Pure sh bible – Posix sh alternatives to external processes

I thought the r/devops subreddit might be interested in this project I just found!

https://github.com/dylanaraps/pure-sh-bible

https://redd.it/su4fzm
@r_devops

TSE Interview!


Hey guys, I have an upcoming technical interview with a game server orchestration company that manages multiplayer games worldwide. This is for a TSE position. I was told that the scope of the interview would mostly be linux/docker questions as well as some kubernetes. Any specific commands/documentations I should know to be more prepared than I’m trying to be? Thanks!

https://redd.it/suamqy
@r_devops

Keeping up with external software releases

I've been wondering how everyone keeps up-to-date with software releases for tools they use.
As an example, recently Terraform introduced some breaking changes in their AWS provider v4.0.0.
And yes, I should be pinning providers!
But it got me thinking, I'd like an automated way to keep up with releases so I don't need to go checking sites. Not all have atom feeds so anyone have any good suggestions?

https://redd.it/su28bt
@r_devops

Looking for the right way to club the AWS credentials in a CI - CD pipeline

Hi, guys!

My application talks to a few AWS services like S3, SQS, SNS, CloudWatch, etc. This application uses credentials that I keep in a text file. This text file is kept manually in each VM for every environment (Dev, Stage, QA, etc) separately.

Now, I want to club this credential file with my CI-CD and remove the text file dependency. What is the right way to do it? Shall I use a key-vault? Or, shall I put it on S3 and then make a call to it?

Kindly suggest.

https://redd.it/sudpwd
@r_devops

Prevent commit ill formatted kubernetes yaml to github

Hi, Is there a way to raise error in IDE for ill formatted k8s yaml definitions before they are committed to github.

https://redd.it/suhere
@r_devops

What might be wrong with my node container?


793 silly tarball trying [email protected] by hash: sha1-m98vIOH0DtRH++JzJmGR/O1RYmw=
794 silly extract [email protected] extracted to /amigos.com/node_modules/deprecated (482ms)
795 silly extract [email protected] extracted to /amigos.com/node_modules/orchestrator (481ms)
796 silly extractTree [email protected] -> /amigos.com/node_modules/end-of-stream
797 silly extractTree [email protected] -> /amigos.com/node_modules/sequencify
798 silly extractTree [email protected] -> /amigos.com/node_modules/stream-consume
799 silly extract @sindresorhus/[email protected] extracted to /amigos.com/node_modules/@sindresorhus/is (999ms)
800 silly extract [email protected] extracted to /amigos.com/node_modules/lodash._root (408ms)
801 silly tarball trying [email protected] by hash: sha1-jhdyBsPICDfYVjLouTWd/osvbq8=
802 silly tarball trying [email protected] by hash: sha1-kM/xnQLgcCf9dn9erT57ldHnOAw=
803 silly tarball trying [email protected] by hash: sha1-pB6tGm1ggc63n2WwYZAbbY89HQ8=
804 silly extract [email protected] extracted to /amigos.com/node_modules/locate-path (352ms)
805 silly extract [email protected] extracted to /amigos.com/node_modules/inherits (374ms)
806 silly extract [email protected] extracted to /amigos.com/node_modules/lodash.isarguments (420ms)
807 silly extract [email protected] extracted to /amigos.com/node_modules/critical/node_modules/load-json-file (352ms)
808 silly extract [email protected] extracted to /amigos.com/node_modules/jsesc (509ms)
809 verbose teardown shutting down workers.
810 info teardown Done in 0s
811 verbose type system
812 verbose stack FetchError: request to https://registry.npmjs.org/readable-stream/-/readable-stream-2.2.10.tgz failed, reason: getaddrinfo EAI_AGAIN registry.npmjs.org:443
812 verbose stack at ClientRequest.req.on.err (/usr/local/lib/node_modules/npm/node_modules/node-fetch-npm/src/index.js:68:14)
812 verbose stack at emitOne (events.js:116:13)
812 verbose stack at ClientRequest.emit (events.js:211:7)
812 verbose stack at TLSSocket.socketErrorListener (_http_client.js:401:9)
812 verbose stack at emitOne (events.js:116:13)
812 verbose stack at TLSSocket.emit (events.js:211:7)
812 verbose stack at emitErrorNT (internal/streams/destroy.js:73:8)
812 verbose stack at _combinedTickCallback (internal/process/next_tick.js:139:11)
812 verbose stack at process._tickCallback (internal/process/next_tick.js:181:9)
813 verbose cwd /amigos.com
814 verbose Linux 5.10.60.1-microsoft-standard-WSL2
815 verbose argv "/usr/local/bin/node" "/usr/local/bin/npm" "ci"
816 verbose node v8.17.0
817 verbose npm v6.13.4
818 error code EAI_AGAIN
819 error errno EAI_AGAIN
820 error request to https://registry.npmjs.org/readable-stream/-/readable-stream-2.2.10.tgz failed, reason: getaddrinfo EAI_AGAIN registry.npmjs.org:443
821 verbose exit [ 1, true ]

