Open source/free registry with HA

Hello,

I'm looking for an alternative to store our packages, the license for current solution is really expensive for us and we need to run HA setup for our package registry.

What are some alternatives on the market you know of ?

https://redd.it/10lp70w
@r_devops

How do guys handle the problem of engineers not regularly reviewing logs and not being trained to find relevant data for user complaints using observability tools?

https://sprkl.dev/working-blind-the-importance-of-developer-observability/

https://redd.it/10lqgs4
@r_devops

Cloud Database for CRM

I’m looking for what would be the most cost effective cloud database system. I’m about to begin working with a developer (still in the hiring process) on creating a very customized web based CRM for my small business. I’m not well versed in the current offerings, and do not want to rely on a developer to push me in a direction.

Could anyone recommend what would be a good option? (And perhaps a smart choice of platforms to work with?)

https://redd.it/10lx6nd
@r_devops

Anyone here burned out? How do you deal with it?

I been at my same job for 4 years now and promoted twice. I love doing what I do, I think it's just I'm tired of working at the same place doing the same thing everyday. I implement a lot of feature requests for future releases and bug fixes from all the tickets we get. It's the same thing every release and it's repetitive as hell. I decompress by hauling equipment for companies or moving people's stuff in my truck as a side hustle, which helps my mental state some. I just wanted to vent that I'm burnt out mentally.

https://redd.it/10lur9u
@r_devops

kube-webhook-certgen compatibility with k8s 1.25.4

Hey guys,

I'm currently working on a new k8s cluster deployment on Azure (AKS), and am going though and editing the terraform modules from the last deployment, as a few things were outdated and needed to be changed respectively.

I'm having a real hard time finding a kube-webhook-certgen version that's compatible with our k8s version, which is 1.25.4. Actually, I'm having a hard time finding whatsoever about the webhook-certgen version releases, let alone about the exact version compatible with 1.25.4 k8s.

Any assistance or guidance would be greatly appreciated, guys.

Thank you!

https://redd.it/10lu2yi
@r_devops

I took the AWS Purity Test, I think I may spend too much time in AWS….

Colleague sent this to me - thought this was pretty funny. I got a 43.

​

Not sure if this is allowed but here's the link if any of you want to take it, let me know your scores: https://www.awspuritytest.com/

https://redd.it/10m373d
@r_devops

GitLab deciding between ArgoCD and Flux (spoiler: they went with Flux)

Really great discussion at GitLab about adopting Flux over ArgoCD. Long thread, but great information in there and highly recommend a quick read.

Have you had to make a similar decision, choosing between ArgoCD and Flux? If so, what'd you end up with and why?

Personally I work with Flux and really enjoy it, but I don't have a ton of exposure to ArgoCD.

https://redd.it/10m3190
@r_devops

Kubernetes + VoIP

I'm a junior DevOps with 6 months in the field, My current company uses an asterisk to manage VoIP systems but is currently using EC2 + ECS to manage their infrastructure

​

They want me to present a PoC for Asterisk on Kubernetes. I have a few questions:

​

\- is it better to use Kubernetes directly or through some managed service like EKS?

\- I've heard about many tooling associated with Kubernetes like kops etc. - is that part of Kubernetes or just a wrapper to make things easier

​

Many Thanks

https://redd.it/10lmtl7
@r_devops

DevOps tools



I have recently come across this article which gives us an overview of some great #devops tools

https://nillenon.medium.com/ci-cd-which-tool-to-choose-d62ce7eac3ee

#devopsengineer #devopsjobs #devopsengineers #devopscommunity #devopstools #devopsworld #jenkins #gitlab #github #git #bitbucket

https://redd.it/10lvsbk
@r_devops

CalTech certification program in Devops?

Expressed interest in a cert program -- its about $5k. I think the gamut it runs is 3 months.
CTME | DevOps Post Graduate Certificate Program (caltech.edu)

They are following up pretty often -- spoke with an instructor pushed back a little by saying that some of the curriculum is old (why are they teaching Jenkins, Chef, Ansible) -- they said they do cover Terraform, not sure why it's not listed on curriculum. I could learn on Udemy for free if disciplined -- already have Nanodegree from Udacity.) Platform for training they use is Simpliearn.


