ranging from deep dives to overviews.

📖 Recommended Learning Path for Azure
🔗 https://learn.onboardtoazure.com

🥇Certification Content Repository
🔗 https://github.com/johnthebrit/CertificationMaterials

📅 Weekly Azure Update
🔗 https://youtube.com/playlist?list=PLlVtbbG169nEv7jSfOVmQGRp9wAoAM0Ks

☁ Azure Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nGccbp8VSpAozu3w9xSQJoY

⚙ DevOps Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nFr8RzQ4GIxUEznpNR53ERq

💻 PowerShell Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nFq\_hR7FcMYg32xsSAObuq8

🎓 Certification Cram Videos
🔗 https://youtube.com/playlist?list=PLlVtbbG169nHz2qfLvPsAz9CnnXofhmcA

🧠 Mentoring Content
🔗 https://youtube.com/playlist?list=PLlVtbbG169nGHxNkSWB0PjzZHwZ0BkXZZ

❔ Question about my setup?
🔗 https://youtube.com/playlist?list=PLlVtbbG169nHuSSHudxXDdn9Vz3T4-0mS

👕 Cure Childhood Cancer Charity T-Shirt Channel Store
🔗 https://johns-t-shirts-store.creator-spring.com/

SUBSCRIBE ✅ https://www.youtube.com/channel/UCpIn7ox7j7bH\_OFj7tYouOQ?sub\_confirmation=1

So, one final THANK YOU!

🤙

https://redd.it/sg65gp
@r_devops

Recommended courses for beginners

Hello, can you guys recommend for some beginner level courses for Devops on Udemy or something like that? Thanks!

https://redd.it/sg937a
@r_devops

First junior DevOps interview - Advice needed

Hi fellows!

I recently started to apply for devops jobs here in Europe. After applying for a couple of offers, I got a link to the python knowledge test. I was able to solve 6 questions out of 8. After it, (I think I met the minimum requirement) I had the first intro interview with hr and there is an upcoming technical interview for me soon. As the recruiter mentioned, during 60 mins I will need to solve some python codes and explain my methods, etc. During the intro interview, I was asked if I have experience with Flask and Django. However, I do not have experience with them, just only basics. I have couple of days for the technical interview. Should I dive into Django and flask immediately? Or make stronger my knowledge in data structures and algorithms?

​

by the way, I am a self pathed learner. No CS degree. I am good at Linux, bash scripting, the foundation of aws (currently on the learning path of Solution Architect Associate)

Just need your advice as it is first devops technical interview I will have.

​

job desc look like below:

On Your First Day, We Expect You To Have


Scripting experience (Python, Bash, etc.) - we don't want you doing repetitive work
Practical knowledge of Python web frameworks (Django and/or Flask)
Basic knowledge of Docker
Good communication skills with fluent English (both spoken and written)
A collaborative spirit - in our world, it’s not about having all the answers, it’s about sometimes saying "I don't know" and working on finding solutions rather than starting with an assumption


Required


It's great – but not required – for you to have


Knowledge of a configuration management tool (for example Ansible/Puppet/Chef/Terraform)
Experience with integrating services using REST interfaces or similar techniques
JS (React preferred) experience
Hands-on experience with cloud infrastructure such as AWS
Basic understanding of Kubernetes


It’s a long list, but your teammates will guide you through onboarding and you’ll have enough time to become familiar with our tools, processes and people.


​

Thank you much in advance!

https://redd.it/sgbhl2
@r_devops

Code Scanning Solution in CI/CD - could vs "on premise". DevOps views needed.


Hi,

Run a SaaS/startup called Scanmycode.today

It is checking code for best practices and code quality. More on the website.

Briefly you can plug in/use in the solution many tools, as long as they produce JSON output. Currently it uses many tools, mostly Open Source to produce one report. That should be the main value. There is also ability to enable/disable each individual check, collaborate on findings, fast scans using snapshots (only new code is scanned on next iterations)

Other tools are proprietary and I can imagine very expensive.

Checks cover also Security areas (OWASP Top 10)

Idea was to save time for users in finding the tools and integrating them. Typical integration would just show tool output, separately for each tool

From everybody I talked to, uploading code to it was a concern. So I want to Open Source it, make on premise version.

I think to create community edition, open sourced version of full package under LGPL-2.1

More here: https://tldrlegal.com/license/gnu-lesser-general-public-license-v2.1-(lgpl-2.1)

With Commonsclause

More here:
https://commonsclause.com/

Meaning you will get the source, but no rights to it and cannot sell it, make your own SaaS of it.

This will give 100% transparency to see Scanmycode code and in case of on premise deployments (laptop, server) you fully control your codebase. Run it via Docker. One command to spin it up.

Organizations could still get GitHub and Organizations integrations plugins and/or other plugins and contribute. On a case by case basis.

I think with open source scanners, one report and many checks and possibility to add your own via tools and semantic greps makes the solution unique on the market.

Gauging the interest now.