My node container that builds my css and js by running a gulpfile no longer worked and my latest error message gave me the above. It was on the 25th of last month. It looks like some DNS error, but I am not sure if it's related to the issue I am having. Running docker-compose run css-make gives me an index.js of 1kb with some bogus content. The js file generated should be 256kb, so I am not sure what's happening here. The docker-container doesn't seem to be running like before. In the past, it would output something on my WSL console every time I changed a js file, now I don't see it at all.

FROM node:8.17

RUN apt-get update \
&& apt-get install -y curl nano socat

https://redd.it/su9oo0
@r_devops

Building Tools and Platforms for the 99% Developers

https://future.a16z.com/software-development-building-for-99-developers/

https://redd.it/sulkja
@r_devops

Courses to learn Python Automation?

I want really to work on a DevOps enviroment so I'm following this roadmap: https://roadmap.sh/devops


I'm a junior sysadmin and I have a pretty solid Linux base, with some knowledge on bash scripting. Im currently taking this course: Docker&Kubernetes where I've learned some Travis CI, AWS too...


However I want to first get some knowledge on python automation, what are some good courses?

https://redd.it/sumze6
@r_devops

Quitting?

I’m starting to feel more like a cog than ever before. Often asked to work during PTO, often late nights etc.

Any thoughts or stories to share? In my late 30s and was hoping to finally get a little more work/life balance.

Bailed on a small company for a FAANG like gig and it’s been a nightmare.
We spend hours a week on the company and our culture which bleeds into my evenings.

https://redd.it/suniym
@r_devops

Picking incident severity levels

It sounds really obvious, but if you're ever unlucky enough to be building your company's incident response process, you'll be forced to decide what severities to use.

Lots of the literature is really dense and designed for mega-corps, not your average growing company.

My colleague Stephen has written about how to pick good incident severities, leaning on the experience we've had with our (incident.io) customers and the processes they implement.

For some pragmatic advice and first principal thinking, here's the post:

https://incident.io/blog/designing-your-incident-severity-levels

https://redd.it/suq371
@r_devops

Is Jenkins best suited for my usecase?

I'm trying to deploy a nextjs(react) app and I want the flow to look something like this
Commit is made to repo on github -> VPS is notified via webhook -> VPS builds docker image shuts down previous image and then runs the new one


From what I'm seeing I think Jenkins can do what I want to do but there may be a better way to do it


I'm very new to devops so feel free to give me any advice if there is a better way to do what I'm trying to do

https://redd.it/sur26h
@r_devops

Moving from long-lived to ephemeral environments: why and how?

My company is hosting a webinar on March 2nd about the move from long-lived to ephemeral environments in pre-production workflows. If you're in the process of doing this at your company, drop by or sign up to catch the recording.

https://redd.it/suvtrg
@r_devops

A Postgres toolkit that might be handy

Can be useful if you are managing Postgres. In this docker image, I've collected many Postgres tools that can help with development and maintenance after the release. It can help to generate realistic mocking data, import/export data from files can perform complete Postgres benchmarking (generates test data and benchmarks queries).

It also can help with making backups and saving to S3, as well as scheduling them. Includes a browser-based version of VS-code, terminal, filebrowser, and jobs scheduler.

I open-sourced it in this repository

https://redd.it/sup6u7
@r_devops

Drupal and DevOps... examples, resources.