I'm told

1) Offered 20 projects to work on to add to portfolio along with a capstone project

2) 85 percentage job placement (mid-level to beginner)
3) All remote no in person (live in-person bootcamps can run north of $20k+)

Red flags are for me obviously the

1) Cost (for a certificate program -- and not sure even how the quality of the program is. Just marketed with Caltech name)

2) Classes are taught on weekend -- not sure how many hours but imagine 8 total

3) Curriculum material seems old-- seems to generalist (maybe a week or two cover Kubernetes)


Also by doing it online, you are not building networks or real-life relationships, which gets overlooked for getting jobs.

My goal is to find a somewhat legit program that could make you me more competitive in the job-market. I've been out of market 3 months and want to keep my skills sharp (partly health reasons and massive burnout). Longer I'm out harder it will be to keep my skin in the game. I'm currently doing job-hunting and even with job thinking it might be an investment to help me develop my career. There are front-end, AI, bootcamps -- don't have the interest in those and also its in person

As someone with 2 years of experience and mostly self-taught, is this something that would be helpful? Obviously you want some type of outcome and not get screwed with not getting value. Some aspects seem sus, obviously I know they want your business.

https://redd.it/10m9syd
@r_devops

Books or tutorial to learn python scripting

What is the good book or tutorial to learn python scripting? I do have some java development experience. What are the library to learn automation with linux and aws. Help!! How did you start leaning python scripting. What helped you most?

https://redd.it/10hkydk
@r_devops

Do employers care about Coursera DevOps certifications?

This month I finished the Coursera IBM DevOps and Software Engineering Professional Certificate. I'm sure the knowledge will be useful when looking for work after college. However, I'm simply curious: do employers even really care if you can show that you've been awarded that certification? If not, would it be better to instead focus on a technology-specific certification like the Kubernetes cert, for example?

https://redd.it/10hk4w7
@r_devops

Do employers care about Coursera DevOps certifications?

This month I finished the Coursera IBM DevOps and Software Engineering Professional Certificate. I'm sure the knowledge will be useful when looking for work after college. However, I'm simply curious: do employers even really care if you can show that you've been awarded that certification? If not, would it be better to instead focus on a technology-specific certification like the Kubernetes cert, for example?

https://redd.it/10hk4w7
@r_devops

where to find freelance for DevOps

I am full time employee in india and i should say i am underpaid because of the career mistakes i had made in my life.
unable to bear the monthly Expenses which i cannot reduce for god's sake. I am trying to look for freelance work to earn that extra mile but can't see where to get work. Tried few freelance websites but did not help. If any of you guys doing freelance on similar tech how is that you are pulling the clients?, any help appreciated.

My tech:
Aws
Jenkins
K8s on EKS
Linux
Nginx
Terraform
JBoss
Tomcat
Apache

https://redd.it/10hqmhp
@r_devops

Interesting CI/CD Problem Involving GPU compute

Due to firewalls and corp stuff we can only run Jenkins on CPU machines... but we have a use-case where we need to run an automated and long-running GPU-dependent process.

We have connectivity to AWS GPU instances from our Jenkins server, so I was trying to SSH and run the command to kick off processing from there.

My challenge is the ssh connection gets terminated while the process is running (due to sshd config params that I can't change because of security policies).

Any thoughts on a work-around for this? Essentially run a jenkins job that runs a long process on an AWS instance and retrieves the outputs to display gracefully in the console.

https://redd.it/10me7u3
@r_devops

Top DevOps Tools and Technologies- Your Need to Know Now

The realm of software development is buzzing and evolving technology plays a vital role in it. These days, it is imperative to pick the right tools to get support or the power of automation to accomplish software development projects efficiently. As technology advances, we keep on getting such tools that can reduce the risk of human errors and time to market for software. DevOps tools and technologies serve this purpose effectively. Let’s dig deep into the list of DevOps tools. But before moving ahead, let’s understand the concept of DevOps, its importance, and its challenges.

https://www.silvertouch.com/blog/top-devops-tools-and-technologies-your-need-to-know-now/

https://redd.it/10ml03e
@r_devops

Not getting any calls for jr DevOps roles (2 years of exp)

Hey,

I would appreciate advice on finding jr DevOps job.