Looking to commercialize through other optional plugins i.e GitHub, GitHub organizations, maybe support and donations via https://github.com/sponsors, https://opencollective.com/, https://www.buymeacoffee.com/

What do you think about idea?

Would you use it?

As a DevOps reponsible/advising would you approve it? What variant?

Or would you keep it closed sourced, as it is now.

What could be my advantages and disadvantages in both situations?

Thanks,

https://redd.it/sgepdg
@r_devops

Docker Desktop's Grace period has ended

> Hello,

> As a reminder you’re receiving this email because on August 31, 2021 we updated the terms applicable to the Docker products or services you use.

> On January 31, 2022, the grace period ends for free commercial use of Docker Desktop in larger enterprises. Companies with more than 250 employees OR more than $10 million USD in annual revenue now require a paid subscription to use Docker Desktop. Read the blog or visit our FAQ to learn more about these updates.

> What you need to know:

> Docker Desktop remains free for personal use, education, non-commercial open source projects, and small businesses with fewer than 250 employees AND less than $10 million USD in annual revenue.
By continuing to use Docker, you are agreeing to the new Docker Subscription Service Agreement.
For organizations requiring Single Sign-On (SSO), it is now generally available for Docker Business subscribers.
To purchase a Docker subscription, visit our pricing page to compare subscription tiers, starting at just $5 per month, per user on an annual basis. For organizations with more than 50 users requiring an invoice, contact sales.

> Thank you,
The Docker Team

I am not part of any of the exception groups mentioned above. What should I migrate to?

https://redd.it/sggg5b
@r_devops

AWS DevOps Engineer Professional Certification -2022 Exam Prep

https://kanger.dev/aws-certified-devops-engineer-professional-courses-exam/

https://redd.it/sgeiqo
@r_devops

Are you facing the problem to increase cloud cost every month?

Are you facing the problem to increase cloud cost every month?

View Poll

https://redd.it/sftt6x
@r_devops

upgrading old version of gitlab

I have a really old version of self-hosted Gitlab, 12.7, and I need to upgrade it to latest.

Has anybody attempted an upgrade from this or similar version? I suspect I'd be better off creating a new instance and not bother upgrading. But then I need to migrate all the data (projects, repositories, etc).

I am looking to find out if anybody has gone through either of the exercise and what they'd recommend.

https://redd.it/sgmdr2
@r_devops

Is there something to log all alerts of rancher 1.6 like in rancher 2.x?

Hello, I need to log all the alerts in rancher 1.6 but I cannot find a documentation about it.

In rancher 2.x there is project alerts, tool > alerts, etc

No, I cannot update, it's not me who decides.

Can you help me? Thank you.

https://redd.it/sgwvdj
@r_devops

Docker Hub alternative for base images

A time ago Docker announced another limit. Now anonymous users are allowed no more than 100 pulls every 6 hours.

I have already stopped to use Docker Hub for storing my images in private repositories, but the problem is that for images build I am using base images from Docker Hub and build it from a shared environment (on Azure DevOps Microsoft-hosted agents and GitHub Actions hosted runners). In such situation there is no guarantee that the environment already haven't exceeded the limit.

As a result, made the demo repository for using Github packages to store base images built from the scratch. Currently it contains ubuntu and alpine images. Workflows are triggered every month. Images can be pulled anonymously.

https://redd.it/sh0mle
@r_devops

How to Develop Software 10x Faster with DevOps

https://levelup.gitconnected.com/how-to-develop-software-10x-faster-with-devops-ee43ca6d20af?sk=ce6345bc32022854ae9762c6938a830c

https://redd.it/sh0w88
@r_devops

Using Sentry in a NR shop? Justification

I am looking to introduce Sentry for error triage, but we are a big NewRelic shop and there is a large feature overlap. There always is with observability tools.

Is anyone running both tools and can help with some justifications I can throw to leadership? The error triage system in Sentry is exactly what we need in our tool belt, but I don’t know if that will overcome the NR maximalists. I am not throwing shade, NR fcking rules - it’s APM is waaaay behind Sentry here though, which makes sense as this has always been their bread and butter.

Maybe I should reach out to Sentry for a use case? Big company here, thousands of servers.

https://redd.it/sh38rc
@r_devops

GitLab Down

Looks like major outage: https://status.gitlab.com/

Incident Status

Service Disruption

Components

Website, API, Git Operations, Container Registry, GitLab Pages, CI/CD - GitLab SaaS Shared Runners, CI/CD - GitLab SaaS Private Runners, CI/CD - Windows Shared Runners (Beta), SAML SSO - GitLab SaaS, Background Processing, GitLab Customers Portal, Support Services, packages.gitlab.com, version.gitlab.com, forum.gitlab.com, Canary, dashboards.gitlab.com

Locations

Google Compute Engine, Azure, Digital Ocean, Zendesk, AWS

https://redd.it/sh3yn1
@r_devops

The things that drive you nuts the most with Jenkins

Hi all, I’m a cloud engineer and got setting up Jenkins for a smaller team of developers as a task for the next 3 weeks, and since I have some terrifying memories of using Jenkins from years back, I’d like to save myself from the possible horrors this time.

