Farewell to DevOps

Hi everyone,

After 6 years of work experience, i decided to leave my career behind. I don't have much savings though. It will be difficult, i need to cut all expenses but critical. I've already rented out one of my rooms, so if i can find one more person, rent and bills are no longer a problem.

​

Why did i do this and what will i do next.

I was a kid when the first matrix movie released, that green matrix digital rain was the image blew my mind. After many years when i study physics during my twenties, i saw a professor doing things on a black computer screen with text only. That was the way i want to use computer i knew it, i felt it. That was the day I've met with GNU/Linux. After 2 years i got my first job as a DevOps Engineer.

​

I admit i had fun, really. Fun part was over after a year. Maybe this wasn't the right company.

Second one wasn't either. And third one also. None of the tech stacks or cloud providers made any change, I wasn't happy. Beyond that i was feeling like this is a torture. I understand that job may not be fun, that's why i wait so long. But this is not the thing i want to do rest of my life.

What now,

My friend developed a mobile game. Soon it'll be released.

We've talked and decided to join and make games together. Maybe this post will remind us

Where were we once and how it has started.

https://redd.it/1438o2u
@r_devops

The Big IAM Challenge - AWS

https://bigiamchallenge.com

Credits to r/netsec post by u/geekydeveloper:

https://www.reddit.com/r/netsec/comments/142rw5x/the_big_iam_challenge_test_your_cloud_security/

https://redd.it/1437vlg
@r_devops

Do I have Stockholm syndrom?

So I’m currently having a web app built and it’s almost done and will hopefully be ready in August. I’m super excited.

I already got the domain registered with route 53 (I’m going the AWS route).

Now for work; I work in infra (I’m more on the network side of things). We use RHEL, Openshift, Python, ansible, gitlab and VMWare. I guess you can call that our “stack”.

So this new web app I’m having built has nothing to do with work; it’s just a personal side project I wanted to start but didn’t have the C++ Audio engineering skillset to execute.

When I was thinking about how I’m gonna run this circus, my first thought was:

I’ll throw the app in VMWare (AWS has vmware right?), I’ll use gitlab + openshift for containers.
Now my question: are there better services to use? I feel like I’m only using these services because it’s the only thing I know.

I’m in a unique position that I can ask this community before I commit to this infrastructure layout.

Anyone have any suggestions for a service/app/infra I could try? I’m still really new to devops and I don’t really know what’s out there.

Thanks for any suggestions! 🙏🏻

https://redd.it/143az9z
@r_devops

Platform Advocacy / Internal Platform Seller

Hi guys,


I'm a former DevOps engineer turned Sales Professional. I work regularly with clients operating cloud-native platforms aimed at helping reduce the cognitive and operational burden of IT on the developers.


The platform that these teams build seem to be very good at achieving their goals but adoption across the organization is very slow and in many cases it doesn't happen at all. The idea that adoption of platforms like this occur through "pollination" isn't a reality and there's a need for an advocate/internal seller to help create visibility of these platforms and the value that they bring to development teams. Especially considering these types of platform really depend on scale to deliver on their promise of cost efficiency, scalability and resiliency when run at scale.


I'd love to hear your thoughts on this.


Would you hire someone who's aim it is to create visibility for the platform and ultimately source new "customers"?


Does someone in your organization already have this role?

https://redd.it/143cmp1
@r_devops

Difference between CI and DEV environment?

What is the difference between a CI environment and a DEV environment in testing?

Really struggling to understand difference between these two- I understand dev is where you write all the code then push to wait for testing, then what is ci? Are they the same?

I was doing the AZ400 devops course and came across the diagram below which made them seem like two separate environments?:

https://learn.microsoft.com/en-us/training/modules/introduction-to-secure-devops/5-explore-key-validation-points?ns-enrollment-type=learningpath&ns-enrollment-id=learn.wwl.az-400-implement-security-validate-code-basescompliance&pivots=bash

https://redd.it/143ef70
@r_devops

Safely Ship Code with a New Open-Source Feature Flag DevOps Tool

Hi everyone,

I wanted to introduce a new open-source feature flag management tool that we recently discovered and implemented in our production environment. You can find the tool at:
https://github.com/featbit/featbit

We tested several other tools, but what convinced us to choose this particular tool were the following reasons:

1. It offers all the necessary functionalities we require. Additionally, it seems that they continue to open-source additional functions that other tools don't provide, such as Audit Logs, Reusable Segments, Permission Control, and even Single Sign-On (SSO) in the future.
2. I joined their community, and I found the core team to be friendly and responsive (perhaps because they are relatively new).
3. The tool is developed using a programming language that aligns well with our daily work.
4. Although they open-sourced the project only 7 months ago, they have been working on its development for two years.
5. It is licensed under the MIT license.