I am an international student graduating with a Masters's degree in CS in May. I have 2 years of previous experience in DevOps. And I have internship experience in a Fortune 500 company from last summer. I applied to 100+ jobs on LinkedIn and I am still not getting a single return call.

I have university projects + internship exp + my DevOps exp in my resume. However, due to the 1-page restriction, I cannot put every DevOps task I have done in my resume.

Should I make a separate resume only with my previous DevOps exp? Do uni projects matter?

What do I need to do differently ?

Edit: My Resume Link: https://postimg.cc/Wt3KXmdf

https://redd.it/10mofsx
@r_devops

Alternatives to Terraform

Every project I did in the last five years used Terraform. And I started to not like it anymore. The code is becoming very complex and unreadable. Do you guys know about any alternatives? Something that is modern, lightweight, easy to understand, and easy to maintain. I was thinking about experimenting with Pulumi since it would allow my dev colleagues to do more infrastructure work. What do you guys think?


EDIT: I tried terragrunt as well, but it doesn't feel like it reduces complexity. I operate stuff in AWS btw.

https://redd.it/10mo7wv
@r_devops

Cons & Pros of switching from Intel MBP to M1/M2 MBP?

Hi.

I currently have Intel MBP 16" 2019, and considering an upgrade to new M2 (need larger HD & more RAM).If you switched, what kind of issues have you encountered? Any problems with daily tools?

In my daily DevOps work, I use:

1. Multiple docker containers (mostly Debian/alpine)
2. K8s
3. asdf to manage multiple local versions of Ruby, Python, Crystal, Elixir, C++, Node. Any issues compiling, especially older < 2.4 Ruby?
4. Assortment of CLI tools
5. Parallels to run Windows 7 VM sometimes to test stuff / legacy programs
6. VSCode
7. Move back and forth large amounts of data daily - mostly 7z's of SQL, TXT & CSV files, for dev databases - MariaDB & PostgreSQL
8. MS Office for work stuff - teams, outlook, excel.
9. Any more or less popular Mac Apps that would not work for you or you couldn't find decent alternatives?

Any feedback is appreciated :D

https://redd.it/10mr0hw
@r_devops

Cloudfront Response Headers


hi everyone,

ME:

I’m a DevOps Engineer and just started my journey in AWS 3 months ago, I’ve been using Azure for the last 3 years. I don’t have much experience on deploying webapps, but I’m learning.

BACKGROUND:

One of our public websites in Prod has been flagged by vulnerable for attacks by the security team, they suggested to enable response headers in cloudfront:

- csp_no_policy_v2
- hsts_incorrect_v2
- x_content_type_options_incorrect_v2
- x_frame_options_incorrect_v2

I implemented it via Terraform and works well upon our testing and using curl, the response headers are showing properly.

Unfortunately, one of the QA told us that the website is not functioning properly, like failed logins and website could not be loaded on mobile device browsers such as Safari, and Chrome.

I reverted the changes and they did some testing again, and confirmed that it worked.

QUESTION AND CONFUSION:

How did that affect the website’s health and functionalities, when we only implemented response headers? Its not clear. Could someone please explained what happened?

I can’t find an article or resource explaing how it is connected?

For reference this is the headers that were implemented in Terraform:


+ security_headers_config {
+ content_security_policy {
+ content_security_policy = "default-src 'self' 'unsafe-eval' 'unsafe-inline' blob: data: https: wss://*.smooch.io;"
+ override = true
}

+ content_type_options {
+ override = true
}

+ frame_options {
+ frame_option = "DENY"
+ override = true
}

+ strict_transport_security {
+ access_control_max_age_sec = 31536000
+ include_subdomains = true
+ override = true
}
}




THANK YOU SO MUCH!

https://redd.it/10mnxnv
@r_devops

IaC best practice question for build server

Hi All -

Probably a n00b question, but curious what the best practice is for installing software dependencies on a build server for Windows OS.

Should I be installing them from their respective download mirrors during build time or grab all the binaries for the particular version I want and store them on-prem (arty) and pull them in and install during the acutal build?

My concerns with pulling from mirrors (git for example) is if the mirror is down or if my build server picks up a new version that "borks" my CI/CD jobs.

Just looking for best practices for this sort of thing..

Thanks!

https://redd.it/10mw51z
@r_devops