Fearless SSH: short-lived certificates bring Zero Trust to infrastructure

https://blog.cloudflare.com/intro-access-for-infrastructure-ssh

#cloudflare #ssh #security

Lessons from self-hosting ClickHouse - Boris Tane (Cloudflare)

https://youtu.be/r4_Ki7sP1yQ

#clickhouse #selfhosted

Jaeger V2 Unveiled: Distributed Tracing Powered by OpenTelemetry

https://horovits.medium.com/jaeger-v2-unveiled-distributed-tracing-powered-by-opentelemetry-be612dbee774

#jaeger #opentelemetry #observability #tracing

#typescript #cd #ci #git #gitlab #gitlab_ci #local #pipeline #push #uncomitted #untracked

You can run GitLab CI pipelines locally using `gitlab-ci-local`, which saves you time and effort by not having to push changes to test your `.gitlab-ci.yml` files. This tool allows you to execute pipelines as a shell executor or docker executor, eliminating the need for development-specific scripts. It also offers convenience features like CLI options, environment files, bash aliases, and tab completion. You can list pipeline jobs before running them and customize variables and artifacts easily. This makes your development process more efficient and streamlined.

https://github.com/firecow/gitlab-ci-local

Moving Baselime from AWS to Cloudflare: simpler architecture, improved performance, over 80% lower cloud costs

https://blog.cloudflare.com/80-percent-lower-cloud-cost-how-baselime-moved-from-aws-to-cloudflare

#cloudflare #aws #cloud

Exploring Google Cloud Default Service Accounts: Deep Dive and Real-World Adoption Trends

https://securitylabs.datadoghq.com/articles/google-cloud-default-service-accounts

#gke #google #security #cloud #k8s #kubernetes

What Platform Engineering Meant for Adidas's SREs - An account of Adidas' e-commerce transformation from monolith to microservices, and the challenges the company's SRE engineers faced during this process....

Video: https://www.youtube.com/watch?v=BBwMkC7a8Ko
Text: https://thenewstack.io/what-platform-engineering-meant-for-adidass-sres

Thanks to sysadmin notes channel

Proxmox VE Helper-Scripts (Community Edition)

https://github.com/community-scripts/ProxmoxVE

#proxmox #kvm #scripts

We’re leaving Kubernetes

https://www.gitpod.io/blog/we-are-leaving-kubernetes

#k8s #kubernetes #firecracker #vm

Harness the Power of VictoriaMetrics and Grafana Operators for Metrics Management

https://blog.ogenki.io/post/series/observability/metrics

#k8s #kubernetes #monitoring #observability #grafana #prometheus

SREday 2024 - London (playlist)

https://www.youtube.com/playlist?list=PL2CAJ_jforK6OBFSKr0ossbkyDfAMz_ix

#sre #devops

How Stripe architected massive scale observability solution on AWS

https://aws.amazon.com/blogs/mt/how-stripe-architected-massive-scale-observability-solution-on-aws

#aws #stripe #cloud #observability #monitoring

What’s new with Robinhood, our in-house load balancing service

https://dropbox.tech/infrastructure/robinhood-in-house-load-balancing-service

#dropbox #grpc #envoy #hardware #networking #loadbalancing

How WebSockets cost us $1M on our AWS bill

https://www.recall.ai/post/how-websockets-cost-us-1m-on-our-aws-bill

#aws #cloud #amazon

Kube Trace NFS is designed to observe NFS connections in a Kubernetes cluster by collecting telemetry data from a node-level eBPF program utilizing the BCC tool.

More: https://github.com/4rivappa/kube-trace-nfs

How We Built a Self-Healing System to Survive a Terrifying Concurrency Bug At Netflix

https://pushtoprod.substack.com/p/netflix-terrifying-concurrency-bug

#debug #netflix

exo

Run your own AI cluster at home with everyday devices. Forget expensive NVIDIA GPUs, unify your existing devices into one powerful GPU: iPhone, iPad, Android, Mac, Linux, pretty much any device.

https://github.com/exo-explore/exo

#ai #ios #ipados #windows #linux #macos #nvidia

KubeCon NA is approaching, and social media is already packed with related posts of the Cloud Native crowd travelling there, meeting each other, etc. Cloud Native Rejekts is the official pre-party featuring lots of great talks that didn’t make it to KubeCon itself. Moreover, these talks are streamed online and available for offline watching afterwards.

Here’s the list of yesterday’s (Nov 10) talks with the links to relevant video moments:

- “Welcome to Cloud Native Rejekts NA 2024!” by Benazir Khan
- “Malicious Compliance Automated: When You Have 4000 Vulnerabilities and only 24 Hours Before Release” by Duffie Cooley, Kyle Quest
- “Ten years of Kubernetes: Building the future” by Lachlan Evenson
- “Images Bite Back -- Dealing with Day 2 Build Issues” by Adrian Mouat
- “A Day in the Life of Kubernetes Release with Tools, Challenges, and Operations” by Meha Bhalodiya
- “Building an Open Source Observability Stack from Raw Telemetry” by Joshua Lee
- “Debug Like a Pro: Ephemeral Containers and Wolfi Linux in Action” by Chad Crowell, Natalie Lunbeck
- “Integrating eBPF superpowers into your observability tooling” by Mauricio Vasquez Bernal, Chris Kuehl
- “Meet the New Kid in the Sandbox - Integrating Visualization with Prometheus” by Eric D. Schabell
- “From Fragile to Resilient: Using Admission Policies to Strengthen Kubernetes” by Marcus Noble
- “Cloud Native Nix!” by Leigh Capili
- “Virtual Machines, Containers, and WebAssembly Face-off” by Danilo (Dan) Chiarlone, Jiaxiao (Joe) Zhou
- “Platform Engineering Loves Security: Shift Down to Your Platform, not Left to Your Developers!” by Mathieu Benoit, Maxime Coquerel

+ You can find 7 more yesterday' talks from another room here.

The schedule for today (Nov 11) is available here. These talks will be streamed via the same YouTube channel. Enjoy!

#video #events

Inside Argo: Automating the Future

https://youtu.be/ox3Gx3eCTCs

#argocd #devops #k8s #kubernetes