I thought it would be helpful to share this tool here for anyone who may need it or wants to add it to your wishing list. Enjoy!

https://redd.it/143g36h
@r_devops

A customer wants our platform to use their domain for outgoing email notifications

Currently we are using AWS SES for all of our outgoing notifications to customers using our verified identity with the domain that we own, however a new requirement came through from one of the potential customers and they want us to use their domain (i.e. [email protected]) for all outgoing emails. After some reasearch my understanding is that we need to create a new identity in SES for this domain (but then how do we verify it?) Secondly, I believe the next step is sending Easy DKIM CNAME records that SES console shows to the customer who should then add them to DNS servers on their side. SPF record comes into play as well, in order to allow sending emails on their behalf (this is where it becomes confusing - how do we configure SPF record in such a way that they verify it's us sending emails from AWS and not someone else?) AFAIK, AWS documentation does not discuss this usecase specifically. Any help is greatly appreciated.

https://redd.it/143hrk0
@r_devops

/r/devops will be going dark on the 12th

# What's going on?

A recent Reddit policy change threatens to kill many beloved third-party mobile apps, making a great many quality-of-life features not seen in the official mobile app permanently inaccessible to users.

On May 31, 2023, Reddit announced they were raising the price to make calls to their API from being free to a level that will kill every third party app on Reddit, from Apollo to Reddit is Fun to Narwhal to BaconReader.

Even if you're not a mobile user and don't use any of those apps, this is a step toward killing other ways of customizing Reddit, such as Reddit Enhancement Suite or the use of the old.reddit.com desktop interface .

This isn't only a problem on the user level: many subreddit moderators depend on tools only available outside the official app to keep their communities on-topic and spam-free.

# What's the plan?

On June 12th, many subreddits will be going dark to protest this policy. Some will return after 48 hours: others will go away permanently unless the issue is adequately addressed, since many moderators aren't able to put in the work they do with the poor tools available through the official app. This isn't something any of us do lightly: we do what we do because we love Reddit, and we truly believe this change will make it impossible to keep doing what we love.

The two-day blackout isn't the goal, and it isn't the end. Should things reach the 14th with no sign of Reddit choosing to fix what they've broken, we'll use the community and buzz we've built between then and now as a tool for further action.

What can you do?

1. Complain. Message the mods of r/reddit.com, who are the admins of the site: message /u/reddit: submit a support request: comment in relevant threads on r/reddit, such as this one, leave a negative review on their official iOS or Android app- and sign your username in support to this post.
2. Spread the word. Rabble-rouse on related subreddits. Meme it up, make it spicy. Bitch about it to your cat. Suggest anyone you know who moderates a subreddit join us at our sister sub at r/ModCoord \- but please don't pester mods you don't know by simply spamming their modmail.
3. Boycott and spread the word...to Reddit's competition! Stay off Reddit entirely on June 12th through the 13th- instead, take to your favorite non\-Reddit platform of choice and make some noise in support!
4. Don't be a jerk. As upsetting this may be, threats, profanity and vandalism will be worse than useless in getting people on our side. Please make every effort to be as restrained, polite, reasonable and law-abiding as possible. This includes not harassing moderators of subreddits who have chosen not to take part: no one likes a missionary, a used-car salesman, or a flame warrior.

https://redd.it/143jc6m
@r_devops

Managing a manual release process

We have a slightly manual release process. Pipelines get everything ready, and the last step requires a human to click 'go' on the end, having sought approval.

Approval is generally required from two people, one who is aware of all the releases going on ('air traffic control') and another who is technically aware of what's in the release (technical approval).

Currently, we do this with a slack workflow, which is predictably poor; it's easy for requests to get missed or buried in a slew of change requests. It's also easy for the wrong people to click 'approve'.

It feels like we're not the only company doing this; what are the good tools/processes you're using around a business need to have this sort of approval in the way of a release? I've been having a look around and not found anything, which makes me think I'm using the wrong words or something.

Thanks!

https://redd.it/143hipw
@r_devops

Advice?

I work for this start up, its a senior dev ops guy who manages everything, theres lot of things wrong with the infrastructure and workflow.. im just in it for the money. whats your guys advice?
I cant find new jobs right now because the job market is so tough rn

https://redd.it/143lexd
@r_devops

Understanding OAuth 1.0: Explaining the Key Components for Secure API Access

Hey, r/devops!
Check out this informative article on OAuth 1.0. It provides a comprehensive understanding of the key components involved in securing API access. If you're a web developer looking to enhance your knowledge of OAuth, this is a must-read!
In this guide, you'll explore the roles of the consumer, server, and provider, and gain insights into the flow of requests and access token management. Understanding OAuth is crucial in today's interconnected web landscape where APIs play a vital role in data sharing and integration.
Read the full article here
Feel free to share your thoughts, ask questions, and engage in discussions about OAuth and its relevance to web development.
Happy coding, and let's delve into the world of OAuth together!

https://redd.it/143kxs7
@r_devops

Devops and Game Servers?

With the launch of Diablo recently (a video game for those that might not know), it had me thinking. I’m sure their infra team had to greatly prepare for the influx of players. Assuming they have created an environment that can scale up and use more resources if needed.