I remember constant struggles with plugin dependencies, scaling Jenkins was always a chore as well, with the need to handle everything configuration-related in the UI repeatedly. Painful updates – I remember manually replacing war files in Tomcat. And God forbid if Jenkins went down. It’s a miracle that I’m not yet bald at the ripe age of 31, from handling all the cases when Jenkins just straight up shat its pants.
I’m wondering if there are any more problems that I haven’t thought of, that I should keep in mind for when I’ll be handling this task.

Apart from the problems, are there any new interesting (and better of course!) ways to run Jenkins?
I saw that running Jenkins on Docker is probably the easiest way to go about setting up a basic instance but all of us know that there’s much more to it than that and there’s always a need to set up integrations with eg. various auths, persistence etc.

https://redd.it/sh4ia7
@r_devops

Does coding necessary for DevOps engineer

what are the key places using coding of either Python or Golang of DevOps world? Why coding must.

https://redd.it/sh3xoy
@r_devops

DevOps Bulletin Newsletter - Issue 36

Hey folks,

DevOps Bulletin - Digest #36 is out, the following topics are covered:

🔒 Kubernetes API access security hardening: Do you want to implement strong authentication and authorization in the Kubernetes cluster you manage? Learn about the best practices concerning API access control hardening in the Kubernetes cluster.
🤩 10 real-world stories of how we’ve compromised CI/CD pipelines: Everything from Jenkins to Docker to Kubernetes to laptops are mentioned, there’s probably something relevant to your environment
🚀 GitHub Actions through annotated examples
⭐️ Introduction to eBPF and how it can be used to add security, networking, and other capabilities in the Linux kernel space
PostgreSQL guide: If you are a PostgreSQL data architect or an administrator and want to understand how to implement advanced functionalities and master complex administrative tasks with PostgreSQL, then this guide is perfect for you.
🎬 The official Kubernetes Documentary: this film captures the story directly from the people who lived it, featuring interviews with prominent engineers from Google, Red Hat, Twitter and others. So exciting to see how the whole Kubernetes journey started ❤️

Complete issue: https://www.devopsbulletin.com/issues

Feedback is welcome :)

https://redd.it/sh7nw6
@r_devops

HOW to leverage Github Actions and Terraform

I'm looking at ways to better use GH Actions in support of deployment methods.

We currently build out multiple environments that are the same(ish).

- each customer is a new AWS/Azure/GCP environment
- all environments conform to an overall architectural and security standard but many components and services are configured specific to the client.
- some clients may have pieces others don't
- I'm mostly only interested in deployment and not on-going operations.

We layout our TF code with each tool or system in a folder. EG 'iam/security/database/app1/etc...'

As these environments are built out essentially folder by folder over weeks and months having a GH action attempt to deploy everything at once is obvisoly a non-starter.

Should I have a single action for each folder, expecting engineers to add the action when they start their work on that piece?

Or is there a way I can have GH actions only attempt to TF fmt/init/plan/apply on the changed files and assume the rest of the environmental dependencies are there?

Or something else entirely?

https://redd.it/sh9ew8
@r_devops

Cherrybomb is a CLI tool that helps you avoid undefined user behavior by validating your API specifications.

Cherrybomb is a CLI tool that helps you avoid undefined user behavior by validating your API specifications.

​

https://github.com/blst-security/cherrybomb

https://redd.it/shbldd
@r_devops

API Integration Advice

Hey guys,

​

So I've been in the data integration game for some time, but I'm kinda embarrassed to admit I've usually been looped in when the API endpoints/middleware are already well-established and it's just straightforward implementation.

​

If you were doing an API integration (from scratch) between, for example, an ecommerce back-end like WooCommerce and another service, what kind of infrastructure/orchestration would you need to configure/setup to lay the proper foundation?

​

Thanks everyone - I always have found the feedback and discussion here really informative and helpful!

https://redd.it/shbe2e
@r_devops

Host system running different OS distro in docker container - any negative effects?

I was just thinking: does it make a difference if I use an Ubuntu based image and run it on a different OS family, e.g. CentOS or Fedora? Any performance implications?

https://redd.it/shfb7c
@r_devops

Automating role-based authorisation strategy in Jenkins

I’m using the role-based authorisation strategy plugin GUI to manually administer and assign permissions to different roles, based on the projects/folders required.

Has anyone had experience automating this? Something such as jenkins configuration as code, but without the need to restart jenkins each time a new role/project is onboarded.

I have found a hacky solution that uses a custom .json file to list the roles and groups as they’re added, and a groovy system config script to read these changes.

My confusion lies in where to feed in this script/.json file. Putting it in the dockerfile would require a new image to be built and a jenkins restart for the changes to take effect right?

The plugin doc mentions a script, but doesn’t provide much information on how and where to implement it in the jenkins controller build process, in the beginning or as a pipeline job itself…

How are you managing your jenkins roles and permissions matrix for projects?

https://redd.it/shennc
@r_devops