Hopefully this is the correct place to ask. I'm looking for examples, resources or learning material on using drupal within a DevOps framework. Currently I'm building backend resources for our drupal devs and it's getting old. Since our organization is retooling I would like to automate as much as possible. I have a vision in my head of how it would work but it would help if I could see an examples and access to materials where I can fill in the gaps of my knowledge (which with the retooling is a little wide now). Any 👉 in the proper direction would be appreciated...books, Google searches, videos, courses...etc.

-Editing to give clue as to the tools available.

Azure DevOps, Azure, AWS, Terraform plus others.

https://redd.it/suzfz0
@r_devops

Hiring Managers - what projects do you look for on a “Junior” or “New” persons resume?

Currently looking to shift my career into DevOps.

I’ve done my research about what certifications I want to pursue and obtain… but are there any good projects for new people cracking into DevOps to do and list on their resume? I plan on having a “projects” section on my resume. I was wondering if there were any good resources to start from or follow along to the point where I can put them on my resume with the technologies/tools used.

If you’re a hiring manager or been in DevOps for awhile… what types of “Junior” projects would you want to see on a resume that says you are willing to learn in a Junior role, but have a good grasp of the basics down?

Any suggestions?

https://redd.it/sv3hgi
@r_devops

Does your company use DORA metrics? Do you find them useful or are they just Marketing/Sales bla-bla?

We‘re moving to the cloud and our implementation partner company keeps bringing up DORA metrics.

Do you have an opinion?

Further info: https://cloud.google.com/blog/products/devops-sre/using-the-four-keys-to-measure-your-devops-performance

https://redd.it/sv4fzg
@r_devops

Centralize AWS Cloudwatch security alerts



Hi,

I'm trying to create some security alerts for a cloudwatch log group from a cloudtrail org trail. My setup is the following, 3 accounts (master, dev-1,dev2), org trail enabled and pushing events to a s3 bucket and a log-group, both deployed on the master account. I created some security alerts on the master account, like failed console login, and I'm able to trigger the alert and an SNS notification by failing the logins on all 3 accounts. The problem is that I don't have the context from which account triggered the failed logins alert. All the alerts have the master account as the trigger account, I guess it makes sense since the log group and alerts are on the master account, but is there a way to know which account triggered the alert? Basically, I'm trying to centralize the security alerts for all my accounts.

Does anyone have an idea how to achieve this?

https://redd.it/suzaz3
@r_devops

How do you scan your docker images?

I am looking for any online tool to scan images in docker hub for vulnerability. I need a way to certify to management that the image is clean. Any site that allows you to enter a image name and give you vulnerability report? Is rebuilding the image on my own the only way?

https://redd.it/sv6vw7
@r_devops

To those that use sumo logic ... is it expanding or nah?

My org just did a POC with sumo and a few other logging/SIEM vendors including elastic and logrhythm. We're leaning toward sumo logic but are confused by the mixed reviews we've seen.

I'm curious to hear from people whose orgs use some in some capacity in prod. One sure fire way to know if something is good, in my opinion, is if the people that have it are expanding it and landing more stuff in it over time, or if they kinda keep it sequestered and eventually move off of it (this is kinda what we did with zabbix).

View Poll

https://redd.it/sv5q9m
@r_devops

Building and scaling a cloud foundation team

Hey guys,

We at meshcloud are currently working on a website that helps you build a cloud foundation team, a team that focuses on the acceleration and adoption of cloud usage at organizations.

The website is not fully finished yet but we feel like it is already quite valuable. Perhaps some of you are interested and could leave us with some feedback, that would be awesome :-)

You can find the website here: https://cloudfoundation.meshcloud.io/

https://redd.it/svdrxk
@r_devops

The 4 Stages of DevOps Adoption to Maximize Business Success

The business environment is very dynamic today with continuous changes happening in all possible areas including IT, infrastructure, and training. These changes impact the development process because of increased demands from customers with shorter delivery times. This promotes agile practices and is recommended to be included in the process. In between this entire process, the two main teams of the systems need to be integrated and follow an order in collaboration with each other. The tasks of a development team are not over once the deployment has been achieved. They need to be passed on to the production environment along with all recommended changes within appropriate timelines to be able to achieve concrete company goals.

That’s why you need DevOps adoption to be integrated into your organization’s development process.

Read the full article The 4 Stages of DevOps Adoption to Maximize Business Success

https://redd.it/svfagd
@r_devops