I am genuinely curious from the Devops perspective how this was achieved, to have such a stable launch. So many players and minimal downtime. Not necessarily each specific detail, but the philosophy, tools used, things like that. Are the servers run using cloud providers, or their own on prem? How can I learn more about this? Or if anyone has insight / resources I could read on. Thanks!

https://redd.it/143oedg
@r_devops

Chef Berks vs Chef-Client distinction

So I was having some issues with some cookbooks due to depencies and am relatively new to chef.

In a meeting discussing these issues, there was a distinction made between Berks resolution and Chef's resolution(or more specifically chef-client) for dependencies being two different things, which was what was causing the dependency issue.

When they said Chef, I recall them stated meaning Chef-client, however I am still not sure what exactly Berks is, or rather the distinction made since.

Isn't Berks part of Chef anyway? I am a bit confused by the distinction.

https://redd.it/143pom4
@r_devops

Noob aspiring to become a devops Engineer

Hey y'all. Im a recent graduate from Industrial engineering, all my studies had very minimum coding usage and recently i decided to get into Devops as the jobs i get to do with my degree in Industrial engineering pays way more less. Can any one please tell me the blue print on how to learn devops and whats the future for devops.

Im kind of debating between Devops/Sap development/ Data Engineer roles.

Can some one please tell me me choosing which field has a better future.

Help a brother!

https://redd.it/143sg8q
@r_devops

Basic | How to Build Dynamic and Flexible Infrastructure with Terraform Functions

Examining Crucial Elements and their Applications for Effective Terraform Configuration

https://medium.com/devops-dudes/how-to-use-terraform-functions-to-create-dynamic-and-flexible-infrastructure-a8e5020e8a41

https://redd.it/143kpzc
@r_devops

Video: Kubernetes 1.27 Chill Vibes - WIIFM (What's In It For Me/You)

https://www.youtube.com/watch?v=ywpXXsJDpH0

https://redd.it/143duo2
@r_devops

Efficiently Release Features and Rollback Instantly with Seamless Operations

We are thrilled to introduce an open-source feature flags tool that simplifies the complexity of configuration and management, empowering DevOps teams. With this tool, developers can seamlessly integrate into the release DevOps workflow without needing in-depth knowledge of DevOps processes.

You can find the tool at: https://github.com/featbit/featbit

We invite you to explore this tool and leverage its capabilities to progressively release features and perform immediate rollbacks as needed, all while ensuring uninterrupted operations.

If you have any questions or need further assistance, feel free to reach out.

https://redd.it/143vr12
@r_devops

Why are companies caring less and less about linux skills these days? Do you think it's still worthwhile to learn?

Seems like most companies don't care about linux skills at all.

https://redd.it/143x53t
@r_devops

Sematext Monitoring Tool

Hello All

My current company is using a mix of New Relic and Splunk for log management, infrastructure monitoring, and apm. However, we are trying to switch from New Relic due to its cost. We are currently evaluating Splunk Observability but finding it lacks some infrastructure and apm metrics we want to see and the interface is not intuitive.

While doing some research on other solutions, I came across Sematext. It looks promising and I was wondering if anyone has used it before? If so how was it and is it worth trying out?

Thanks

https://redd.it/143xmo5
@r_devops

Prometheus: scrape pods from just a particular node?

Is anybody familiar with a way on how to scrape Kubernetes pods from just a particular node?

I’m trying to figure out have to have multiple Prometheus scrapers in a single cluster without scraping the same endpoints and duplicating metrics. My thoughts are to use a daemonset and have some pod scraping affinity.

https://redd.it/143arx9
@r_devops

Thoughts on CI/CD workflow for small team creating an online web application

I wanted to improve our CI/CD pipeline since right now we are a small team working a web application with a frontend and backend and we are doing everything pretty much manually.

The idea I have so far is have 2 persistent branches, main and prod.

* The main branch contains everything that we want to deploy next
* When we want to create a new feature we branch off main and once the feature is done and ready to be deployed is merged back to main using a PR request.
* Anytime something in the main branch changes our CI/CD pipeline (AWS CodePipeline) will build the docker image, run tests and deploy it to our staging server.
* After checking that everything works as expected in staging we can merge into production which does pretty much the same but deploys into production server/servers instead.
* If we have a bug in production we can create a hotfix branch where we fix the bug, this gets merged back into main to test it in the staging server and if everything works well the hotfix gets also merged into production (not sure about this part here since the fix will be tested in staging next to a lot of unreleased features, in this case staging is not a 1 to 1 with production)

If we want to avoid having the staging pipeline being triggered all the time (for example we are adding a lot of features and we dont need to see them yet in staging) we can implement a manual check in our pipeline that we have to click on to build and deploy into staging.

What do you think, does this sound like a good way of doing this?


In a different post someone suggested only having 1 main branch and "promoting" the stage build into production. But i have no idea how to do that.
Also, we have different AWS accounts for stage and prod, so not sure if that will even make it more difficult.

https://redd.it/1440toe
@r_devops